$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d21d01d2-e477-40e0-a950-5c0cc4c51caf.roa File: d21d01d2-e477-40e0-a950-5c0cc4c51caf.roa (raw, json) Hash identifier: WoMBhYS1gnSb42sVqZdIuRhwdFbAe9dnO/jK0q28pLE= Subject key identifier: 98:D7:76:28:AE:CC:47:38:D4:55:65:A0:3B:67:BB:BF:82:F5:CB:EA Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 170652BA6CEE01D8902F39EE301F39AC6A9581A9 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d21d01d2-e477-40e0-a950-5c0cc4c51caf.roa Signing time: Fri 15 Aug 2025 21:22:06 +0000 ROA not before: Fri 15 Aug 2025 21:22:06 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6105::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:06:52:ba:6c:ee:01:d8:90:2f:39:ee:30:1f:39:ac:6a:95:81:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 15 21:22:06 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=c762e1de912a47c254451af24fdd39d0ca495fbacc27dc41e2a70eedb58a1f80, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:ac:49:57:02:b0:27:0c:c9:c1:05:e1:94:0b: ab:30:ba:64:3e:fd:36:0b:b0:a8:06:fd:7e:1e:03: e8:26:d8:ce:98:84:27:bd:62:c4:28:fa:02:40:a0: 40:46:76:b0:05:47:93:a6:67:37:06:56:2f:64:a1: f3:cf:83:79:a2:51:0d:bf:89:24:dc:64:70:44:f6: 0f:9e:e7:3b:af:0a:1b:b0:67:17:d5:d3:ab:54:f7: d9:30:ac:73:4c:90:bb:61:e4:71:37:b2:2d:66:ae: 90:7e:7e:c2:fb:30:81:7b:54:55:68:58:82:32:5b: a7:ae:32:41:07:86:16:d3:6e:c9:f5:5b:7a:a0:bc: 69:a0:1c:7b:07:0f:26:5e:b9:29:f0:75:36:ac:89: 14:e0:a4:73:2c:74:0e:7c:1f:fc:e4:bb:44:e2:6c: 31:fb:e0:b5:50:4f:0f:c8:77:c8:4c:e9:26:8f:25: 18:22:9b:1c:24:38:18:f4:97:99:f1:0e:81:a9:9d: 33:0f:ca:68:ca:18:d8:0b:60:26:35:5c:b5:c4:40: 39:8f:15:87:cc:77:af:7b:ea:ab:06:a6:71:fd:97: 43:b2:79:21:2b:e1:ff:9a:f3:46:8d:cc:7c:e3:d8: 0c:b2:5a:44:06:1f:92:7a:e8:e8:c8:ac:55:3d:23: 83:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:D7:76:28:AE:CC:47:38:D4:55:65:A0:3B:67:BB:BF:82:F5:CB:EA X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d21d01d2-e477-40e0-a950-5c0cc4c51caf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6105::/48 Signature Algorithm: sha256WithRSAEncryption 2d:c3:f2:73:20:a5:74:ef:38:c1:1b:bf:bc:8d:a5:9f:a1:da: 36:e6:a8:e8:6c:f6:2d:dd:10:43:2e:b8:0a:db:c3:f6:5e:ed: 04:41:8e:4a:18:86:61:cf:04:b1:69:e7:05:97:84:88:82:92: 4e:e5:3e:63:0f:c0:e8:e0:8e:ab:7d:e0:fe:2b:17:77:4d:65: 5b:16:86:b3:3c:c8:ad:6b:6b:41:b9:c5:84:7d:11:8c:b6:d2: 00:82:3c:dc:ea:8e:95:b8:79:0b:39:a2:8e:59:af:64:5f:6c: 90:74:cd:1d:cf:b0:c9:eb:0a:b3:73:31:f9:c0:9d:34:26:b2: a2:49:2d:4a:4f:1b:8a:4c:7a:46:5b:f2:b9:98:f0:3a:33:c3: fd:69:7f:17:f2:66:7d:1e:20:31:8c:82:be:f7:a3:eb:4a:98: 56:95:a7:d2:e1:26:ca:81:93:12:0d:04:2a:1c:ba:bc:a5:2c: 12:fd:34:2f:ac:e5:c4:a2:26:43:b1:fd:36:a1:21:5d:c8:e6: 5b:a4:64:65:a4:8a:55:fc:21:a5:df:da:57:0d:b8:74:49:de: df:18:58:2c:7d:a3:f9:0f:77:ce:ec:75:15:54:9b:9d:e1:1e: 36:6c:7b:04:e2:8a:7b:23:92:f6:4c:a1:63:89:0d:76:06:84: 5d:49:95:3b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFwZSumzuAdiQLznuMB85rGqVgakwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE1MjEyMjA2WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNzYyZTFkZTkxMmE0N2MyNTQ0NTFhZjI0ZmRkMzlkMGNh NDk1ZmJhY2MyN2RjNDFlMmE3MGVlZGI1OGExZjgwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmrElXArAnDMnBBeGUC6swumQ+/TYLsKgG/X4eA+gm2M6Y hCe9YsQo+gJAoEBGdrAFR5OmZzcGVi9kofPPg3miUQ2/iSTcZHBE9g+e5zuvChuw ZxfV06tU99kwrHNMkLth5HE3si1mrpB+fsL7MIF7VFVoWIIyW6euMkEHhhbTbsn1 W3qgvGmgHHsHDyZeuSnwdTasiRTgpHMsdA58H/zku0TibDH74LVQTw/Id8hM6SaP JRgimxwkOBj0l5nxDoGpnTMPymjKGNgLYCY1XLXEQDmPFYfMd6976qsGpnH9l0Oy eSEr4f+a80aNzHzj2AyyWkQGH5J66OjIrFU9I4PtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUmNd2KK7MRzjUVWWgO2e7v4L1y+owHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2QyMWQwMWQyLWU0NzctNDBlMC1hOTUwLTVjMGNjNGM1MWNhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQUwDQYJKoZIhvcNAQELBQADggEBAC3D8nMgpXTvOMEbv7yNpZ+h 2jbmqOhs9i3dEEMuuArbw/Ze7QRBjkoYhmHPBLFp5wWXhIiCkk7lPmMPwOjgjqt9 4P4rF3dNZVsWhrM8yK1ra0G5xYR9EYy20gCCPNzqjpW4eQs5oo5Zr2RfbJB0zR3P sMnrCrNzMfnAnTQmsqJJLUpPG4pMekZb8rmY8Dozw/1pfxfyZn0eIDGMgr73o+tK mFaVp9LhJsqBkxINBCocurylLBL9NC+s5cSiJkOx/TahIV3I5lukZGWkilX8IaXf 2lcNuHRJ3t8YWCx9o/kPd87sdRVUm53hHjZsewTiinsjkvZMoWOJDXYGhF1JlTs= -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:47 2025 by rpki-client