$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa File: b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa (raw, json) Hash identifier: 4fH9fm+zmn8Nr2pofKgClChaTpGGpVwFwh7b6R3cjvE= Subject key identifier: D0:4F:71:09:DA:92:45:91:D2:ED:C9:3B:11:86:B5:E3:0B:C3:ED:35 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 410CBE1C3472BF9AF526851A9527DF85B2E622CE Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa Signing time: Tue 19 Aug 2025 16:50:06 +0000 ROA not before: Tue 19 Aug 2025 16:50:06 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0::/28 maxlen: 28 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:0c:be:1c:34:72:bf:9a:f5:26:85:1a:95:27:df:85:b2:e6:22:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 19 16:50:06 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=5fde3fab6b46b2bf35dbab94b58e28045ec836a779efdca9d8410103fd2b1d8d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0d:dd:7e:cc:57:1e:f8:30:a0:4f:12:b1:d9: 1a:01:49:bb:c4:42:5e:e5:9e:3f:1e:85:e9:03:05: cd:2b:6e:64:df:cb:c4:ef:2e:b5:74:6e:c2:b7:a9: b5:e4:4a:d1:e5:8b:ea:16:da:5f:99:28:af:89:b5: aa:18:1b:89:b4:1f:44:75:aa:4f:a7:45:b2:de:80: 21:d7:d1:bc:d0:86:b3:23:8a:e8:28:8c:59:87:38: ec:9d:28:23:73:5b:0e:c1:bc:6e:dc:19:29:f3:22: 2f:29:93:ef:d6:ad:4b:ee:c3:26:c1:1b:bf:eb:40: 97:b8:39:b6:a1:19:1e:de:a0:36:1b:c2:80:a6:f2: 8e:26:91:2f:ec:6c:84:9b:77:73:b6:6b:dc:4c:ff: 72:db:de:cd:bc:e1:d2:ce:74:90:51:27:0c:4d:19: c5:1a:7c:52:1f:24:e8:47:c7:4e:50:e8:f1:cc:b8: a8:d2:8e:ce:fa:45:8e:f5:8d:65:3b:7f:a7:e9:48: b4:5e:dd:6f:54:bd:c2:79:35:36:2f:e1:f6:77:4b: 7f:05:79:12:da:24:44:27:4e:3c:9c:a6:ac:c9:d5: 0e:ac:aa:2e:6c:bf:6a:79:e6:0f:4f:8e:3a:30:84: 40:7c:91:bf:97:57:d7:ea:f8:ce:e0:d8:12:3b:78: 90:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:4F:71:09:DA:92:45:91:D2:ED:C9:3B:11:86:B5:E3:0B:C3:ED:35 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0::/28 Signature Algorithm: sha256WithRSAEncryption 32:8f:90:5d:52:a2:53:64:c7:99:08:fa:75:87:bd:2d:03:5d: 70:d9:c7:1e:64:36:02:21:31:af:97:0c:cf:11:75:03:98:6b: f6:72:d4:28:35:48:67:d8:36:77:44:2e:07:ae:9b:a2:8b:f6: 09:08:76:de:5d:74:82:19:ce:a0:0b:40:46:c9:04:5e:13:d5: 33:d1:81:42:94:04:62:bf:a4:25:b8:2c:76:ba:8f:87:fa:a2: 90:ee:ae:eb:80:a1:0d:9e:54:10:32:a2:8e:33:24:65:e6:35: 24:45:e6:4c:da:c4:19:83:4c:69:95:11:76:72:0f:ec:bc:e2: 52:7f:ed:d8:44:b5:24:0e:54:b3:2d:a5:a2:fe:f7:e4:70:4d: 0a:aa:e3:89:59:fb:6c:dc:ef:ce:0d:77:d4:a4:34:bb:fc:06: 8a:d1:e9:68:17:77:1a:70:ba:92:5c:85:6b:3a:84:f3:ed:9c: f8:81:b5:f4:c1:2d:11:0e:78:e9:35:2e:74:0f:cb:4a:4a:79: 30:ec:9c:1c:34:40:2e:07:85:d6:bf:84:21:ea:e3:45:af:f2: 55:c5:15:a4:e8:2d:77:75:3c:67:87:4d:6a:3b:d1:73:0f:38: 6a:15:9f:cf:82:33:80:52:1f:02:86:bb:8e:bd:a0:18:6d:2d: 90:fc:a3:0d -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUQQy+HDRyv5r1JoUalSffhbLmIs4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE5MTY1MDA2WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZmRlM2ZhYjZiNDZiMmJmMzVkYmFiOTRiNThlMjgwNDVl YzgzNmE3NzllZmRjYTlkODQxMDEwM2ZkMmIxZDhkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvDd1+zFce+DCgTxKx2RoBSbvEQl7lnj8ehekDBc0rbmTf y8TvLrV0bsK3qbXkStHli+oW2l+ZKK+JtaoYG4m0H0R1qk+nRbLegCHX0bzQhrMj iugojFmHOOydKCNzWw7BvG7cGSnzIi8pk+/WrUvuwybBG7/rQJe4ObahGR7eoDYb woCm8o4mkS/sbISbd3O2a9xM/3Lb3s284dLOdJBRJwxNGcUafFIfJOhHx05Q6PHM uKjSjs76RY71jWU7f6fpSLRe3W9UvcJ5NTYv4fZ3S38FeRLaJEQnTjycpqzJ1Q6s qi5sv2p55g9PjjowhEB8kb+XV9fq+M7g2BI7eJBHAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQU0E9xCdqSRZHS7ck7EYa14wvD7TUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2I3YmJhZmJmLWU2ZDQtNDQ4Ny05ZWJiLWNiZDcyYjNkNmM3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQQmAPDwMA0GCSqGSIb3DQEBCwUAA4IBAQAyj5BdUqJTZMeZCPp1h70tA11w 2cceZDYCITGvlwzPEXUDmGv2ctQoNUhn2DZ3RC4Hrpuii/YJCHbeXXSCGc6gC0BG yQReE9Uz0YFClARiv6QluCx2uo+H+qKQ7q7rgKENnlQQMqKOMyRl5jUkReZM2sQZ g0xplRF2cg/svOJSf+3YRLUkDlSzLaWi/vfkcE0KquOJWfts3O/ODXfUpDS7/AaK 0eloF3cacLqSXIVrOoTz7Zz4gbX0wS0RDnjpNS50D8tKSnkw7JwcNEAuB4XWv4Qh 6uNFr/JVxRWk6C13dTxnh01qO9FzDzhqFZ/PgjOAUh8ChruOvaAYbS2Q/KMN -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:31 2025 by rpki-client