$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1ddf06f-fa7b-4d9a-969b-553930838905.roa File: c1ddf06f-fa7b-4d9a-969b-553930838905.roa (raw, json) Hash identifier: z2xpBpudFLmJwJGT5qr+dJjSh3Ln10eTi0eg2X2oOtM= Subject key identifier: 6C:9A:B3:AB:D9:07:B6:EA:77:32:3B:BE:A6:93:0C:B3:07:62:1E:9D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 32597840D71347DC987E21B1C0DE69FA2DD0A751 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1ddf06f-fa7b-4d9a-969b-553930838905.roa Signing time: Mon 18 Aug 2025 18:24:04 +0000 ROA not before: Mon 18 Aug 2025 18:24:04 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6119::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:59:78:40:d7:13:47:dc:98:7e:21:b1:c0:de:69:fa:2d:d0:a7:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 18 18:24:04 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=bf4c788599fbe26f68fca563cc162ebeedcbc8b08875e58e2409a8798956a616, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:60:f7:c2:91:5f:78:d4:a8:f5:c4:4a:5e:43: af:ec:64:af:10:26:3b:ea:ce:74:84:62:66:cc:e5: cc:56:b1:38:b6:15:98:30:cb:1e:39:43:b7:56:e3: cd:0b:68:a1:8a:ec:df:70:9a:00:92:fb:72:70:d4: e5:5b:9a:1d:7f:1b:ac:17:ef:3a:bf:cd:fc:78:64: f7:b4:fe:c9:29:fa:68:69:40:76:fe:af:83:b2:d3: 09:0f:f8:a6:8e:26:51:1b:7a:d0:ec:37:ad:1c:12: 0b:67:f0:a3:4e:58:d1:24:4f:bd:4e:d2:62:db:12: f7:7e:fc:af:1a:e4:de:12:f7:68:3e:ba:74:25:b2: fc:07:23:e2:dc:ec:dc:b4:96:58:a4:9c:c4:cd:11: bb:33:57:5a:1c:29:fe:04:f7:a7:5b:11:d6:b2:ca: da:e9:07:24:7b:b2:1f:bd:e2:56:e6:73:62:48:45: 92:79:5a:6c:1b:4f:90:34:ae:36:21:1b:89:d7:55: 20:5b:7b:3d:bd:fa:ce:aa:46:4f:24:81:f0:e9:9e: 6a:6f:ca:79:f4:5d:85:dc:b2:50:f6:08:03:e5:cb: ca:e7:ae:dd:c1:90:e5:11:1a:d7:14:0d:60:66:c4: a3:0f:17:e4:46:70:c9:9e:02:79:18:e7:d0:16:c7: f2:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:9A:B3:AB:D9:07:B6:EA:77:32:3B:BE:A6:93:0C:B3:07:62:1E:9D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1ddf06f-fa7b-4d9a-969b-553930838905.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6119::/48 Signature Algorithm: sha256WithRSAEncryption 90:58:31:ae:02:2d:d1:5e:84:1b:e7:f7:84:f1:35:57:00:39: 51:5c:84:a3:9a:32:bc:a3:a5:3b:2d:83:d6:08:a9:13:2d:f9: 36:ab:25:86:75:03:ec:80:a7:3a:40:38:96:70:2a:d4:9e:83: fa:11:87:05:4b:55:1c:4d:7a:d9:1a:71:37:47:d5:d0:34:b6: 23:1e:fc:e9:2d:7f:d7:71:3d:f2:76:ec:9a:1a:e5:d8:2d:53: e0:7e:c8:d5:60:55:f3:85:ba:b2:b6:73:1a:44:f3:1c:c7:69: 32:ff:dc:7f:04:0e:ee:95:5e:eb:ed:86:c6:06:6d:e8:81:2d: dc:46:f2:2a:17:96:db:20:4b:d2:99:19:33:57:34:e3:d7:83: bd:64:26:d0:fe:31:e7:43:f8:06:34:b8:1a:fc:f5:59:f9:71: 4f:af:8e:0a:de:fd:56:4a:4e:2c:08:25:3f:ab:55:6c:7e:d5: 5a:50:f4:99:1b:02:f5:14:3e:82:e1:ef:3e:2a:e1:4b:a6:cd: b0:cb:41:5e:f8:fd:27:02:ff:bd:c0:b0:5f:a1:5c:b0:bb:5a: d8:22:8f:fe:a7:0f:1f:45:b8:b9:62:1d:55:fb:e9:9b:7b:6a: 3f:92:90:1a:b0:1a:10:b5:f6:c2:24:50:96:78:d9:b3:74:bf: 19:f4:de:79 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMll4QNcTR9yYfiGxwN5p+i3Qp1EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE4MTgyNDA0WhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZjRjNzg4NTk5ZmJlMjZmNjhmY2E1NjNjYzE2MmViZWVk Y2JjOGIwODg3NWU1OGUyNDA5YTg3OTg5NTZhNjE2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsYPfCkV941Kj1xEpeQ6/sZK8QJjvqznSEYmbM5cxWsTi2 FZgwyx45Q7dW480LaKGK7N9wmgCS+3Jw1OVbmh1/G6wX7zq/zfx4ZPe0/skp+mhp QHb+r4Oy0wkP+KaOJlEbetDsN60cEgtn8KNOWNEkT71O0mLbEvd+/K8a5N4S92g+ unQlsvwHI+Lc7Ny0lliknMTNEbszV1ocKf4E96dbEdayytrpByR7sh+94lbmc2JI RZJ5WmwbT5A0rjYhG4nXVSBbez29+s6qRk8kgfDpnmpvynn0XYXcslD2CAPly8rn rt3BkOURGtcUDWBmxKMPF+RGcMmeAnkY59AWx/K9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbJqzq9kHtup3Mju+ppMMswdiHp0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2MxZGRmMDZmLWZhN2ItNGQ5YS05NjliLTU1MzkzMDgzODkwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRkwDQYJKoZIhvcNAQELBQADggEBAJBYMa4CLdFehBvn94TxNVcA OVFchKOaMryjpTstg9YIqRMt+TarJYZ1A+yApzpAOJZwKtSeg/oRhwVLVRxNetka cTdH1dA0tiMe/Oktf9dxPfJ27Joa5dgtU+B+yNVgVfOFurK2cxpE8xzHaTL/3H8E Du6VXuvthsYGbeiBLdxG8ioXltsgS9KZGTNXNOPXg71kJtD+MedD+AY0uBr89Vn5 cU+vjgre/VZKTiwIJT+rVWx+1VpQ9JkbAvUUPoLh7z4q4UumzbDLQV74/ScC/73A sF+hXLC7Wtgij/6nDx9FuLliHVX76Zt7aj+SkBqwGhC19sIkUJZ42bN0vxn03nk= -----END CERTIFICATE-----Generated at Sat Aug 23 06:55:42 2025 by rpki-client