$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa File: 03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa (raw, json) Hash identifier: Rx+peMV83zXFVujPbIJomylTYgYl6J1TiMwICdtgHEU= Subject key identifier: 22:87:92:21:85:24:7C:64:D6:6F:02:C8:04:2B:19:EA:48:BB:AE:D9 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7B961DD1075CFFE04347071935B46B714D86282C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa Signing time: Mon 01 Sep 2025 19:21:20 +0000 ROA not before: Mon 01 Sep 2025 19:21:20 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:551d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Sep 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:96:1d:d1:07:5c:ff:e0:43:47:07:19:35:b4:6b:71:4d:86:28:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 1 19:21:20 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=3d2891c026787b546031213aa830caac2125981fcef0112cddbdedc775f6e929, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:64:a4:68:85:61:16:fb:c2:0d:52:7f:d9:01: 8a:0b:30:10:d1:4d:ee:60:cd:a5:c0:a9:63:62:75: 4c:e2:1e:45:c7:b4:4e:64:b6:5b:de:1a:c4:a2:0d: 65:43:49:95:38:61:c9:09:f9:bd:b1:e9:3e:62:6b: 58:68:a3:36:bd:d3:60:19:0f:93:d6:cf:e3:66:2a: 55:f9:d5:a1:a7:24:41:5e:94:12:e4:c6:66:e2:1f: a0:f3:6e:ce:75:38:c3:5c:69:a2:a4:3c:ff:21:bd: 2c:f0:d5:0c:56:29:71:3c:eb:4d:69:f5:94:f5:c1: ec:a1:2e:fb:4b:38:55:2b:a4:91:14:a4:d8:97:00: 95:d7:b3:94:b5:56:5c:0b:75:58:5f:ea:66:59:c5: e3:0b:cb:bc:08:4e:96:d0:6c:6f:d1:00:68:fd:32: cc:f5:e8:4f:02:55:0b:81:b7:36:1b:69:03:e2:9e: 06:c8:ba:b2:48:73:23:1f:dc:b7:8b:75:0a:2f:1b: fc:00:44:6d:dd:75:91:2f:24:89:05:9d:2a:69:a4: 7b:f4:f2:60:94:c9:13:c3:23:d9:f0:01:a6:47:9f: 56:89:5f:55:3a:5f:3d:67:97:14:0e:2d:a7:39:7c: 3e:80:e9:03:46:ef:f0:75:3c:d7:c9:27:09:6e:6d: 78:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:87:92:21:85:24:7C:64:D6:6F:02:C8:04:2B:19:EA:48:BB:AE:D9 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551d::/48 Signature Algorithm: sha256WithRSAEncryption 62:05:09:77:c6:72:2c:a6:ea:aa:e6:ec:97:86:59:f0:5d:e4: a1:2b:6b:4a:90:52:07:66:40:75:36:51:af:7b:ab:8a:b3:cf: 6d:93:e6:f0:a9:8d:75:04:5b:bd:78:e2:63:73:ed:03:18:9a: 64:85:ca:d1:40:d5:94:63:0b:ec:cd:80:9a:81:a1:d4:ad:9a: 0b:0a:2a:d6:a2:07:7c:b3:4d:50:b6:17:b4:cc:41:6d:75:fe: c0:5e:b8:c1:04:7a:dc:0c:52:53:41:fa:60:e7:0d:bd:60:d4: 04:66:0e:95:2d:14:69:50:84:85:7a:da:86:67:20:cf:5f:89: 69:72:b7:78:66:f1:ad:ab:97:c7:eb:d3:9c:fc:18:f0:cc:2d: f4:e3:c1:ae:2c:c1:1c:92:4d:e2:74:85:ae:53:3c:73:a2:db: de:cd:cc:92:88:40:e8:bc:8d:4a:8f:c4:6c:ce:8f:23:b1:5b: 70:a3:d7:61:1d:91:ae:db:cf:05:9d:f3:ce:72:a8:25:1a:d5: 6b:d2:ca:96:c1:4f:d1:1f:a7:25:cc:72:bf:8e:62:c7:40:c9: cf:d6:de:2f:12:01:fc:c7:b7:7a:ef:1a:50:53:c2:ff:71:86: 77:74:b1:55:7b:4c:49:76:b7:87:70:96:78:9d:b9:50:1a:c6: ec:0f:f5:d1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUe5Yd0Qdc/+BDRwcZNbRrcU2GKCwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTAxMTkyMTIwWhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZDI4OTFjMDI2Nzg3YjU0NjAzMTIxM2FhODMwY2FhYzIx MjU5ODFmY2VmMDExMmNkZGJkZWRjNzc1ZjZlOTI5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbZKRohWEW+8INUn/ZAYoLMBDRTe5gzaXAqWNidUziHkXH tE5ktlveGsSiDWVDSZU4YckJ+b2x6T5ia1hooza902AZD5PWz+NmKlX51aGnJEFe lBLkxmbiH6Dzbs51OMNcaaKkPP8hvSzw1QxWKXE8601p9ZT1weyhLvtLOFUrpJEU pNiXAJXXs5S1VlwLdVhf6mZZxeMLy7wITpbQbG/RAGj9Msz16E8CVQuBtzYbaQPi ngbIurJIcyMf3LeLdQovG/wARG3ddZEvJIkFnSpppHv08mCUyRPDI9nwAaZHn1aJ X1U6Xz1nlxQOLac5fD6A6QNG7/B1PNfJJwlubXijAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUIoeSIYUkfGTWbwLIBCsZ6ki7rtkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzAzYjU5YTFlLTYyNjgtNDYwNy1hNmMxLTY5ZTZkZTgwY2Y0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVR0wDQYJKoZIhvcNAQELBQADggEBAGIFCXfGciym6qrm7JeGWfBd 5KEra0qQUgdmQHU2Ua97q4qzz22T5vCpjXUEW7144mNz7QMYmmSFytFA1ZRjC+zN gJqBodStmgsKKtaiB3yzTVC2F7TMQW11/sBeuMEEetwMUlNB+mDnDb1g1ARmDpUt FGlQhIV62oZnIM9fiWlyt3hm8a2rl8fr05z8GPDMLfTjwa4swRySTeJ0ha5TPHOi 297NzJKIQOi8jUqPxGzOjyOxW3Cj12Edka7bzwWd885yqCUa1WvSypbBT9EfpyXM cr+OYsdAyc/W3i8SAfzHt3rvGlBTwv9xhnd0sVV7TEl2t4dwlniduVAaxuwP9dE= -----END CERTIFICATE-----Generated at Tue Sep 16 16:15:07 2025 by rpki-client