$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2d641cc-0376-4d82-897a-3d5596d61679.roa File: b2d641cc-0376-4d82-897a-3d5596d61679.roa (raw, json) Hash identifier: zIfyOY21QLZYYwi0KbbUbHwMUoHilGj3wQTm97nt0FM= Subject key identifier: 48:86:06:DB:4E:55:28:7B:45:98:77:9A:E4:20:82:8F:0F:C9:05:FA Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3DBFE11814CA784CE901D846A0C0266683C1E8EA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2d641cc-0376-4d82-897a-3d5596d61679.roa Signing time: Tue 12 Aug 2025 15:00:14 +0000 ROA not before: Tue 12 Aug 2025 15:00:14 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f2:7101::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:bf:e1:18:14:ca:78:4c:e9:01:d8:46:a0:c0:26:66:83:c1:e8:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 12 15:00:14 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=eaae6530469fc791780a4c96759f6043b39fa7b78e1d748c1e8fadca47f5f4ff, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:ad:43:4f:ae:ca:6d:97:9d:7d:c8:15:44:71: 8b:1f:ca:60:ff:9a:f8:fe:68:ee:f0:87:d8:00:4d: 39:dd:87:7d:f1:12:d9:f0:73:c5:2b:5b:2e:46:bd: d2:44:90:4c:65:06:88:96:da:53:b5:02:52:fa:fe: aa:b0:b5:25:38:10:d2:1e:a4:9c:a7:6d:c1:7e:5d: 88:52:fa:4b:1b:d9:9f:bd:fb:8e:8a:ae:2b:b6:30: 72:36:60:8e:ff:27:38:e3:98:bd:26:af:a4:02:32: b0:2d:c3:87:5d:63:8b:af:f0:d1:ab:7a:78:43:55: a1:75:da:3b:7c:3f:79:21:4f:34:ef:8f:36:21:05: 23:bb:94:fd:b9:e5:6a:8a:65:b9:34:aa:7d:0d:c3: bb:e4:e3:47:95:d5:b5:05:6a:79:b2:eb:80:8a:db: a9:d2:ba:66:1f:53:c0:15:ab:11:a0:bd:ca:5d:21: 53:2c:10:05:65:61:e3:0b:53:ac:e5:2b:9b:a1:ec: fb:ef:bf:b7:70:98:18:14:21:a4:2e:21:2a:c7:3b: 44:02:8f:df:aa:ef:91:8d:15:f8:46:41:93:79:c0: a3:1c:8d:49:78:50:b7:1a:94:b4:80:48:17:06:18: 21:32:f3:bd:f4:ab:b7:7b:0d:8f:36:ee:24:13:ba: c7:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:86:06:DB:4E:55:28:7B:45:98:77:9A:E4:20:82:8F:0F:C9:05:FA X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2d641cc-0376-4d82-897a-3d5596d61679.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7101::/48 Signature Algorithm: sha256WithRSAEncryption 82:27:96:9d:4d:78:de:b8:50:cf:c7:3b:1a:11:9e:9a:13:7b: a1:cf:5a:6c:99:89:eb:09:54:4c:fe:a6:01:df:37:ad:ae:9a: 0a:ce:65:20:52:ff:b0:58:2b:6f:d6:b5:4e:0d:32:71:ea:31: 21:c5:50:6f:17:bd:b8:01:97:30:29:cd:5d:83:5e:9f:92:4b: 76:7d:2f:fc:f8:3f:0b:ba:c5:f8:1f:ea:e7:ae:48:14:b8:a6: b9:9b:c2:ed:25:9d:04:85:98:82:3e:6f:06:e4:6e:51:a4:63: f0:92:02:14:4f:01:ff:f2:73:92:46:2c:2c:ba:c8:e6:6c:bb: 43:72:25:67:bf:54:32:c7:c9:f6:64:3b:85:8d:3d:a8:b5:58: e8:5d:89:e5:3e:bf:bf:b9:11:a5:d9:40:4e:42:61:41:21:2a: 28:93:49:b1:e6:b7:88:f5:82:21:f3:fb:36:7c:7a:55:7f:73: eb:5a:69:97:ce:b2:32:8f:3d:e2:87:85:87:d3:8e:ed:1c:49: 88:69:2c:cf:03:5f:5e:c1:f8:e0:b0:53:42:8d:7e:06:52:01: ae:cf:b7:df:86:f3:c3:b9:97:91:16:a6:2b:89:5e:aa:11:ad: 94:81:2b:51:7f:c9:cf:24:ca:07:b8:fa:73:b3:31:84:56:98: 2d:fc:19:76 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPb/hGBTKeEzpAdhGoMAmZoPB6OowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODEyMTUwMDE0WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYWFlNjUzMDQ2OWZjNzkxNzgwYTRjOTY3NTlmNjA0M2Iz OWZhN2I3OGUxZDc0OGMxZThmYWRjYTQ3ZjVmNGZmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXrUNPrsptl519yBVEcYsfymD/mvj+aO7wh9gATTndh33x Etnwc8UrWy5GvdJEkExlBoiW2lO1AlL6/qqwtSU4ENIepJynbcF+XYhS+ksb2Z+9 +46Kriu2MHI2YI7/JzjjmL0mr6QCMrAtw4ddY4uv8NGrenhDVaF12jt8P3khTzTv jzYhBSO7lP255WqKZbk0qn0Nw7vk40eV1bUFanmy64CK26nSumYfU8AVqxGgvcpd IVMsEAVlYeMLU6zlK5uh7Pvvv7dwmBgUIaQuISrHO0QCj9+q75GNFfhGQZN5wKMc jUl4ULcalLSASBcGGCEy8730q7d7DY827iQTuscXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUSIYG205VKHtFmHea5CCCjw/JBfowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2IyZDY0MWNjLTAzNzYtNGQ4Mi04OTdhLTNkNTU5NmQ2MTY3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDycQEwDQYJKoZIhvcNAQELBQADggEBAIInlp1NeN64UM/HOxoRnpoT e6HPWmyZiesJVEz+pgHfN62umgrOZSBS/7BYK2/WtU4NMnHqMSHFUG8XvbgBlzAp zV2DXp+SS3Z9L/z4Pwu6xfgf6ueuSBS4prmbwu0lnQSFmII+bwbkblGkY/CSAhRP Af/yc5JGLCy6yOZsu0NyJWe/VDLHyfZkO4WNPai1WOhdieU+v7+5EaXZQE5CYUEh KiiTSbHmt4j1giHz+zZ8elV/c+taaZfOsjKPPeKHhYfTju0cSYhpLM8DX17B+OCw U0KNfgZSAa7Pt9+G88O5l5EWpiuJXqoRrZSBK1F/yc8kyge4+nOzMYRWmC38GXY= -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:38 2025 by rpki-client