$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4f5d9525-0193-4993-b222-48d2585ae7fa.roa File: 4f5d9525-0193-4993-b222-48d2585ae7fa.roa (raw, json) Hash identifier: Cg5z9ND3JDXI2kwCQqTbnnXvogY1e/57mTbD8tIfqTM= Subject key identifier: 53:0F:77:8B:5B:F9:0E:48:08:8E:5A:2A:C9:79:74:59:70:D2:FB:31 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4BD6401488D12217AAD1657A5D4ECBBA2BB4B2C0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4f5d9525-0193-4993-b222-48d2585ae7fa.roa Signing time: Wed 03 Sep 2025 00:11:00 +0000 ROA not before: Wed 03 Sep 2025 00:11:00 +0000 ROA not after: Wed 08 Oct 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0fb:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:d6:40:14:88:d1:22:17:aa:d1:65:7a:5d:4e:cb:ba:2b:b4:b2:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 3 00:11:00 2025 GMT Not After : Oct 8 23:59:59 2025 GMT Subject: serialNumber=a45fa1e9b80bb0139f75d703d8a63d3cf8da135a5a60a73cf59f79df9e7be132, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:63:f1:ad:cc:13:02:6e:84:b9:c4:9e:f4:0b: 04:f3:77:0e:6a:a5:2c:45:f1:d5:5f:a1:83:37:6b: 65:2b:5d:cb:7e:7c:36:fe:30:3a:ff:54:6c:80:30: dd:52:9e:37:63:94:cf:12:2e:12:8a:36:49:3c:06: 86:41:5b:cb:b8:91:b6:d6:42:fb:52:a0:36:31:24: 3a:bb:73:10:f0:cf:92:ad:c5:aa:3c:7a:5e:aa:d2: 2c:d6:89:2d:09:e2:7b:75:67:a6:94:0c:32:76:93: 9f:1e:31:11:6d:fb:25:12:3d:95:b7:58:1a:70:8c: 1d:80:8f:a5:47:76:60:b6:18:71:01:76:c7:78:5c: e3:43:8a:b1:af:9c:45:60:b8:2e:b6:1d:9d:58:ae: 68:46:43:85:58:9f:9e:67:9a:6b:db:8f:f6:b5:23: a4:41:0f:88:3c:73:74:1a:eb:e5:23:34:ff:f5:07: f2:ae:ff:11:b3:7e:6c:7c:bd:bb:90:46:8c:cd:2e: 40:51:2b:73:8e:ec:ec:b4:7b:e6:3c:e6:95:cb:d2: 8a:1c:65:e4:67:39:ec:d5:a3:74:cb:35:c3:64:01: ee:dd:b5:b8:90:88:ba:27:18:09:4c:e2:c2:7c:29: b9:bc:c3:ec:05:d5:22:48:d4:03:f8:ba:2b:da:f3: 4c:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:0F:77:8B:5B:F9:0E:48:08:8E:5A:2A:C9:79:74:59:70:D2:FB:31 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4f5d9525-0193-4993-b222-48d2585ae7fa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f000::/44 Signature Algorithm: sha256WithRSAEncryption 14:9b:58:39:2f:7b:8e:38:f8:14:87:e4:24:cb:bd:9a:03:ac: 1b:0e:fe:08:c7:15:8f:19:74:ee:cd:7c:19:39:20:d9:e1:79: 16:3a:50:d4:06:e9:d0:01:c7:3a:59:76:94:2e:80:ef:43:a4: b1:65:10:6b:ef:94:75:bd:bf:bb:28:96:62:0b:a1:1e:1b:1f: 46:f0:ff:81:c1:ff:95:e6:ba:0a:de:81:ff:f0:6c:51:23:c5: 82:4f:7b:b2:97:d3:87:86:3e:af:18:0b:f1:9d:3f:cb:1d:ee: 00:b7:ce:94:a0:92:af:e5:36:8b:9f:f2:7f:eb:a9:17:5a:f4: 1b:dd:d8:57:f8:b8:c4:bd:3d:bf:3e:93:c8:2a:42:18:3b:17: 59:67:bf:25:4d:81:08:f6:fe:f4:67:3c:a4:cc:56:22:da:3c: f5:5b:a4:a5:0b:e4:ef:3a:59:d4:99:2d:29:e0:37:77:5e:09: a9:1d:75:1f:c0:a9:46:24:a3:93:81:6b:b4:23:cc:74:20:46: 25:b1:e2:b3:33:18:bf:23:02:a9:42:d5:96:d6:85:70:3e:a9: 30:eb:b2:8e:75:35:57:46:60:54:a7:0b:77:b3:ad:9c:05:b3: b6:de:6d:9f:ae:f9:88:64:5f:85:02:ba:e5:d2:c5:14:cc:93: 38:3d:e4:d4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUS9ZAFIjRIheq0WV6XU7Luiu0ssAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTAzMDAxMTAwWhcNMjUxMDA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNDVmYTFlOWI4MGJiMDEzOWY3NWQ3MDNkOGE2M2QzY2Y4 ZGExMzVhNWE2MGE3M2NmNTlmNzlkZjllN2JlMTMyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAY/GtzBMCboS5xJ70CwTzdw5qpSxF8dVfoYM3a2UrXct+ fDb+MDr/VGyAMN1SnjdjlM8SLhKKNkk8BoZBW8u4kbbWQvtSoDYxJDq7cxDwz5Kt xao8el6q0izWiS0J4nt1Z6aUDDJ2k58eMRFt+yUSPZW3WBpwjB2Aj6VHdmC2GHEB dsd4XONDirGvnEVguC62HZ1YrmhGQ4VYn55nmmvbj/a1I6RBD4g8c3Qa6+UjNP/1 B/Ku/xGzfmx8vbuQRozNLkBRK3OO7Oy0e+Y85pXL0oocZeRnOezVo3TLNcNkAe7d tbiQiLonGAlM4sJ8Kbm8w+wF1SJI1AP4uiva80yXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUw93i1v5DkgIjloqyXl0WXDS+zEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzRmNWQ5NTI1LTAxOTMtNDk5My1iMjIyLTQ4ZDI1ODVhZTdmYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78AAwDQYJKoZIhvcNAQELBQADggEBABSbWDkve444+BSH5CTLvZoD rBsO/gjHFY8ZdO7NfBk5INnheRY6UNQG6dABxzpZdpQugO9DpLFlEGvvlHW9v7so lmILoR4bH0bw/4HB/5Xmugregf/wbFEjxYJPe7KX04eGPq8YC/GdP8sd7gC3zpSg kq/lNouf8n/rqRda9Bvd2Ff4uMS9Pb8+k8gqQhg7F1lnvyVNgQj2/vRnPKTMViLa PPVbpKUL5O86WdSZLSngN3deCakddR/AqUYko5OBa7QjzHQgRiWx4rMzGL8jAqlC 1ZbWhXA+qTDrso51NVdGYFSnC3ezrZwFs7bebZ+u+YhkX4UCuuXSxRTMkzg95NQ= -----END CERTIFICATE-----Generated at Sun Sep 7 11:23:13 2025 by rpki-client