$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa File: 1ad26571-c674-4a73-b205-77cb32fe83bd.roa (raw, json) Hash identifier: ydZ+ru17DmZguqYHdQnUvF2SMR1MEWd7XlP6+PI3nRw= Subject key identifier: A5:E7:9E:B8:48:F0:0A:3D:96:CE:E9:86:01:43:D6:F5:68:00:3C:EF Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 213E631388171B40AD99553B18D4086A28491DFD Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa Signing time: Mon 01 Sep 2025 19:21:24 +0000 ROA not before: Mon 01 Sep 2025 19:21:24 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:3e:63:13:88:17:1b:40:ad:99:55:3b:18:d4:08:6a:28:49:1d:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 1 19:21:24 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=8b1e5a55ba3d002810eedb0a4eee40fa7e33fad22619063007067c4ae9c97c62, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f4:90:81:eb:78:78:a7:f3:ae:97:2c:ce:ed: 54:c1:bf:ac:3c:75:ca:00:7b:cb:fd:4c:20:7e:50: 4e:c1:a0:15:66:d5:b9:44:ed:b4:2b:ab:11:62:47: 9a:1c:d3:8b:d7:26:3d:9b:73:bd:ca:e4:94:2b:31: 05:20:2e:25:52:25:04:0a:dd:4e:14:72:c1:e4:d1: 95:f7:95:15:22:00:9f:40:96:26:17:e1:5b:b2:e4: 8c:cc:f0:d6:c5:e7:33:4f:00:da:c9:6c:07:0d:8a: b0:7e:35:77:f0:39:2c:f2:c0:dd:dc:4a:c5:ce:62: 8d:e3:01:02:5d:cf:7a:94:56:7c:c0:3f:b8:47:e6: 9c:56:93:d4:59:3f:bf:2b:2f:63:22:cc:b7:ca:e6: 64:68:1f:3b:e7:86:9b:35:f8:a1:71:f1:61:f9:b5: 95:a7:7c:72:31:bb:dc:36:fc:6a:5b:2b:11:02:e7: 48:f7:e1:6c:76:4c:a8:4c:c9:b1:d6:aa:e8:4b:dc: 18:70:de:a5:50:e1:4c:6f:7e:d0:80:2c:c7:c2:f6: 47:da:7c:9a:f7:22:42:ad:a4:71:fe:d1:8d:52:c0: 54:e2:06:2b:29:9d:42:88:5d:36:9d:5f:bd:d5:a3: 2c:80:93:ea:b1:05:5d:07:0d:a1:ed:ad:b1:32:8d: b5:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:E7:9E:B8:48:F0:0A:3D:96:CE:E9:86:01:43:D6:F5:68:00:3C:EF X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:10::/48 Signature Algorithm: sha256WithRSAEncryption 79:ea:ea:85:51:44:e2:76:f0:b8:f2:6e:f5:fa:38:5b:b1:70: 72:7b:71:5d:70:51:e2:d2:fb:5c:15:ee:4e:2f:06:7a:38:7d: 2c:2e:e7:a8:81:d5:3c:68:d3:31:7d:3e:02:65:56:81:58:53: 18:6f:d5:14:a8:9e:1d:8c:31:6d:6a:96:22:67:a7:cd:5c:9d: 41:0e:3d:77:07:f1:c1:b6:9a:24:15:3b:2b:2c:ee:10:44:cc: 24:db:83:16:a5:c3:c9:47:b8:23:39:7f:f6:10:97:f6:aa:0b: be:bf:9c:c4:23:a6:14:de:a0:31:88:57:ca:e5:7f:c1:a6:3c: bc:7c:b0:be:61:45:6e:f4:a8:d9:a4:7e:9b:f0:0e:fd:3f:02: 17:dc:b5:47:b5:33:13:dd:76:50:6f:fe:24:59:f2:e6:5a:40: be:dd:7d:64:da:72:46:cd:c6:5c:ca:74:2d:ae:7f:cb:c3:bc: 7b:a7:69:9e:6c:27:55:8c:72:46:15:5c:fb:4f:7d:26:54:e5: 64:e1:8f:1b:40:98:ff:1f:6b:39:9d:da:49:58:6c:6a:ab:c5: 54:68:6f:47:54:c9:84:2d:9d:69:0a:4d:03:e7:f4:15:3f:8a: 0d:d2:f0:c7:9f:45:34:6c:4b:cb:0f:29:79:10:eb:f4:dd:a1: 43:ea:5f:d1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIT5jE4gXG0CtmVU7GNQIaihJHf0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTAxMTkyMTI0WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YjFlNWE1NWJhM2QwMDI4MTBlZWRiMGE0ZWVlNDBmYTdl MzNmYWQyMjYxOTA2MzAwNzA2N2M0YWU5Yzk3YzYyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCs9JCB63h4p/OulyzO7VTBv6w8dcoAe8v9TCB+UE7BoBVm 1blE7bQrqxFiR5oc04vXJj2bc73K5JQrMQUgLiVSJQQK3U4UcsHk0ZX3lRUiAJ9A liYX4Vuy5IzM8NbF5zNPANrJbAcNirB+NXfwOSzywN3cSsXOYo3jAQJdz3qUVnzA P7hH5pxWk9RZP78rL2MizLfK5mRoHzvnhps1+KFx8WH5tZWnfHIxu9w2/GpbKxEC 50j34Wx2TKhMybHWquhL3Bhw3qVQ4UxvftCALMfC9kfafJr3IkKtpHH+0Y1SwFTi BispnUKIXTadX73VoyyAk+qxBV0HDaHtrbEyjbWZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUpeeeuEjwCj2WzumGAUPW9WgAPO8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFhZDI2NTcxLWM2NzQtNGE3My1iMjA1LTc3Y2IzMmZlODNiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwABAwDQYJKoZIhvcNAQELBQADggEBAHnq6oVRROJ28LjybvX6OFux cHJ7cV1wUeLS+1wV7k4vBno4fSwu56iB1Txo0zF9PgJlVoFYUxhv1RSonh2MMW1q liJnp81cnUEOPXcH8cG2miQVOyss7hBEzCTbgxalw8lHuCM5f/YQl/aqC76/nMQj phTeoDGIV8rlf8GmPLx8sL5hRW70qNmkfpvwDv0/AhfctUe1MxPddlBv/iRZ8uZa QL7dfWTackbNxlzKdC2uf8vDvHunaZ5sJ1WMckYVXPtPfSZU5WThjxtAmP8fazmd 2klYbGqrxVRob0dUyYQtnWkKTQPn9BU/ig3S8MefRTRsS8sPKXkQ6/TdoUPqX9E= -----END CERTIFICATE-----Generated at Thu Sep 18 19:15:42 2025 by rpki-client