$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b51f360b-51dd-46ed-9df1-5d5b37dcb02b.roa File: b51f360b-51dd-46ed-9df1-5d5b37dcb02b.roa (raw, json) Hash identifier: 1Z2RbiKqqytuxg12U3YL7zffJUjr0YB3rb3a3kbF8HM= Subject key identifier: 3C:68:D5:BB:98:61:78:A7:F1:76:7F:E5:D0:EA:A1:A3:1C:6D:BE:EF Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 07867A78013D14F978036A1005075F3C07C0C8EA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b51f360b-51dd-46ed-9df1-5d5b37dcb02b.roa Signing time: Mon 18 Aug 2025 18:24:06 +0000 ROA not before: Mon 18 Aug 2025 18:24:06 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:611b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:86:7a:78:01:3d:14:f9:78:03:6a:10:05:07:5f:3c:07:c0:c8:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 18 18:24:06 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=d15c7f5b9b5f76084d4c7e0857b2d53de91146f0c09eb95ff98523cccc44781a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:34:7b:55:b5:32:7a:9c:af:bc:af:e5:f3:04: 5b:40:10:c8:b9:62:ac:8a:78:bb:f7:57:2a:7a:c6: ec:10:a0:38:46:6b:85:f0:9c:22:c3:c5:09:b0:72: c8:81:bd:3b:c7:34:02:4e:4f:8c:f1:80:e0:c6:3d: 92:b8:b6:62:7a:5f:8a:17:0c:43:a3:b5:f9:a1:29: e3:2e:87:1b:d3:5c:47:4a:16:ff:7e:5d:31:62:8a: f9:27:bc:16:6b:6b:46:dc:3d:c2:e0:24:92:51:3e: 6d:7e:95:d5:e4:67:91:6d:3f:b9:6c:41:e9:8b:c5: 2c:a0:d0:e5:c2:64:ab:03:5a:79:2e:aa:fc:f4:27: e7:6e:37:b6:13:75:11:fa:9e:7f:23:58:dd:06:e8: d6:84:e3:f6:92:6a:17:84:8d:a8:96:27:11:09:6c: a5:18:23:ad:50:1c:87:85:26:0a:36:42:01:b2:f4: 32:51:31:6e:ca:5d:19:22:b7:12:36:43:c9:ad:28: 4b:b6:72:8a:3c:29:33:ad:03:3f:31:10:f0:75:2d: 3b:b3:89:30:35:18:1f:8c:a5:7a:da:93:af:a0:3f: 44:6c:b1:da:5f:f5:a6:35:88:0c:69:5e:9f:f9:a2: b8:ff:7b:db:75:5c:2e:a2:8d:fd:d4:b3:44:b1:40: fe:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:68:D5:BB:98:61:78:A7:F1:76:7F:E5:D0:EA:A1:A3:1C:6D:BE:EF X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b51f360b-51dd-46ed-9df1-5d5b37dcb02b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:611b::/48 Signature Algorithm: sha256WithRSAEncryption 3e:95:7f:d3:41:fb:37:89:f6:73:a1:ae:1a:d6:ae:c8:48:58: f9:41:db:12:f4:08:d5:ea:89:cc:89:9c:b2:a1:9c:b7:78:5d: c3:7f:18:8b:cd:aa:fa:83:ea:6f:e6:00:ed:05:ff:3d:f5:61: af:8d:74:da:a3:3b:9b:c3:81:4d:d7:88:3b:8e:5e:e9:14:aa: 36:08:a1:6a:91:32:8c:49:6c:05:46:4b:94:4b:07:9b:5d:57: 4a:05:c4:b8:24:00:5e:de:94:48:5c:e3:26:15:01:a9:33:4a: 0c:07:03:39:ce:51:46:18:ce:ce:2c:76:a2:fb:43:20:be:24: d1:e9:47:9e:ac:38:89:ba:86:4b:3f:7a:6b:eb:c2:08:7a:12: 2c:6a:43:fd:48:47:74:dc:29:b1:61:7e:57:95:79:da:00:61: cd:5e:63:e4:3b:f0:b1:85:b6:29:d5:16:c3:04:c2:e4:ba:5b: d8:21:57:07:97:56:6a:44:3d:f8:02:6c:a2:50:94:14:78:3d: 48:fa:09:c5:34:e4:6e:38:6c:cf:d3:c3:60:7c:fe:6c:b3:ae: 0d:f7:cc:2f:23:19:8f:46:2c:8b:d1:4c:27:a4:c8:c4:09:d7: fa:c6:e5:65:e8:58:7c:87:ee:7b:50:4d:1f:d3:1e:44:56:21: c8:2f:5e:e5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUB4Z6eAE9FPl4A2oQBQdfPAfAyOowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE4MTgyNDA2WhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMTVjN2Y1YjliNWY3NjA4NGQ0YzdlMDg1N2IyZDUzZGU5 MTE0NmYwYzA5ZWI5NWZmOTg1MjNjY2NjNDQ3ODFhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwNHtVtTJ6nK+8r+XzBFtAEMi5YqyKeLv3Vyp6xuwQoDhG a4XwnCLDxQmwcsiBvTvHNAJOT4zxgODGPZK4tmJ6X4oXDEOjtfmhKeMuhxvTXEdK Fv9+XTFiivknvBZra0bcPcLgJJJRPm1+ldXkZ5FtP7lsQemLxSyg0OXCZKsDWnku qvz0J+duN7YTdRH6nn8jWN0G6NaE4/aSaheEjaiWJxEJbKUYI61QHIeFJgo2QgGy 9DJRMW7KXRkitxI2Q8mtKEu2coo8KTOtAz8xEPB1LTuziTA1GB+MpXrak6+gP0Rs sdpf9aY1iAxpXp/5orj/e9t1XC6ijf3Us0SxQP5jAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUPGjVu5hheKfxdn/l0Oqhoxxtvu8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2I1MWYzNjBiLTUxZGQtNDZlZC05ZGYxLTVkNWIzN2RjYjAyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRswDQYJKoZIhvcNAQELBQADggEBAD6Vf9NB+zeJ9nOhrhrWrshI WPlB2xL0CNXqicyJnLKhnLd4XcN/GIvNqvqD6m/mAO0F/z31Ya+NdNqjO5vDgU3X iDuOXukUqjYIoWqRMoxJbAVGS5RLB5tdV0oFxLgkAF7elEhc4yYVAakzSgwHAznO UUYYzs4sdqL7QyC+JNHpR56sOIm6hks/emvrwgh6EixqQ/1IR3TcKbFhfleVedoA Yc1eY+Q78LGFtinVFsMEwuS6W9ghVweXVmpEPfgCbKJQlBR4PUj6CcU05G44bM/T w2B8/myzrg33zC8jGY9GLIvRTCekyMQJ1/rG5WXoWHyH7ntQTR/THkRWIcgvXuU= -----END CERTIFICATE-----Generated at Sat Aug 23 06:44:19 2025 by rpki-client