$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0a9c1ab1-49ce-487d-9702-dc4efc450447.roa File: 0a9c1ab1-49ce-487d-9702-dc4efc450447.roa (raw, json) Hash identifier: 6uCa1zHbAXKbZVeqLKUj5jQkf+TkhoaZQ10cw4lQ+6g= Subject key identifier: 0E:DE:86:0F:D1:B4:B2:C5:45:B5:49:0B:25:D5:11:14:A6:E1:04:EB Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4E44C897BDB38C4333548FC7838E68A5702BF721 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0a9c1ab1-49ce-487d-9702-dc4efc450447.roa Signing time: Mon 18 Aug 2025 18:24:03 +0000 ROA not before: Mon 18 Aug 2025 18:24:03 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6118::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:44:c8:97:bd:b3:8c:43:33:54:8f:c7:83:8e:68:a5:70:2b:f7:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 18 18:24:03 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=678780f204d2c2698a02a2f998f9898bed0839188b70be8ceebb60310653d09a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:55:19:30:6b:fc:84:00:a0:7c:5d:fb:f5:d0: ae:a9:8d:75:6a:7d:e7:e0:34:b7:62:d0:b0:90:fa: a4:2d:9b:1d:6b:5d:08:dc:07:ac:56:50:eb:2c:96: 32:b2:63:04:b0:82:26:2e:15:26:e9:68:8b:8c:7f: d0:c9:27:66:0c:cd:79:3a:38:aa:00:67:a1:ef:64: 5f:71:a7:6b:44:48:f6:2b:5c:6e:e0:9b:6a:f1:16: c0:e0:a8:a0:b2:4d:7a:d2:b2:0f:71:9f:b0:af:6e: a2:62:04:6a:8b:c7:e7:b3:28:45:8a:13:dc:95:de: 20:ef:37:28:dc:fe:04:40:5d:34:95:04:8a:2e:c7: 33:0d:7f:4d:37:64:94:c3:76:96:39:b1:ea:46:39: dd:b5:38:5e:a2:82:7d:33:40:55:ae:2f:8b:94:46: 38:9d:2e:bf:6a:69:04:a1:28:a2:97:e9:6c:81:53: ab:5c:24:13:54:64:13:cc:bc:56:52:19:42:d3:67: d4:67:43:c0:98:9d:81:2e:00:e2:a2:23:54:ba:b7: 21:52:6b:9d:ba:f9:f0:85:3a:ce:34:d1:09:e3:fc: 70:82:e4:75:e8:cd:3b:5f:67:53:ef:3c:9b:27:53: de:f7:d7:1b:42:32:67:03:db:a6:54:bb:d0:2a:5e: 3a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:DE:86:0F:D1:B4:B2:C5:45:B5:49:0B:25:D5:11:14:A6:E1:04:EB X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0a9c1ab1-49ce-487d-9702-dc4efc450447.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6118::/48 Signature Algorithm: sha256WithRSAEncryption 69:37:17:43:40:d4:55:0e:cd:bd:a1:07:23:57:c1:81:79:4b: bb:b2:9d:e8:22:f0:aa:75:03:f7:07:ce:eb:fe:25:66:7e:90: ac:19:bf:fb:cf:00:87:56:56:40:5e:8c:38:b5:7d:26:ea:be: 96:d8:5d:e7:d1:be:45:e2:bb:83:d6:39:01:46:9b:d3:4d:77: 9d:81:49:c9:49:7a:57:ae:9a:ba:fb:e1:44:84:fa:42:8c:10: 79:01:ca:95:4d:8a:be:9e:d1:27:4b:e9:f1:b5:cb:24:cc:e0: e4:ba:f2:41:e3:4f:de:d1:93:aa:86:3f:ad:61:46:11:2a:4a: 43:de:d7:46:37:d5:e4:e1:16:a0:59:7c:c0:a1:8a:f1:56:04: 1c:c9:19:03:83:dc:76:94:3a:f5:61:a9:f3:49:e0:c1:85:91: 06:87:d8:de:55:68:ba:0b:8c:54:0c:09:33:6f:34:6d:dc:b9: e3:93:44:f7:77:87:1a:8d:08:2e:b3:4b:fd:30:36:a4:bf:08: 8f:d9:b7:66:9f:cf:e4:6e:66:d9:30:c6:b3:ae:f9:1c:c7:3d: ea:b9:22:ea:66:3e:bc:5f:f8:06:27:f1:0c:f2:cd:13:bd:c6: b9:68:d6:21:0c:c8:a3:bc:8a:96:c7:39:df:53:87:8d:2b:73: d4:ed:36:aa -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTkTIl72zjEMzVI/Hg45opXAr9yEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE4MTgyNDAzWhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2Nzg3ODBmMjA0ZDJjMjY5OGEwMmEyZjk5OGY5ODk4YmVk MDgzOTE4OGI3MGJlOGNlZWJiNjAzMTA2NTNkMDlhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdVRkwa/yEAKB8Xfv10K6pjXVqfefgNLdi0LCQ+qQtmx1r XQjcB6xWUOssljKyYwSwgiYuFSbpaIuMf9DJJ2YMzXk6OKoAZ6HvZF9xp2tESPYr XG7gm2rxFsDgqKCyTXrSsg9xn7CvbqJiBGqLx+ezKEWKE9yV3iDvNyjc/gRAXTSV BIouxzMNf003ZJTDdpY5sepGOd21OF6ign0zQFWuL4uURjidLr9qaQShKKKX6WyB U6tcJBNUZBPMvFZSGULTZ9RnQ8CYnYEuAOKiI1S6tyFSa526+fCFOs400Qnj/HCC 5HXozTtfZ1PvPJsnU9731xtCMmcD26ZUu9AqXjpVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDt6GD9G0ssVFtUkLJdURFKbhBOswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBhOWMxYWIxLTQ5Y2UtNDg3ZC05NzAyLWRjNGVmYzQ1MDQ0Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRgwDQYJKoZIhvcNAQELBQADggEBAGk3F0NA1FUOzb2hByNXwYF5 S7uynegi8Kp1A/cHzuv+JWZ+kKwZv/vPAIdWVkBejDi1fSbqvpbYXefRvkXiu4PW OQFGm9NNd52BSclJeleumrr74USE+kKMEHkBypVNir6e0SdL6fG1yyTM4OS68kHj T97Rk6qGP61hRhEqSkPe10Y31eThFqBZfMChivFWBBzJGQOD3HaUOvVhqfNJ4MGF kQaH2N5VaLoLjFQMCTNvNG3cueOTRPd3hxqNCC6zS/0wNqS/CI/Zt2afz+RuZtkw xrOu+RzHPeq5IupmPrxf+AYn8QzyzRO9xrlo1iEMyKO8ipbHOd9Th40rc9TtNqo= -----END CERTIFICATE-----Generated at Sat Aug 23 08:32:45 2025 by rpki-client