$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ddabe105-17a8-4460-a8c9-18b7474ee13f.roa File: ddabe105-17a8-4460-a8c9-18b7474ee13f.roa (raw, json) Hash identifier: J/9UOu2GyPszbd26CLBJvbSR2gjv8BH4tLkiTvXtMW0= Subject key identifier: 80:C0:43:BF:6D:79:30:81:C5:D5:0F:49:09:F4:03:73:4A:94:E9:45 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6AD932B6E34DF590DEDA9D3AC1BDA772810AF917 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ddabe105-17a8-4460-a8c9-18b7474ee13f.roa Signing time: Fri 08 Aug 2025 00:30:48 +0000 ROA not before: Fri 08 Aug 2025 00:30:48 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f0:400::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:d9:32:b6:e3:4d:f5:90:de:da:9d:3a:c1:bd:a7:72:81:0a:f9:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 8 00:30:48 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=420ba85273e89d1d52c16024d3965cf1942cb003021eae14d8aa38077f1d9f50, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:aa:45:bd:db:27:89:a6:39:7b:1e:7d:5b:f9: fb:e3:82:7f:86:b2:97:ee:30:38:83:53:86:ec:7a: 5d:79:0e:54:82:46:91:7a:0a:7f:38:89:eb:d1:7c: bf:7a:66:d1:d6:43:30:fb:07:11:7b:e9:cb:36:3c: ae:17:a6:95:5a:cc:08:f1:2b:ed:7a:f5:1e:39:66: 14:e7:d9:3a:1b:1f:c2:5d:10:91:bf:3d:d6:20:28: 77:41:c3:b5:78:5a:db:3e:4e:f0:c3:91:99:56:b4: 99:82:98:f2:af:a2:99:ed:a3:8e:a6:40:1c:55:c6: 56:6c:62:18:7d:10:52:82:86:33:32:23:25:be:70: 29:5f:3b:62:d1:a7:c4:9d:8b:4f:36:18:62:69:88: ba:3f:a6:84:71:60:ec:47:7e:c0:13:d1:77:b4:5d: 18:bc:03:d9:33:a2:64:d6:db:29:da:2b:1b:df:fb: ab:e8:32:a2:79:25:75:1f:1d:37:2e:33:5d:9c:df: 9a:13:28:58:66:45:01:fc:e9:4e:11:90:45:8a:cb: c3:00:f1:30:0f:2a:4d:18:3b:23:ab:18:5e:2a:e2: 16:80:a5:f3:19:6d:f6:3f:19:0d:ef:96:2c:45:9e: 82:99:ce:ac:3b:ff:b9:5f:43:d8:87:ef:c8:de:2a: 29:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:C0:43:BF:6D:79:30:81:C5:D5:0F:49:09:F4:03:73:4A:94:E9:45 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ddabe105-17a8-4460-a8c9-18b7474ee13f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:400::/44 Signature Algorithm: sha256WithRSAEncryption 82:7a:f0:ef:90:1d:4d:e7:73:87:27:41:ab:bb:fb:87:f4:5c: 6e:4d:8c:c1:7e:4c:ff:8f:02:78:1c:22:d1:12:dc:0e:38:7e: 03:ef:75:c0:73:2d:12:f4:6b:bf:b6:b1:a7:65:4f:19:8c:f7: b9:74:80:0e:27:08:d6:72:f3:c9:8f:32:64:61:2a:c6:f0:2e: 4f:11:10:6b:e8:7c:dd:e9:68:aa:92:7f:01:73:99:47:9f:96: 4b:0f:e9:f1:1d:d1:13:39:9a:d1:ef:bb:b9:7f:07:81:d5:68: fb:b8:f4:3f:37:3f:e1:9e:d4:a6:33:c3:af:05:3c:f7:32:fa: 43:21:9a:b7:67:c6:ab:75:1c:7d:50:09:bf:79:3c:c0:5e:37: ef:5d:d5:44:fd:f3:3c:62:58:8e:ae:af:78:4e:10:8e:43:7f: 82:d1:38:79:21:13:13:a6:c8:cf:8c:01:24:01:49:e7:c2:b5: 2f:7f:61:85:cb:0b:8f:59:4e:4d:95:15:5d:89:71:c2:96:f2: d3:f9:72:c7:fe:1b:87:ca:28:db:e1:7e:3b:9e:3e:fa:6c:bf: c9:26:52:e9:0b:60:db:f6:90:df:f4:ae:48:04:2e:3f:be:81: fc:c4:f9:0e:67:a3:98:27:f5:90:e1:63:2d:a1:15:eb:85:cc: fd:5b:99:8e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUatkytuNN9ZDe2p06wb2ncoEK+RcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA4MDAzMDQ4WhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MjBiYTg1MjczZTg5ZDFkNTJjMTYwMjRkMzk2NWNmMTk0 MmNiMDAzMDIxZWFlMTRkOGFhMzgwNzdmMWQ5ZjUwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTqkW92yeJpjl7Hn1b+fvjgn+GspfuMDiDU4bsel15DlSC RpF6Cn84ievRfL96ZtHWQzD7BxF76cs2PK4XppVazAjxK+169R45ZhTn2TobH8Jd EJG/PdYgKHdBw7V4Wts+TvDDkZlWtJmCmPKvopnto46mQBxVxlZsYhh9EFKChjMy IyW+cClfO2LRp8Sdi082GGJpiLo/poRxYOxHfsAT0Xe0XRi8A9kzomTW2ynaKxvf +6voMqJ5JXUfHTcuM12c35oTKFhmRQH86U4RkEWKy8MA8TAPKk0YOyOrGF4q4haA pfMZbfY/GQ3vlixFnoKZzqw7/7lfQ9iH78jeKimZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUgMBDv215MIHF1Q9JCfQDc0qU6UUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RkYWJlMTA1LTE3YTgtNDQ2MC1hOGM5LTE4Yjc0NzRlZTEzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwBAAwDQYJKoZIhvcNAQELBQADggEBAIJ68O+QHU3nc4cnQau7+4f0 XG5NjMF+TP+PAngcItES3A44fgPvdcBzLRL0a7+2sadlTxmM97l0gA4nCNZy88mP MmRhKsbwLk8REGvofN3paKqSfwFzmUeflksP6fEd0RM5mtHvu7l/B4HVaPu49D83 P+Ge1KYzw68FPPcy+kMhmrdnxqt1HH1QCb95PMBeN+9d1UT98zxiWI6ur3hOEI5D f4LROHkhExOmyM+MASQBSefCtS9/YYXLC49ZTk2VFV2JccKW8tP5csf+G4fKKNvh fjuePvpsv8kmUukLYNv2kN/0rkgELj++gfzE+Q5no5gn9ZDhYy2hFeuFzP1bmY4= -----END CERTIFICATE-----Generated at Sat Aug 23 13:13:43 2025 by rpki-client