$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0d414a18-fab9-4052-b9b5-07a662fab301.roa File: 0d414a18-fab9-4052-b9b5-07a662fab301.roa (raw, json) Hash identifier: j25oIIapoIWTVee74zLZzAXTsqHPB8nLcgmHHLTEuGU= Subject key identifier: C8:71:2E:9D:BB:97:62:73:77:74:75:5F:36:12:2D:2E:DD:AE:34:E2 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 75DDED877415D4196F8DDA355B852942086674DF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0d414a18-fab9-4052-b9b5-07a662fab301.roa Signing time: Fri 22 Aug 2025 15:00:19 +0000 ROA not before: Fri 22 Aug 2025 15:00:19 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8a00::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:dd:ed:87:74:15:d4:19:6f:8d:da:35:5b:85:29:42:08:66:74:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 22 15:00:19 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=603f91b604bcce536f7f6b4d6c8f8f34aa0440567c7a029d6feffbed9f0faa55, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:d7:12:57:1b:01:ba:a1:81:6b:df:81:4b:07: fd:dd:53:ee:0e:c8:53:61:84:22:de:da:87:97:a3: e7:66:07:2b:2f:81:16:a7:c9:79:54:0a:35:08:a8: 05:47:c7:6d:13:a3:1c:d5:98:60:54:bc:44:c2:94: 01:a5:a7:51:0b:35:aa:7c:56:5c:78:85:26:c4:5c: e2:43:ed:da:5a:bf:69:ee:4f:af:b2:1b:e9:a4:7e: c5:aa:ae:74:b3:3b:35:81:b1:43:86:18:63:69:67: cc:1b:a6:81:60:ff:a2:60:99:9b:8a:42:35:65:f0: ce:3d:a3:ef:cd:7c:53:22:ba:8b:dd:d3:6d:f3:f4: 49:79:d4:3c:2a:f7:5a:33:5c:18:8f:75:a0:94:36: f0:8b:24:bd:16:3a:5f:7c:7e:10:fc:ea:fd:d4:43: eb:80:78:a1:ca:c5:8e:8e:a6:9e:d2:b7:3d:9a:c9: 12:3c:7f:0a:fb:2f:70:80:95:3f:73:cc:ba:fe:68: b7:14:9f:b3:1e:19:9f:e4:a8:44:aa:ce:81:b9:41: 22:c5:4e:27:07:4b:5d:b7:74:11:12:a0:b7:fd:96: fb:5a:e9:f0:f2:07:52:68:3c:18:40:84:0e:e2:b1: a8:88:27:e2:cc:3e:74:48:49:f7:3c:07:12:ec:60: f9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:71:2E:9D:BB:97:62:73:77:74:75:5F:36:12:2D:2E:DD:AE:34:E2 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0d414a18-fab9-4052-b9b5-07a662fab301.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8a00::/39 Signature Algorithm: sha256WithRSAEncryption 8f:61:23:79:eb:9e:d3:b7:a5:a1:b0:36:97:17:70:b8:cb:59: fe:ac:5d:f2:47:c0:f8:d3:ef:d8:3c:51:bb:4a:33:f0:d7:2e: 1e:f3:54:b0:cb:8f:3b:0e:3e:7d:c8:38:d9:47:0c:64:0c:6e: cb:4f:01:cf:56:bb:fd:c9:2f:e1:ee:d6:01:7e:7b:99:ce:bb: 8c:42:68:53:1a:96:3f:47:0f:a8:93:33:b4:29:2a:25:5f:ab: a7:b4:c6:cc:8a:fe:b1:d1:d9:4f:fd:b7:ba:cd:83:84:8f:48: 29:5f:47:0d:ca:ca:66:40:cd:c9:74:89:bf:b4:0d:44:62:23: b1:1f:2f:24:6b:d2:eb:65:42:06:29:97:63:20:ac:9d:31:f0: 22:93:31:b2:7a:78:3d:eb:cd:81:48:23:18:ab:cf:84:ba:b9: 53:67:6b:f0:96:ac:a6:f1:4c:a0:68:c8:e7:ed:b4:cf:8f:1f: 3d:e9:0a:ae:0f:03:be:d1:bb:ee:f9:ca:e8:6a:80:91:9e:76: 7d:c5:de:1a:bb:c6:31:24:a1:d2:e0:5d:e2:da:f4:8a:5c:7f: 3d:b1:6e:5f:17:fe:27:de:fd:15:fe:3e:29:83:d5:f4:fd:ca: 86:09:ff:17:a6:c7:40:8c:a1:0f:f1:e8:ea:15:e3:dc:f7:a3: 59:ed:70:7d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUdd3th3QV1Blvjdo1W4UpQghmdN8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODIyMTUwMDE5WhcNMjUwOTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MDNmOTFiNjA0YmNjZTUzNmY3ZjZiNGQ2YzhmOGYzNGFh MDQ0MDU2N2M3YTAyOWQ2ZmVmZmJlZDlmMGZhYTU1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCR1xJXGwG6oYFr34FLB/3dU+4OyFNhhCLe2oeXo+dmBysv gRanyXlUCjUIqAVHx20ToxzVmGBUvETClAGlp1ELNap8Vlx4hSbEXOJD7dpav2nu T6+yG+mkfsWqrnSzOzWBsUOGGGNpZ8wbpoFg/6JgmZuKQjVl8M49o+/NfFMiuovd 023z9El51Dwq91ozXBiPdaCUNvCLJL0WOl98fhD86v3UQ+uAeKHKxY6Opp7Stz2a yRI8fwr7L3CAlT9zzLr+aLcUn7MeGZ/kqESqzoG5QSLFTicHS123dBESoLf9lvta 6fDyB1JoPBhAhA7isaiIJ+LMPnRISfc8BxLsYPlLAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUyHEunbuXYnN3dHVfNhItLt2uNOIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBkNDE0YTE4LWZhYjktNDA1Mi1iOWI1LTA3YTY2MmZhYjMwMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAPDxijANBgkqhkiG9w0BAQsFAAOCAQEAj2Ejeeue07elobA2lxdwuMtZ /qxd8kfA+NPv2DxRu0oz8NcuHvNUsMuPOw4+fcg42UcMZAxuy08Bz1a7/ckv4e7W AX57mc67jEJoUxqWP0cPqJMztCkqJV+rp7TGzIr+sdHZT/23us2DhI9IKV9HDcrK ZkDNyXSJv7QNRGIjsR8vJGvS62VCBimXYyCsnTHwIpMxsnp4PevNgUgjGKvPhLq5 U2dr8JaspvFMoGjI5+20z48fPekKrg8DvtG77vnK6GqAkZ52fcXeGrvGMSSh0uBd 4tr0ilx/PbFuXxf+J979Ff4+KYPV9P3Khgn/F6bHQIyhD/Ho6hXj3PejWe1wfQ== -----END CERTIFICATE-----Generated at Sat Aug 23 09:08:31 2025 by rpki-client