$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2b11e0f-0112-4c4e-8aa4-168788fd6aa7.roa File: d2b11e0f-0112-4c4e-8aa4-168788fd6aa7.roa (raw, json) Hash identifier: H4ZUcLMBpyPZm/3SL4fH/GffYdlQ+ZOJa/ToxpBzSDY= Subject key identifier: D2:47:C2:A6:E0:C0:2C:AC:59:AE:2F:D2:79:04:E6:3F:5A:3B:72:F6 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1ABC765FCAC2F446DE79934B0C8734249F0B7027 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2b11e0f-0112-4c4e-8aa4-168788fd6aa7.roa Signing time: Tue 05 Aug 2025 18:40:14 +0000 ROA not before: Tue 05 Aug 2025 18:40:14 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ea00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:bc:76:5f:ca:c2:f4:46:de:79:93:4b:0c:87:34:24:9f:0b:70:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:40:14 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=05b66c187828980ca99a8362d871361991c7f1bbd846bb01251cfa204e7f83f5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f4:c5:88:b4:64:70:5a:b5:a6:ea:e9:a5:55: fe:a0:31:2c:63:a4:ba:3c:70:7f:67:68:c3:9b:c1: 86:4d:ae:ff:09:c3:70:f8:98:6b:9b:9c:3d:23:b3: d0:85:ff:8c:d2:61:12:e8:fc:6b:27:04:db:a7:df: fd:56:a3:e1:cb:ad:98:eb:e3:1e:f3:76:76:4e:64: 80:b2:b9:f2:aa:14:5b:6e:7f:4e:91:3c:72:35:6a: d7:d1:ba:6f:ba:5a:76:69:9c:ab:65:06:95:5e:ac: 36:a9:a1:73:3b:95:8a:df:75:bb:57:4a:c5:16:c2: b1:f4:24:29:8a:0b:8b:28:f1:28:b3:f2:a1:b6:17: f8:44:9a:35:28:8f:e8:0a:d4:39:5e:c7:06:a0:22: d4:20:09:2a:8e:bf:4c:6e:55:92:c6:62:68:3b:42: 9f:62:cf:9e:29:3b:6e:75:fd:a6:ab:6e:12:da:29: 4a:34:81:6a:a0:62:71:6e:cd:47:b1:af:ec:ca:7d: 60:5b:38:2d:08:f4:2b:1b:b0:40:36:97:dd:99:79: 5d:cc:61:80:b7:c7:b1:1b:31:04:06:44:a8:b1:8b: 97:d5:78:a8:62:6c:f8:a2:a3:22:ba:d8:a3:08:d2: 42:11:4b:59:c4:61:ed:13:21:c9:a5:77:9d:54:7f: fb:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:47:C2:A6:E0:C0:2C:AC:59:AE:2F:D2:79:04:E6:3F:5A:3B:72:F6 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2b11e0f-0112-4c4e-8aa4-168788fd6aa7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ea00::/40 Signature Algorithm: sha256WithRSAEncryption 74:39:3b:c3:5e:06:0e:2e:46:29:14:da:e5:72:7a:45:ce:2b: 15:29:f9:de:eb:84:ba:0b:87:44:2e:36:99:8d:c1:d0:56:e7: a6:ad:98:1d:9b:e5:b0:01:de:66:f4:6a:a1:f7:4d:39:bd:1a: 6f:09:32:39:77:6a:af:18:2b:4f:40:ed:86:b8:29:75:20:97: 71:6b:ea:fa:c4:32:fc:c3:bf:df:50:0c:9c:22:02:42:b5:04: 3c:ee:8c:0d:da:e5:05:28:12:b1:f9:dc:b5:b4:e5:85:30:30: 66:16:ff:8f:e8:c4:cd:ea:2f:16:d0:c1:dc:2e:9b:cd:52:68: 37:57:75:b0:e4:21:ef:61:c6:db:f3:e0:6d:38:2e:50:24:e3: 52:a3:fa:8d:b7:a3:f1:ad:c0:a7:a4:86:de:4e:c2:7f:c2:81: 47:6a:21:ed:7a:1b:5b:c5:18:20:8e:b5:c9:08:e7:eb:45:41: f9:89:34:88:d3:cd:39:cf:10:df:91:58:41:9d:9d:38:1d:45: 6a:f0:81:fc:81:1d:88:4d:db:f4:15:01:aa:34:3a:c2:8d:2e: c2:b8:69:4c:a0:81:f1:db:0d:3f:5b:79:f2:50:e0:8d:2c:a0: 51:e9:67:5c:2f:b2:93:e4:7e:34:3f:f5:82:16:97:67:3c:d9: cc:d4:dd:7a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUGrx2X8rC9EbeeZNLDIc0JJ8LcCcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTg0MDE0WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNWI2NmMxODc4Mjg5ODBjYTk5YTgzNjJkODcxMzYxOTkx YzdmMWJiZDg0NmJiMDEyNTFjZmEyMDRlN2Y4M2Y1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/9MWItGRwWrWm6umlVf6gMSxjpLo8cH9naMObwYZNrv8J w3D4mGubnD0js9CF/4zSYRLo/GsnBNun3/1Wo+HLrZjr4x7zdnZOZICyufKqFFtu f06RPHI1atfRum+6WnZpnKtlBpVerDapoXM7lYrfdbtXSsUWwrH0JCmKC4so8Siz 8qG2F/hEmjUoj+gK1DlexwagItQgCSqOv0xuVZLGYmg7Qp9iz54pO251/aarbhLa KUo0gWqgYnFuzUexr+zKfWBbOC0I9CsbsEA2l92ZeV3MYYC3x7EbMQQGRKixi5fV eKhibPiioyK62KMI0kIRS1nEYe0TIcmld51Uf/uvAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU0kfCpuDALKxZri/SeQTmP1o7cvYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2QyYjExZTBmLTAxMTItNGM0ZS04YWE0LTE2ODc4OGZkNmFhNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD76jANBgkqhkiG9w0BAQsFAAOCAQEAdDk7w14GDi5GKRTa5XJ6Rc4r FSn53uuEuguHRC42mY3B0Fbnpq2YHZvlsAHeZvRqofdNOb0abwkyOXdqrxgrT0Dt hrgpdSCXcWvq+sQy/MO/31AMnCICQrUEPO6MDdrlBSgSsfnctbTlhTAwZhb/j+jE zeovFtDB3C6bzVJoN1d1sOQh72HG2/PgbTguUCTjUqP6jbej8a3Ap6SG3k7Cf8KB R2oh7XobW8UYII61yQjn60VB+Yk0iNPNOc8Q35FYQZ2dOB1FavCB/IEdiE3b9BUB qjQ6wo0uwrhpTKCB8dsNP1t58lDgjSygUelnXC+yk+R+ND/1ghaXZzzZzNTdeg== -----END CERTIFICATE-----Generated at Wed Aug 20 10:44:24 2025 by rpki-client