$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b89c4fe-6730-4f60-bc4c-ea16b19c2c3c.roa File: 0b89c4fe-6730-4f60-bc4c-ea16b19c2c3c.roa (raw, json) Hash identifier: DqReeZ22qhjBwj2ID9rRjlO5faiZ6WTTZlDeYMvRAX8= Subject key identifier: 5F:FF:6F:4B:2F:1C:AB:B7:11:AC:51:B5:37:89:80:53:DD:D3:28:72 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6E7219830D6E4DAC178C2DE64309D7FC8DBA1C2E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b89c4fe-6730-4f60-bc4c-ea16b19c2c3c.roa Signing time: Mon 01 Sep 2025 19:21:25 +0000 ROA not before: Mon 01 Sep 2025 19:21:25 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:72:19:83:0d:6e:4d:ac:17:8c:2d:e6:43:09:d7:fc:8d:ba:1c:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 1 19:21:25 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=b2fa54b06f379f2d60243ffa390840a094b9471e0a8b8b02b43c4194e83ccb60, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:32:3a:2a:e2:32:a2:a3:c7:9f:7a:1c:31:fb: 54:ab:74:13:49:92:43:34:73:3f:51:a2:b2:b6:c6: d7:05:46:73:59:ec:25:b5:8a:d1:ba:54:3a:f6:fb: 76:8e:69:54:9e:f9:4a:bc:ca:88:af:ef:ae:29:24: 50:e2:11:a3:20:bb:de:2d:2b:ae:72:24:cd:81:87: a9:ca:0d:ea:44:5a:8f:75:e0:d2:f4:17:96:47:0b: 59:29:d6:38:f9:93:61:e4:4c:61:d0:d2:1a:03:e9: 3e:6e:d3:e4:47:79:6f:7b:b3:4f:8b:28:e5:56:d0: 06:da:05:da:8d:dd:fc:ae:21:6e:b1:d3:f8:19:86: 33:17:36:de:83:63:44:00:3e:17:ed:d6:d3:a9:d5: 09:e2:31:0d:8b:e5:57:c6:2f:dc:1f:8e:e1:c0:49: e6:94:14:e1:37:f1:99:10:3d:e0:27:ac:13:05:af: 3e:8d:a0:6f:f0:fb:e9:03:c3:6c:40:8d:52:4f:49: 26:55:46:58:6a:80:33:9f:82:c4:84:43:4c:d3:dd: 22:68:5e:39:2b:b0:2b:1f:15:41:d7:cb:ae:5c:ec: e3:c2:28:3d:8c:0f:3e:2a:5a:b3:b0:dd:81:be:e4: 0b:39:29:14:1d:ff:c5:90:ea:79:10:1d:9d:97:b5: 23:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:FF:6F:4B:2F:1C:AB:B7:11:AC:51:B5:37:89:80:53:DD:D3:28:72 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b89c4fe-6730-4f60-bc4c-ea16b19c2c3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:20::/48 Signature Algorithm: sha256WithRSAEncryption 39:8f:f5:bd:96:ff:d3:68:5b:0f:a3:43:ae:ff:91:18:eb:3a: f4:2d:37:53:9a:f8:27:34:c7:fe:1b:c2:4a:43:91:96:e8:86: 81:be:53:67:28:1a:25:f3:cf:eb:f9:7d:82:18:bf:e5:9d:77: 5b:79:bf:cc:97:a9:5b:8f:f2:08:21:fe:74:54:52:ae:e3:90: be:c3:c5:50:21:4c:6a:fc:19:89:18:65:d4:06:14:2f:ce:6a: 87:e8:c2:dd:8f:50:03:bf:05:b8:ec:a6:3b:da:e1:e1:61:57: a6:24:09:03:be:4c:94:fe:23:bc:1e:37:f0:ae:ae:65:77:9b: 3d:6e:b0:1b:02:4c:e8:c7:7f:36:55:38:22:00:47:11:b0:8d: 82:0d:d9:49:5c:7b:f5:4e:a2:f3:67:d4:73:14:a4:aa:7d:f9: 37:96:02:10:a6:1a:de:03:c0:ea:09:56:06:bc:cb:ba:c5:3a: 7b:5a:51:97:bb:12:52:c7:d2:d8:4f:b0:65:a6:c5:09:80:73: e0:49:76:e2:6c:63:38:12:cb:6a:c4:e1:41:f9:e1:8b:d2:29: 78:ab:71:83:42:d3:e4:89:66:2a:44:e5:de:ab:b3:fd:ec:77: d3:e0:0d:47:b9:22:a6:8c:ab:c3:0c:39:b5:da:d2:f2:83:b8: 72:46:42:52 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbnIZgw1uTawXjC3mQwnX/I26HC4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTAxMTkyMTI1WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMmZhNTRiMDZmMzc5ZjJkNjAyNDNmZmEzOTA4NDBhMDk0 Yjk0NzFlMGE4YjhiMDJiNDNjNDE5NGU4M2NjYjYwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEMjoq4jKio8efehwx+1SrdBNJkkM0cz9RorK2xtcFRnNZ 7CW1itG6VDr2+3aOaVSe+Uq8yoiv764pJFDiEaMgu94tK65yJM2Bh6nKDepEWo91 4NL0F5ZHC1kp1jj5k2HkTGHQ0hoD6T5u0+RHeW97s0+LKOVW0AbaBdqN3fyuIW6x 0/gZhjMXNt6DY0QAPhft1tOp1QniMQ2L5VfGL9wfjuHASeaUFOE38ZkQPeAnrBMF rz6NoG/w++kDw2xAjVJPSSZVRlhqgDOfgsSEQ0zT3SJoXjkrsCsfFUHXy65c7OPC KD2MDz4qWrOw3YG+5As5KRQd/8WQ6nkQHZ2XtSMTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUX/9vSy8cq7cRrFG1N4mAU93TKHIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBiODljNGZlLTY3MzAtNGY2MC1iYzRjLWVhMTZiMTljMmMzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwACAwDQYJKoZIhvcNAQELBQADggEBADmP9b2W/9NoWw+jQ67/kRjr OvQtN1Oa+Cc0x/4bwkpDkZbohoG+U2coGiXzz+v5fYIYv+Wdd1t5v8yXqVuP8ggh /nRUUq7jkL7DxVAhTGr8GYkYZdQGFC/Oaofowt2PUAO/Bbjspjva4eFhV6YkCQO+ TJT+I7weN/CurmV3mz1usBsCTOjHfzZVOCIARxGwjYIN2Ulce/VOovNn1HMUpKp9 +TeWAhCmGt4DwOoJVga8y7rFOntaUZe7ElLH0thPsGWmxQmAc+BJduJsYzgSy2rE 4UH54YvSKXircYNC0+SJZipE5d6rs/3sd9PgDUe5IqaMq8MMObXa0vKDuHJGQlI= -----END CERTIFICATE-----Generated at Fri Sep 19 04:09:04 2025 by rpki-client