$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af6d0ca1-dd77-4249-a5cf-dd7574db34fb.roa File: af6d0ca1-dd77-4249-a5cf-dd7574db34fb.roa (raw, json) Hash identifier: XOf3u5OR1gjZieBNjUC/sFpUwF71yXHqfxm0QbcpVPI= Subject key identifier: 83:9E:7C:C0:62:66:08:19:AB:46:1D:9E:EF:94:34:85:86:72:DD:77 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0D63B634BFD349C8842D2E164E25839182328933 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af6d0ca1-dd77-4249-a5cf-dd7574db34fb.roa Signing time: Thu 21 Aug 2025 22:38:09 +0000 ROA not before: Thu 21 Aug 2025 22:38:09 +0000 ROA not after: Thu 25 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6122::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:63:b6:34:bf:d3:49:c8:84:2d:2e:16:4e:25:83:91:82:32:89:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 21 22:38:09 2025 GMT Not After : Sep 25 23:59:59 2025 GMT Subject: serialNumber=f30ab66c4e0adb78edde4b9230d3d96e4d7bb68b2da258c41e102ec079a86950, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:79:1d:cb:09:3d:bc:ab:7a:39:e0:56:de:a2: 2d:4b:60:2b:0c:e8:26:0f:0f:95:c5:96:e4:2c:82: d2:d3:1c:67:91:55:e5:cb:5b:1c:71:62:7a:bf:17: ea:e1:c8:a9:1c:d6:fe:21:6e:84:ce:b3:94:65:da: 5c:6b:db:5f:33:49:98:20:5a:36:f8:e7:ea:aa:78: 89:18:75:be:1c:74:88:8b:b0:ab:ee:a0:c5:bf:90: 0b:6b:f4:13:44:50:9d:c8:c7:7f:0f:e3:be:7e:c7: 26:d4:c6:22:75:70:56:e2:bc:7b:4d:3a:ae:60:01: 11:c3:95:03:41:9e:dd:c4:7f:b8:b2:b3:1c:67:3a: 8b:b5:7d:43:2a:b6:f0:2e:75:18:b0:c4:0b:55:22: 24:a0:3b:73:93:b1:ae:86:bf:e6:c6:18:99:18:72: ec:90:7e:b3:4d:0e:2a:9c:a4:94:90:6c:29:1b:db: 8a:11:ec:0e:f8:09:13:b9:3f:29:31:8f:1a:23:c7: d0:a2:c9:8c:f4:b6:ae:74:20:4a:ee:25:1c:53:46: 9c:d0:18:3d:c7:22:3f:ea:a1:6f:9c:2a:a0:f1:8a: 93:0f:bb:d2:6a:de:b6:bb:3c:f3:6a:2a:f9:95:32: 41:3b:9d:f7:95:81:06:21:fd:ba:2d:5a:b4:ac:40: bb:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:9E:7C:C0:62:66:08:19:AB:46:1D:9E:EF:94:34:85:86:72:DD:77 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af6d0ca1-dd77-4249-a5cf-dd7574db34fb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6122::/48 Signature Algorithm: sha256WithRSAEncryption 26:6e:22:b1:0d:fa:32:5b:11:2b:ef:1b:31:c4:5d:a9:20:2e: 5b:aa:7d:52:72:6f:48:1f:c7:2b:70:7f:d4:29:a5:58:46:55: d0:4e:b4:df:87:c5:cf:42:24:64:2c:54:dd:12:85:ae:0f:f2: 52:c4:5b:04:61:46:aa:df:b3:91:7c:ec:f4:c8:af:7f:44:a7: 8d:7b:20:fe:83:39:75:b2:7b:94:97:7a:6a:36:6b:3d:b8:3c: 5a:ab:ca:99:aa:6b:51:77:01:4f:1d:81:4c:69:5b:83:22:8d: 19:dd:5b:22:41:c6:23:d9:6e:fe:f4:da:2f:42:e2:8c:3f:77: a5:dd:db:dd:36:51:21:94:3b:af:78:95:12:69:e5:26:a0:52: 16:cf:98:c4:d3:1f:aa:f6:dc:d2:03:94:53:6e:6b:5e:bc:3f: ef:99:ff:5c:78:35:f0:9d:bd:d0:ca:0f:b1:81:78:41:70:ae: b3:2f:7e:d6:6b:fb:e2:3f:57:97:4e:2c:d9:7c:5b:76:63:85: 9e:60:09:14:91:0c:94:df:e5:5f:f5:5c:cf:da:53:d3:e2:54: 6a:e8:2a:7f:8e:c1:aa:84:27:77:ea:b8:67:42:5c:41:0d:69: e5:ef:c0:ee:9c:ef:16:ee:89:3b:c2:8d:a4:34:fa:01:1e:86: a4:e9:b7:f1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDWO2NL/TSciELS4WTiWDkYIyiTMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODIxMjIzODA5WhcNMjUwOTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMzBhYjY2YzRlMGFkYjc4ZWRkZTRiOTIzMGQzZDk2ZTRk N2JiNjhiMmRhMjU4YzQxZTEwMmVjMDc5YTg2OTUwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmeR3LCT28q3o54Fbeoi1LYCsM6CYPD5XFluQsgtLTHGeR VeXLWxxxYnq/F+rhyKkc1v4hboTOs5Rl2lxr218zSZggWjb45+qqeIkYdb4cdIiL sKvuoMW/kAtr9BNEUJ3Ix38P475+xybUxiJ1cFbivHtNOq5gARHDlQNBnt3Ef7iy sxxnOou1fUMqtvAudRiwxAtVIiSgO3OTsa6Gv+bGGJkYcuyQfrNNDiqcpJSQbCkb 24oR7A74CRO5Pykxjxojx9CiyYz0tq50IEruJRxTRpzQGD3HIj/qoW+cKqDxipMP u9Jq3ra7PPNqKvmVMkE7nfeVgQYh/botWrSsQLvFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUg558wGJmCBmrRh2e75Q0hYZy3XcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FmNmQwY2ExLWRkNzctNDI0OS1hNWNmLWRkNzU3NGRiMzRmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYSIwDQYJKoZIhvcNAQELBQADggEBACZuIrEN+jJbESvvGzHEXakg LluqfVJyb0gfxytwf9QppVhGVdBOtN+Hxc9CJGQsVN0Sha4P8lLEWwRhRqrfs5F8 7PTIr39Ep417IP6DOXWye5SXemo2az24PFqrypmqa1F3AU8dgUxpW4MijRndWyJB xiPZbv702i9C4ow/d6Xd2902USGUO694lRJp5SagUhbPmMTTH6r23NIDlFNua168 P++Z/1x4NfCdvdDKD7GBeEFwrrMvftZr++I/V5dOLNl8W3ZjhZ5gCRSRDJTf5V/1 XM/aU9PiVGroKn+OwaqEJ3fquGdCXEENaeXvwO6c7xbuiTvCjaQ0+gEehqTpt/E= -----END CERTIFICATE-----Generated at Sat Aug 23 13:58:59 2025 by rpki-client