$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5fbd3b27-26aa-45ad-8f59-d53a6a248a88.roa File: 5fbd3b27-26aa-45ad-8f59-d53a6a248a88.roa (raw, json) Hash identifier: 7c/gDv/3xgCW62Xxbw9jDl6n3Ve3hSubAfYZKyAeU6A= Subject key identifier: 24:D8:59:40:B8:38:95:78:A4:D2:DC:3A:98:16:DE:B8:56:C9:3C:19 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1CF9562E9A7D37858B12AFA9FEB8E9457E3B5A27 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5fbd3b27-26aa-45ad-8f59-d53a6a248a88.roa Signing time: Mon 18 Aug 2025 18:22:21 +0000 ROA not before: Mon 18 Aug 2025 18:22:21 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:610c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:f9:56:2e:9a:7d:37:85:8b:12:af:a9:fe:b8:e9:45:7e:3b:5a:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 18 18:22:21 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=c2bbb83443d67472ac229b0970a524c9e86be1740f29978a7ecd8477ee5f9a4d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:02:16:fb:e0:c3:90:d6:de:3f:80:23:bc:ba: 49:1d:52:75:af:8b:05:43:cc:bb:35:28:b4:f9:a0: 03:9d:67:60:99:74:f3:9a:37:c0:95:2e:c1:94:8f: 4c:3c:44:71:e7:7f:9b:e5:97:a1:f4:c2:1e:79:b8: eb:b5:f7:59:82:44:63:6b:4b:ab:ed:c1:8c:64:df: a6:42:64:44:b6:d6:c9:42:91:2f:56:ae:3c:c8:cf: 6c:ea:e2:b3:00:57:e9:50:05:30:a4:19:aa:43:1a: 63:d1:1f:e4:47:7b:4e:31:97:11:58:73:7c:fc:00: 88:ff:fd:8a:36:17:84:8c:71:49:e2:9e:2b:05:03: 92:2d:53:94:40:1e:97:9f:a2:32:0c:e8:ee:31:3d: ca:f1:86:b3:7a:61:31:83:8f:5c:16:a9:e3:5b:99: 73:fb:f8:f8:ee:d7:15:29:db:04:20:e3:f0:0a:8b: 48:d0:6c:1c:da:4a:15:64:dc:45:b7:61:75:80:1b: 01:87:e5:44:14:ca:a7:76:a4:38:d5:83:11:67:e9: 9e:1a:3c:84:3b:c4:31:35:9d:18:6a:34:4d:ce:53: 7a:ff:83:e2:dd:44:0d:39:a2:72:cd:b9:1c:78:d0: 02:99:2c:7e:93:cb:7c:5b:1d:4e:46:5b:a9:dd:1f: ed:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:D8:59:40:B8:38:95:78:A4:D2:DC:3A:98:16:DE:B8:56:C9:3C:19 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5fbd3b27-26aa-45ad-8f59-d53a6a248a88.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:610c::/48 Signature Algorithm: sha256WithRSAEncryption 5d:9a:d2:99:ab:49:4a:e7:a8:f7:96:6b:69:19:a2:f4:90:fe: 7f:98:5d:ec:1c:e3:d1:55:90:77:c9:58:cc:e8:ee:48:36:dd: 54:71:9e:94:79:a4:b7:65:6a:1e:86:c2:18:aa:75:18:5d:db: 67:88:86:8b:05:a6:c3:7e:47:26:06:88:9b:8f:ba:7c:58:2c: 29:47:f7:27:ea:82:bb:0b:76:63:05:1e:b4:1d:ba:6c:ca:41: bb:b6:c8:9c:8c:20:29:db:9b:ae:96:48:a1:35:03:df:a5:2b: 58:98:04:41:c3:4a:f4:77:aa:f6:a9:79:cc:22:71:2a:2c:ca: c3:aa:1e:1e:16:65:b2:6f:5d:d7:32:eb:d1:39:5f:41:51:ce: 96:60:e2:aa:cd:1c:f1:b4:74:5d:27:e8:df:6c:78:0a:74:1a: d2:35:57:b2:38:8e:a2:91:e7:e6:8b:cb:97:28:5d:7e:d4:22: e7:6e:8a:52:ef:f7:64:e4:3a:c8:4a:25:6f:9c:c3:93:cf:95: 8b:65:d1:35:a5:e8:d9:31:dc:d7:e4:e2:fb:77:bd:1e:83:af: f9:ad:73:89:c2:33:3f:63:98:d2:ca:a6:fa:33:41:1e:51:ce: ce:ac:af:90:80:66:79:c1:5e:84:f8:80:e7:53:5d:a8:a6:49: 29:13:1b:74 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHPlWLpp9N4WLEq+p/rjpRX47WicwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE4MTgyMjIxWhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMmJiYjgzNDQzZDY3NDcyYWMyMjliMDk3MGE1MjRjOWU4 NmJlMTc0MGYyOTk3OGE3ZWNkODQ3N2VlNWY5YTRkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkAhb74MOQ1t4/gCO8ukkdUnWviwVDzLs1KLT5oAOdZ2CZ dPOaN8CVLsGUj0w8RHHnf5vll6H0wh55uOu191mCRGNrS6vtwYxk36ZCZES21slC kS9WrjzIz2zq4rMAV+lQBTCkGapDGmPRH+RHe04xlxFYc3z8AIj//Yo2F4SMcUni nisFA5ItU5RAHpefojIM6O4xPcrxhrN6YTGDj1wWqeNbmXP7+Pju1xUp2wQg4/AK i0jQbBzaShVk3EW3YXWAGwGH5UQUyqd2pDjVgxFn6Z4aPIQ7xDE1nRhqNE3OU3r/ g+LdRA05onLNuRx40AKZLH6Ty3xbHU5GW6ndH+1bAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUJNhZQLg4lXik0tw6mBbeuFbJPBkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzVmYmQzYjI3LTI2YWEtNDVhZC04ZjU5LWQ1M2E2YTI0OGE4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQwwDQYJKoZIhvcNAQELBQADggEBAF2a0pmrSUrnqPeWa2kZovSQ /n+YXewc49FVkHfJWMzo7kg23VRxnpR5pLdlah6GwhiqdRhd22eIhosFpsN+RyYG iJuPunxYLClH9yfqgrsLdmMFHrQdumzKQbu2yJyMICnbm66WSKE1A9+lK1iYBEHD SvR3qvapecwicSosysOqHh4WZbJvXdcy69E5X0FRzpZg4qrNHPG0dF0n6N9seAp0 GtI1V7I4jqKR5+aLy5coXX7UIuduilLv92TkOshKJW+cw5PPlYtl0TWl6Nkx3Nfk 4vt3vR6Dr/mtc4nCMz9jmNLKpvozQR5Rzs6sr5CAZnnBXoT4gOdTXaimSSkTG3Q= -----END CERTIFICATE-----Generated at Sat Aug 23 09:01:36 2025 by rpki-client