$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a4c99211-8489-4968-bb5b-fa10b298aaaf.roa File: a4c99211-8489-4968-bb5b-fa10b298aaaf.roa (raw, json) Hash identifier: BVme89faAofPw3tNKueFcA/BCWB/Qn76S+Oh4Ib1iwI= Subject key identifier: 79:D8:63:A6:16:94:0A:5C:AC:AE:9A:17:44:4D:CF:21:48:14:0C:74 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 39EF4A58B2253921E6D877BC463548A1ED1B0A98 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a4c99211-8489-4968-bb5b-fa10b298aaaf.roa Signing time: Sat 09 Aug 2025 00:10:49 +0000 ROA not before: Sat 09 Aug 2025 00:10:49 +0000 ROA not after: Sat 13 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:ef:4a:58:b2:25:39:21:e6:d8:77:bc:46:35:48:a1:ed:1b:0a:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 9 00:10:49 2025 GMT Not After : Sep 13 23:59:59 2025 GMT Subject: serialNumber=7de16d8c4a689e58ae65c91c7ff34f257e02a9312dc3e52aa7a9c28d6b13346f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:84:20:6f:5d:f7:ea:19:9b:b2:4f:c3:83:45: 5a:77:45:ce:33:c6:fc:b1:ec:8d:98:99:37:88:4b: e1:0d:7b:76:cc:e3:2f:de:95:19:a7:eb:91:b4:e4: 4b:bd:59:99:a4:7c:0c:f8:54:f0:3a:7c:6a:62:56: c8:46:c0:c8:72:3c:ec:a0:91:c0:e1:97:62:98:4c: 51:6b:92:d9:db:46:b4:14:28:13:29:7d:2f:5c:b9: 51:52:5e:ab:6b:86:54:16:51:b5:cf:75:db:8a:17: 24:8c:7d:81:c8:09:89:f0:dc:70:f0:41:33:be:17: 92:1c:ed:9c:06:b0:36:d3:10:d5:a8:93:7d:4c:ff: 6b:7e:ea:f8:4a:7d:08:d2:78:45:a5:ec:af:55:35: f5:a6:24:08:85:30:f9:40:cd:46:d1:7d:60:ac:35: a1:96:45:47:06:20:e1:49:7a:33:ab:1c:87:9c:87: 59:70:bd:49:78:9b:8e:7c:76:c1:a5:1f:08:13:7c: 50:89:bd:4a:cd:61:f6:e9:5c:5e:54:92:ca:ed:e1: b8:cc:99:da:45:4d:c4:bc:24:69:91:34:23:05:41: e2:3d:f8:bf:ab:ce:a8:48:6a:ce:70:b1:e9:83:be: e7:ba:49:53:70:eb:ce:ac:a7:c7:a7:b7:17:a7:08: e7:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:D8:63:A6:16:94:0A:5C:AC:AE:9A:17:44:4D:CF:21:48:14:0C:74 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a4c99211-8489-4968-bb5b-fa10b298aaaf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f000::/44 Signature Algorithm: sha256WithRSAEncryption 25:c3:3b:88:e4:01:72:ea:3e:7b:41:bd:87:6c:42:b1:a3:6e: 1f:70:fe:e6:05:ef:46:9e:fc:fb:3b:44:89:ad:54:77:f5:9d: e6:4f:ec:96:eb:4a:35:70:0b:c6:0b:ba:48:98:26:3d:14:4d: 9a:a6:f9:a5:2f:1a:76:5d:61:01:77:c8:6e:29:71:5c:a3:9d: 4a:11:85:04:92:91:ff:fa:29:ed:3d:2d:28:07:7b:51:0c:c9: 19:28:eb:6b:c1:b5:80:34:79:40:1f:ae:66:b8:1a:3b:63:96: ec:e4:6b:93:ca:b8:3f:f7:af:5d:5a:bd:3c:fc:9b:d8:57:46: 50:5e:67:92:6e:c2:f0:eb:a4:ad:44:7b:3e:5c:0b:74:e8:c6: 86:ad:cc:56:bc:be:4f:3d:42:c3:2f:0e:ca:2f:f8:14:2a:54: 86:85:fb:71:76:96:be:3a:ed:e8:36:83:5c:52:e7:b9:dd:81: 1b:74:dc:6c:44:5e:54:ee:df:e4:42:43:cf:17:8e:4d:d2:73: 76:be:95:87:44:4e:90:35:33:1d:39:1b:98:07:82:d2:9b:63: 00:e9:eb:d8:0d:1e:76:4f:e8:50:ea:c2:70:70:c4:c1:e8:61: 0b:3a:c4:7c:6d:1f:94:12:f0:36:82:82:4d:5f:67:ad:14:57: 33:d0:c6:dc -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOe9KWLIlOSHm2He8RjVIoe0bCpgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA5MDAxMDQ5WhcNMjUwOTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZGUxNmQ4YzRhNjg5ZTU4YWU2NWM5MWM3ZmYzNGYyNTdl MDJhOTMxMmRjM2U1MmFhN2E5YzI4ZDZiMTMzNDZmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwhCBvXffqGZuyT8ODRVp3Rc4zxvyx7I2YmTeIS+ENe3bM 4y/elRmn65G05Eu9WZmkfAz4VPA6fGpiVshGwMhyPOygkcDhl2KYTFFrktnbRrQU KBMpfS9cuVFSXqtrhlQWUbXPdduKFySMfYHICYnw3HDwQTO+F5Ic7ZwGsDbTENWo k31M/2t+6vhKfQjSeEWl7K9VNfWmJAiFMPlAzUbRfWCsNaGWRUcGIOFJejOrHIec h1lwvUl4m458dsGlHwgTfFCJvUrNYfbpXF5Uksrt4bjMmdpFTcS8JGmRNCMFQeI9 +L+rzqhIas5wsemDvue6SVNw686sp8entxenCOeHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUedhjphaUClysrpoXRE3PIUgUDHQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E0Yzk5MjExLTg0ODktNDk2OC1iYjViLWZhMTBiMjk4YWFhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78AAwDQYJKoZIhvcNAQELBQADggEBACXDO4jkAXLqPntBvYdsQrGj bh9w/uYF70ae/Ps7RImtVHf1neZP7JbrSjVwC8YLukiYJj0UTZqm+aUvGnZdYQF3 yG4pcVyjnUoRhQSSkf/6Ke09LSgHe1EMyRko62vBtYA0eUAfrma4Gjtjluzka5PK uD/3r11avTz8m9hXRlBeZ5JuwvDrpK1Eez5cC3ToxoatzFa8vk89QsMvDsov+BQq VIaF+3F2lr467eg2g1xS57ndgRt03GxEXlTu3+RCQ88Xjk3Sc3a+lYdETpA1Mx05 G5gHgtKbYwDp69gNHnZP6FDqwnBwxMHoYQs6xHxtH5QS8DaCgk1fZ60UVzPQxtw= -----END CERTIFICATE-----Generated at Sat Aug 23 10:37:49 2025 by rpki-client