$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa File: b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa (raw, json) Hash identifier: kmdEgnhUBfFlZ7EE/0RZsf7LpKgu2cDProFrBpWZtbA= Subject key identifier: 20:DA:F8:46:71:65:FB:1D:47:7F:30:D7:94:A5:27:8D:42:EA:4B:7B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3652F0089A8F773FFD3B4127E72F05E3D2196933 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa Signing time: Fri 22 Aug 2025 15:00:12 +0000 ROA not before: Fri 22 Aug 2025 15:00:12 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0::/28 maxlen: 28 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:52:f0:08:9a:8f:77:3f:fd:3b:41:27:e7:2f:05:e3:d2:19:69:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 22 15:00:12 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=071d5fa8cff58d9a2174b3cd40c015da173d0c2aba4e88c5fe6c96d5291c8591, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:75:3f:97:f5:ff:a5:27:fd:b7:10:94:3e:3f: 5f:65:14:4d:21:26:a3:09:19:fc:49:2d:77:8a:c0: 4f:2b:ea:01:74:6e:bd:f0:5d:e7:19:99:5b:83:d6: b9:a9:0d:79:73:57:0f:48:16:94:d0:4c:64:d4:c3: 9b:c2:cc:0e:c8:f1:e7:2b:d2:f0:10:c4:c2:00:02: 2d:a8:49:b3:68:15:28:e7:28:cc:e8:01:99:3f:c3: 48:91:0a:9d:41:31:dc:54:61:55:7b:94:96:27:fc: 5e:92:b9:d2:2f:6c:21:c0:88:3e:33:51:8c:21:31: 7d:ae:ce:c1:08:1a:4c:77:cf:69:f1:02:2d:99:62: 83:97:eb:1c:0c:18:f4:ba:cd:23:00:9e:e4:f3:d2: c2:df:63:a8:3b:ba:80:85:4e:bc:3c:69:47:36:13: 85:67:1e:3b:81:f2:a1:0e:bd:4b:97:93:f9:66:a1: e0:ef:cf:3f:5a:33:05:f5:02:c7:75:3b:b4:9a:b0: 06:24:7b:ea:6f:f3:43:3f:f2:ce:9f:b5:1f:e2:ff: 31:8b:68:53:63:1f:55:da:99:a0:c2:e4:4a:c2:aa: d4:91:bd:7b:98:86:19:0f:d2:23:21:46:73:bc:df: 76:02:ba:ad:75:e5:b6:b9:68:74:de:27:6c:26:68: 80:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:DA:F8:46:71:65:FB:1D:47:7F:30:D7:94:A5:27:8D:42:EA:4B:7B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0::/28 Signature Algorithm: sha256WithRSAEncryption 9f:40:9c:9e:29:e6:3f:9a:6c:61:4e:13:59:d0:fe:6f:45:9f: 59:5d:c0:b8:82:d3:26:f2:ea:ac:01:94:23:eb:27:d5:da:c5: f0:95:f4:1a:fe:e9:f6:f1:1c:73:c4:99:12:95:ec:fa:72:91: 69:6b:e2:ff:84:36:6d:cc:08:db:7e:a9:af:b3:1b:f0:18:0e: de:28:da:d9:99:cd:bd:5f:01:c0:97:46:92:10:08:28:86:34: b1:56:c9:db:ab:65:a1:87:d5:37:7c:6b:24:45:d3:19:03:89: 1f:bd:b9:f0:b4:85:86:b0:7d:e2:6e:31:9a:3f:59:36:49:89: 22:09:4a:17:72:c1:48:dc:c9:a8:92:6b:7a:7b:cc:f0:54:f7: c1:9d:15:92:57:0b:ee:6d:7f:ab:8f:7f:64:57:09:3a:55:2e: e0:b1:e3:e4:71:60:53:c4:b5:17:2c:6d:b6:04:94:fe:58:7a: 44:0b:da:23:32:59:ac:59:b7:7e:4d:f2:bb:0c:d7:66:23:01: ca:70:28:1c:83:88:3f:70:68:fa:ad:b8:2e:ec:8f:94:5c:64: 89:c2:1b:2f:7e:b5:f2:55:4f:58:5c:16:d8:4f:e7:10:04:98: 78:8a:8c:8e:0a:f5:2c:56:a8:d6:d0:8d:54:a1:2a:84:44:1a: 46:a0:28:8b -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUNlLwCJqPdz/9O0En5y8F49IZaTMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODIyMTUwMDEyWhcNMjUwOTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNzFkNWZhOGNmZjU4ZDlhMjE3NGIzY2Q0MGMwMTVkYTE3 M2QwYzJhYmE0ZTg4YzVmZTZjOTZkNTI5MWM4NTkxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2dT+X9f+lJ/23EJQ+P19lFE0hJqMJGfxJLXeKwE8r6gF0 br3wXecZmVuD1rmpDXlzVw9IFpTQTGTUw5vCzA7I8ecr0vAQxMIAAi2oSbNoFSjn KMzoAZk/w0iRCp1BMdxUYVV7lJYn/F6SudIvbCHAiD4zUYwhMX2uzsEIGkx3z2nx Ai2ZYoOX6xwMGPS6zSMAnuTz0sLfY6g7uoCFTrw8aUc2E4VnHjuB8qEOvUuXk/lm oeDvzz9aMwX1Asd1O7SasAYke+pv80M/8s6ftR/i/zGLaFNjH1XamaDC5ErCqtSR vXuYhhkP0iMhRnO833YCuq115ba5aHTeJ2wmaIC3AgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUINr4RnFl+x1HfzDXlKUnjULqS3swHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2I3YmJhZmJmLWU2ZDQtNDQ4Ny05ZWJiLWNiZDcyYjNkNmM3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQQmAPDwMA0GCSqGSIb3DQEBCwUAA4IBAQCfQJyeKeY/mmxhThNZ0P5vRZ9Z XcC4gtMm8uqsAZQj6yfV2sXwlfQa/un28RxzxJkSlez6cpFpa+L/hDZtzAjbfqmv sxvwGA7eKNrZmc29XwHAl0aSEAgohjSxVsnbq2Whh9U3fGskRdMZA4kfvbnwtIWG sH3ibjGaP1k2SYkiCUoXcsFI3Mmokmt6e8zwVPfBnRWSVwvubX+rj39kVwk6VS7g sePkcWBTxLUXLG22BJT+WHpEC9ojMlmsWbd+TfK7DNdmIwHKcCgcg4g/cGj6rbgu 7I+UXGSJwhsvfrXyVU9YXBbYT+cQBJh4ioyOCvUsVqjW0I1UoSqERBpGoCiL -----END CERTIFICATE-----Generated at Sat Aug 23 06:50:57 2025 by rpki-client