$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2c005aeb-f132-4bb2-a865-90077d8d5e49.roa File: 2c005aeb-f132-4bb2-a865-90077d8d5e49.roa (raw, json) Hash identifier: zgchT4lwOJz1+/04AFgoP64vxNzJg3rJwuAYVHhGtew= Subject key identifier: 7C:C6:AC:F9:87:4B:BC:F7:9F:8A:B8:9C:9C:66:AA:B0:5C:C6:E0:56 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2D3B3782168B50EFB9940829A54FA3753E6B7A5D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2c005aeb-f132-4bb2-a865-90077d8d5e49.roa Signing time: Fri 15 Aug 2025 15:30:12 +0000 ROA not before: Fri 15 Aug 2025 15:30:12 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:10a::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:3b:37:82:16:8b:50:ef:b9:94:08:29:a5:4f:a3:75:3e:6b:7a:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 15 15:30:12 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=df6a0445582b32f752c153b677dc18c499192d20ccea797cf21ac78f45f0cdb2, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:be:89:c9:a8:55:16:45:34:e3:5d:69:8a:e0: f5:2a:cc:00:34:aa:43:0d:78:54:f4:ba:40:19:44: cf:9c:30:53:3f:ef:92:69:47:8c:f4:27:6e:f5:71: d9:58:f6:59:51:c7:40:c4:84:25:79:a2:a7:28:57: f7:59:7a:fe:84:57:a4:a1:21:b0:ca:da:07:01:ab: d5:89:3c:5f:f5:19:e4:47:50:b2:f0:bf:86:b4:30: 47:c0:cb:e5:68:a0:65:47:75:77:29:02:81:d3:4f: 91:a9:8b:ea:3f:38:45:27:33:75:ca:f0:19:43:6f: 1b:9e:fe:5e:66:70:8b:53:f1:44:0c:1d:a0:12:9e: 12:f6:b3:ca:1a:19:17:5a:ad:7c:6a:e9:83:87:a9: 6b:1a:79:93:45:a4:bf:cd:5c:9a:4e:6f:84:2d:61: 5e:ce:50:53:ae:b3:75:18:69:eb:95:80:6d:37:6d: 92:3a:39:ac:1b:23:e3:0a:1b:08:e4:22:92:9f:cb: 5e:22:3e:9e:0f:85:4d:3d:9e:31:51:cd:06:fd:0a: 4e:2c:33:85:a6:51:30:68:03:1b:20:e0:e1:bb:95: 1e:ad:26:2f:e5:87:48:f0:76:5c:8d:a8:0c:b2:e5: 2e:ee:69:53:9c:03:a5:02:57:61:53:69:ec:e4:d2: 0a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:C6:AC:F9:87:4B:BC:F7:9F:8A:B8:9C:9C:66:AA:B0:5C:C6:E0:56 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2c005aeb-f132-4bb2-a865-90077d8d5e49.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:10a::/47 Signature Algorithm: sha256WithRSAEncryption 3f:79:80:af:5c:81:61:0d:ad:fb:3c:c6:eb:0b:b2:e4:bf:2f: 98:39:86:95:6b:13:c3:bd:d9:d1:c7:a2:b4:90:a0:aa:a8:32: 70:23:9e:26:f9:7c:c0:38:0c:fa:57:56:ae:c3:2a:63:c1:e8: f6:e4:79:7a:62:5e:29:d8:49:cb:71:1c:01:15:19:79:a6:a2: 45:cb:f9:b0:9b:2d:fb:06:06:bd:3b:8f:3f:1b:ac:05:f0:16: 7a:d1:77:d5:48:55:d4:43:4b:60:e6:50:c4:e9:28:b3:9f:a6: a0:e8:41:0f:bb:db:47:26:5b:70:d6:00:da:08:de:99:54:40: 7f:cd:7b:49:f9:32:b8:e5:ef:00:4e:2c:9d:99:d5:6f:02:f2: f4:39:4e:a4:85:4a:eb:cd:6a:75:72:0c:38:cc:e3:ee:a7:c9: 84:ed:61:06:aa:a5:04:eb:2b:34:c6:82:e9:2b:15:7b:43:3d: fd:6a:90:85:c3:e5:b9:9a:9e:06:b1:0a:38:a5:8c:6a:9c:99: 3e:55:69:e2:60:67:04:0f:09:63:3c:42:e3:5b:d7:e8:dd:10: d6:ba:23:d4:9a:93:db:e5:1b:dd:a8:23:2d:88:ad:b8:8e:db: 15:cf:a4:49:f8:6f:a0:e1:fa:71:81:1a:05:75:e4:3d:a6:67: 47:ef:1d:91 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULTs3ghaLUO+5lAgppU+jdT5rel0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE1MTUzMDEyWhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZjZhMDQ0NTU4MmIzMmY3NTJjMTUzYjY3N2RjMThjNDk5 MTkyZDIwY2NlYTc5N2NmMjFhYzc4ZjQ1ZjBjZGIyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFvonJqFUWRTTjXWmK4PUqzAA0qkMNeFT0ukAZRM+cMFM/ 75JpR4z0J271cdlY9llRx0DEhCV5oqcoV/dZev6EV6ShIbDK2gcBq9WJPF/1GeRH ULLwv4a0MEfAy+VooGVHdXcpAoHTT5Gpi+o/OEUnM3XK8BlDbxue/l5mcItT8UQM HaASnhL2s8oaGRdarXxq6YOHqWsaeZNFpL/NXJpOb4QtYV7OUFOus3UYaeuVgG03 bZI6OawbI+MKGwjkIpKfy14iPp4PhU09njFRzQb9Ck4sM4WmUTBoAxsg4OG7lR6t Ji/lh0jwdlyNqAyy5S7uaVOcA6UCV2FTaezk0gp/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUfMas+YdLvPefiricnGaqsFzG4FYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzJjMDA1YWViLWYxMzItNGJiMi1hODY1LTkwMDc3ZDhkNWU0OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAPDwAQowDQYJKoZIhvcNAQELBQADggEBAD95gK9cgWENrfs8xusLsuS/ L5g5hpVrE8O92dHHorSQoKqoMnAjnib5fMA4DPpXVq7DKmPB6PbkeXpiXinYSctx HAEVGXmmokXL+bCbLfsGBr07jz8brAXwFnrRd9VIVdRDS2DmUMTpKLOfpqDoQQ+7 20cmW3DWANoI3plUQH/Ne0n5Mrjl7wBOLJ2Z1W8C8vQ5TqSFSuvNanVyDDjM4+6n yYTtYQaqpQTrKzTGgukrFXtDPf1qkIXD5bmangaxCjiljGqcmT5VaeJgZwQPCWM8 QuNb1+jdENa6I9Sak9vlG92oIy2IrbiO2xXPpEn4b6Dh+nGBGgV15D2mZ0fvHZE= -----END CERTIFICATE-----Generated at Sat Aug 23 06:52:41 2025 by rpki-client