$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6d0592fe-1739-47a3-b178-e4736351b625.roa File: 6d0592fe-1739-47a3-b178-e4736351b625.roa (raw, json) Hash identifier: aIE8QfLrbBbhQ75w1OcQ60zHCAJuxRlgzOwHNJzNaqQ= Subject key identifier: 0B:DA:20:78:D5:C5:DF:BE:14:E8:33:1A:F4:1A:85:90:9A:6E:13:37 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0E3AF4A45A247BE17722B9083E5C6538F89160B7 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6d0592fe-1739-47a3-b178-e4736351b625.roa Signing time: Tue 16 Sep 2025 15:00:10 +0000 ROA not before: Tue 16 Sep 2025 15:00:10 +0000 ROA not after: Tue 21 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f2:7010::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:3a:f4:a4:5a:24:7b:e1:77:22:b9:08:3e:5c:65:38:f8:91:60:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 16 15:00:10 2025 GMT Not After : Oct 21 23:59:59 2025 GMT Subject: serialNumber=b9ad46601e9c300a121328ce388fa8dd31a866c60667cc2122559c67a57d22c5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:1b:8f:cc:0a:1a:ab:c7:f7:5a:70:a1:86:fa: bb:42:33:fc:30:76:01:8c:c5:0d:a9:4d:22:a0:08: 68:59:58:6b:7b:50:4f:c7:f0:d2:1e:0e:a6:60:ae: 51:8b:c4:22:17:97:7f:1c:3a:e7:31:85:84:45:c5: 8e:fe:b4:d3:d7:b5:84:4b:58:60:1c:1a:b2:e6:24: 8b:1c:89:53:07:48:dd:65:50:81:9e:da:a0:3e:17: ca:8a:d2:af:24:3d:16:5f:be:0b:35:09:c7:11:52: a7:e1:8f:5c:e9:a7:de:1d:71:9b:c8:6c:b1:23:30: 4b:17:53:a8:66:42:2a:74:58:34:b6:97:ea:41:c8: 4b:71:e3:04:36:1f:ec:c4:e5:f6:00:81:37:8c:6e: 31:de:96:64:e2:bb:7a:65:fa:2c:8c:5b:97:3f:db: 11:eb:10:47:9a:26:4b:db:82:66:da:1b:ab:80:14: e2:9f:cc:df:b5:0e:3c:bd:86:0e:f3:f4:23:02:81: d9:35:ed:7a:f8:2a:9d:46:e7:05:59:9f:c0:69:e1: e6:b5:7b:68:dc:bc:f8:63:11:2c:74:a0:53:f0:7f: 0d:74:7e:c1:60:1e:a2:35:92:bc:8e:c6:7a:e9:3b: 8b:0b:2b:af:23:63:b5:b3:bd:4c:ed:f2:67:ec:4a: 3a:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:DA:20:78:D5:C5:DF:BE:14:E8:33:1A:F4:1A:85:90:9A:6E:13:37 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6d0592fe-1739-47a3-b178-e4736351b625.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7010::/44 Signature Algorithm: sha256WithRSAEncryption 18:2a:2e:d0:95:5d:77:05:1a:71:70:f6:11:9d:21:5d:92:7b: 42:01:2c:4d:5c:94:4f:6b:55:30:b9:e2:52:13:9d:82:42:1a: 0f:53:54:33:c1:6a:fc:37:e2:1a:53:63:90:de:ef:14:2b:4f: 6a:f7:8e:c6:dc:bf:cd:6c:b8:4f:b8:eb:9e:4d:cc:b6:b6:d4: 52:30:e8:a1:86:e3:a0:db:b7:b7:63:36:ce:00:77:9f:e9:54: 4e:06:cc:fc:70:27:30:53:76:23:dd:32:3e:a7:11:e7:a3:88: e3:59:0a:0a:87:38:a2:36:b0:e7:96:a4:ca:4e:2f:e9:c7:ba: 48:98:56:73:db:c9:05:07:03:03:65:21:e2:f6:69:a7:05:14: bf:5c:fe:b6:81:38:d7:f6:6a:8d:6c:93:4b:e2:70:0e:4b:94: 41:17:31:d6:5a:b6:c5:87:bc:1f:02:0d:0c:ad:0b:e1:dc:49: 9c:73:fa:6a:5a:61:f9:e9:7e:57:e2:2b:94:95:e3:e5:9a:36: b1:ca:3f:1a:20:5e:1f:60:0b:8b:91:13:a6:fb:83:56:ae:3e: 5e:5b:2c:3a:b7:4d:ac:f1:28:db:3a:02:2d:75:ff:23:c1:54: f6:09:a7:3a:e2:b3:d2:39:93:66:00:9c:30:40:eb:68:d3:f6: 9e:2e:50:05 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDjr0pFoke+F3IrkIPlxlOPiRYLcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTE2MTUwMDEwWhcNMjUxMDIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BiOWFkNDY2MDFlOWMzMDBhMTIxMzI4Y2UzODhmYThkZDMx YTg2NmM2MDY2N2NjMjEyMjU1OWM2N2E1N2QyMmM1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChG4/MChqrx/dacKGG+rtCM/wwdgGMxQ2pTSKgCGhZWGt7 UE/H8NIeDqZgrlGLxCIXl38cOucxhYRFxY7+tNPXtYRLWGAcGrLmJIsciVMHSN1l UIGe2qA+F8qK0q8kPRZfvgs1CccRUqfhj1zpp94dcZvIbLEjMEsXU6hmQip0WDS2 l+pByEtx4wQ2H+zE5fYAgTeMbjHelmTiu3pl+iyMW5c/2xHrEEeaJkvbgmbaG6uA FOKfzN+1Djy9hg7z9CMCgdk17Xr4Kp1G5wVZn8Bp4ea1e2jcvPhjESx0oFPwfw10 fsFgHqI1kryOxnrpO4sLK68jY7WzvUzt8mfsSjrbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUC9ogeNXF374U6DMa9BqFkJpuEzcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzZkMDU5MmZlLTE3MzktNDdhMy1iMTc4LWU0NzM2MzUxYjYyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDycBAwDQYJKoZIhvcNAQELBQADggEBABgqLtCVXXcFGnFw9hGdIV2S e0IBLE1clE9rVTC54lITnYJCGg9TVDPBavw34hpTY5De7xQrT2r3jsbcv81suE+4 655NzLa21FIw6KGG46Dbt7djNs4Ad5/pVE4GzPxwJzBTdiPdMj6nEeejiONZCgqH OKI2sOeWpMpOL+nHukiYVnPbyQUHAwNlIeL2aacFFL9c/raBONf2ao1sk0vicA5L lEEXMdZatsWHvB8CDQytC+HcSZxz+mpaYfnpflfiK5SV4+WaNrHKPxogXh9gC4uR E6b7g1auPl5bLDq3TazxKNs6Ai11/yPBVPYJpzris9I5k2YAnDBA62jT9p4uUAU= -----END CERTIFICATE-----Generated at Wed Oct 8 19:45:16 2025 by rpki-client