$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa File: 514fa870-df33-4dfe-a228-5ea96e0f3560.roa (raw, json) Hash identifier: 6Pw0GlOaM17K0kZbLIeqtdhhQaxIqoW3hPCA8ZTSl2k= Subject key identifier: 39:87:9D:9F:3E:25:8C:E6:9C:8A:60:24:16:F7:1B:20:64:A6:D9:1F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0D33EC451A01FBBA1198525EEBFD8E178E2FEF78 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa Signing time: Mon 11 Aug 2025 15:30:59 +0000 ROA not before: Mon 11 Aug 2025 15:30:59 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:90::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:33:ec:45:1a:01:fb:ba:11:98:52:5e:eb:fd:8e:17:8e:2f:ef:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 11 15:30:59 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=9aa7991d2e3a541f9ab9b4b3fa7e8ad7dec44ce99731b6f1118f3c5908e30633, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:7b:73:32:e4:4d:8b:8e:96:74:b9:1a:4c:a8: 16:15:b6:58:2a:ca:4e:41:f1:28:14:c2:c3:31:9a: 33:18:00:67:23:18:a3:86:31:04:02:05:d9:6c:1a: d2:0f:9f:95:3c:e4:ea:4d:2e:cb:1f:12:f2:bc:60: 97:93:8b:71:f9:da:d4:c4:2a:95:c5:f5:0f:45:9d: 7f:6a:37:b4:e1:84:3e:e5:5b:e9:02:df:a2:1d:49: 2f:c4:56:cc:8a:64:91:ee:d3:1c:81:6f:8a:60:4f: 53:45:e9:68:1c:6d:42:e1:1b:e4:b0:37:7d:27:44: 1c:54:c6:6f:0b:20:ea:5e:08:b4:2b:fb:65:e2:22: 8c:b9:2e:61:b4:42:61:0f:c7:56:9f:4c:49:e1:45: 2a:0b:1c:77:a9:4a:68:c9:40:e1:59:5e:32:bc:e5: bc:9b:ee:11:fd:ad:61:b0:fc:52:8b:bf:f4:8c:a2: 53:e2:f2:ca:4d:f2:d3:17:a9:2b:32:f0:9c:c2:d2: be:ea:97:43:bb:79:a7:4b:e4:d2:68:c8:eb:1d:68: d6:c6:9e:bb:c7:df:29:15:25:64:7f:cf:1f:08:32: a3:2a:ea:4a:f4:b8:f6:85:d8:8f:cf:fa:51:1b:aa: 90:21:7f:f9:08:db:65:78:13:68:b1:3c:b3:54:9a: b9:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:87:9D:9F:3E:25:8C:E6:9C:8A:60:24:16:F7:1B:20:64:A6:D9:1F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:90::/44 Signature Algorithm: sha256WithRSAEncryption 91:6c:ad:c3:32:33:d4:92:03:ec:8b:d4:29:b2:09:9c:4c:00: e4:56:fb:ef:dd:90:b4:28:62:e9:30:f0:b3:35:7e:aa:7f:a5: 5c:35:2a:12:68:6d:1c:e8:a0:62:6f:14:08:9e:92:04:95:6a: 1a:a7:e0:e4:32:d0:b3:6c:dd:80:dd:7e:4e:be:f0:2d:2b:5e: f5:3b:aa:59:ba:03:46:f0:7c:64:73:56:32:ad:28:4d:4b:c9: 1b:38:b9:40:89:dc:32:bc:e2:ed:cf:81:ba:64:33:18:a1:57: bf:12:98:d8:6b:83:b8:0d:7a:d1:d5:0d:17:a6:7c:88:5b:0e: 70:b0:e3:fc:05:82:b4:41:99:44:e5:3a:8f:36:56:a3:1c:c1: 84:76:0a:2c:85:f0:ce:3b:28:fe:c0:9c:d9:d8:28:5b:09:d7: 79:c5:d6:7b:45:58:c6:eb:e6:73:b7:10:8d:af:37:ac:b0:be: 98:a6:53:6a:e5:07:a1:52:f8:14:b0:71:8b:16:36:4e:85:d0: 87:cd:ce:ba:aa:70:05:64:c0:fd:dc:60:fc:4e:a1:08:9b:89: 7e:dd:04:7e:f2:a2:08:de:86:a6:78:6b:84:58:18:a9:4f:2c: 0a:eb:78:25:15:c5:69:7e:20:02:54:0a:b6:25:4d:0e:60:1e: d8:63:70:9c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDTPsRRoB+7oRmFJe6/2OF44v73gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODExMTUzMDU5WhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YWE3OTkxZDJlM2E1NDFmOWFiOWI0YjNmYTdlOGFkN2Rl YzQ0Y2U5OTczMWI2ZjExMThmM2M1OTA4ZTMwNjMzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCje3My5E2LjpZ0uRpMqBYVtlgqyk5B8SgUwsMxmjMYAGcj GKOGMQQCBdlsGtIPn5U85OpNLssfEvK8YJeTi3H52tTEKpXF9Q9FnX9qN7ThhD7l W+kC36IdSS/EVsyKZJHu0xyBb4pgT1NF6WgcbULhG+SwN30nRBxUxm8LIOpeCLQr +2XiIoy5LmG0QmEPx1afTEnhRSoLHHepSmjJQOFZXjK85byb7hH9rWGw/FKLv/SM olPi8spN8tMXqSsy8JzC0r7ql0O7eadL5NJoyOsdaNbGnrvH3ykVJWR/zx8IMqMq 6kr0uPaF2I/P+lEbqpAhf/kI22V4E2ixPLNUmrlDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUOYednz4ljOacimAkFvcbIGSm2R8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzUxNGZhODcwLWRmMzMtNGRmZS1hMjI4LTVlYTk2ZTBmMzU2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAJAwDQYJKoZIhvcNAQELBQADggEBAJFsrcMyM9SSA+yL1CmyCZxM AORW++/dkLQoYukw8LM1fqp/pVw1KhJobRzooGJvFAiekgSVahqn4OQy0LNs3YDd fk6+8C0rXvU7qlm6A0bwfGRzVjKtKE1LyRs4uUCJ3DK84u3PgbpkMxihV78SmNhr g7gNetHVDRemfIhbDnCw4/wFgrRBmUTlOo82VqMcwYR2CiyF8M47KP7AnNnYKFsJ 13nF1ntFWMbr5nO3EI2vN6ywvpimU2rlB6FS+BSwcYsWNk6F0IfNzrqqcAVkwP3c YPxOoQibiX7dBH7yogjehqZ4a4RYGKlPLArreCUVxWl+IAJUCrYlTQ5gHthjcJw= -----END CERTIFICATE-----Generated at Sat Aug 23 08:21:28 2025 by rpki-client