$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/06e0a97e-b500-434c-94b4-3eadd34e5d34.roa File: 06e0a97e-b500-434c-94b4-3eadd34e5d34.roa (raw, json) Hash identifier: L6dY5bgqTCvVUV887uFXzry5N/lQrF/+t6YDYuc7mXE= Subject key identifier: F7:DA:D9:0F:3B:73:05:03:DD:DF:64:9B:80:CF:0F:0E:2F:C4:90:11 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7B18A9BA99851DF34B4460538C7265F59C2C739B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/06e0a97e-b500-434c-94b4-3eadd34e5d34.roa Signing time: Mon 08 Sep 2025 18:37:11 +0000 ROA not before: Mon 08 Sep 2025 18:37:11 +0000 ROA not after: Mon 13 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f103::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:18:a9:ba:99:85:1d:f3:4b:44:60:53:8c:72:65:f5:9c:2c:73:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 8 18:37:11 2025 GMT Not After : Oct 13 23:59:59 2025 GMT Subject: serialNumber=12f167f31092f008625cbc5c0e08efa2631d8b1e1e1bbe0428c11d85fcdec8fd, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:58:67:09:95:cc:50:14:92:8d:e5:51:9d:a4: d6:fd:18:ec:33:78:c3:bf:8d:27:0a:c2:d7:ec:11: 06:76:c1:2a:e6:1d:b4:0e:3f:76:3b:b0:73:c0:95: ee:fb:c6:89:4c:fb:1b:ae:d5:b5:55:6d:c6:18:64: 9d:c2:32:37:75:ce:3f:56:79:0f:11:ac:10:72:58: e6:0a:3f:88:ea:66:e4:30:0e:dc:f5:c3:78:63:66: 55:b8:70:38:ee:a0:35:2e:bc:20:96:b7:3f:00:14: c2:80:13:4e:2f:58:5e:67:97:63:d6:cf:90:48:0f: 6c:5e:74:1f:b3:c6:39:c9:be:d7:5d:7c:d6:4f:d7: e7:69:0f:ab:f1:94:7d:2a:8c:27:6f:28:bb:c2:60: 88:0c:80:14:32:38:8d:c5:3a:23:37:13:11:6a:b8: e2:09:27:28:26:47:fd:e0:1b:3b:c3:93:25:a0:5b: 42:c3:8d:33:fb:86:d4:13:6f:c5:26:14:9e:6a:61: 7a:2d:5a:a7:20:d0:50:c6:64:b9:c7:2a:00:59:ef: 5c:6d:df:63:79:c0:46:08:9c:57:00:da:f2:a6:78: bb:8e:cd:2e:55:ac:66:3c:90:5a:7f:e4:6f:d0:ab: 0e:e5:7b:58:7c:7e:d2:b9:83:d1:0a:1e:6e:f4:69: 9f:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:DA:D9:0F:3B:73:05:03:DD:DF:64:9B:80:CF:0F:0E:2F:C4:90:11 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/06e0a97e-b500-434c-94b4-3eadd34e5d34.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f103::/48 Signature Algorithm: sha256WithRSAEncryption 48:22:3d:b1:b3:8c:29:cc:c9:56:84:16:65:8c:7b:eb:12:c7: a3:c5:ec:c5:ad:30:6c:5b:a1:c3:a2:b6:cd:95:f9:a8:7c:dc: 0a:b1:a9:92:b9:5a:b6:39:8b:50:8b:b8:a7:57:06:58:1a:dd: b4:49:14:41:be:8b:a4:d3:e3:ee:6b:39:e9:1f:65:60:dd:83: dd:31:2b:ee:dc:19:b8:fb:84:94:30:1c:eb:83:63:70:20:80: a8:8c:0a:17:44:f9:2d:c8:ab:73:e0:43:59:7c:d6:91:83:b6: e6:82:53:12:9c:f2:d7:7a:12:1e:3d:aa:44:dd:17:95:84:83: 7f:65:a4:bc:a9:e3:42:f0:3a:30:f7:94:d7:75:ca:92:5e:40: 3f:61:d5:19:26:0c:d7:44:f5:3f:87:b9:a3:ef:b5:35:6e:06: 7a:74:4f:be:ed:68:29:ab:c8:d1:f9:45:9b:da:e9:40:90:87: 20:f5:60:3f:76:6e:0c:25:e5:4e:c7:14:e5:c4:17:9b:0b:34: a0:a6:10:ca:7e:60:c2:f1:e2:c4:d9:e5:87:fe:d0:05:47:df: 34:48:f8:55:62:de:fc:78:cb:91:ca:f7:d6:33:9e:e5:6e:2e: cf:ab:8f:a8:55:b3:24:a0:d7:9a:d7:f0:a2:41:23:cd:0a:95: ef:61:9e:be -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUexipupmFHfNLRGBTjHJl9Zwsc5swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTA4MTgzNzExWhcNMjUxMDEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMmYxNjdmMzEwOTJmMDA4NjI1Y2JjNWMwZTA4ZWZhMjYz MWQ4YjFlMWUxYmJlMDQyOGMxMWQ4NWZjZGVjOGZkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4WGcJlcxQFJKN5VGdpNb9GOwzeMO/jScKwtfsEQZ2wSrm HbQOP3Y7sHPAle77xolM+xuu1bVVbcYYZJ3CMjd1zj9WeQ8RrBByWOYKP4jqZuQw Dtz1w3hjZlW4cDjuoDUuvCCWtz8AFMKAE04vWF5nl2PWz5BID2xedB+zxjnJvtdd fNZP1+dpD6vxlH0qjCdvKLvCYIgMgBQyOI3FOiM3ExFquOIJJygmR/3gGzvDkyWg W0LDjTP7htQTb8UmFJ5qYXotWqcg0FDGZLnHKgBZ71xt32N5wEYInFcA2vKmeLuO zS5VrGY8kFp/5G/Qqw7le1h8ftK5g9EKHm70aZ9BAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU99rZDztzBQPd32SbgM8PDi/EkBEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzA2ZTBhOTdlLWI1MDAtNDM0Yy05NGI0LTNlYWRkMzRlNWQzNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QMwDQYJKoZIhvcNAQELBQADggEBAEgiPbGzjCnMyVaEFmWMe+sS x6PF7MWtMGxbocOits2V+ah83AqxqZK5WrY5i1CLuKdXBlga3bRJFEG+i6TT4+5r OekfZWDdg90xK+7cGbj7hJQwHOuDY3AggKiMChdE+S3Iq3PgQ1l81pGDtuaCUxKc 8td6Eh49qkTdF5WEg39lpLyp40LwOjD3lNd1ypJeQD9h1RkmDNdE9T+HuaPvtTVu Bnp0T77taCmryNH5RZva6UCQhyD1YD92bgwl5U7HFOXEF5sLNKCmEMp+YMLx4sTZ 5Yf+0AVH3zRI+FVi3vx4y5HK99YznuVuLs+rj6hVsySg15rX8KJBI80Kle9hnr4= -----END CERTIFICATE-----Generated at Fri Sep 19 08:04:00 2025 by rpki-client