$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5711ca9f-54b1-42ca-be68-93036263a87f.roa File: 5711ca9f-54b1-42ca-be68-93036263a87f.roa (raw, json) Hash identifier: Bp5q9meCInKsCrkPq1gJmBkzDwQqp0HyAIiMnxwMxaw= Subject key identifier: AA:A1:8C:47:CD:2D:D3:8C:CC:59:CB:8B:B6:1F:EC:9D:AF:EF:BA:E8 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 138017218827DCBB6C4B2C91450B5BF7763EF4 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5711ca9f-54b1-42ca-be68-93036263a87f.roa Signing time: Mon 08 Sep 2025 18:37:19 +0000 ROA not before: Mon 08 Sep 2025 18:37:19 +0000 ROA not after: Mon 13 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f10d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:80:17:21:88:27:dc:bb:6c:4b:2c:91:45:0b:5b:f7:76:3e:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 8 18:37:19 2025 GMT Not After : Oct 13 23:59:59 2025 GMT Subject: serialNumber=3a5949a0f74ebb244d9c0411ae24ac2e4dfa911b8fac39fdf7d93753b694f89b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:6f:48:2a:f9:03:11:71:b6:56:2c:94:0f:31: 94:28:3d:2f:f6:aa:ec:9f:46:e3:39:99:26:58:00: dc:0f:07:0e:f4:de:62:89:68:37:b2:e9:4f:b7:34: aa:98:a4:f4:00:98:28:1d:29:09:69:ce:92:9c:17: 19:e7:9c:e2:ad:6c:53:3c:5c:ce:95:84:0a:04:ff: 1c:05:16:f6:48:b6:47:84:85:be:85:c4:a5:2b:5c: f7:05:8a:aa:af:78:88:ef:0e:91:c5:2e:24:cf:80: ec:7a:cb:b3:c7:10:fe:df:82:bb:8e:77:80:cb:89: d9:7b:be:06:2e:09:59:21:05:ae:45:32:d6:68:10: 33:84:94:98:10:84:5e:1b:2d:bf:bc:db:74:a8:60: ef:0e:68:04:42:b2:a5:88:e9:c0:2a:57:24:47:90: a8:6e:17:3e:6e:52:f9:31:34:8b:ca:59:53:45:8c: d9:5e:fd:2b:91:5b:06:05:dc:fe:7a:c5:84:c9:78: b8:7b:37:66:67:78:4e:99:27:6b:8b:5c:5c:5c:52: fa:80:d9:62:0d:b2:37:f5:b5:dd:34:21:87:27:35: dd:24:ec:e1:dc:b9:de:70:ca:80:22:8c:8c:1a:31: 60:20:fe:1e:f0:83:ae:db:c0:b4:d5:92:92:c5:57: 3b:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:A1:8C:47:CD:2D:D3:8C:CC:59:CB:8B:B6:1F:EC:9D:AF:EF:BA:E8 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5711ca9f-54b1-42ca-be68-93036263a87f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f10d::/48 Signature Algorithm: sha256WithRSAEncryption 71:fb:d1:d0:29:3f:ef:31:d7:e4:b7:a4:48:f8:d8:c3:05:43: a2:b0:20:57:e8:71:77:27:0c:92:56:46:96:ed:b1:99:8b:72: cc:6c:9d:d6:b9:88:80:5f:07:9c:34:0b:d2:bb:ea:4e:2b:66: d0:14:8e:82:3e:a6:e5:8d:ec:e2:29:58:5c:a7:e5:8a:26:c6: 64:61:19:7e:73:7f:af:10:43:65:ef:d7:c6:52:f9:a4:e0:9b: 2c:31:70:42:00:95:f1:b3:d7:1f:ac:f9:01:3b:35:21:aa:65: fa:ef:4c:b8:c9:32:db:91:35:53:36:7d:fa:fc:7c:0b:ba:f3: d4:06:18:ab:fd:bc:02:3b:a2:2d:c9:d7:96:50:13:dc:36:82: ee:26:69:60:f0:04:a5:e4:a0:d0:9a:94:2a:fd:92:d3:89:e9: b1:ec:99:0b:2d:e0:08:c8:93:87:dd:66:d0:79:72:f8:75:e6: 8c:3c:4c:b2:03:d2:e0:7f:4c:ce:0d:a4:f3:66:df:ff:97:0a: a1:3f:89:5e:12:98:85:16:2c:53:33:8f:59:fa:d8:7a:70:1d: 78:50:b2:84:c9:90:5b:82:48:bc:4a:43:06:60:54:70:99:b3: d0:a3:44:54:e9:cb:0e:bb:5a:16:30:25:4e:40:86:be:53:d2: 99:6f:bc:c1 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgITE4AXIYgn3LtsSyyRRQtb93Y+9DANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJiNTg0NWMzMDdkMGJmNjFiMTM0YjhhYjcxMTU0NTgyNmIx NzA3ZmQ1ZjBhZjg0ZGEwODAeFw0yNTA5MDgxODM3MTlaFw0yNTEwMTMyMzU5NTla MHoxSTBHBgNVBAUTQDNhNTk0OWEwZjc0ZWJiMjQ0ZDljMDQxMWFlMjRhYzJlNGRm YTkxMWI4ZmFjMzlmZGY3ZDkzNzUzYjY5NGY4OWIxLTArBgNVBAMTJGZiYjI3NTc2 LWNhYzItNDM4MS05YTUzLTZjMTVlMGRjMjZmZjCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAM9vSCr5AxFxtlYslA8xlCg9L/aq7J9G4zmZJlgA3A8HDvTe YoloN7LpT7c0qpik9ACYKB0pCWnOkpwXGeec4q1sUzxczpWECgT/HAUW9ki2R4SF voXEpStc9wWKqq94iO8OkcUuJM+A7HrLs8cQ/t+Cu453gMuJ2Xu+Bi4JWSEFrkUy 1mgQM4SUmBCEXhstv7zbdKhg7w5oBEKypYjpwCpXJEeQqG4XPm5S+TE0i8pZU0WM 2V79K5FbBgXc/nrFhMl4uHs3Zmd4Tpkna4tcXFxS+oDZYg2yN/W13TQhhyc13STs 4dy53nDKgCKMjBoxYCD+HvCDrtvAtNWSksVXO0kCAwEAAaOCArQwggKwMB0GA1Ud DgQWBBSqoYxHzS3TjMxZy4u2H+ydr++66DAfBgNVHSMEGDAWgBQuGOIIoYJXGwl9 0iOnFp5A6+mJPTAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv NTIxZWIzM2YtOTY3Mi00Y2Q5LWFjY2UtMTM3MjI3ZTk3MWFjLzZhOTUzN2E4LWE2 ODUtNGI0OC05ZmE4LTgzNjJlNGZjNDdhZS9iNTg0NWMzMDdkMGJmNjFiMTM0Yjhh YjcxMTU0NTgyNmIxNzA3ZmQ1ZjBhZjg0ZGEwOC5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS81MTdmM2VkNy01OGI1LTQ3OTYtYmUzNy0xNGQ2 MmU0OGYwNTYvNTcxMWNhOWYtNTRiMS00MmNhLWJlNjgtOTMwMzYyNjNhODdmLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzct MTRkNjJlNDhmMDU2L0NfWWJFMHVLdHhGVVdDYXhjSF9WOEstRTJnZy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHACYA8PvxDTANBgkqhkiG9w0BAQsFAAOCAQEAcfvR0Ck/7zHX5LekSPjYwwVD orAgV+hxdycMklZGlu2xmYtyzGyd1rmIgF8HnDQL0rvqTitm0BSOgj6m5Y3s4ilY XKfliibGZGEZfnN/rxBDZe/XxlL5pOCbLDFwQgCV8bPXH6z5ATs1Iapl+u9MuMky 25E1UzZ9+vx8C7rz1AYYq/28AjuiLcnXllAT3DaC7iZpYPAEpeSg0JqUKv2S04np seyZCy3gCMiTh91m0Hly+HXmjDxMsgPS4H9Mzg2k82bf/5cKoT+JXhKYhRYsUzOP WfrYenAdeFCyhMmQW4JIvEpDBmBUcJmz0KNEVOnLDrtaFjAlTkCGvlPSmW+8wQ== -----END CERTIFICATE-----Generated at Fri Sep 19 08:07:50 2025 by rpki-client