$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9dcfab8d-23d5-4ce2-bcc7-d85ec1e40912.roa File: 9dcfab8d-23d5-4ce2-bcc7-d85ec1e40912.roa (raw, json) Hash identifier: HtsFEM+VPPwzac1qmrzi2nMho1MPkoFAQMk4hSUXSow= Subject key identifier: 2F:24:C8:8D:23:66:F6:3E:74:E9:DE:D1:F8:1E:92:73:9A:CC:B4:09 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 59367B77E4E561BC5186D64E898E949CA68DF64C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9dcfab8d-23d5-4ce2-bcc7-d85ec1e40912.roa Signing time: Fri 22 Aug 2025 15:00:16 +0000 ROA not before: Fri 22 Aug 2025 15:00:16 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f2:7011::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:36:7b:77:e4:e5:61:bc:51:86:d6:4e:89:8e:94:9c:a6:8d:f6:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 22 15:00:16 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=88d55dfdb3e6384be6d131f108b07cd826c5791d5cad3b82840c5ba8be89ba5e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5c:fb:76:59:5a:bb:af:ae:5b:75:ec:13:9d: f1:33:ed:4f:e2:37:85:cf:ab:01:fc:04:6a:07:dd: 23:88:0a:5c:d9:29:80:35:b5:76:af:15:92:62:3d: 2c:23:f5:da:e5:fb:ec:53:37:10:7c:53:71:cf:a5: 6f:d3:59:5e:c0:10:b9:15:22:ad:6f:94:fe:38:55: f7:f2:ca:21:51:4a:f0:f1:e3:b2:7c:69:d4:7e:45: a4:1b:48:3b:ec:20:be:ee:e7:23:61:5f:10:2f:d1: 65:da:41:42:32:23:f0:16:96:e5:15:8a:e1:72:38: b4:56:6a:8e:0f:0d:fd:0f:11:91:5d:c7:e4:24:83: f5:90:7e:1a:b5:29:8c:57:3f:b0:a1:6d:5b:ce:d4: 6c:66:ae:4e:47:18:c8:79:42:d5:20:78:17:01:d5: 55:fe:3e:91:6f:6b:04:55:7e:2d:60:78:ce:6e:08: b9:21:93:b0:da:79:35:be:ab:fe:19:44:15:48:b7: 08:bc:f0:d9:2a:56:d4:69:39:68:61:ce:da:4d:55: 90:f9:da:9a:63:3c:57:34:d9:64:b8:30:b1:c7:17: 01:22:89:4f:74:f0:56:10:73:32:7a:70:f8:91:23: 45:e2:15:9a:83:6a:f5:4f:d1:90:38:7c:09:73:cc: 7e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:24:C8:8D:23:66:F6:3E:74:E9:DE:D1:F8:1E:92:73:9A:CC:B4:09 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9dcfab8d-23d5-4ce2-bcc7-d85ec1e40912.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7011::/48 Signature Algorithm: sha256WithRSAEncryption 14:95:ca:67:bd:3a:1d:6a:27:3c:21:45:b5:79:4f:2a:1c:e2: ad:92:ea:61:76:47:77:fd:8d:d7:2c:d6:3e:6c:22:74:30:ae: f0:be:18:4c:c3:e2:42:b8:af:4a:c7:6f:5b:08:4c:11:57:ce: aa:3f:90:3d:97:a2:a1:79:c0:cd:2e:9a:21:7c:1b:d4:90:4f: 1a:b3:21:e6:b6:9a:5b:bb:d1:f8:58:ce:f6:ea:b0:8b:95:cc: 37:ea:01:26:50:f3:42:c4:ba:6f:4f:9a:9e:67:79:59:db:e7: 45:9f:0c:43:c5:d8:a3:08:a7:cd:f4:f4:fc:e7:4e:7e:b6:99: 4e:30:6f:cf:92:28:b7:76:ff:d4:df:34:c3:6e:60:0b:9e:26: 76:ed:36:34:c7:93:f7:72:bc:9b:e1:79:9b:b0:32:5c:30:8c: f4:bf:5d:29:04:38:89:3d:c8:47:6e:cc:fa:fd:94:17:2f:ad: da:b4:43:da:0c:57:4e:c9:c5:47:93:9a:d0:3d:69:f3:a2:2c: e0:40:58:17:e2:03:92:28:02:2f:85:b9:0f:93:e2:5f:e0:03: 77:2c:5d:34:b5:10:25:9d:07:84:31:c0:2a:fb:f9:36:19:8c: 02:bf:66:ef:94:67:ea:fe:e7:c5:bf:d3:85:5e:26:20:d2:3b: 4c:70:6d:63 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWTZ7d+TlYbxRhtZOiY6UnKaN9kwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODIyMTUwMDE2WhcNMjUwOTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4OGQ1NWRmZGIzZTYzODRiZTZkMTMxZjEwOGIwN2NkODI2 YzU3OTFkNWNhZDNiODI4NDBjNWJhOGJlODliYTVlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8XPt2WVq7r65bdewTnfEz7U/iN4XPqwH8BGoH3SOIClzZ KYA1tXavFZJiPSwj9drl++xTNxB8U3HPpW/TWV7AELkVIq1vlP44VffyyiFRSvDx 47J8adR+RaQbSDvsIL7u5yNhXxAv0WXaQUIyI/AWluUViuFyOLRWao4PDf0PEZFd x+Qkg/WQfhq1KYxXP7ChbVvO1Gxmrk5HGMh5QtUgeBcB1VX+PpFvawRVfi1geM5u CLkhk7DaeTW+q/4ZRBVItwi88NkqVtRpOWhhztpNVZD52ppjPFc02WS4MLHHFwEi iU908FYQczJ6cPiRI0XiFZqDavVP0ZA4fAlzzH45AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQULyTIjSNm9j506d7R+B6Sc5rMtAkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzlkY2ZhYjhkLTIzZDUtNGNlMi1iY2M3LWQ4NWVjMWU0MDkxMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDycBEwDQYJKoZIhvcNAQELBQADggEBABSVyme9Oh1qJzwhRbV5Tyoc 4q2S6mF2R3f9jdcs1j5sInQwrvC+GEzD4kK4r0rHb1sITBFXzqo/kD2XoqF5wM0u miF8G9SQTxqzIea2mlu70fhYzvbqsIuVzDfqASZQ80LEum9Pmp5neVnb50WfDEPF 2KMIp8309PznTn62mU4wb8+SKLd2/9TfNMNuYAueJnbtNjTHk/dyvJvheZuwMlww jPS/XSkEOIk9yEduzPr9lBcvrdq0Q9oMV07JxUeTmtA9afOiLOBAWBfiA5IoAi+F uQ+T4l/gA3csXTS1ECWdB4QxwCr7+TYZjAK/Zu+UZ+r+58W/04VeJiDSO0xwbWM= -----END CERTIFICATE-----Generated at Sat Aug 23 15:31:51 2025 by rpki-client