$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/657ed07e-fe87-4071-8960-e0b18e49fe3c.roa File: 657ed07e-fe87-4071-8960-e0b18e49fe3c.roa (raw, json) Hash identifier: bBiDaUYd/HcriMWo7bspTEJrzmmiYIQqfYLo7sUkuiM= Subject key identifier: 64:F7:0E:60:0F:A0:4E:A6:F7:5F:AC:B6:EA:A0:8E:81:DB:47:30:13 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 696CD2828658034864C04BD734498BE567891383 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/657ed07e-fe87-4071-8960-e0b18e49fe3c.roa Signing time: Sat 09 Aug 2025 00:10:43 +0000 ROA not before: Sat 09 Aug 2025 00:10:43 +0000 ROA not after: Sat 13 Sep 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f0:4100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:6c:d2:82:86:58:03:48:64:c0:4b:d7:34:49:8b:e5:67:89:13:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 9 00:10:43 2025 GMT Not After : Sep 13 23:59:59 2025 GMT Subject: serialNumber=715e560ad4687820b7d3ca07ccf9037c6ba1652b560d42d13d1f95d19634539e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6e:45:58:8f:9d:f5:8e:cd:01:2f:32:02:ff: 7b:73:8f:29:67:16:44:e3:f6:7e:d5:e6:8f:52:7b: 81:9c:cb:f1:0c:28:fa:54:1e:36:cb:df:67:f5:ef: f4:42:39:bb:87:88:38:55:04:99:0f:c7:59:e7:82: 7a:95:a7:0c:d2:4e:85:6b:0b:2f:52:8e:47:91:79: 9c:d6:7c:75:41:16:ac:55:26:15:17:4c:4d:16:4d: 5b:bc:9a:5d:75:b4:08:7f:d3:4f:68:79:23:0e:16: 39:6f:f3:9c:a4:0e:e9:96:7a:78:29:e7:00:75:93: 8e:80:2c:ae:2d:a5:30:2f:81:7e:0a:7a:0a:5c:7e: 3b:f6:64:e5:39:6c:a8:e6:10:47:79:6e:95:60:14: c1:6a:ad:d0:e2:33:9e:37:ae:4c:bb:29:90:1b:dd: 7c:34:52:f4:ae:d5:a6:08:86:fe:e3:12:d7:b9:5a: 1d:44:34:26:65:36:0e:cb:7a:65:49:79:2e:19:ea: 55:4f:86:0f:fc:95:81:14:cd:b4:25:6d:be:76:49: 20:67:b4:46:7c:40:67:4f:a8:ab:5f:46:03:99:26: 1e:6b:70:ff:b5:a5:14:36:41:7e:8b:ab:97:fc:56: af:81:7f:36:ca:6e:a1:8b:8f:f6:fb:94:36:cb:4e: 14:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:F7:0E:60:0F:A0:4E:A6:F7:5F:AC:B6:EA:A0:8E:81:DB:47:30:13 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/657ed07e-fe87-4071-8960-e0b18e49fe3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4100::/40 Signature Algorithm: sha256WithRSAEncryption 41:54:06:e7:7f:40:44:c9:24:ff:07:f9:7c:05:05:97:23:19: 27:33:76:c7:b2:68:6f:c6:b2:29:d0:75:76:1a:45:54:12:78: cf:c2:bb:0a:ef:10:4c:97:7a:8d:fa:ce:76:7e:b7:f6:71:87: 05:54:86:21:8e:e3:11:ce:d6:8a:61:87:ee:1d:94:e7:ad:b7: f2:48:94:a1:70:ac:2a:8b:fa:f8:49:54:75:df:e7:91:96:88: 44:c4:be:75:53:59:19:b8:e0:53:cd:67:90:ba:f0:1d:d5:32: 1a:89:20:35:35:39:82:c1:64:84:89:c7:1f:6e:ca:5b:51:70: 7b:24:fe:be:41:e1:f3:47:e2:18:36:2f:df:39:df:8c:35:e9: 80:0d:ba:0c:f9:52:fb:ca:20:c7:46:b3:01:4b:18:d3:af:b3: 58:9a:3a:47:37:6b:45:e1:8b:8b:c8:a3:0c:cd:1c:b0:74:19: c8:20:ce:c6:06:52:d0:c7:72:80:bf:f6:f7:78:70:f8:47:ba: dc:02:80:fe:13:f0:10:c4:00:64:90:e6:f5:c7:99:18:fc:ab: 2a:40:0f:d9:2e:31:c5:19:05:59:8d:be:44:79:7b:cf:53:2c: 47:6c:ff:6b:f0:a0:fd:e8:2b:d7:d4:53:61:ad:23:47:3d:60: 54:9b:99:88 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUaWzSgoZYA0hkwEvXNEmL5WeJE4MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA5MDAxMDQzWhcNMjUwOTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MTVlNTYwYWQ0Njg3ODIwYjdkM2NhMDdjY2Y5MDM3YzZi YTE2NTJiNTYwZDQyZDEzZDFmOTVkMTk2MzQ1MzllMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7bkVYj531js0BLzIC/3tzjylnFkTj9n7V5o9Se4Gcy/EM KPpUHjbL32f17/RCObuHiDhVBJkPx1nngnqVpwzSToVrCy9SjkeReZzWfHVBFqxV JhUXTE0WTVu8ml11tAh/009oeSMOFjlv85ykDumWengp5wB1k46ALK4tpTAvgX4K egpcfjv2ZOU5bKjmEEd5bpVgFMFqrdDiM543rky7KZAb3Xw0UvSu1aYIhv7jEte5 Wh1ENCZlNg7LemVJeS4Z6lVPhg/8lYEUzbQlbb52SSBntEZ8QGdPqKtfRgOZJh5r cP+1pRQ2QX6Lq5f8Vq+BfzbKbqGLj/b7lDbLThQxAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUZPcOYA+gTqb3X6y26qCOgdtHMBMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzY1N2VkMDdlLWZlODctNDA3MS04OTYwLWUwYjE4ZTQ5ZmUzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwQTANBgkqhkiG9w0BAQsFAAOCAQEAQVQG539ARMkk/wf5fAUFlyMZ JzN2x7Job8ayKdB1dhpFVBJ4z8K7Cu8QTJd6jfrOdn639nGHBVSGIY7jEc7WimGH 7h2U56238kiUoXCsKov6+ElUdd/nkZaIRMS+dVNZGbjgU81nkLrwHdUyGokgNTU5 gsFkhInHH27KW1FweyT+vkHh80fiGDYv3znfjDXpgA26DPlS+8ogx0azAUsY06+z WJo6RzdrReGLi8ijDM0csHQZyCDOxgZS0MdygL/293hw+Ee63AKA/hPwEMQAZJDm 9ceZGPyrKkAP2S4xxRkFWY2+RHl7z1MsR2z/a/Cg/egr19RTYa0jRz1gVJuZiA== -----END CERTIFICATE-----Generated at Sat Aug 23 17:02:44 2025 by rpki-client