$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1e46b344-1c35-4502-912b-8ec7b80005d8.roa File: 1e46b344-1c35-4502-912b-8ec7b80005d8.roa (raw, json) Hash identifier: YRuGzZ4sFS5Va8PPwtCI07Be9AcIOKG43zQIEHP/4FA= Subject key identifier: 0F:1A:02:90:8D:11:6B:81:6C:C0:EE:93:EB:6F:EA:98:47:40:C1:94 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 21AE859962CAECE19D50A12595A818AD3406B7B5 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1e46b344-1c35-4502-912b-8ec7b80005d8.roa Signing time: Mon 18 Aug 2025 18:22:23 +0000 ROA not before: Mon 18 Aug 2025 18:22:23 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:610f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:ae:85:99:62:ca:ec:e1:9d:50:a1:25:95:a8:18:ad:34:06:b7:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 18 18:22:23 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=537be97710594233d40be02304ef15cf1cacef84e21f24de07a0656325100e82, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:69:04:f8:73:53:11:0e:bb:28:bc:f0:fb:9e: 5e:99:ec:67:52:11:82:13:2a:07:9e:18:f7:da:f5: 34:8d:ac:a0:5c:34:82:6c:09:4b:19:1c:6f:56:c3: f4:02:92:00:c4:90:68:c2:67:75:87:eb:b5:38:50: c3:0b:3c:ae:3e:a9:62:02:a8:10:d3:5e:cf:81:20: 95:ed:17:df:2a:62:71:cf:96:72:3d:96:8f:e4:91: bb:a2:67:c6:1a:3b:65:ad:e3:9e:37:d1:84:82:d9: a6:af:2b:b7:19:e9:2c:5b:45:73:1f:5c:ab:8d:ba: 7e:95:76:5d:4c:1a:67:93:dd:bb:f7:f8:e7:dd:03: 31:e1:19:24:09:b3:13:45:95:af:28:fd:1d:bc:e3: 0e:1b:93:ca:ae:bd:ab:37:a9:45:49:9d:fd:93:6c: c1:a3:f2:08:2f:ff:10:66:ad:7a:9a:fb:0e:d9:0b: ae:4a:4c:af:bd:1e:98:32:ff:53:ad:54:21:1f:3e: ad:a2:eb:d0:54:95:26:3f:46:df:71:98:e9:96:6f: 1c:28:69:d9:97:32:85:03:d9:c0:b1:af:0c:98:5d: 39:4c:60:56:6b:c0:79:5a:2a:42:fe:6e:fd:db:22: 3e:5a:7b:65:e3:00:14:d7:12:fd:f2:d2:0b:55:97: 1e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:1A:02:90:8D:11:6B:81:6C:C0:EE:93:EB:6F:EA:98:47:40:C1:94 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1e46b344-1c35-4502-912b-8ec7b80005d8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:610f::/48 Signature Algorithm: sha256WithRSAEncryption 17:6a:19:76:b0:71:cf:f7:23:e1:63:8e:da:37:c2:9e:3f:2e: 37:8d:12:41:f6:d8:2a:74:e7:89:e6:ab:a2:e0:cc:f0:09:2f: a5:4f:94:86:40:12:75:6b:15:d1:25:3a:27:9a:60:d0:f8:75: e9:b3:57:9d:fc:98:5e:b5:43:e7:0e:67:82:dd:d7:70:59:91: b9:09:d3:cc:3b:85:2a:76:9e:7d:de:99:44:39:21:a1:0c:e0: 3c:e2:2c:83:1b:ea:4e:df:81:a6:54:56:08:79:da:05:1a:10: b4:f2:ec:f6:eb:e5:64:d5:14:d5:cb:38:da:bb:53:88:21:92: 04:40:b8:26:ef:88:7f:13:dc:9b:f3:c2:85:4b:b5:48:67:ea: 0b:ae:c7:2a:94:bc:c2:e2:00:cf:2c:b4:41:c2:8f:ae:50:0c: 9b:60:b9:ea:37:b4:75:61:ef:81:e0:4f:71:fb:bf:1d:48:d5: 40:08:f0:94:f6:32:2a:3c:0e:e0:3c:24:86:ca:be:81:d6:58: 2c:4c:0a:cc:cc:cf:6f:35:6e:22:2c:4b:46:90:cc:dd:2e:c4: 08:e4:ae:e0:c1:4d:ef:6b:d5:a7:14:13:46:c4:db:68:17:26: 2d:0d:19:d5:4c:37:e8:38:51:e3:c3:45:f0:63:61:c7:a5:ba: 80:34:62:b2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIa6FmWLK7OGdUKEllagYrTQGt7UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE4MTgyMjIzWhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MzdiZTk3NzEwNTk0MjMzZDQwYmUwMjMwNGVmMTVjZjFj YWNlZjg0ZTIxZjI0ZGUwN2EwNjU2MzI1MTAwZTgyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqaQT4c1MRDrsovPD7nl6Z7GdSEYITKgeeGPfa9TSNrKBc NIJsCUsZHG9Ww/QCkgDEkGjCZ3WH67U4UMMLPK4+qWICqBDTXs+BIJXtF98qYnHP lnI9lo/kkbuiZ8YaO2Wt45430YSC2aavK7cZ6SxbRXMfXKuNun6Vdl1MGmeT3bv3 +OfdAzHhGSQJsxNFla8o/R284w4bk8quvas3qUVJnf2TbMGj8ggv/xBmrXqa+w7Z C65KTK+9Hpgy/1OtVCEfPq2i69BUlSY/Rt9xmOmWbxwoadmXMoUD2cCxrwyYXTlM YFZrwHlaKkL+bv3bIj5ae2XjABTXEv3y0gtVlx4jAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDxoCkI0Ra4FswO6T62/qmEdAwZQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFlNDZiMzQ0LTFjMzUtNDUwMi05MTJiLThlYzdiODAwMDVkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQ8wDQYJKoZIhvcNAQELBQADggEBABdqGXawcc/3I+Fjjto3wp4/ LjeNEkH22Cp054nmq6LgzPAJL6VPlIZAEnVrFdElOieaYND4demzV538mF61Q+cO Z4Ld13BZkbkJ08w7hSp2nn3emUQ5IaEM4DziLIMb6k7fgaZUVgh52gUaELTy7Pbr 5WTVFNXLONq7U4ghkgRAuCbviH8T3JvzwoVLtUhn6guuxyqUvMLiAM8stEHCj65Q DJtgueo3tHVh74HgT3H7vx1I1UAI8JT2Mio8DuA8JIbKvoHWWCxMCszMz281biIs S0aQzN0uxAjkruDBTe9r1acUE0bE22gXJi0NGdVMN+g4UePDRfBjYceluoA0YrI= -----END CERTIFICATE-----Generated at Sat Aug 23 06:55:31 2025 by rpki-client