$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5463f2e9-c071-45ba-a891-46817c1759f6.roa File: 5463f2e9-c071-45ba-a891-46817c1759f6.roa (raw, json) Hash identifier: qOssDZXWfuFgsVfk2z6Nr/p8/QMIsRuCMnPJb4Bth38= Subject key identifier: 88:CD:B5:B5:5F:34:D9:20:FD:CB:8F:70:A8:2F:4E:5C:BA:C4:3D:FA Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0A2CA8DE6D9F6A14121716ACAE943F39A9E34890 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5463f2e9-c071-45ba-a891-46817c1759f6.roa Signing time: Mon 18 Aug 2025 18:24:05 +0000 ROA not before: Mon 18 Aug 2025 18:24:05 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:611a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:2c:a8:de:6d:9f:6a:14:12:17:16:ac:ae:94:3f:39:a9:e3:48:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 18 18:24:05 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=3e174b76269609844a1695408261fc5f5fc80be3c26009e21c35c10ae13b7f5f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e5:86:47:fb:86:f7:86:78:a1:a1:a6:bb:01: e5:57:50:c7:23:11:4e:ef:db:7d:19:66:9f:2a:c0: 1a:91:1f:fc:94:3d:e2:30:4e:27:09:18:7f:13:cb: b9:7b:60:b5:27:07:43:c0:3f:d4:ba:34:db:d9:8e: 88:4f:24:3e:21:17:f5:78:af:10:94:1f:17:42:dd: 8e:16:14:f2:72:63:ff:5a:99:1f:00:d5:eb:10:11: 54:c5:0c:ff:33:4d:0c:66:33:62:2e:0c:11:05:e7: c8:43:42:f0:8e:11:e4:65:7c:c6:0d:96:3b:97:07: 7f:c7:04:31:63:d2:b9:86:d6:7b:10:2b:b6:71:a8: df:9f:4f:6a:20:19:eb:5e:98:f7:44:41:49:91:59: cc:41:6d:cf:c8:60:e6:f3:95:43:0f:c5:ec:30:68: 4d:c2:98:4c:4a:6a:a7:f3:c0:f3:8e:e3:1f:da:38: 52:49:13:51:ec:37:11:90:dd:80:70:83:45:ac:2a: 12:79:a3:23:89:38:b5:63:0d:c7:fa:b7:96:f7:45: 8a:36:84:ff:79:cd:d5:e1:74:ae:4b:aa:e5:c4:d2: 7a:a1:9d:4b:ee:a1:cb:c0:b3:2b:15:ef:93:02:c9: 2a:22:46:69:fe:10:23:e3:cf:36:83:d2:a8:b6:8a: e5:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:CD:B5:B5:5F:34:D9:20:FD:CB:8F:70:A8:2F:4E:5C:BA:C4:3D:FA X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5463f2e9-c071-45ba-a891-46817c1759f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:611a::/48 Signature Algorithm: sha256WithRSAEncryption 88:d8:7e:43:29:6c:e2:41:4e:de:b9:d5:8d:8b:3c:1b:31:49: 0c:b1:6f:71:0a:16:19:f5:68:dc:9e:66:81:ec:e2:2c:dc:2b: b9:04:01:d8:d6:ff:37:0c:f8:13:f9:59:ae:b0:96:7c:85:01: 44:fc:5f:7d:d9:c6:05:b7:16:ae:e1:21:95:f1:f3:83:4a:63: 40:e6:36:c2:38:c8:ca:58:ee:3b:fa:64:4d:87:5d:87:01:6b: ff:b5:f4:9e:eb:28:f1:86:97:7b:c5:f7:ef:51:a7:6a:33:33: 5e:af:71:0e:03:ce:33:83:f8:bb:11:c4:7f:54:13:e6:a2:88: 4e:13:6b:e5:6e:26:b7:74:6b:8d:06:47:50:7a:6b:e7:ef:61: 43:e1:26:9d:98:84:bb:c0:16:fb:0e:4c:44:48:e4:be:87:e8: 81:8d:c2:a1:a7:84:f7:de:d6:74:31:01:6a:5d:d9:b0:51:81: a0:d6:30:32:ac:a2:83:23:e7:26:6b:a8:69:1f:a3:96:7d:d2: 0f:9a:28:a4:d6:f0:11:96:6e:ba:73:1e:af:bc:36:92:55:8e: fb:1d:29:39:50:b5:2b:f0:d9:33:62:0c:65:54:65:1d:5f:5c: 3f:d0:d5:65:01:da:db:e2:96:43:28:4a:49:36:71:fb:2a:6a: 64:f7:b9:39 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCiyo3m2fahQSFxasrpQ/OanjSJAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE4MTgyNDA1WhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTE3NGI3NjI2OTYwOTg0NGExNjk1NDA4MjYxZmM1ZjVm YzgwYmUzYzI2MDA5ZTIxYzM1YzEwYWUxM2I3ZjVmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC35YZH+4b3hnihoaa7AeVXUMcjEU7v230ZZp8qwBqRH/yU PeIwTicJGH8Ty7l7YLUnB0PAP9S6NNvZjohPJD4hF/V4rxCUHxdC3Y4WFPJyY/9a mR8A1esQEVTFDP8zTQxmM2IuDBEF58hDQvCOEeRlfMYNljuXB3/HBDFj0rmG1nsQ K7ZxqN+fT2ogGetemPdEQUmRWcxBbc/IYObzlUMPxewwaE3CmExKaqfzwPOO4x/a OFJJE1HsNxGQ3YBwg0WsKhJ5oyOJOLVjDcf6t5b3RYo2hP95zdXhdK5LquXE0nqh nUvuocvAsysV75MCySoiRmn+ECPjzzaD0qi2iuVTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUiM21tV802SD9y49wqC9OXLrEPfowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU0NjNmMmU5LWMwNzEtNDViYS1hODkxLTQ2ODE3YzE3NTlmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRowDQYJKoZIhvcNAQELBQADggEBAIjYfkMpbOJBTt651Y2LPBsx SQyxb3EKFhn1aNyeZoHs4izcK7kEAdjW/zcM+BP5Wa6wlnyFAUT8X33ZxgW3Fq7h IZXx84NKY0DmNsI4yMpY7jv6ZE2HXYcBa/+19J7rKPGGl3vF9+9Rp2ozM16vcQ4D zjOD+LsRxH9UE+aiiE4Ta+VuJrd0a40GR1B6a+fvYUPhJp2YhLvAFvsOTERI5L6H 6IGNwqGnhPfe1nQxAWpd2bBRgaDWMDKsooMj5yZrqGkfo5Z90g+aKKTW8BGWbrpz Hq+8NpJVjvsdKTlQtSvw2TNiDGVUZR1fXD/Q1WUB2tvilkMoSkk2cfsqamT3uTk= -----END CERTIFICATE-----Generated at Sat Aug 23 08:17:30 2025 by rpki-client