$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/973e821c-8b2c-4c2b-93fc-2e00ef721fdc.roa File: 973e821c-8b2c-4c2b-93fc-2e00ef721fdc.roa (raw, json) Hash identifier: zGttW7N31VP6Ys68YUnkzBl5AvMCZEl+kvtlVB0euuo= Subject key identifier: CF:F3:2D:24:07:5E:34:5A:5C:CD:19:EF:8B:B9:3F:B4:BA:FA:1C:B1 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 41CA74604E3E9FD7426D4E3ABFB0804267174E33 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/973e821c-8b2c-4c2b-93fc-2e00ef721fdc.roa Signing time: Mon 18 Aug 2025 18:24:09 +0000 ROA not before: Mon 18 Aug 2025 18:24:09 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6120::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:ca:74:60:4e:3e:9f:d7:42:6d:4e:3a:bf:b0:80:42:67:17:4e:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 18 18:24:09 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=7453253e3ba53e4718e306b4984c4ce62a40f45a187e4123938329a67cc6436d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:fe:09:e9:9f:d9:51:7d:f7:6e:c7:f6:c2:ee: cd:71:70:d9:8a:06:01:e7:b2:fd:16:7f:66:fe:23: 38:75:8a:14:63:b8:a7:0a:ca:f7:7d:cf:f7:72:e2: cd:33:bf:d4:09:e1:a7:34:d8:c7:f1:43:69:c4:4c: ca:45:6a:ea:5c:c3:9e:68:3e:d5:50:48:8a:e1:a6: 47:c8:8f:1c:9f:26:99:89:d8:e4:2c:19:d3:36:fb: d5:98:8d:df:2b:c1:91:cc:66:0b:78:b0:9c:5c:cb: be:00:e2:e4:0f:9f:13:75:f5:5b:5b:ac:57:e0:6e: c3:e5:b4:75:90:b9:a3:2f:5f:70:52:8d:6f:8d:37: e5:52:5d:15:e4:50:e9:82:eb:b8:cc:7a:c0:83:6b: 6e:f5:b2:07:7d:0f:a5:a6:5e:c6:8a:08:04:ef:ba: c1:e6:03:cd:47:2d:97:47:f5:9e:34:5e:f4:3f:00: c0:8a:0e:7a:c2:f8:05:a5:31:0d:00:43:c0:ec:d5: 97:4f:99:ed:8f:0e:fc:13:ae:8b:92:78:f6:7f:3e: b1:ee:2b:bd:5e:de:47:d0:bc:9b:77:81:92:f5:7d: d8:c5:80:1e:30:1e:67:a4:cf:63:e1:52:69:7d:4c: 60:f9:01:e6:d6:d3:67:b8:ae:26:e6:f0:5e:88:22: f9:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:F3:2D:24:07:5E:34:5A:5C:CD:19:EF:8B:B9:3F:B4:BA:FA:1C:B1 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/973e821c-8b2c-4c2b-93fc-2e00ef721fdc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6120::/48 Signature Algorithm: sha256WithRSAEncryption 1e:7d:84:61:08:4f:15:06:2a:d3:6f:7b:2c:6e:0e:db:ec:ca: 7a:f0:fc:7b:16:64:58:21:65:6a:0a:62:2d:21:5c:70:d7:6c: f3:ca:67:7b:d6:83:12:8a:ef:56:5f:84:91:40:39:f0:58:6c: 28:4e:ef:52:96:19:a5:73:1a:23:b0:2a:76:2f:96:66:b6:5e: 0b:56:61:4a:80:da:3d:1a:33:33:78:64:20:fa:42:54:24:51: 5d:9c:d2:35:41:de:44:25:a7:74:75:ad:9e:b9:1b:1e:24:ee: 2c:5d:32:9d:ed:58:5f:e1:28:37:aa:b2:dd:e7:4a:d5:dc:b3: ea:6c:78:75:e4:77:42:67:a4:13:2d:c8:c1:f0:c9:5c:f7:09: 7a:7c:ca:c1:4a:18:31:5a:43:71:3d:0d:75:6f:5f:68:3b:6c: 2d:8a:d9:b9:6a:d2:79:e7:60:bc:20:8d:f0:26:9a:96:f4:fc: e8:44:e3:b7:80:51:9d:6e:95:c9:cd:6e:c3:f0:7d:e3:d1:4f: ed:bc:d4:68:91:a3:39:1e:4d:66:eb:69:74:07:56:f6:90:23: 51:94:6d:24:f4:e3:86:84:8d:b5:b8:ce:36:35:18:af:ea:89: 3e:46:f5:f3:f1:82:51:28:ea:16:c6:9d:35:52:69:a0:56:f8: 1c:40:a2:fd -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQcp0YE4+n9dCbU46v7CAQmcXTjMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE4MTgyNDA5WhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NDUzMjUzZTNiYTUzZTQ3MThlMzA2YjQ5ODRjNGNlNjJh NDBmNDVhMTg3ZTQxMjM5MzgzMjlhNjdjYzY0MzZkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDv/gnpn9lRffdux/bC7s1xcNmKBgHnsv0Wf2b+Izh1ihRj uKcKyvd9z/dy4s0zv9QJ4ac02MfxQ2nETMpFaupcw55oPtVQSIrhpkfIjxyfJpmJ 2OQsGdM2+9WYjd8rwZHMZgt4sJxcy74A4uQPnxN19VtbrFfgbsPltHWQuaMvX3BS jW+NN+VSXRXkUOmC67jMesCDa271sgd9D6WmXsaKCATvusHmA81HLZdH9Z40XvQ/ AMCKDnrC+AWlMQ0AQ8Ds1ZdPme2PDvwTrouSePZ/PrHuK71e3kfQvJt3gZL1fdjF gB4wHmekz2PhUml9TGD5AebW02e4ribm8F6IIvnTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUz/MtJAdeNFpczRnvi7k/tLr6HLEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzk3M2U4MjFjLThiMmMtNGMyYi05M2ZjLTJlMDBlZjcyMWZkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYSAwDQYJKoZIhvcNAQELBQADggEBAB59hGEITxUGKtNveyxuDtvs ynrw/HsWZFghZWoKYi0hXHDXbPPKZ3vWgxKK71ZfhJFAOfBYbChO71KWGaVzGiOw KnYvlma2XgtWYUqA2j0aMzN4ZCD6QlQkUV2c0jVB3kQlp3R1rZ65Gx4k7ixdMp3t WF/hKDeqst3nStXcs+pseHXkd0JnpBMtyMHwyVz3CXp8ysFKGDFaQ3E9DXVvX2g7 bC2K2blq0nnnYLwgjfAmmpb0/OhE47eAUZ1ulcnNbsPwfePRT+281GiRozkeTWbr aXQHVvaQI1GUbST044aEjbW4zjY1GK/qiT5G9fPxglEo6hbGnTVSaaBW+BxAov0= -----END CERTIFICATE-----Generated at Sat Aug 23 06:45:27 2025 by rpki-client