$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/16b22ea8-4a7c-431a-bd74-8a2cceaaaf4a.roa File: 16b22ea8-4a7c-431a-bd74-8a2cceaaaf4a.roa (raw, json) Hash identifier: 5AOblDklC8nncROHkmvzSX9v45126Rbr0SGPZiO7xHc= Subject key identifier: 1C:04:AB:59:33:E5:11:C1:DD:4A:30:5E:D5:6E:DF:4C:9D:75:9A:AB Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7058BE30694346B83780DC1476B07215DE194096 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/16b22ea8-4a7c-431a-bd74-8a2cceaaaf4a.roa Signing time: Tue 02 Sep 2025 00:40:13 +0000 ROA not before: Tue 02 Sep 2025 00:40:13 +0000 ROA not after: Tue 07 Oct 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f3:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:58:be:30:69:43:46:b8:37:80:dc:14:76:b0:72:15:de:19:40:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 2 00:40:13 2025 GMT Not After : Oct 7 23:59:59 2025 GMT Subject: serialNumber=b1b1842070e204031ddf6703a48e92c2064829b85000e882ccba1d624f1bee78, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ed:5a:e2:be:8a:1b:27:0c:56:18:ea:50:00: 0c:82:2e:5e:5c:de:88:2d:0c:fe:c2:76:08:7b:03: 78:02:4e:37:fb:09:2a:38:83:e4:98:08:ec:25:1b: 6b:4f:8c:a5:e1:19:48:50:c7:2a:c4:39:86:8b:ac: ea:51:70:b2:e5:9a:0d:71:e2:a9:50:45:15:9d:f7: 10:81:51:0f:66:bc:fe:08:a4:91:44:be:a6:b4:89: fd:91:b9:d1:77:04:6a:80:9c:89:6f:f1:38:af:15: bf:ad:f3:e5:af:e7:aa:c2:78:2d:28:26:81:0a:6b: 4b:0c:5e:74:8e:97:b8:3d:62:7e:ef:08:76:73:71: 86:2c:9a:36:5d:a5:da:38:d2:fb:28:85:42:91:2f: 9c:c1:a5:5c:c6:81:da:e5:d7:95:6e:14:08:6c:62: de:e8:74:3f:50:5b:a4:cd:cb:78:21:e2:46:80:af: 9b:18:a0:f2:1e:d9:cc:97:a2:b5:c5:7a:1e:df:e2: ed:0f:3d:f3:71:25:d7:20:fd:b8:b3:db:fa:62:cf: fe:7e:ac:bc:94:52:8f:b9:5e:57:bb:7e:b0:5d:42: b7:b6:81:62:7e:a5:c3:35:42:b8:77:38:a2:3d:dd: a7:c3:1c:4b:88:80:fa:b0:aa:1e:49:3d:7d:c7:aa: e9:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:04:AB:59:33:E5:11:C1:DD:4A:30:5E:D5:6E:DF:4C:9D:75:9A:AB X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/16b22ea8-4a7c-431a-bd74-8a2cceaaaf4a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f3:f000::/44 Signature Algorithm: sha256WithRSAEncryption 88:f4:a4:1a:25:b0:43:9b:20:93:28:4a:90:8b:fa:6c:94:35: cd:f1:05:2d:54:6c:ca:36:60:8d:af:5e:6f:1b:01:f8:7f:a1: 60:87:26:b3:77:09:14:10:81:93:b5:d7:87:5b:f8:72:ef:fe: c0:12:9f:b5:e2:8c:54:e2:b6:9b:01:ec:dd:fb:8b:47:35:5d: 75:81:a4:97:e7:2c:b6:2a:86:9b:f8:d2:39:af:3a:45:86:ef: f7:d2:87:06:d8:14:60:60:33:e1:47:f2:8b:0c:14:a4:95:c9: ec:8f:1c:99:f8:e1:c6:dd:ea:95:e7:03:2e:4f:9c:9b:52:a2: 13:d9:d2:af:ed:97:85:34:14:03:51:10:75:d1:cf:4a:a1:fb: dc:b7:15:e2:4f:46:ba:93:9b:f2:c9:ae:5b:c4:38:c3:57:1d: 2d:8a:a6:b4:c7:41:27:5f:ce:43:4d:7b:c4:81:e4:3e:b4:a0: d9:de:78:60:4e:fa:d5:90:a7:20:5a:0c:01:f7:18:e5:ed:eb: d3:81:67:ed:55:a8:22:69:bd:57:84:a2:a3:de:04:6c:1e:ff: f3:3f:ed:61:bc:f4:91:5a:8d:5b:69:6a:05:27:4d:55:e5:bf: d4:ad:83:30:c0:20:99:a8:ea:2b:b3:2d:3f:1f:9b:1a:70:12: a7:24:cb:98 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcFi+MGlDRrg3gNwUdrByFd4ZQJYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTAyMDA0MDEzWhcNMjUxMDA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMWIxODQyMDcwZTIwNDAzMWRkZjY3MDNhNDhlOTJjMjA2 NDgyOWI4NTAwMGU4ODJjY2JhMWQ2MjRmMWJlZTc4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCs7VrivoobJwxWGOpQAAyCLl5c3ogtDP7Cdgh7A3gCTjf7 CSo4g+SYCOwlG2tPjKXhGUhQxyrEOYaLrOpRcLLlmg1x4qlQRRWd9xCBUQ9mvP4I pJFEvqa0if2RudF3BGqAnIlv8TivFb+t8+Wv56rCeC0oJoEKa0sMXnSOl7g9Yn7v CHZzcYYsmjZdpdo40vsohUKRL5zBpVzGgdrl15VuFAhsYt7odD9QW6TNy3gh4kaA r5sYoPIe2cyXorXFeh7f4u0PPfNxJdcg/biz2/piz/5+rLyUUo+5Xle7frBdQre2 gWJ+pcM1Qrh3OKI93afDHEuIgPqwqh5JPX3HqulxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUHASrWTPlEcHdSjBe1W7fTJ11mqswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzE2YjIyZWE4LTRhN2MtNDMxYS1iZDc0LThhMmNjZWFhYWY0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDz8AAwDQYJKoZIhvcNAQELBQADggEBAIj0pBolsEObIJMoSpCL+myU Nc3xBS1UbMo2YI2vXm8bAfh/oWCHJrN3CRQQgZO114db+HLv/sASn7XijFTitpsB 7N37i0c1XXWBpJfnLLYqhpv40jmvOkWG7/fShwbYFGBgM+FH8osMFKSVyeyPHJn4 4cbd6pXnAy5PnJtSohPZ0q/tl4U0FANREHXRz0qh+9y3FeJPRrqTm/LJrlvEOMNX HS2KprTHQSdfzkNNe8SB5D60oNneeGBO+tWQpyBaDAH3GOXt69OBZ+1VqCJpvVeE oqPeBGwe//M/7WG89JFajVtpagUnTVXlv9StgzDAIJmo6iuzLT8fmxpwEqcky5g= -----END CERTIFICATE-----Generated at Sun Sep 7 13:53:41 2025 by rpki-client