$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa File: fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa (raw, json) Hash identifier: kbsEy8ItBRnhXzcpAxa3wCG6ImqwtG1RP0dR+tGLLQ0= Subject key identifier: 0E:A3:01:DD:D0:3A:92:51:D5:93:9F:08:73:20:D7:8E:87:85:A6:4F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3993C28F640C37901FD1C1FB34A7297FF5345E2D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa Signing time: Fri 22 Aug 2025 15:00:10 +0000 ROA not before: Fri 22 Aug 2025 15:00:10 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f000::/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:93:c2:8f:64:0c:37:90:1f:d1:c1:fb:34:a7:29:7f:f5:34:5e:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 22 15:00:10 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=74f4e10011a5f256a950a4bf522eb02de30a85c9cf158e196c2e9c9c85226b44, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5a:b9:d1:a5:3f:68:36:03:18:48:93:f1:f4: 8f:cd:34:a5:b5:50:e7:fe:9c:7d:80:2e:00:0c:6b: 25:eb:51:91:1b:be:94:3c:fa:5a:52:12:48:f2:0a: 43:d7:1d:b3:68:39:51:1d:a1:7c:95:32:9e:6d:fd: c9:6a:d9:1c:95:48:61:e4:f6:ee:bd:a1:aa:cb:38: c7:23:ae:c4:b7:7b:c1:28:5c:a5:70:bf:a0:51:25: fb:b6:df:3c:b9:a2:4b:6b:9a:21:73:08:09:a5:b5: 67:34:bb:c0:7b:bb:ba:32:b0:41:03:34:fa:48:a4: db:58:58:3a:37:2c:36:d1:16:a3:d4:37:c6:06:3d: 3c:0a:29:ee:e4:c2:3c:bc:5a:e2:8e:ea:99:cc:35: 77:71:f8:83:ed:47:8f:5c:ca:85:01:fa:1e:5a:85: 4c:20:aa:07:4d:84:23:8b:ac:de:0c:97:a1:e5:e3: 2e:a8:84:b4:d7:82:cf:ed:cb:ae:d8:4a:bf:5a:df: 32:fb:91:72:ca:5b:08:c5:dd:f9:d3:35:35:79:17: b7:79:87:28:93:3c:cb:86:a7:f8:d6:04:be:7f:03: 7c:b0:4a:75:8b:35:84:89:21:8d:21:e1:5f:e0:d1: f9:e7:3c:20:21:28:a9:4e:05:a2:cb:e4:6f:5d:23: 9f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:A3:01:DD:D0:3A:92:51:D5:93:9F:08:73:20:D7:8E:87:85:A6:4F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f000::/24 Signature Algorithm: sha256WithRSAEncryption 10:be:9c:b0:b4:67:56:4e:c2:95:f0:74:e7:95:cf:98:77:6b: 6e:e1:5f:9c:cc:26:2e:05:3a:20:39:13:98:0c:4f:37:98:6e: a4:e5:de:b1:16:a5:08:3a:d9:e1:f0:3c:4c:b3:7e:db:da:68: 66:62:85:2e:73:4a:ca:87:83:3f:50:b6:ee:c7:ba:64:50:e2: d5:fa:70:41:ab:16:3b:fe:ac:53:f4:99:ea:18:1e:ef:5a:e2: 76:19:20:eb:d2:56:65:25:9f:f3:ca:04:50:85:60:fa:df:a8: 32:3f:bd:c5:90:e8:9b:7a:f3:ee:c4:82:f6:62:bc:13:06:90: 96:c9:c7:3f:e0:da:49:70:be:10:0f:92:54:ae:ff:39:84:aa: 16:0e:fe:21:bb:9f:ad:9b:67:21:21:9d:53:50:7b:31:9a:3b: a8:d1:bd:3c:21:22:17:15:f5:c0:20:01:4b:70:66:8b:c9:57: c6:a2:d6:ec:31:a7:70:02:30:fd:71:86:0e:f6:ff:c1:ad:c4: 16:af:7d:4c:23:5b:e4:a4:c9:52:0b:60:bd:4e:e8:46:06:74: d0:32:49:5b:10:22:bf:21:31:34:f7:26:80:5c:ae:9d:5b:6a: 21:16:e0:5f:eb:3c:59:a4:66:49:84:7c:7e:0b:7d:09:76:bf: 97:32:a6:41 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOZPCj2QMN5Af0cH7NKcpf/U0Xi0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODIyMTUwMDEwWhcNMjUwOTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NGY0ZTEwMDExYTVmMjU2YTk1MGE0YmY1MjJlYjAyZGUz MGE4NWM5Y2YxNThlMTk2YzJlOWM5Yzg1MjI2YjQ0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAWrnRpT9oNgMYSJPx9I/NNKW1UOf+nH2ALgAMayXrUZEb vpQ8+lpSEkjyCkPXHbNoOVEdoXyVMp5t/clq2RyVSGHk9u69oarLOMcjrsS3e8Eo XKVwv6BRJfu23zy5oktrmiFzCAmltWc0u8B7u7oysEEDNPpIpNtYWDo3LDbRFqPU N8YGPTwKKe7kwjy8WuKO6pnMNXdx+IPtR49cyoUB+h5ahUwgqgdNhCOLrN4Ml6Hl 4y6ohLTXgs/ty67YSr9a3zL7kXLKWwjF3fnTNTV5F7d5hyiTPMuGp/jWBL5/A3yw SnWLNYSJIY0h4V/g0fnnPCAhKKlOBaLL5G9dI5/HAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDqMB3dA6klHVk58IcyDXjoeFpk8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ZjNjJhNGVkLWE0YmYtNDYzNC1iNmYzLTBjNzBiZWRiNzA2OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAC MAYDBAAmAPAwDQYJKoZIhvcNAQELBQADggEBABC+nLC0Z1ZOwpXwdOeVz5h3a27h X5zMJi4FOiA5E5gMTzeYbqTl3rEWpQg62eHwPEyzftvaaGZihS5zSsqHgz9Qtu7H umRQ4tX6cEGrFjv+rFP0meoYHu9a4nYZIOvSVmUln/PKBFCFYPrfqDI/vcWQ6Jt6 8+7EgvZivBMGkJbJxz/g2klwvhAPklSu/zmEqhYO/iG7n62bZyEhnVNQezGaO6jR vTwhIhcV9cAgAUtwZovJV8ai1uwxp3ACMP1xhg72/8GtxBavfUwjW+SkyVILYL1O 6EYGdNAySVsQIr8hMTT3JoBcrp1baiEW4F/rPFmkZkmEfH4LfQl2v5cypkE= -----END CERTIFICATE-----Generated at Sat Aug 23 08:23:00 2025 by rpki-client