$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/320ac659-3ec0-4c68-b834-ada37188b990.roa File: 320ac659-3ec0-4c68-b834-ada37188b990.roa (raw, json) Hash identifier: mWA7hbn40tpaVF6EqqFM1oldURlClKq2unmOiWbIhjM= Subject key identifier: 8A:6A:94:2F:29:6A:EF:F2:06:95:2E:B2:B2:50:CD:21:12:A4:ED:48 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 775793086411621FEF2AEF1532673EBE4B7974B6 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/320ac659-3ec0-4c68-b834-ada37188b990.roa Signing time: Mon 18 Aug 2025 18:22:22 +0000 ROA not before: Mon 18 Aug 2025 18:22:22 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:610e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:57:93:08:64:11:62:1f:ef:2a:ef:15:32:67:3e:be:4b:79:74:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 18 18:22:22 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=0d0cbafc91790b70a8719548dc061c401b378b6836731b9de203d4f5c933a3ce, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:22:a5:bf:a3:ef:51:33:c8:5d:61:b1:ea:e4: fd:3c:95:c2:09:65:24:4c:53:69:a2:74:94:8e:3d: 31:4b:ad:a3:60:65:1b:1c:3b:32:c4:e1:f7:4a:e7: 4b:30:8b:6b:21:55:f1:f9:0b:cd:65:4b:20:eb:fe: f4:ae:de:e1:ac:0d:0e:bc:c5:65:95:bf:df:14:69: 01:ab:9b:a6:f7:1e:b1:e5:aa:22:65:8d:d7:53:17: ac:d9:18:5b:2d:5b:70:11:5b:d9:5c:70:0d:45:81: c6:72:25:dc:6d:0d:cc:0e:1c:18:51:cc:d3:93:a7: 38:01:76:15:5a:0c:c6:cf:ed:dc:0d:f0:4e:16:c1: 1d:b6:45:53:a1:49:dc:bc:36:3d:05:63:7d:29:12: d9:63:9b:11:40:b0:ec:54:c8:f3:4a:65:25:42:ad: de:c9:23:b6:f2:61:df:ad:a6:07:22:95:b2:fe:be: 8d:2b:0b:3f:d5:00:2a:3b:52:29:4d:b6:ff:6e:67: 73:61:e9:09:b9:82:fe:50:c3:9d:6f:8d:ab:95:0b: a1:f5:af:d8:6a:be:d5:b4:10:0b:09:41:a8:1f:d3: ae:67:f8:d9:84:a2:5f:52:b1:f0:2f:1a:9a:c6:d7: 32:45:f8:10:ea:44:d0:a7:3b:6f:21:f6:14:23:42: b8:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:6A:94:2F:29:6A:EF:F2:06:95:2E:B2:B2:50:CD:21:12:A4:ED:48 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/320ac659-3ec0-4c68-b834-ada37188b990.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:610e::/48 Signature Algorithm: sha256WithRSAEncryption 12:a6:bb:71:7b:3e:ed:d1:ee:9f:92:ba:40:11:43:7d:dd:a4: 8e:15:50:3a:5a:68:fa:b3:e9:e6:1e:62:5a:80:4b:4b:18:50: de:c3:92:88:c9:17:72:87:72:d0:bc:2d:87:fa:df:e3:6e:a1: 29:f4:2d:45:44:fe:22:c5:01:a1:30:8f:0e:ef:21:b5:ba:54: 66:d7:16:f1:1c:47:20:d2:c1:48:d8:a3:eb:36:d1:0c:30:66: 9c:07:98:70:c7:6c:c6:d6:c3:f6:9b:fa:c6:5a:ec:f0:b4:91: 85:ea:ad:dd:3c:4d:05:01:a8:8a:a0:2f:74:75:ac:9f:e5:de: f8:24:dc:59:06:02:d9:13:23:d8:c8:95:ef:53:35:89:2c:a8: d2:7a:84:56:2b:9f:98:08:14:f3:dc:0e:5c:9c:d7:cf:c2:0e: 68:3b:73:38:55:df:3f:8a:82:60:83:79:b4:8c:60:08:3b:3a: a6:72:cf:68:2f:93:df:22:30:5d:4c:81:ae:75:e4:f9:f6:b5: e5:3d:d5:d6:29:4e:9b:5f:09:fc:e4:b4:3e:0e:b2:3d:25:dd: bd:0b:0d:a4:8a:b4:f3:0a:5e:4b:c0:b8:d5:3f:5d:ad:29:23: 76:93:b8:da:85:02:91:33:df:07:9c:68:60:f7:e8:70:2a:d1: ed:c2:ca:75 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUd1eTCGQRYh/vKu8VMmc+vkt5dLYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE4MTgyMjIyWhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZDBjYmFmYzkxNzkwYjcwYTg3MTk1NDhkYzA2MWM0MDFi Mzc4YjY4MzY3MzFiOWRlMjAzZDRmNWM5MzNhM2NlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjIqW/o+9RM8hdYbHq5P08lcIJZSRMU2midJSOPTFLraNg ZRscOzLE4fdK50swi2shVfH5C81lSyDr/vSu3uGsDQ68xWWVv98UaQGrm6b3HrHl qiJljddTF6zZGFstW3ARW9lccA1FgcZyJdxtDcwOHBhRzNOTpzgBdhVaDMbP7dwN 8E4WwR22RVOhSdy8Nj0FY30pEtljmxFAsOxUyPNKZSVCrd7JI7byYd+tpgcilbL+ vo0rCz/VACo7UilNtv9uZ3Nh6Qm5gv5Qw51vjauVC6H1r9hqvtW0EAsJQagf065n +NmEol9SsfAvGprG1zJF+BDqRNCnO28h9hQjQri3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUimqULylq7/IGlS6yslDNIRKk7UgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzMyMGFjNjU5LTNlYzAtNGM2OC1iODM0LWFkYTM3MTg4Yjk5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQ4wDQYJKoZIhvcNAQELBQADggEBABKmu3F7Pu3R7p+SukARQ33d pI4VUDpaaPqz6eYeYlqAS0sYUN7DkojJF3KHctC8LYf63+NuoSn0LUVE/iLFAaEw jw7vIbW6VGbXFvEcRyDSwUjYo+s20QwwZpwHmHDHbMbWw/ab+sZa7PC0kYXqrd08 TQUBqIqgL3R1rJ/l3vgk3FkGAtkTI9jIle9TNYksqNJ6hFYrn5gIFPPcDlyc18/C Dmg7czhV3z+KgmCDebSMYAg7OqZyz2gvk98iMF1Mga515Pn2teU91dYpTptfCfzk tD4Osj0l3b0LDaSKtPMKXkvAuNU/Xa0pI3aTuNqFApEz3wecaGD36HAq0e3CynU= -----END CERTIFICATE-----Generated at Sat Aug 23 09:09:36 2025 by rpki-client