$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3b1d79f6-944a-4da0-acd2-15477b975226.roa File: 3b1d79f6-944a-4da0-acd2-15477b975226.roa (raw, json) Hash identifier: mkDI9rT5uwEPI8I1Km/abPsofaecVuPqpcfS214xuMg= Subject key identifier: 9F:0B:7B:8D:4C:75:50:F5:69:8F:65:CC:0E:38:BC:34:59:85:E7:44 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 752346D95E5438271C37E5CE3A41B1E7D1438162 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3b1d79f6-944a-4da0-acd2-15477b975226.roa Signing time: Mon 01 Sep 2025 19:10:18 +0000 ROA not before: Mon 01 Sep 2025 19:10:18 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:551b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Sep 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:23:46:d9:5e:54:38:27:1c:37:e5:ce:3a:41:b1:e7:d1:43:81:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 1 19:10:18 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=3bc8052bb1932254c525dce2b590ae94e482b957caefeffa3935600c1ca61854, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2c:fb:4d:84:86:1c:a4:e9:b0:df:e6:1f:07: a1:5c:17:c1:5b:f7:6d:50:c0:c1:b7:04:47:8b:55: 5d:c0:ff:a5:1f:1b:bd:db:95:c2:25:5a:e8:fb:49: a6:c7:f3:59:c4:f1:b6:8a:19:2f:2f:a3:80:27:c9: a3:0a:3b:a0:9e:14:fc:dd:e6:d3:1c:38:ad:6e:76: b7:92:d8:bb:6f:d0:15:a8:e9:f3:11:5a:b1:13:d9: 4c:66:0f:17:41:4b:22:ee:1b:b2:0a:83:5a:09:b4: 7c:01:7a:a9:ac:2f:f4:12:cc:4b:96:c3:d2:b4:f5: a1:48:fc:e3:6f:86:2c:80:b9:27:10:42:fc:bb:99: 01:74:20:d6:36:2d:86:f8:ab:80:4a:48:a2:ae:6c: 7a:4a:4e:39:61:95:2f:87:cc:bf:29:a3:09:79:47: f2:8c:e8:fb:61:13:a1:9a:d0:45:8d:aa:62:68:08: 39:4c:16:58:7f:67:2e:89:09:6c:17:8e:a2:21:5e: 2d:22:1b:a8:b1:1f:5a:26:d3:79:bb:3e:e0:ca:f3: 7b:48:b2:e6:9f:15:53:48:2e:2f:09:c9:b0:51:8e: 5e:a9:2f:a9:01:38:9c:b6:ae:38:fe:78:5c:58:df: 59:2b:35:80:7f:f3:0e:d3:03:39:5d:99:0e:fb:33: e1:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:0B:7B:8D:4C:75:50:F5:69:8F:65:CC:0E:38:BC:34:59:85:E7:44 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3b1d79f6-944a-4da0-acd2-15477b975226.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551b::/48 Signature Algorithm: sha256WithRSAEncryption 04:0c:39:89:06:91:74:9e:d2:c1:1c:66:f6:28:87:de:ed:e4: 15:93:ef:e9:83:11:df:55:6b:42:ba:09:87:0e:14:18:26:64: fe:59:b2:fc:1e:05:af:68:f0:c2:8c:48:3c:35:27:78:71:9e: d0:37:55:f4:fa:08:1e:fc:93:bd:b0:c0:fe:95:e0:fc:5e:47: d8:92:9c:26:34:ea:f5:b8:13:16:f0:2d:af:cb:86:9b:69:61: 83:10:47:f7:20:7c:46:55:94:86:2c:9f:2b:22:3c:54:cf:6d: fd:4d:fb:93:f0:2e:44:58:ca:ad:36:1b:97:69:c6:64:40:6d: 33:98:ac:06:32:30:c9:5c:cc:81:e6:66:23:91:06:5f:ac:15: 72:ac:a1:1f:f0:a3:c3:36:fe:1e:5b:a0:dd:c2:9c:f9:85:e5: e0:09:73:c7:a6:86:d4:fc:54:4c:12:1c:ac:1b:f2:01:3a:67: a6:06:03:63:ce:0b:4c:47:cc:f7:11:46:43:25:92:c7:6b:25: 78:b6:b7:60:29:33:2d:0a:29:5f:20:22:f1:25:05:8d:a8:e9: e6:d3:be:13:91:94:02:bc:87:2e:d9:37:d5:1e:ad:85:e5:32: 17:d1:21:6f:0e:cf:84:08:df:0a:2d:ea:c5:da:60:18:39:c4: 2b:c5:55:9d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdSNG2V5UOCccN+XOOkGx59FDgWIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTAxMTkxMDE4WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYmM4MDUyYmIxOTMyMjU0YzUyNWRjZTJiNTkwYWU5NGU0 ODJiOTU3Y2FlZmVmZmEzOTM1NjAwYzFjYTYxODU0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpLPtNhIYcpOmw3+YfB6FcF8Fb921QwMG3BEeLVV3A/6Uf G73blcIlWuj7SabH81nE8baKGS8vo4AnyaMKO6CeFPzd5tMcOK1udreS2Ltv0BWo 6fMRWrET2UxmDxdBSyLuG7IKg1oJtHwBeqmsL/QSzEuWw9K09aFI/ONvhiyAuScQ Qvy7mQF0INY2LYb4q4BKSKKubHpKTjlhlS+HzL8powl5R/KM6PthE6Ga0EWNqmJo CDlMFlh/Zy6JCWwXjqIhXi0iG6ixH1om03m7PuDK83tIsuafFVNILi8JybBRjl6p L6kBOJy2rjj+eFxY31krNYB/8w7TAzldmQ77M+FzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUnwt7jUx1UPVpj2XMDji8NFmF50QwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzNiMWQ3OWY2LTk0NGEtNGRhMC1hY2QyLTE1NDc3Yjk3NTIyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRswDQYJKoZIhvcNAQELBQADggEBAAQMOYkGkXSe0sEcZvYoh97t 5BWT7+mDEd9Va0K6CYcOFBgmZP5ZsvweBa9o8MKMSDw1J3hxntA3VfT6CB78k72w wP6V4PxeR9iSnCY06vW4ExbwLa/LhptpYYMQR/cgfEZVlIYsnysiPFTPbf1N+5Pw LkRYyq02G5dpxmRAbTOYrAYyMMlczIHmZiORBl+sFXKsoR/wo8M2/h5boN3CnPmF 5eAJc8emhtT8VEwSHKwb8gE6Z6YGA2POC0xHzPcRRkMlksdrJXi2t2ApMy0KKV8g IvElBY2o6ebTvhORlAK8hy7ZN9UerYXlMhfRIW8Oz4QI3wot6sXaYBg5xCvFVZ0= -----END CERTIFICATE-----Generated at Tue Sep 16 23:33:01 2025 by rpki-client