$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8e5237ea-75ca-4cdd-8c2f-e73681a3af5e.roa File: 8e5237ea-75ca-4cdd-8c2f-e73681a3af5e.roa (raw, json) Hash identifier: fTChmBWUrjGi/feqSBR7slJp183wZ/Osno7EeiITfVE= Subject key identifier: 57:8B:E0:76:D5:F5:E7:85:B7:DB:89:81:70:03:C7:12:12:FE:5E:28 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 028FA53619036218153C9B1029F8A292F0999DA2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8e5237ea-75ca-4cdd-8c2f-e73681a3af5e.roa Signing time: Mon 11 Aug 2025 15:30:51 +0000 ROA not before: Mon 11 Aug 2025 15:30:51 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f2:7140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:8f:a5:36:19:03:62:18:15:3c:9b:10:29:f8:a2:92:f0:99:9d:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 11 15:30:51 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=7eeaf5ab702be1ecfaf1454525f0ba631f295937abaa998675acecc39b78d958, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:96:2b:6f:c2:b7:f9:a8:7e:29:54:4a:60:c4: 25:07:a8:84:70:30:4a:97:92:81:9b:a1:b2:79:ed: ba:a5:ae:6f:97:f4:37:32:c8:f5:37:c4:06:64:3e: 74:41:85:b3:1e:38:2c:0f:ff:09:80:6d:82:62:3b: 87:b7:a4:20:e9:41:8a:c5:fa:ea:cf:b5:47:6a:b3: c0:3b:67:ff:7f:a6:ad:20:5d:7a:d0:d4:fd:ac:1a: 4c:72:51:7d:ab:63:48:a5:22:3a:b7:f7:2f:16:75: b7:75:db:f7:f4:55:12:0f:9e:88:38:f4:b1:d3:d6: d9:bd:df:bc:fa:ae:ab:49:87:e3:b7:f6:17:18:ee: fb:19:3d:0e:de:e9:54:1b:42:10:8a:bc:c7:95:f4: 95:07:07:fa:06:dd:88:43:43:84:43:b6:9c:81:fc: a9:7b:d9:9e:ab:97:e1:07:13:43:6d:da:18:c9:41: 67:69:84:5d:3a:1c:70:3e:7c:a7:63:68:fb:77:f2: 93:14:46:e3:4a:5a:f9:cc:99:0b:6c:91:eb:e2:92: cd:17:a9:b6:5f:0d:db:93:15:6a:42:20:76:af:0a: 63:29:8b:d2:46:92:ec:a1:0f:dc:b9:59:4d:50:ef: fc:c0:e7:87:1a:f2:4b:89:b4:1c:50:4f:d3:57:7a: 52:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:8B:E0:76:D5:F5:E7:85:B7:DB:89:81:70:03:C7:12:12:FE:5E:28 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8e5237ea-75ca-4cdd-8c2f-e73681a3af5e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7140::/48 Signature Algorithm: sha256WithRSAEncryption 4a:e9:6a:83:22:42:bd:f1:ea:a0:95:f9:0e:83:13:a1:93:b0: a8:8a:3a:be:19:7f:56:51:cb:0c:d1:96:b9:d3:f9:b0:36:85: f5:58:23:27:db:e4:3c:8a:6a:5b:66:f8:ce:c8:8a:3c:8b:7e: 06:18:5b:4e:16:4f:13:4d:0f:64:fa:8e:15:1c:c2:27:ff:81: 94:5b:b5:90:c8:e0:b1:12:33:66:3e:2e:23:0b:bf:a3:85:cd: e0:81:e1:2d:34:2d:9b:a4:b6:77:46:5a:f6:34:70:ae:74:31: 6d:15:30:4f:db:42:f7:f6:d2:3b:8f:3d:fa:e3:d9:5f:d2:df: db:71:00:78:9a:c5:eb:a4:1c:dc:44:59:33:6f:77:0d:26:2e: 8b:62:43:73:e5:1b:27:a0:9e:e2:c9:a2:9a:03:66:13:a8:62: 36:20:e6:14:f4:fc:d4:c4:4a:61:b8:2c:b8:76:f0:db:b6:74: 89:db:c2:ca:a6:18:6b:7d:fd:46:95:4a:fa:a1:7a:71:df:0d: 8a:06:15:7c:72:a3:a6:3f:97:37:36:03:12:77:a1:5f:bc:c8: 6b:cf:93:2a:77:78:93:67:6d:fa:98:d2:44:0a:00:21:ca:2b: 36:e8:93:f8:07:be:6d:0e:39:9f:52:e6:4e:65:7e:37:99:d9: 7e:e2:0f:8a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUAo+lNhkDYhgVPJsQKfiikvCZnaIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODExMTUzMDUxWhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZWVhZjVhYjcwMmJlMWVjZmFmMTQ1NDUyNWYwYmE2MzFm Mjk1OTM3YWJhYTk5ODY3NWFjZWNjMzliNzhkOTU4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnlitvwrf5qH4pVEpgxCUHqIRwMEqXkoGbobJ57bqlrm+X 9DcyyPU3xAZkPnRBhbMeOCwP/wmAbYJiO4e3pCDpQYrF+urPtUdqs8A7Z/9/pq0g XXrQ1P2sGkxyUX2rY0ilIjq39y8Wdbd12/f0VRIPnog49LHT1tm937z6rqtJh+O3 9hcY7vsZPQ7e6VQbQhCKvMeV9JUHB/oG3YhDQ4RDtpyB/Kl72Z6rl+EHE0Nt2hjJ QWdphF06HHA+fKdjaPt38pMURuNKWvnMmQtskeviks0XqbZfDduTFWpCIHavCmMp i9JGkuyhD9y5WU1Q7/zA54ca8kuJtBxQT9NXelKzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUV4vgdtX154W324mBcAPHEhL+XigwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzhlNTIzN2VhLTc1Y2EtNGNkZC04YzJmLWU3MzY4MWEzYWY1ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDycUAwDQYJKoZIhvcNAQELBQADggEBAErpaoMiQr3x6qCV+Q6DE6GT sKiKOr4Zf1ZRywzRlrnT+bA2hfVYIyfb5DyKaltm+M7IijyLfgYYW04WTxNND2T6 jhUcwif/gZRbtZDI4LESM2Y+LiMLv6OFzeCB4S00LZuktndGWvY0cK50MW0VME/b Qvf20juPPfrj2V/S39txAHiaxeukHNxEWTNvdw0mLotiQ3PlGyegnuLJopoDZhOo YjYg5hT0/NTESmG4LLh28Nu2dInbwsqmGGt9/UaVSvqhenHfDYoGFXxyo6Y/lzc2 AxJ3oV+8yGvPkyp3eJNnbfqY0kQKACHKKzbok/gHvm0OOZ9S5k5lfjeZ2X7iD4o= -----END CERTIFICATE-----Generated at Sat Aug 23 23:37:18 2025 by rpki-client