$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/720f42c5-101d-41af-abc8-bd64d6f08fe0.roa File: 720f42c5-101d-41af-abc8-bd64d6f08fe0.roa (raw, json) Hash identifier: bZ8NsYXz3p7iOVeh7/7BT9qTd5rA5Y++JLC+LCAFrlY= Subject key identifier: 5B:D1:07:6C:C0:D3:DA:87:9A:98:04:F5:0A:73:8E:37:74:48:B5:AB Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 30E69EB74706490DEEF2E77020685E472E361786 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/720f42c5-101d-41af-abc8-bd64d6f08fe0.roa Signing time: Fri 22 Aug 2025 15:00:15 +0000 ROA not before: Fri 22 Aug 2025 15:00:15 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f2:7011::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:e6:9e:b7:47:06:49:0d:ee:f2:e7:70:20:68:5e:47:2e:36:17:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 22 15:00:15 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=bfa6eb4f848a5456692dfd95e47ee3083bb6ad36af6203cc352268fadd66e9a8, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:0c:8a:ec:91:a9:15:14:da:d0:d5:f3:2a:26: 93:b4:0f:21:96:42:22:71:24:f3:b5:07:2c:47:94: c3:a0:79:2c:f2:2e:b1:df:58:36:91:36:12:06:8f: 10:a6:f9:de:cb:60:b2:1d:59:ab:ac:72:3a:7a:e1: 6f:5e:67:8a:51:b0:23:20:c5:94:2a:34:2d:66:d5: 43:64:d1:49:df:52:a3:b7:68:42:d7:71:c8:ca:69: 33:21:0f:3b:1a:27:b3:36:52:b9:5e:bb:56:6c:ed: 66:69:20:60:6e:df:72:a4:59:66:c4:e7:82:05:75: 93:fc:ab:20:32:15:a6:24:09:d5:66:65:04:ca:b3: 8e:a8:53:8a:ac:e9:79:ce:f4:73:ca:f9:87:38:7a: 47:b1:e6:a8:ee:5e:6b:37:f2:d3:76:aa:6a:69:e8: 60:8b:4f:51:84:c6:0a:60:90:c1:89:ed:1a:77:6b: f2:e9:a5:06:23:b6:7e:ca:ef:77:a1:41:75:42:cd: 85:da:f0:2a:f7:60:e9:14:58:b3:d9:fb:84:e5:42: d9:a4:7b:45:b4:e3:d9:f0:8c:9f:17:b2:d8:20:4a: 35:ed:ed:e7:37:db:45:00:13:32:e6:d1:b0:b9:c7: 1c:72:1f:27:4f:00:f8:46:f8:2b:db:19:32:85:a7: 6e:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:D1:07:6C:C0:D3:DA:87:9A:98:04:F5:0A:73:8E:37:74:48:B5:AB X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/720f42c5-101d-41af-abc8-bd64d6f08fe0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7011::/48 Signature Algorithm: sha256WithRSAEncryption 7c:0a:12:7a:86:c1:94:03:86:d9:91:9c:99:6a:56:8f:a4:ca: 6d:b2:69:5a:ef:d5:6a:cc:c8:34:39:8c:63:5b:c3:5d:15:a2: fd:99:2b:29:dd:04:15:73:c4:12:1a:26:cc:9c:5d:f5:c5:67: 11:67:aa:94:63:74:42:6c:24:b8:0a:5e:d6:c7:b6:08:39:c2: 35:18:34:78:e5:c5:38:89:12:7f:a5:82:8c:ae:04:bc:1c:76: 6c:a2:d3:c1:3b:a2:9e:c1:6d:bb:5c:1b:ff:2c:69:7a:cf:05: 09:16:4f:bb:86:24:34:6c:be:c6:ff:49:66:55:2b:d8:a4:02: dd:d4:3a:5d:13:f0:74:d8:60:be:d7:4d:1c:22:cf:c4:a3:4b: e8:31:a4:c6:c7:80:f2:f1:d8:cc:4f:ae:d4:9b:6f:7d:44:e6: c3:55:85:be:a9:1c:8f:62:c1:a5:5e:16:5e:ad:28:ba:28:7b: d0:ea:fc:2c:9c:81:a4:1c:6d:e3:c2:3e:cf:36:8d:b6:76:40: f7:6f:76:cd:74:ce:d2:54:aa:8b:33:3d:9e:1b:a0:30:1b:fd: e8:d3:64:a2:cf:97:65:d4:1e:d0:bd:95:b1:d8:1d:1c:48:1e: 27:84:49:27:b5:a3:f7:e2:69:b1:26:6f:66:8b:6a:60:0b:d2: 3f:b1:27:e6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMOaet0cGSQ3u8udwIGheRy42F4YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODIyMTUwMDE1WhcNMjUwOTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZmE2ZWI0Zjg0OGE1NDU2NjkyZGZkOTVlNDdlZTMwODNi YjZhZDM2YWY2MjAzY2MzNTIyNjhmYWRkNjZlOWE4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCeDIrskakVFNrQ1fMqJpO0DyGWQiJxJPO1ByxHlMOgeSzy LrHfWDaRNhIGjxCm+d7LYLIdWauscjp64W9eZ4pRsCMgxZQqNC1m1UNk0UnfUqO3 aELXccjKaTMhDzsaJ7M2Urleu1Zs7WZpIGBu33KkWWbE54IFdZP8qyAyFaYkCdVm ZQTKs46oU4qs6XnO9HPK+Yc4ekex5qjuXms38tN2qmpp6GCLT1GExgpgkMGJ7Rp3 a/LppQYjtn7K73ehQXVCzYXa8Cr3YOkUWLPZ+4TlQtmke0W049nwjJ8XstggSjXt 7ec320UAEzLm0bC5xxxyHydPAPhG+CvbGTKFp27JAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUW9EHbMDT2oeamAT1CnOON3RItaswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcyMGY0MmM1LTEwMWQtNDFhZi1hYmM4LWJkNjRkNmYwOGZlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDycBEwDQYJKoZIhvcNAQELBQADggEBAHwKEnqGwZQDhtmRnJlqVo+k ym2yaVrv1WrMyDQ5jGNbw10Vov2ZKyndBBVzxBIaJsycXfXFZxFnqpRjdEJsJLgK XtbHtgg5wjUYNHjlxTiJEn+lgoyuBLwcdmyi08E7op7BbbtcG/8saXrPBQkWT7uG JDRsvsb/SWZVK9ikAt3UOl0T8HTYYL7XTRwiz8SjS+gxpMbHgPLx2MxPrtSbb31E 5sNVhb6pHI9iwaVeFl6tKLooe9Dq/CycgaQcbePCPs82jbZ2QPdvds10ztJUqosz PZ4boDAb/ejTZKLPl2XUHtC9lbHYHRxIHieESSe1o/fiabEmb2aLamAL0j+xJ+Y= -----END CERTIFICATE-----Generated at Sat Aug 23 06:40:42 2025 by rpki-client