$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f937d10a-ab1d-4f0c-85f2-3661bd103bc9.roa File: f937d10a-ab1d-4f0c-85f2-3661bd103bc9.roa (raw, json) Hash identifier: 8qWMixzVGy4VZhfDMZsvvS69MogeIr/4G/nYdFAuxGo= Subject key identifier: 34:7F:8D:9A:31:6B:5B:11:56:B3:60:AC:1B:A6:D0:15:76:78:37:EF Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1D82643891F11209DDBA8468B59EA9EA1DF2C1A2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f937d10a-ab1d-4f0c-85f2-3661bd103bc9.roa Signing time: Mon 18 Aug 2025 18:22:29 +0000 ROA not before: Mon 18 Aug 2025 18:22:29 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6117::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:82:64:38:91:f1:12:09:dd:ba:84:68:b5:9e:a9:ea:1d:f2:c1:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 18 18:22:29 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=c747bc90aa9d9304c073be76b8b3514e38b2ef645bacf0d3ca0083fceb7b4bd1, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e5:68:57:32:6f:cf:86:c1:fd:98:8e:69:fc: 37:be:b0:be:54:66:a8:c6:a1:cf:d4:b7:12:5f:ce: aa:3b:3d:10:fc:02:65:cd:81:6c:6a:aa:e3:0b:c5: 67:77:07:83:86:85:93:6d:f0:fb:d3:0e:d6:56:83: a1:09:47:a5:e0:7a:14:04:74:d0:1b:63:de:83:a9: 1b:15:ec:a5:21:65:c0:47:cd:0c:3d:b7:db:b6:9d: ad:44:de:20:95:12:de:2f:9e:bd:3d:03:e3:a4:6f: 71:0d:94:f9:31:f4:d5:68:e3:d1:e1:9e:13:22:3a: a0:0b:78:8a:f3:90:da:85:04:06:0f:2c:07:67:d3: cf:aa:db:d6:f9:e4:3c:80:72:0b:9b:b9:48:b9:c1: 6b:c2:2f:e0:37:e2:ac:92:21:59:07:de:6a:dd:c6: d3:45:ed:04:9a:ba:83:f4:25:9b:ff:aa:b2:20:b3: 58:49:bc:1f:ae:b6:32:19:12:8a:5f:01:a0:56:fe: b4:a5:4c:a7:a7:30:8b:1c:3f:bf:c7:db:7b:06:c6: a4:d2:f8:10:bb:d6:97:11:04:6c:b9:9d:bb:0c:34: c3:2d:37:dc:a1:48:0b:d8:88:43:94:bf:64:27:cb: 75:0d:e4:a0:ec:c0:50:bb:04:59:b4:bb:46:da:97: f5:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:7F:8D:9A:31:6B:5B:11:56:B3:60:AC:1B:A6:D0:15:76:78:37:EF X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f937d10a-ab1d-4f0c-85f2-3661bd103bc9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6117::/48 Signature Algorithm: sha256WithRSAEncryption 60:c8:28:4f:9e:81:44:c0:c4:dd:9a:09:ab:6d:bd:69:d8:fc: cd:2d:e1:a7:6f:aa:3e:83:2a:ed:0a:cd:f0:35:69:6a:c1:1a: 85:48:2a:d1:71:4a:84:05:f7:51:f5:6c:5d:e1:96:6e:73:7f: 60:3f:05:1c:b7:89:02:0d:0f:76:5f:80:cb:80:05:28:84:5f: 11:23:4b:e0:90:b5:75:88:03:64:04:ee:89:b8:1a:78:55:db: 4b:83:26:a6:28:58:06:44:90:c6:8e:49:b2:21:2a:42:56:9a: eb:c1:c5:a2:92:a1:a1:06:15:bc:1b:be:4e:01:68:57:73:e4: c6:1c:2c:f2:a7:f3:dc:ae:43:98:5e:db:7b:8b:63:10:66:39: 55:f3:b0:af:de:72:82:ca:77:fb:d5:7e:af:f5:22:a1:a9:f3: de:4b:96:3b:f5:68:10:5a:8a:ac:dc:e4:55:7a:af:98:c1:f3: 74:ef:0d:b6:dd:6b:b3:a8:5c:7e:4b:96:d0:64:57:90:66:d5: bf:82:27:94:a1:91:e6:56:1a:58:c2:35:17:61:ba:0f:11:1b: 64:08:d4:34:40:63:8d:b8:0e:a3:e0:5d:19:eb:e7:50:3f:1e: b3:80:d5:1f:db:ed:a1:62:f6:08:80:d0:31:b5:ca:75:8f:06: f5:ce:e0:8b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHYJkOJHxEgnduoRotZ6p6h3ywaIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE4MTgyMjI5WhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNzQ3YmM5MGFhOWQ5MzA0YzA3M2JlNzZiOGIzNTE0ZTM4 YjJlZjY0NWJhY2YwZDNjYTAwODNmY2ViN2I0YmQxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCo5WhXMm/PhsH9mI5p/De+sL5UZqjGoc/UtxJfzqo7PRD8 AmXNgWxqquMLxWd3B4OGhZNt8PvTDtZWg6EJR6XgehQEdNAbY96DqRsV7KUhZcBH zQw9t9u2na1E3iCVEt4vnr09A+Okb3ENlPkx9NVo49HhnhMiOqALeIrzkNqFBAYP LAdn08+q29b55DyAcgubuUi5wWvCL+A34qySIVkH3mrdxtNF7QSauoP0JZv/qrIg s1hJvB+utjIZEopfAaBW/rSlTKenMIscP7/H23sGxqTS+BC71pcRBGy5nbsMNMMt N9yhSAvYiEOUv2Qny3UN5KDswFC7BFm0u0bal/VpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUNH+NmjFrWxFWs2CsG6bQFXZ4N+8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y5MzdkMTBhLWFiMWQtNGYwYy04NWYyLTM2NjFiZDEwM2JjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRcwDQYJKoZIhvcNAQELBQADggEBAGDIKE+egUTAxN2aCattvWnY /M0t4advqj6DKu0KzfA1aWrBGoVIKtFxSoQF91H1bF3hlm5zf2A/BRy3iQIND3Zf gMuABSiEXxEjS+CQtXWIA2QE7om4GnhV20uDJqYoWAZEkMaOSbIhKkJWmuvBxaKS oaEGFbwbvk4BaFdz5MYcLPKn89yuQ5he23uLYxBmOVXzsK/ecoLKd/vVfq/1IqGp 895Lljv1aBBaiqzc5FV6r5jB83TvDbbda7OoXH5LltBkV5Bm1b+CJ5ShkeZWGljC NRdhug8RG2QI1DRAY424DqPgXRnr51A/HrOA1R/b7aFi9giA0DG1ynWPBvXO4Is= -----END CERTIFICATE-----Generated at Sat Aug 23 08:13:36 2025 by rpki-client