$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/701f72a5-fb27-49ca-b3ad-3a60c7c30376.roa File: 701f72a5-fb27-49ca-b3ad-3a60c7c30376.roa (raw, json) Hash identifier: /nBwtIihhDhQ9rrziGvbzJdZV2z7MrVfc+EVHrEwLDw= Subject key identifier: 62:5A:6C:73:CE:28:68:00:C7:7F:EA:0D:D8:0F:2B:B7:8E:B8:AD:9A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1BC1614AFC102DBF13683EE20FE59389764F6459 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/701f72a5-fb27-49ca-b3ad-3a60c7c30376.roa Signing time: Fri 22 Aug 2025 15:00:09 +0000 ROA not before: Fri 22 Aug 2025 15:00:09 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f2:7010::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:c1:61:4a:fc:10:2d:bf:13:68:3e:e2:0f:e5:93:89:76:4f:64:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 22 15:00:09 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=273174804a2ea049d68cc2f71237ef6e2993eb85d7f1f4e4f364315738fa0012, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:84:97:96:40:4a:21:1b:81:59:cc:63:ae:23: 4e:71:e1:38:e2:03:dc:13:ad:31:a8:4f:f0:59:e2: e9:d8:e9:3a:80:91:16:f0:cf:61:7b:02:25:87:62: be:f5:25:25:dc:a5:04:9c:e1:33:b9:82:b1:73:b4: 55:5b:39:bb:3a:6f:7a:c3:41:fd:65:4f:0d:3b:db: 94:56:8b:cd:f3:23:ed:94:2c:6d:c7:a5:12:21:bc: fc:1c:e5:85:d9:58:b4:20:be:52:c0:dc:dd:6c:4c: 68:70:0f:3d:cf:51:85:4c:53:2d:84:29:16:12:5a: a1:8a:58:6c:7c:de:51:27:b9:e7:d1:79:4d:54:06: 7e:25:8a:ca:82:ff:23:a1:27:5b:ec:87:61:ec:bb: 61:46:c7:c8:d5:90:fc:ab:07:4e:50:f9:15:04:8a: d6:1f:cc:ba:6c:d6:37:fe:9f:e3:2e:45:e0:04:40: 5f:9d:3d:d8:b6:4d:8b:f5:40:91:46:09:13:bf:00: 9e:ef:be:44:68:b2:a1:dd:57:d9:0a:13:10:60:ec: 29:f1:23:33:c1:35:3a:60:c7:60:ec:54:f4:4f:12: ff:30:ce:9b:1a:4c:ab:72:2c:e9:03:22:38:a1:f4: bc:06:66:a9:fc:22:48:a4:8d:d0:49:e4:42:f6:62: c4:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:5A:6C:73:CE:28:68:00:C7:7F:EA:0D:D8:0F:2B:B7:8E:B8:AD:9A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/701f72a5-fb27-49ca-b3ad-3a60c7c30376.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7010::/48 Signature Algorithm: sha256WithRSAEncryption 52:ed:3f:a0:85:c3:e2:52:27:1d:8f:4c:98:7e:26:ec:ae:d0: b3:49:97:63:7f:cc:e6:5e:99:00:ab:e5:39:48:5b:50:d9:97: 68:cc:5f:db:e0:ff:ad:d3:60:e5:f9:88:df:87:e4:81:f3:79: 93:8d:63:fa:57:05:74:e5:03:39:35:cc:13:17:56:0b:b6:33: d1:57:d3:52:be:c3:a4:7e:f6:9c:4d:fa:62:b6:0a:e3:c0:9c: 1b:06:24:09:8e:40:b4:98:6f:40:07:86:57:cc:45:d0:69:ab: 37:a6:51:28:0c:65:38:7c:09:85:ba:d6:6b:ce:b4:a5:ef:b0: 6b:c5:64:ee:bc:25:7c:fd:50:27:aa:fb:f1:a4:fd:f0:f3:8b: df:9d:68:ff:c6:46:c9:52:e7:db:7b:9f:d7:ed:f9:6c:05:e1: d7:74:f2:f1:f2:0a:a2:27:13:5c:dd:34:f7:0f:4c:4a:59:fe: ce:ff:8f:36:07:68:a9:70:96:3d:6f:94:d8:d4:a2:95:b1:08: bd:4d:46:5f:40:af:30:12:e8:32:7f:f3:0a:64:15:78:9d:02: 26:e9:56:34:93:81:81:26:7f:c3:03:14:1d:30:c5:20:f3:e6: b7:cc:88:18:c9:d3:91:7e:b6:a9:30:2c:7f:3e:47:0a:dd:60: 9c:54:3a:28 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUG8FhSvwQLb8TaD7iD+WTiXZPZFkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODIyMTUwMDA5WhcNMjUwOTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNzMxNzQ4MDRhMmVhMDQ5ZDY4Y2MyZjcxMjM3ZWY2ZTI5 OTNlYjg1ZDdmMWY0ZTRmMzY0MzE1NzM4ZmEwMDEyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3hJeWQEohG4FZzGOuI05x4TjiA9wTrTGoT/BZ4unY6TqA kRbwz2F7AiWHYr71JSXcpQSc4TO5grFztFVbObs6b3rDQf1lTw0725RWi83zI+2U LG3HpRIhvPwc5YXZWLQgvlLA3N1sTGhwDz3PUYVMUy2EKRYSWqGKWGx83lEnuefR eU1UBn4lisqC/yOhJ1vsh2Hsu2FGx8jVkPyrB05Q+RUEitYfzLps1jf+n+MuReAE QF+dPdi2TYv1QJFGCRO/AJ7vvkRosqHdV9kKExBg7CnxIzPBNTpgx2DsVPRPEv8w zpsaTKtyLOkDIjih9LwGZqn8IkikjdBJ5EL2YsSHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUYlpsc84oaADHf+oN2A8rt464rZowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcwMWY3MmE1LWZiMjctNDljYS1iM2FkLTNhNjBjN2MzMDM3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDycBAwDQYJKoZIhvcNAQELBQADggEBAFLtP6CFw+JSJx2PTJh+Juyu 0LNJl2N/zOZemQCr5TlIW1DZl2jMX9vg/63TYOX5iN+H5IHzeZONY/pXBXTlAzk1 zBMXVgu2M9FX01K+w6R+9pxN+mK2CuPAnBsGJAmOQLSYb0AHhlfMRdBpqzemUSgM ZTh8CYW61mvOtKXvsGvFZO68JXz9UCeq+/Gk/fDzi9+daP/GRslS59t7n9ft+WwF 4dd08vHyCqInE1zdNPcPTEpZ/s7/jzYHaKlwlj1vlNjUopWxCL1NRl9ArzAS6DJ/ 8wpkFXidAibpVjSTgYEmf8MDFB0wxSDz5rfMiBjJ05F+tqkwLH8+RwrdYJxUOig= -----END CERTIFICATE-----Generated at Sat Aug 23 09:07:29 2025 by rpki-client