$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/16b22ea8-4a7c-431a-bd74-8a2cceaaaf4a.roa File: 16b22ea8-4a7c-431a-bd74-8a2cceaaaf4a.roa (raw, json) Hash identifier: BMIbR1eBRn5ppe0O1kCO5eQ68vrqaXSbgn3Z7KvoilQ= Subject key identifier: 73:BC:A5:DD:A9:5C:1F:A6:6F:D3:A8:6F:54:B4:10:76:1C:02:3F:10 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 114CB585FE201D0C396D4D4DB2986C5F55561B97 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/16b22ea8-4a7c-431a-bd74-8a2cceaaaf4a.roa Signing time: Fri 08 Aug 2025 00:30:44 +0000 ROA not before: Fri 08 Aug 2025 00:30:44 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f3:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:4c:b5:85:fe:20:1d:0c:39:6d:4d:4d:b2:98:6c:5f:55:56:1b:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 8 00:30:44 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=390af42d3dd99f41a03d91b0a17898293848b28f759bab13ffa466a602b60efb, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:8f:dd:dc:65:c9:42:b0:bb:c4:35:d9:c0:ab: 2e:c6:16:3c:b2:0b:cc:d6:17:e6:42:a5:6b:63:85: 12:9a:53:65:60:f7:a8:27:72:ab:5c:16:93:9c:0d: e4:64:5b:79:5f:80:72:51:52:0f:7d:33:50:85:93: c2:25:a2:de:48:ad:69:8b:e1:84:8c:83:f8:02:70: e6:cc:65:07:da:13:c1:80:b9:4e:e1:d1:8e:52:cf: 0d:94:da:5d:f8:7f:70:52:01:fb:90:26:bb:3d:18: 46:7d:09:15:ae:37:88:51:36:34:eb:01:15:45:2e: aa:52:3a:84:62:56:5b:b8:20:66:91:54:1b:ef:62: 84:f1:08:db:96:03:37:03:bd:c8:4f:f2:d5:77:10: 08:58:e7:dc:08:5d:c9:98:cf:d4:bf:6c:10:8a:b3: ed:5c:f5:03:66:c8:41:d9:aa:45:38:89:b8:c2:7d: 40:74:f5:b1:44:a2:53:6c:72:dd:6a:b2:2f:f4:34: ad:24:8b:9c:b7:3b:e8:72:a2:01:d4:26:e6:45:d8: b0:48:b7:09:1a:78:c1:68:d2:f3:b9:c0:a5:2f:3c: 44:df:cc:b4:b6:24:c9:6b:b6:d9:7d:f2:33:23:6a: 15:0d:b7:33:c8:12:f1:11:0d:e6:fb:4c:a3:7c:10: f6:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:BC:A5:DD:A9:5C:1F:A6:6F:D3:A8:6F:54:B4:10:76:1C:02:3F:10 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/16b22ea8-4a7c-431a-bd74-8a2cceaaaf4a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f3:f000::/44 Signature Algorithm: sha256WithRSAEncryption 99:bd:10:f4:6b:f1:07:fb:2b:bb:52:ca:ed:5d:3d:8c:1b:21: af:c8:bc:c6:a8:07:4e:66:ca:fd:85:d3:6d:fe:7e:0a:c5:2b: 10:fa:24:e8:fa:ac:9c:37:00:45:ec:7c:de:bb:d5:80:a0:62: 3d:4b:0b:3e:10:6c:bd:b2:d5:3a:d4:a0:ff:eb:72:e6:c6:e9: 6a:75:1e:40:15:6e:c5:bc:a9:ab:75:f0:4b:20:54:43:d4:82: df:79:2d:d9:e7:33:4c:35:c8:d4:f5:1c:4f:0e:3a:06:77:f6: aa:0a:ad:2e:3e:b9:17:00:6b:97:25:67:7d:2f:34:0c:4b:bc: 85:85:b5:e3:81:37:0a:d6:e5:66:13:3f:45:1f:f9:4a:a7:c1: 5c:08:ad:c3:8a:a2:f2:18:ef:06:12:c3:83:6d:84:e5:96:36: eb:a0:3e:57:4b:f9:9c:84:93:af:4c:dc:8c:35:76:90:9d:ba: 2f:24:0b:60:2f:56:5a:d7:0e:af:11:fc:2d:82:5d:b4:50:7c: 6f:57:0b:86:b1:b3:a8:e0:c1:8f:51:fc:eb:27:87:0e:eb:b0: fa:2f:00:5b:9f:26:9c:40:be:6d:51:86:43:67:72:0e:c4:bd: 6a:06:a6:7e:bc:8f:f2:99:38:a8:4b:13:78:8f:8f:c1:19:07: 88:ed:72:78 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEUy1hf4gHQw5bU1NsphsX1VWG5cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA4MDAzMDQ0WhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzOTBhZjQyZDNkZDk5ZjQxYTAzZDkxYjBhMTc4OTgyOTM4 NDhiMjhmNzU5YmFiMTNmZmE0NjZhNjAyYjYwZWZiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1j93cZclCsLvENdnAqy7GFjyyC8zWF+ZCpWtjhRKaU2Vg 96gncqtcFpOcDeRkW3lfgHJRUg99M1CFk8Ilot5IrWmL4YSMg/gCcObMZQfaE8GA uU7h0Y5Szw2U2l34f3BSAfuQJrs9GEZ9CRWuN4hRNjTrARVFLqpSOoRiVlu4IGaR VBvvYoTxCNuWAzcDvchP8tV3EAhY59wIXcmYz9S/bBCKs+1c9QNmyEHZqkU4ibjC fUB09bFEolNsct1qsi/0NK0ki5y3O+hyogHUJuZF2LBItwkaeMFo0vO5wKUvPETf zLS2JMlrttl98jMjahUNtzPIEvERDeb7TKN8EPbJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUc7yl3alcH6Zv06hvVLQQdhwCPxAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzE2YjIyZWE4LTRhN2MtNDMxYS1iZDc0LThhMmNjZWFhYWY0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDz8AAwDQYJKoZIhvcNAQELBQADggEBAJm9EPRr8Qf7K7tSyu1dPYwb Ia/IvMaoB05myv2F023+fgrFKxD6JOj6rJw3AEXsfN671YCgYj1LCz4QbL2y1TrU oP/rcubG6Wp1HkAVbsW8qat18EsgVEPUgt95LdnnM0w1yNT1HE8OOgZ39qoKrS4+ uRcAa5clZ30vNAxLvIWFteOBNwrW5WYTP0Uf+UqnwVwIrcOKovIY7wYSw4NthOWW NuugPldL+ZyEk69M3Iw1dpCdui8kC2AvVlrXDq8R/C2CXbRQfG9XC4axs6jgwY9R /Osnhw7rsPovAFufJpxAvm1RhkNncg7EvWoGpn68j/KZOKhLE3iPj8EZB4jtcng= -----END CERTIFICATE-----Generated at Sat Aug 23 14:52:24 2025 by rpki-client