$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b0acdef-c848-447c-9624-6a4634464aaa.roa File: 0b0acdef-c848-447c-9624-6a4634464aaa.roa (raw, json) Hash identifier: reBKqbWpOLuL6IpCwuZTe+uk+OYoIfsXYb1h6h1Zxh0= Subject key identifier: 65:B0:A1:91:A2:34:AB:FE:70:99:78:8E:D3:64:8B:83:8A:44:77:B1 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 652652B958887469EC63503D0748D2B8A4308B7C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b0acdef-c848-447c-9624-6a4634464aaa.roa Signing time: Tue 05 Aug 2025 18:30:52 +0000 ROA not before: Tue 05 Aug 2025 18:30:52 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e800::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:26:52:b9:58:88:74:69:ec:63:50:3d:07:48:d2:b8:a4:30:8b:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:30:52 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=ffa3df0da55024b2f0cbb04fd7ef71dcba342584000cf0b281428c2a3913b92c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:03:bd:7b:64:f2:87:62:dd:02:d7:bb:75:4e: 7d:61:b1:c7:b2:f9:2a:79:cc:25:a1:28:6d:cf:4d: a7:e0:20:45:66:4f:22:c7:94:67:4b:9a:13:3d:46: af:1b:97:c5:4c:76:8b:3f:09:da:26:51:08:b6:47: 4d:a6:3d:c6:6f:65:35:a9:b4:73:37:0e:8c:90:b6: aa:77:21:80:cb:50:39:08:f5:86:bc:a1:e4:f0:07: 78:66:3e:68:22:ac:36:b9:8f:77:b4:6c:20:ac:ae: 3f:a5:c4:23:57:7f:b7:53:fd:6c:4f:b0:83:0d:f4: 42:ba:f6:0c:7c:dc:ea:7c:6d:f3:59:21:62:c9:ad: 79:c1:7d:85:03:78:56:ca:3f:0d:64:8d:e3:ca:dc: be:f0:62:5e:a7:0b:0e:c2:22:44:21:5d:27:7f:97: 37:b1:57:1b:d0:26:e1:db:f7:02:73:58:aa:2a:40: 77:fb:57:95:03:44:ae:b7:36:7e:c2:67:55:06:dc: 5c:13:49:4f:04:93:54:ac:03:4f:06:44:16:30:5a: df:b5:00:e2:d8:94:5c:ac:19:cf:b8:92:0a:53:a2: 3d:a5:52:da:3f:bc:d1:c4:7b:92:31:0f:cd:85:f0: a7:e3:63:ed:4f:4b:e7:64:56:f6:2f:ae:af:d9:d4: 31:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:B0:A1:91:A2:34:AB:FE:70:99:78:8E:D3:64:8B:83:8A:44:77:B1 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b0acdef-c848-447c-9624-6a4634464aaa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e800::/42 Signature Algorithm: sha256WithRSAEncryption 3c:1e:bd:bc:48:e8:ba:dd:91:24:4e:59:fd:c9:2f:7c:3e:f4: 8e:ab:6e:32:da:25:ef:33:d7:4a:85:0c:b8:d6:7c:0b:90:cc: 6a:53:03:76:23:e0:ae:c5:69:78:13:1f:0a:cb:cd:05:a3:ee: 8a:32:cf:cc:ad:7d:57:ae:b1:3a:95:3b:ee:f4:56:58:e5:b3: 8b:bc:d1:19:f1:81:7e:7d:00:49:f7:64:3e:28:d3:f1:22:62: c6:19:fb:17:ca:52:4c:e6:22:72:ea:09:fe:6b:66:df:a3:67: dc:54:5e:94:00:be:7f:50:b2:2e:fc:25:17:28:bf:f9:ac:e0: a5:17:97:d2:df:91:76:da:fd:2b:fe:98:74:75:b1:b2:d1:54: fc:af:e2:11:81:08:1e:d0:ed:d3:f1:83:f4:93:71:37:9c:e9: 86:79:99:41:a7:70:c5:19:ff:40:be:5c:3d:5b:b0:5b:0e:0f: ec:9a:ae:19:b4:9b:2e:79:e1:86:d5:2e:7d:21:c6:e2:de:7b: 2e:9f:09:65:68:60:39:c3:3a:65:05:ad:c4:a0:1d:dc:16:1f: 10:2a:5b:08:0e:95:b1:0c:5a:c2:b9:f4:61:6b:d9:aa:e5:95: 0c:ae:55:5b:f3:52:4d:9c:cb:49:4e:ad:00:07:ad:20:16:64: e1:eb:6d:29 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZSZSuViIdGnsY1A9B0jSuKQwi3wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgzMDUyWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZmEzZGYwZGE1NTAyNGIyZjBjYmIwNGZkN2VmNzFkY2Jh MzQyNTg0MDAwY2YwYjI4MTQyOGMyYTM5MTNiOTJjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtA717ZPKHYt0C17t1Tn1hscey+Sp5zCWhKG3PTafgIEVm TyLHlGdLmhM9Rq8bl8VMdos/CdomUQi2R02mPcZvZTWptHM3DoyQtqp3IYDLUDkI 9Ya8oeTwB3hmPmgirDa5j3e0bCCsrj+lxCNXf7dT/WxPsIMN9EK69gx83Op8bfNZ IWLJrXnBfYUDeFbKPw1kjePK3L7wYl6nCw7CIkQhXSd/lzexVxvQJuHb9wJzWKoq QHf7V5UDRK63Nn7CZ1UG3FwTSU8Ek1SsA08GRBYwWt+1AOLYlFysGc+4kgpToj2l Uto/vNHEe5IxD82F8KfjY+1PS+dkVvYvrq/Z1DGLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZbChkaI0q/5wmXiO02SLg4pEd7EwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBiMGFjZGVmLWM4NDgtNDQ3Yy05NjI0LTZhNDYzNDQ2NGFhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76AAwDQYJKoZIhvcNAQELBQADggEBADwevbxI6LrdkSROWf3JL3w+ 9I6rbjLaJe8z10qFDLjWfAuQzGpTA3Yj4K7FaXgTHwrLzQWj7ooyz8ytfVeusTqV O+70Vljls4u80RnxgX59AEn3ZD4o0/EiYsYZ+xfKUkzmInLqCf5rZt+jZ9xUXpQA vn9Qsi78JRcov/ms4KUXl9LfkXba/Sv+mHR1sbLRVPyv4hGBCB7Q7dPxg/STcTec 6YZ5mUGncMUZ/0C+XD1bsFsOD+yarhm0my554YbVLn0hxuLeey6fCWVoYDnDOmUF rcSgHdwWHxAqWwgOlbEMWsK59GFr2arllQyuVVvzUk2cy0lOrQAHrSAWZOHrbSk= -----END CERTIFICATE-----Generated at Sat Aug 23 10:11:01 2025 by rpki-client