$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1a6b8fe3-7a24-4908-a73d-425df209068f.roa File: 1a6b8fe3-7a24-4908-a73d-425df209068f.roa (raw, json) Hash identifier: mwZP+5aB6RxchR7iPNnLD+5czVKRgilxmgc9xNMCr7k= Subject key identifier: 52:AA:4E:3B:37:7E:13:44:FD:7D:82:76:3B:1C:75:7E:0E:56:E3:69 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 13409F1BE25D313D694917C51E78216D35C0EED8 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1a6b8fe3-7a24-4908-a73d-425df209068f.roa Signing time: Mon 18 Aug 2025 18:22:13 +0000 ROA not before: Mon 18 Aug 2025 18:22:13 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:611d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:40:9f:1b:e2:5d:31:3d:69:49:17:c5:1e:78:21:6d:35:c0:ee:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 18 18:22:13 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=c17620896a3c02d83a311b983f80ebdde04213e5fc013e80a5de9f525a750ef3, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fe:9f:3f:02:71:c8:60:34:a8:07:61:b5:51: 20:29:de:e2:40:67:1f:dd:9a:bc:0d:7e:b0:0c:72: 76:76:b9:c5:52:13:71:dd:85:82:c1:76:e3:2d:13: db:ef:6c:52:98:06:c0:97:68:d6:43:65:df:48:09: a1:d9:12:ee:db:c9:b9:7e:2c:63:7e:ab:41:90:80: 83:be:2c:32:7c:43:14:78:af:c3:ac:74:73:91:7b: 35:03:2d:dc:dd:4b:b4:35:45:1d:59:2c:04:cd:91: c6:da:8a:c3:8b:ee:e3:15:05:63:7b:dc:6f:14:b9: 3e:ce:98:47:d3:59:96:3f:45:95:0b:83:29:1e:bd: ee:ac:b5:a4:36:b3:a0:98:80:3d:0d:1f:f2:f3:c4: e3:dd:33:26:02:2f:70:89:40:3f:55:cc:2c:90:3c: f9:5d:e6:4a:43:5d:dc:e8:9f:cf:3c:cf:eb:62:f4: 3b:a2:4c:ad:df:b0:ae:07:b6:90:e9:58:95:30:66: 07:4a:cc:4d:35:ab:a0:87:eb:a1:10:5a:ea:05:2b: 97:47:39:cb:52:e0:0b:1b:a9:04:3d:4b:1a:44:48: 79:b9:ca:08:be:06:db:7a:f0:1a:14:fc:f4:98:2a: 47:42:68:a7:18:a8:34:d6:df:19:76:0f:20:75:d3: f8:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:AA:4E:3B:37:7E:13:44:FD:7D:82:76:3B:1C:75:7E:0E:56:E3:69 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1a6b8fe3-7a24-4908-a73d-425df209068f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:611d::/48 Signature Algorithm: sha256WithRSAEncryption 82:01:b6:84:d6:9f:d7:29:7e:54:27:e4:bc:a0:91:90:27:e7: a2:c3:b9:18:38:ae:97:c8:a0:e4:da:0a:90:1a:bd:1c:7b:49: 90:c7:94:56:db:56:1f:cb:09:ed:bc:46:95:ac:6f:65:c1:36: 02:14:12:77:00:ac:2f:ea:d8:b3:26:49:29:00:8e:de:aa:e2: 90:ca:37:a7:4f:4e:79:84:e3:cf:5d:02:79:7c:08:fb:48:45: ff:e7:33:bc:80:da:3b:fb:6a:0c:22:4b:7b:53:eb:13:fa:ab: fe:9f:dc:c4:f7:d5:5a:8e:40:e8:53:f1:e4:20:a6:90:d6:8d: 17:a9:b4:af:8a:c1:8b:5f:da:f9:45:f6:25:aa:bb:0f:4c:5e: 6c:bd:25:30:96:e6:2a:81:a9:d5:29:e4:72:e5:0f:64:20:0b: d4:c8:9c:72:aa:25:00:cf:ab:77:78:0f:97:83:3e:ef:06:f1: da:28:8e:cd:3e:10:fc:24:42:03:bd:e8:e0:9e:4f:f7:57:31: 0d:85:86:a5:cb:dd:0d:2a:8e:47:ab:42:f7:5b:bf:54:97:49: 14:0c:d9:7c:80:68:ed:5c:09:fb:5a:4f:26:a1:cf:8d:66:59: 96:a2:bf:e8:dc:69:61:f2:c0:11:8e:a4:c0:aa:07:51:74:22: c3:4b:27:fc -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUE0CfG+JdMT1pSRfFHnghbTXA7tgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE4MTgyMjEzWhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMTc2MjA4OTZhM2MwMmQ4M2EzMTFiOTgzZjgwZWJkZGUw NDIxM2U1ZmMwMTNlODBhNWRlOWY1MjVhNzUwZWYzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC//p8/AnHIYDSoB2G1USAp3uJAZx/dmrwNfrAMcnZ2ucVS E3HdhYLBduMtE9vvbFKYBsCXaNZDZd9ICaHZEu7bybl+LGN+q0GQgIO+LDJ8QxR4 r8OsdHORezUDLdzdS7Q1RR1ZLATNkcbaisOL7uMVBWN73G8UuT7OmEfTWZY/RZUL gykeve6staQ2s6CYgD0NH/LzxOPdMyYCL3CJQD9VzCyQPPld5kpDXdzon888z+ti 9DuiTK3fsK4HtpDpWJUwZgdKzE01q6CH66EQWuoFK5dHOctS4AsbqQQ9SxpESHm5 ygi+Btt68BoU/PSYKkdCaKcYqDTW3xl2DyB10/jVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUqpOOzd+E0T9fYJ2Oxx1fg5W42kwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFhNmI4ZmUzLTdhMjQtNDkwOC1hNzNkLTQyNWRmMjA5MDY4Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYR0wDQYJKoZIhvcNAQELBQADggEBAIIBtoTWn9cpflQn5LygkZAn 56LDuRg4rpfIoOTaCpAavRx7SZDHlFbbVh/LCe28RpWsb2XBNgIUEncArC/q2LMm SSkAjt6q4pDKN6dPTnmE489dAnl8CPtIRf/nM7yA2jv7agwiS3tT6xP6q/6f3MT3 1VqOQOhT8eQgppDWjReptK+KwYtf2vlF9iWquw9MXmy9JTCW5iqBqdUp5HLlD2Qg C9TInHKqJQDPq3d4D5eDPu8G8doojs0+EPwkQgO96OCeT/dXMQ2FhqXL3Q0qjker Qvdbv1SXSRQM2XyAaO1cCftaTyahz41mWZaiv+jcaWHywBGOpMCqB1F0IsNLJ/w= -----END CERTIFICATE-----Generated at Sat Aug 23 10:23:30 2025 by rpki-client