$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa File: c1547439-2593-48d5-aaf8-70d69e1a8163.roa (raw, json) Hash identifier: 8O97AY2fnh8lIwWVeog2rUSeJ9+YapdotPP0xocCo8M= Subject key identifier: CB:8A:6E:BD:C2:9C:F5:B0:D5:16:2A:62:FA:7E:16:B6:DC:34:8B:E1 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 285EF89CFB2B2759A6626A0300B1F40907DC4529 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa Signing time: Mon 15 Sep 2025 17:50:06 +0000 ROA not before: Mon 15 Sep 2025 17:50:06 +0000 ROA not after: Mon 20 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:5e:f8:9c:fb:2b:27:59:a6:62:6a:03:00:b1:f4:09:07:dc:45:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 15 17:50:06 2025 GMT Not After : Oct 20 23:59:59 2025 GMT Subject: serialNumber=7770012c20f3f3df3c312f7927b64e72ff2db24ae053d2b56bfa1a113dfabbaa, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:28:ef:a4:05:74:46:53:84:4e:35:6c:d6:cb: 65:cd:1a:bf:cd:1b:7b:2d:55:7c:01:83:6b:ad:14: 49:00:3b:a8:d8:7d:2f:e0:9c:7a:dc:85:8d:f1:44: 6c:8b:98:39:70:7a:c5:18:ea:73:ee:50:97:3e:5a: c3:14:45:6f:7b:65:3c:37:07:91:e9:b9:a3:07:2e: a7:e7:68:62:e8:73:d2:d0:aa:c2:41:33:79:47:87: 2c:ad:c4:f5:9a:21:a9:1f:9c:6c:55:d9:e2:f4:d7: 66:cb:3a:83:dd:e5:ec:e4:02:69:87:cf:1e:c5:37: 9f:40:6c:c8:f7:43:99:0a:7f:0b:36:aa:6d:69:f4: 02:2b:3e:f0:64:50:c9:cf:8b:73:0a:54:cd:a0:16: 07:2f:16:58:75:cd:db:b7:5f:24:55:97:d5:90:f6: e3:5b:bb:68:e6:aa:a1:96:82:0a:6b:76:df:06:8f: 93:ba:e5:26:db:5d:6f:26:9e:33:f5:b8:ab:36:37: f5:eb:5e:a8:ad:7c:2d:c5:05:d9:90:d2:2a:b0:8a: 6e:0d:c7:09:36:1e:c8:29:95:de:fa:23:bc:a7:31: 71:ae:f1:06:97:ae:01:df:c8:6a:a4:5b:6b:16:15: 25:26:58:56:84:f5:ca:f4:0a:9f:9f:0f:22:df:e0: b0:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:8A:6E:BD:C2:9C:F5:B0:D5:16:2A:62:FA:7E:16:B6:DC:34:8B:E1 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:11::/48 Signature Algorithm: sha256WithRSAEncryption 4a:ca:8b:45:d7:37:89:85:07:dd:20:04:9e:fa:fe:70:f2:cd: 11:6e:ff:c3:64:24:c4:cd:c0:b6:ed:90:cc:27:fa:9d:d0:41: 37:60:59:83:97:eb:b6:af:5c:58:90:94:6d:68:20:9c:39:9e: 3c:6a:1f:3b:40:56:12:2a:b2:00:30:da:14:a4:81:f5:0d:6e: fe:27:10:dc:3b:0d:31:af:ef:92:60:37:0e:d9:2f:4c:15:86: c0:dc:bc:93:99:84:89:8e:b2:4b:52:5a:33:61:0f:1e:ef:1c: ad:74:02:c6:bc:61:b4:87:40:f9:f2:40:88:56:25:e5:54:28: 5b:47:bd:1a:4e:e3:83:88:de:74:05:20:f0:ff:71:cb:04:01: f0:39:07:f1:3a:c0:77:16:72:1e:a0:fd:2a:67:8f:02:88:e3: c8:34:ae:89:7a:04:0a:45:36:11:1f:b2:b6:21:81:9b:6b:9c: 22:cb:8f:47:5d:ef:69:80:cb:cc:93:9c:43:a6:f3:51:4c:b5: 81:3f:78:cb:c8:78:3b:23:47:28:6f:2a:cf:09:c5:cb:7c:96: 25:81:80:48:53:2b:fc:ee:16:5c:6d:01:5c:cb:58:19:19:ed: e4:01:d8:f7:73:43:b1:81:1f:4d:17:bc:7a:ad:ac:e5:77:0a: bc:13:10:19 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKF74nPsrJ1mmYmoDALH0CQfcRSkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTE1MTc1MDA2WhcNMjUxMDIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NzcwMDEyYzIwZjNmM2RmM2MzMTJmNzkyN2I2NGU3MmZm MmRiMjRhZTA1M2QyYjU2YmZhMWExMTNkZmFiYmFhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaKO+kBXRGU4RONWzWy2XNGr/NG3stVXwBg2utFEkAO6jY fS/gnHrchY3xRGyLmDlwesUY6nPuUJc+WsMURW97ZTw3B5HpuaMHLqfnaGLoc9LQ qsJBM3lHhyytxPWaIakfnGxV2eL012bLOoPd5ezkAmmHzx7FN59AbMj3Q5kKfws2 qm1p9AIrPvBkUMnPi3MKVM2gFgcvFlh1zdu3XyRVl9WQ9uNbu2jmqqGWggprdt8G j5O65SbbXW8mnjP1uKs2N/XrXqitfC3FBdmQ0iqwim4Nxwk2Hsgpld76I7ynMXGu 8QaXrgHfyGqkW2sWFSUmWFaE9cr0Cp+fDyLf4LAbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUy4puvcKc9bDVFipi+n4Wttw0i+EwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2MxNTQ3NDM5LTI1OTMtNDhkNS1hYWY4LTcwZDY5ZTFhODE2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwABEwDQYJKoZIhvcNAQELBQADggEBAErKi0XXN4mFB90gBJ76/nDy zRFu/8NkJMTNwLbtkMwn+p3QQTdgWYOX67avXFiQlG1oIJw5njxqHztAVhIqsgAw 2hSkgfUNbv4nENw7DTGv75JgNw7ZL0wVhsDcvJOZhImOsktSWjNhDx7vHK10Asa8 YbSHQPnyQIhWJeVUKFtHvRpO44OI3nQFIPD/ccsEAfA5B/E6wHcWch6g/SpnjwKI 48g0rol6BApFNhEfsrYhgZtrnCLLj0dd72mAy8yTnEOm81FMtYE/eMvIeDsjRyhv Ks8Jxct8liWBgEhTK/zuFlxtAVzLWBkZ7eQB2PdzQ7GBH00XvHqtrOV3CrwTEBk= -----END CERTIFICATE-----Generated at Wed Oct 8 19:45:01 2025 by rpki-client