$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/613deecc-4241-45f6-938d-6f225ca83bd7.roa File: 613deecc-4241-45f6-938d-6f225ca83bd7.roa (raw, json) Hash identifier: 8V4Nq+YMd6VyRMQ/DHEfQZLu5kWKqOlxugZO9tUgeYA= Subject key identifier: 53:9D:58:47:C9:06:14:42:C4:AB:62:4F:EB:AF:18:92:70:02:EC:DB Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 770BA3BDC757E50A90F130BC209916E720A90AAC Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/613deecc-4241-45f6-938d-6f225ca83bd7.roa Signing time: Fri 15 Aug 2025 21:22:13 +0000 ROA not before: Fri 15 Aug 2025 21:22:13 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:610a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:0b:a3:bd:c7:57:e5:0a:90:f1:30:bc:20:99:16:e7:20:a9:0a:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 15 21:22:13 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=39534308cd0e2702b7cc3900b61f0243c8e05a037d94877261109b43986c51d4, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:fa:57:b6:62:2f:c5:94:56:6e:44:0d:c0:45: 53:2e:f4:28:91:93:3f:fe:76:bd:27:82:91:a0:02: 34:3b:1f:4b:58:6f:27:7d:5d:42:b3:2b:ff:26:ea: 9c:17:3c:01:0b:35:86:2b:57:0b:88:7a:62:3c:8c: 74:cf:5c:57:e2:f7:f3:19:bb:be:05:c4:98:88:23: ba:b8:60:b3:9f:7f:3c:ba:9d:57:08:7e:8a:40:7d: 4d:2d:3d:a1:95:b6:1c:06:52:5f:c0:6d:28:50:2d: e1:a3:c9:59:0b:f7:34:78:8d:c5:aa:66:58:48:f1: 4a:db:2f:81:d6:4d:2c:88:40:e0:de:40:0e:9b:e1: 38:61:94:02:b4:e9:16:95:e6:2c:c3:a1:e3:4a:1a: 89:c8:3d:a9:bc:12:e1:01:14:31:da:f9:b0:a4:eb: 21:f2:c5:63:e4:48:89:15:ea:99:8e:66:e3:13:06: cc:20:af:f3:60:45:26:5b:08:3d:51:02:60:85:d6: 62:34:bd:b2:79:6a:d8:ba:c0:ef:be:aa:19:59:be: 95:ee:8f:bf:02:f4:83:82:59:6d:8c:5b:d9:ef:7e: 57:66:cc:23:5c:94:0b:42:e2:25:de:ca:4a:3e:26: dc:59:aa:f0:82:50:ee:76:2c:d9:e4:26:05:14:9b: 43:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:9D:58:47:C9:06:14:42:C4:AB:62:4F:EB:AF:18:92:70:02:EC:DB X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/613deecc-4241-45f6-938d-6f225ca83bd7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:610a::/48 Signature Algorithm: sha256WithRSAEncryption 1d:9e:b9:12:e4:63:55:fa:af:74:a0:7f:da:c3:8b:0d:ac:7c: af:f3:d3:27:29:71:15:22:25:56:7a:3e:61:c1:e8:1f:2b:1f: 44:17:6c:1d:3d:24:6c:94:38:9a:7f:15:a8:09:5e:fd:85:66: 76:44:38:69:22:3b:21:a6:9a:83:a0:8b:8e:6f:be:c9:70:26: bc:c9:07:eb:ca:2d:23:11:62:0a:4d:9c:56:6d:96:95:c8:d8: 0d:ef:13:54:31:8d:6a:79:b5:83:65:e4:f6:9c:ec:38:c6:18: af:db:ca:3d:f0:26:d7:44:19:51:37:f6:14:36:e8:39:a3:dc: 67:94:7d:d4:a9:8d:97:1e:f9:dd:3e:26:69:b4:ce:a9:fa:7e: 1a:c2:f0:a5:12:e7:2a:7d:d7:3e:ca:b7:6e:79:c8:d3:d8:30: 5e:a2:5c:01:b3:1a:f5:50:3c:1c:e5:9e:2a:93:1c:f3:fa:a0: c8:e8:ea:c9:b5:5a:3e:19:e6:58:66:41:f5:9b:9a:a4:84:ba: 8e:f1:2f:dc:6e:fe:72:72:57:f6:a7:06:3f:e3:86:2f:d8:f3: ff:4c:9f:78:af:d5:44:91:26:f3:26:4d:f8:be:a4:5e:3d:4a: de:d5:d3:fb:cd:62:c9:c3:39:ef:10:22:43:c4:5e:d1:63:d3: 23:ed:c4:5e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdwujvcdX5QqQ8TC8IJkW5yCpCqwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE1MjEyMjEzWhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzOTUzNDMwOGNkMGUyNzAyYjdjYzM5MDBiNjFmMDI0M2M4 ZTA1YTAzN2Q5NDg3NzI2MTEwOWI0Mzk4NmM1MWQ0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCb+le2Yi/FlFZuRA3ARVMu9CiRkz/+dr0ngpGgAjQ7H0tY byd9XUKzK/8m6pwXPAELNYYrVwuIemI8jHTPXFfi9/MZu74FxJiII7q4YLOffzy6 nVcIfopAfU0tPaGVthwGUl/AbShQLeGjyVkL9zR4jcWqZlhI8UrbL4HWTSyIQODe QA6b4ThhlAK06RaV5izDoeNKGonIPam8EuEBFDHa+bCk6yHyxWPkSIkV6pmOZuMT Bswgr/NgRSZbCD1RAmCF1mI0vbJ5ati6wO++qhlZvpXuj78C9IOCWW2MW9nvfldm zCNclAtC4iXeyko+JtxZqvCCUO52LNnkJgUUm0PNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUU51YR8kGFELEq2JP668YknAC7NswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzYxM2RlZWNjLTQyNDEtNDVmNi05MzhkLTZmMjI1Y2E4M2JkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQowDQYJKoZIhvcNAQELBQADggEBAB2euRLkY1X6r3Sgf9rDiw2s fK/z0ycpcRUiJVZ6PmHB6B8rH0QXbB09JGyUOJp/FagJXv2FZnZEOGkiOyGmmoOg i45vvslwJrzJB+vKLSMRYgpNnFZtlpXI2A3vE1QxjWp5tYNl5Pac7DjGGK/byj3w JtdEGVE39hQ26Dmj3GeUfdSpjZce+d0+Jmm0zqn6fhrC8KUS5yp91z7Kt255yNPY MF6iXAGzGvVQPBzlniqTHPP6oMjo6sm1Wj4Z5lhmQfWbmqSEuo7xL9xu/nJyV/an Bj/jhi/Y8/9Mn3iv1USRJvMmTfi+pF49St7V0/vNYsnDOe8QIkPEXtFj0yPtxF4= -----END CERTIFICATE-----Generated at Wed Aug 20 10:45:59 2025 by rpki-client