$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa File: c1547439-2593-48d5-aaf8-70d69e1a8163.roa (raw, json) Hash identifier: 1GuFvESsCsidEMiW8t4+kiclqYgqbahpwaT5RjFaLB4= Subject key identifier: 83:94:5D:F0:92:5F:12:F0:03:DA:F8:56:5E:95:3A:79:E9:DA:27:7B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5422A48A80A153F72D9CBC829FA66074E1674AE4 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa Signing time: Tue 19 Aug 2025 16:50:03 +0000 ROA not before: Tue 19 Aug 2025 16:50:03 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:22:a4:8a:80:a1:53:f7:2d:9c:bc:82:9f:a6:60:74:e1:67:4a:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 19 16:50:03 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=6e3fc6b5bdf77f3bdb05c188893f7722ed1ebf92b755c7c07de62f41a0aab47a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:bf:93:85:1b:29:68:f3:25:f3:57:d2:11:ed: 14:6a:4c:3a:f7:3c:81:23:43:4e:cd:7f:77:4e:c8: 89:ac:6c:74:9a:6e:10:70:8b:66:20:97:e0:82:2f: bc:f6:15:9c:23:33:fd:37:8b:42:24:ba:4c:4c:a8: 16:bc:7e:c6:e6:59:b8:71:7c:3f:cd:02:17:e2:07: f6:18:3b:2a:5e:41:8f:a3:9d:7b:3f:2f:29:29:62: c6:da:cc:db:7e:e7:84:55:c9:d0:5c:74:e3:07:fe: c3:35:44:13:30:1d:e1:1a:a2:28:98:68:65:2d:ab: 37:4a:01:9e:b0:20:a2:31:b5:fd:11:a9:37:5b:d8: 70:02:3a:f8:bd:64:32:7c:af:f5:9a:f3:f1:c5:0a: 3f:e5:17:11:7e:3e:b6:ac:e0:4e:bf:42:38:50:06: 34:7d:7f:e6:e4:ac:20:cb:3a:94:d5:8c:e9:6d:96: 98:3d:8f:6a:28:31:04:11:d8:30:c1:2d:f8:53:64: 92:28:61:35:4b:3b:17:8c:0f:d1:a1:ea:23:19:b8: 34:f5:e1:94:6c:76:d6:fa:0c:87:10:16:bf:82:6c: da:6a:05:bd:9c:a3:84:8e:4a:dd:68:2c:a0:52:09: f3:86:74:cd:ab:e4:ed:2a:ca:48:e7:94:ee:18:4b: 78:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:94:5D:F0:92:5F:12:F0:03:DA:F8:56:5E:95:3A:79:E9:DA:27:7B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:11::/48 Signature Algorithm: sha256WithRSAEncryption 9c:6c:e3:17:0c:e7:ab:9e:37:5d:5f:5c:89:59:10:8a:b5:03: e4:70:d2:9d:91:03:93:f6:f2:8c:8d:74:fd:05:84:d0:82:0a: fa:6e:71:34:7d:ab:46:a4:1d:95:42:4f:ab:6f:3e:09:6d:32: 33:8e:64:50:ba:34:03:c1:81:fa:ae:ca:9c:55:c1:7b:5e:5f: f1:38:20:3e:21:89:ea:58:7d:47:ba:bd:85:f5:74:fd:6d:3f: 50:46:d4:9c:cb:45:15:5f:45:29:0f:88:c5:f8:26:7f:b0:44: ec:f2:0d:94:d3:b7:49:81:25:bb:48:03:5c:ba:60:d4:33:63: 9b:db:54:4c:b8:92:1d:82:8a:a6:92:97:7b:20:dd:af:98:96: 8f:b6:7e:ba:6a:ef:86:a5:af:85:20:cb:84:af:0c:1d:e6:52: 54:ff:99:d8:ee:b3:42:6f:ce:74:8e:1b:16:28:39:97:9d:00: eb:3c:b0:34:7c:4b:40:f8:83:49:1c:fc:c8:79:11:4f:86:30: 55:8e:00:40:65:e1:f5:db:16:ee:98:1a:b6:88:63:d3:0c:3a: a6:b7:6f:04:9b:f0:c7:b7:0f:66:c5:d9:63:d8:e2:9e:ef:7e: a7:7b:4a:46:e1:2b:7b:7b:50:8d:59:3b:a5:63:20:79:2f:66: 7f:f2:a1:0c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVCKkioChU/ctnLyCn6ZgdOFnSuQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE5MTY1MDAzWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTNmYzZiNWJkZjc3ZjNiZGIwNWMxODg4OTNmNzcyMmVk MWViZjkyYjc1NWM3YzA3ZGU2MmY0MWEwYWFiNDdhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGv5OFGylo8yXzV9IR7RRqTDr3PIEjQ07Nf3dOyImsbHSa bhBwi2Ygl+CCL7z2FZwjM/03i0IkukxMqBa8fsbmWbhxfD/NAhfiB/YYOypeQY+j nXs/LykpYsbazNt+54RVydBcdOMH/sM1RBMwHeEaoiiYaGUtqzdKAZ6wIKIxtf0R qTdb2HACOvi9ZDJ8r/Wa8/HFCj/lFxF+Pras4E6/QjhQBjR9f+bkrCDLOpTVjOlt lpg9j2ooMQQR2DDBLfhTZJIoYTVLOxeMD9Gh6iMZuDT14ZRsdtb6DIcQFr+CbNpq Bb2co4SOSt1oLKBSCfOGdM2r5O0qykjnlO4YS3jnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUg5Rd8JJfEvAD2vhWXpU6eenaJ3swHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2MxNTQ3NDM5LTI1OTMtNDhkNS1hYWY4LTcwZDY5ZTFhODE2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwABEwDQYJKoZIhvcNAQELBQADggEBAJxs4xcM56ueN11fXIlZEIq1 A+Rw0p2RA5P28oyNdP0FhNCCCvpucTR9q0akHZVCT6tvPgltMjOOZFC6NAPBgfqu ypxVwXteX/E4ID4hiepYfUe6vYX1dP1tP1BG1JzLRRVfRSkPiMX4Jn+wROzyDZTT t0mBJbtIA1y6YNQzY5vbVEy4kh2CiqaSl3sg3a+Ylo+2frpq74alr4Ugy4SvDB3m UlT/mdjus0JvznSOGxYoOZedAOs8sDR8S0D4g0kc/Mh5EU+GMFWOAEBl4fXbFu6Y GraIY9MMOqa3bwSb8Me3D2bF2WPY4p7vfqd7SkbhK3t7UI1ZO6VjIHkvZn/yoQw= -----END CERTIFICATE-----Generated at Sat Aug 23 06:54:58 2025 by rpki-client