$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c49749c5-4263-443f-a5d1-f0fc1a27edc1.roa File: c49749c5-4263-443f-a5d1-f0fc1a27edc1.roa (raw, json) Hash identifier: bSuajWkssNeY2mcBFcvOiQL0cJgi6pKimUl4QI0Ur5w= Subject key identifier: 8B:E6:FC:67:53:9D:9E:E5:62:B0:C4:52:F6:A4:16:0B:B1:00:46:8B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4BE64361D32D39C4E06711989E37712193E14EBB Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c49749c5-4263-443f-a5d1-f0fc1a27edc1.roa Signing time: Fri 08 Aug 2025 00:30:34 +0000 ROA not before: Fri 08 Aug 2025 00:30:34 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8801::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:e6:43:61:d3:2d:39:c4:e0:67:11:98:9e:37:71:21:93:e1:4e:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 8 00:30:34 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=b1162530427b7876575506c3aca2d63ac68c0c60928ac3729f404b9eb2f20073, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e3:12:a9:f5:a5:11:46:28:b7:92:f9:25:76: 3b:ca:16:ed:60:d3:78:53:83:37:e6:aa:a4:f9:2c: e3:05:a1:2d:d9:d6:46:af:e0:77:89:cc:a4:25:2f: a2:34:5d:a9:7c:f2:4e:0d:f9:cb:07:43:4d:24:71: 1d:8f:27:0f:72:c7:8b:aa:73:c0:5d:3a:e5:f4:36: 16:d6:ad:da:9b:35:bd:ee:1e:51:30:ce:75:41:19: e2:f3:19:83:ce:00:6a:88:1f:3b:1a:20:db:50:92: 85:6b:fc:3a:25:06:13:d3:3e:dd:49:14:3f:84:2b: 7f:d4:a7:13:7a:96:06:0f:23:d2:d0:ca:f1:e5:95: 12:d7:26:b9:55:b9:2f:fc:a2:dd:da:e8:56:49:4a: 8b:80:e7:77:b8:21:a9:45:ea:4c:69:f2:dd:e5:fc: 75:2d:f3:fa:cc:74:9f:7d:3d:41:d0:4a:52:a4:42: 44:bb:68:8c:60:b7:ef:b5:ab:7d:65:22:2b:cc:60: 4a:81:94:a1:9f:c5:53:40:05:5e:bf:84:ce:4c:e0: 18:52:11:5d:54:d7:04:45:aa:2b:f4:e6:b6:57:88: 30:c4:00:90:5f:44:2c:3f:98:1b:f9:67:e2:8f:16: 74:9b:fa:98:fb:60:e4:39:13:64:58:35:08:b2:08: a0:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:E6:FC:67:53:9D:9E:E5:62:B0:C4:52:F6:A4:16:0B:B1:00:46:8B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c49749c5-4263-443f-a5d1-f0fc1a27edc1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8801::/48 Signature Algorithm: sha256WithRSAEncryption 3a:4c:28:6d:b7:f5:80:0c:ed:0b:47:ae:6d:72:42:f8:96:be: 30:fe:4c:ed:2c:44:9c:bb:34:b6:85:bb:a3:bc:bc:d0:c2:42: 18:57:89:70:53:9b:61:5c:e0:50:3f:97:2a:48:56:21:44:03: 81:15:ad:99:75:62:a3:7c:f2:4b:0c:52:af:9f:1e:86:9e:50: 06:70:95:76:26:f2:91:e6:f9:b8:4a:af:f2:3f:df:69:f3:95: 80:62:37:a6:77:0b:30:9a:f5:6a:32:99:bb:e5:b3:6a:88:f8: 42:15:81:57:5c:4f:8b:48:b4:62:c3:07:c2:b7:8f:b8:a0:0a: 13:bc:ff:c2:a8:37:1f:13:a4:3d:80:90:28:ea:ac:9f:4f:e1: a0:cb:84:b5:a1:36:91:5e:d5:b6:17:3d:dd:c5:d9:63:53:ed: 76:f7:03:f3:94:68:6e:4f:6a:ee:ae:5f:77:f8:1b:3d:0c:3f: 1a:c4:2a:24:e0:8d:5d:9a:a6:66:b3:32:34:80:e1:3a:c0:e2: b6:e9:d6:fc:7f:79:af:a1:2a:42:10:b5:0d:ac:db:8f:b5:e1: 11:ac:9d:5f:ab:06:c7:55:5c:2c:62:67:2a:66:e2:1d:ce:16: b8:ad:cb:3d:7b:5e:58:ec:ad:f8:d0:f0:b4:47:ce:c0:96:3a: e7:09:d6:f9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUS+ZDYdMtOcTgZxGYnjdxIZPhTrswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA4MDAzMDM0WhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTE2MjUzMDQyN2I3ODc2NTc1NTA2YzNhY2EyZDYzYWM2 OGMwYzYwOTI4YWMzNzI5ZjQwNGI5ZWIyZjIwMDczMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDC4xKp9aURRii3kvkldjvKFu1g03hTgzfmqqT5LOMFoS3Z 1kav4HeJzKQlL6I0Xal88k4N+csHQ00kcR2PJw9yx4uqc8BdOuX0NhbWrdqbNb3u HlEwznVBGeLzGYPOAGqIHzsaINtQkoVr/DolBhPTPt1JFD+EK3/UpxN6lgYPI9LQ yvHllRLXJrlVuS/8ot3a6FZJSouA53e4IalF6kxp8t3l/HUt8/rMdJ99PUHQSlKk QkS7aIxgt++1q31lIivMYEqBlKGfxVNABV6/hM5M4BhSEV1U1wRFqiv05rZXiDDE AJBfRCw/mBv5Z+KPFnSb+pj7YOQ5E2RYNQiyCKCzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUi+b8Z1OdnuVisMRS9qQWC7EARoswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M0OTc0OWM1LTQyNjMtNDQzZi1hNWQxLWYwZmMxYTI3ZWRjMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDxiAEwDQYJKoZIhvcNAQELBQADggEBADpMKG239YAM7QtHrm1yQviW vjD+TO0sRJy7NLaFu6O8vNDCQhhXiXBTm2Fc4FA/lypIViFEA4EVrZl1YqN88ksM Uq+fHoaeUAZwlXYm8pHm+bhKr/I/32nzlYBiN6Z3CzCa9Woymbvls2qI+EIVgVdc T4tItGLDB8K3j7igChO8/8KoNx8TpD2AkCjqrJ9P4aDLhLWhNpFe1bYXPd3F2WNT 7Xb3A/OUaG5Pau6uX3f4Gz0MPxrEKiTgjV2apmazMjSA4TrA4rbp1vx/ea+hKkIQ tQ2s24+14RGsnV+rBsdVXCxiZypm4h3OFrityz17XljsrfjQ8LRHzsCWOucJ1vk= -----END CERTIFICATE-----Generated at Wed Aug 20 10:50:15 2025 by rpki-client