$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0d414a18-fab9-4052-b9b5-07a662fab301.roa File: 0d414a18-fab9-4052-b9b5-07a662fab301.roa (raw, json) Hash identifier: ZRc4dtW8YgVQNYUN+l1R7lEpOvshTzQSSgFS658BY6w= Subject key identifier: EB:C1:70:94:74:04:AF:92:64:3E:70:06:4B:6B:8E:30:58:0B:67:8D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 304870B211DD4933CC7153D1A302AD5B57D7804B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0d414a18-fab9-4052-b9b5-07a662fab301.roa Signing time: Mon 11 Aug 2025 15:30:58 +0000 ROA not before: Mon 11 Aug 2025 15:30:58 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8a00::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:48:70:b2:11:dd:49:33:cc:71:53:d1:a3:02:ad:5b:57:d7:80:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 11 15:30:58 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=b9dd6423466f8678eba1d38660a02dce31c1cd2f19b441f1dfe9f4ea8ba1d87d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:27:08:c4:48:e0:4d:41:ad:2b:85:02:87:6b: 25:4d:d2:da:75:c0:39:73:f2:bb:ac:fb:81:b3:86: c5:52:41:8a:04:bd:1f:22:ec:b0:79:4e:fb:91:06: 36:e2:11:8b:f3:17:e5:e1:de:e7:40:b8:c6:79:39: 5a:c0:a2:a3:c3:93:47:ed:ba:a9:0b:15:bd:00:30: 49:5c:7a:7b:8c:e1:b6:49:0f:85:d7:80:92:7a:3f: d2:ca:87:5b:1d:d9:c5:ba:68:c8:83:26:53:54:79: d1:e5:fb:73:a8:da:1e:26:06:ad:ce:86:2c:fe:73: 2e:13:8d:1c:25:5e:98:08:f3:b4:da:03:38:26:da: 2d:4b:5b:ce:70:89:49:b7:b0:31:aa:81:0f:8a:10: dd:de:a5:f9:6c:2c:c1:78:5b:4d:b1:91:64:9e:f1: be:6e:a3:0f:96:c8:1a:9b:10:88:00:a0:72:02:6b: 2f:f8:6a:74:cd:63:36:de:8f:a6:40:95:74:87:b2: 53:d3:51:3a:d9:06:fc:c1:53:48:f6:31:78:7a:a8: 50:91:aa:42:aa:b3:0c:9b:b0:90:04:94:34:ce:32: 59:5e:11:8f:81:f0:cd:6b:95:0e:a5:b5:fc:15:26: 1f:fc:6c:53:4b:f9:15:e6:8c:d6:2f:2a:a0:fa:d2: 6b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:C1:70:94:74:04:AF:92:64:3E:70:06:4B:6B:8E:30:58:0B:67:8D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0d414a18-fab9-4052-b9b5-07a662fab301.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8a00::/39 Signature Algorithm: sha256WithRSAEncryption 15:bc:ae:ec:8b:d9:f8:57:4a:9b:46:94:36:ed:9c:72:3f:29: 44:d2:45:97:62:1d:28:36:a5:d0:9f:49:09:34:22:7e:be:da: cb:3d:58:28:9c:c7:fc:36:45:cd:fa:48:fe:69:10:56:35:b2: ee:91:a3:23:4e:55:fd:8b:e6:96:27:9f:21:be:a8:e8:e6:f3: 10:8f:e4:35:c4:af:13:9a:a7:d6:04:fb:5c:9c:6f:a0:38:cb: f5:ad:a6:3f:67:69:e3:19:b2:37:f3:80:51:c0:e8:ba:66:62: 6a:e2:14:43:f9:43:05:7c:ab:51:6e:4f:f0:ad:2a:e1:f4:42: 46:ee:9a:39:08:97:b2:26:d4:d9:da:a8:19:36:44:ce:b4:10: be:0f:54:ff:e3:20:65:e1:2c:97:6e:bb:95:84:cb:1d:ce:67: 8f:e9:66:08:79:ca:8e:4d:2e:b0:db:90:e6:3c:f8:d3:e4:83: f0:b6:db:88:ce:f6:50:22:49:87:22:04:03:c7:ea:88:c1:9c: a9:0b:68:8b:c4:24:b6:e6:67:d3:04:a9:46:df:5a:0e:fa:ba: 4d:79:e9:cd:f9:ea:ed:ff:d4:ce:55:a2:1f:9b:ec:63:c2:81: e8:54:4c:92:56:65:29:6d:72:53:5c:38:a2:e2:df:8a:74:e5: b3:76:a6:72 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMEhwshHdSTPMcVPRowKtW1fXgEswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODExMTUzMDU4WhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOWRkNjQyMzQ2NmY4Njc4ZWJhMWQzODY2MGEwMmRjZTMx YzFjZDJmMTliNDQxZjFkZmU5ZjRlYThiYTFkODdkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKJwjESOBNQa0rhQKHayVN0tp1wDlz8rus+4GzhsVSQYoE vR8i7LB5TvuRBjbiEYvzF+Xh3udAuMZ5OVrAoqPDk0ftuqkLFb0AMElcenuM4bZJ D4XXgJJ6P9LKh1sd2cW6aMiDJlNUedHl+3Oo2h4mBq3Ohiz+cy4TjRwlXpgI87Ta Azgm2i1LW85wiUm3sDGqgQ+KEN3epflsLMF4W02xkWSe8b5uow+WyBqbEIgAoHIC ay/4anTNYzbej6ZAlXSHslPTUTrZBvzBU0j2MXh6qFCRqkKqswybsJAElDTOMlle EY+B8M1rlQ6ltfwVJh/8bFNL+RXmjNYvKqD60ms1AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU68FwlHQEr5JkPnAGS2uOMFgLZ40wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBkNDE0YTE4LWZhYjktNDA1Mi1iOWI1LTA3YTY2MmZhYjMwMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAPDxijANBgkqhkiG9w0BAQsFAAOCAQEAFbyu7IvZ+FdKm0aUNu2ccj8p RNJFl2IdKDal0J9JCTQifr7ayz1YKJzH/DZFzfpI/mkQVjWy7pGjI05V/Yvmlief Ib6o6ObzEI/kNcSvE5qn1gT7XJxvoDjL9a2mP2dp4xmyN/OAUcDoumZiauIUQ/lD BXyrUW5P8K0q4fRCRu6aOQiXsibU2dqoGTZEzrQQvg9U/+MgZeEsl267lYTLHc5n j+lmCHnKjk0usNuQ5jz40+SD8LbbiM72UCJJhyIEA8fqiMGcqQtoi8QktuZn0wSp Rt9aDvq6TXnpzfnq7f/UzlWiH5vsY8KB6FRMklZlKW1yU1w4ouLfinTls3amcg== -----END CERTIFICATE-----Generated at Wed Aug 20 10:47:54 2025 by rpki-client