$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73712e14-51d5-41db-bcf2-73aa504e6eab.roa File: 73712e14-51d5-41db-bcf2-73aa504e6eab.roa (raw, json) Hash identifier: OWtNLJ+Gc3xYPw+n6QWUy+pcX7vjYXpxqdbtGtkWU3Q= Subject key identifier: A2:51:6B:5C:1B:96:E2:F5:7C:94:C1:99:56:BA:08:80:29:3B:93:FF Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3612BAB3BA31FD7E6CF5D3C07B29EB3055A85D88 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73712e14-51d5-41db-bcf2-73aa504e6eab.roa Signing time: Tue 05 Aug 2025 18:20:54 +0000 ROA not before: Tue 05 Aug 2025 18:20:54 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:12:ba:b3:ba:31:fd:7e:6c:f5:d3:c0:7b:29:eb:30:55:a8:5d:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:20:54 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=79c7257c7fcab759d765e180a5b3403e486e49d29c6ead4a615c16ca68255f88, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a7:d1:d3:fc:e4:44:a9:9b:45:db:5e:98:c3: d8:7a:c8:22:1c:30:b2:c0:11:cb:33:a2:22:2e:e8: 52:7d:53:6d:88:d7:04:0d:b0:f7:79:d9:54:a2:00: 58:67:41:27:05:dd:24:88:5c:b4:f1:33:c1:10:6c: 06:a1:80:9a:4d:b8:b4:29:72:eb:4a:7a:70:c3:84: d0:9d:24:f1:ed:97:a2:ab:05:5d:5a:1d:d0:2a:8f: 40:9a:94:b6:45:f6:90:d6:44:c1:b0:77:dd:9a:d3: ec:b8:e6:73:16:8e:6d:3b:36:29:e4:24:4a:09:af: 20:6b:d1:f7:1f:09:ac:5f:7a:ec:10:78:4d:35:0f: 40:53:9f:7d:99:e3:21:39:f9:dd:52:64:18:a6:4a: 67:ef:99:d9:74:00:b3:6f:c0:be:97:81:9a:a1:de: 9b:4a:a9:3c:c8:7c:bb:ed:6b:c5:8b:b5:cf:23:b9: 14:29:1c:68:57:0d:63:b7:f7:ff:a1:34:f7:a1:5e: 5b:aa:ae:81:63:c3:8d:69:25:e8:04:73:e1:77:5a: bf:c0:43:04:07:af:29:e0:1f:fe:6a:06:e8:12:b1: f9:88:d1:ab:34:45:d1:40:76:ce:fb:e9:46:d3:8a: b6:26:b1:0a:37:85:ff:ce:2e:00:cc:ac:f5:7b:eb: 95:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:51:6B:5C:1B:96:E2:F5:7C:94:C1:99:56:BA:08:80:29:3B:93:FF X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73712e14-51d5-41db-bcf2-73aa504e6eab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:80::/48 Signature Algorithm: sha256WithRSAEncryption 93:77:95:dd:2c:92:7d:fe:1a:cd:d3:74:3b:c4:1d:c5:04:50: 2d:92:a2:5d:df:1e:ea:2b:e1:ce:68:d5:6e:c1:50:e4:cf:ff: 96:61:da:a4:fc:f1:cb:7f:b4:59:a7:fa:dd:31:be:9b:52:ec: 22:a0:49:79:47:1e:82:69:a8:15:23:6e:6d:72:61:da:4e:94: 2f:59:b6:ac:29:dd:04:ea:ac:3f:84:2d:97:86:6f:05:cd:10: fa:14:71:1d:f4:6f:9b:e9:33:df:f2:8f:cb:e9:9b:9d:4c:24: e7:7d:2d:16:93:c4:cf:ce:34:92:53:67:1a:25:4c:68:e8:58: 89:90:76:ba:3a:68:28:24:01:9d:77:12:88:83:66:fb:de:b3: ba:a7:84:35:ef:32:e2:49:8e:da:e9:e3:bb:02:0f:a2:13:3c: 45:72:d5:07:62:1b:6a:43:35:d0:0b:22:0a:0a:23:e1:99:88: 42:1a:2a:c3:ce:55:74:37:d6:47:3d:b6:e3:21:8a:b8:c9:5b: 2d:30:40:d8:77:08:dc:b6:19:94:c6:0a:49:05:ab:13:dd:99: 37:23:cd:dd:86:60:7a:24:61:98:0a:55:4a:d7:d5:4d:5c:bf: 20:4b:ef:41:68:81:5a:50:aa:43:6f:ff:1d:51:63:d6:5a:67: 54:c0:7a:cc -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNhK6s7ox/X5s9dPAeynrMFWoXYgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgyMDU0WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3OWM3MjU3YzdmY2FiNzU5ZDc2NWUxODBhNWIzNDAzZTQ4 NmU0OWQyOWM2ZWFkNGE2MTVjMTZjYTY4MjU1Zjg4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8p9HT/OREqZtF216Yw9h6yCIcMLLAEcszoiIu6FJ9U22I 1wQNsPd52VSiAFhnQScF3SSIXLTxM8EQbAahgJpNuLQpcutKenDDhNCdJPHtl6Kr BV1aHdAqj0CalLZF9pDWRMGwd92a0+y45nMWjm07NinkJEoJryBr0fcfCaxfeuwQ eE01D0BTn32Z4yE5+d1SZBimSmfvmdl0ALNvwL6XgZqh3ptKqTzIfLvta8WLtc8j uRQpHGhXDWO39/+hNPehXluqroFjw41pJegEc+F3Wr/AQwQHryngH/5qBugSsfmI 0as0RdFAds776UbTirYmsQo3hf/OLgDMrPV765XpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUolFrXBuW4vV8lMGZVroIgCk7k/8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzczNzEyZTE0LTUxZDUtNDFkYi1iY2YyLTczYWE1MDRlNmVhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAIAwDQYJKoZIhvcNAQELBQADggEBAJN3ld0skn3+Gs3TdDvEHcUE UC2Sol3fHuor4c5o1W7BUOTP/5Zh2qT88ct/tFmn+t0xvptS7CKgSXlHHoJpqBUj bm1yYdpOlC9Ztqwp3QTqrD+ELZeGbwXNEPoUcR30b5vpM9/yj8vpm51MJOd9LRaT xM/ONJJTZxolTGjoWImQdro6aCgkAZ13EoiDZvves7qnhDXvMuJJjtrp47sCD6IT PEVy1QdiG2pDNdALIgoKI+GZiEIaKsPOVXQ31kc9tuMhirjJWy0wQNh3CNy2GZTG CkkFqxPdmTcjzd2GYHokYZgKVUrX1U1cvyBL70FogVpQqkNv/x1RY9ZaZ1TAesw= -----END CERTIFICATE-----Generated at Sat Aug 23 10:13:20 2025 by rpki-client