$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6ac404eb-6a32-4ac1-b9d5-391986a6379c.roa File: 6ac404eb-6a32-4ac1-b9d5-391986a6379c.roa (raw, json) Hash identifier: FAWpyNvCEmvQO7UVBIgLQzs7eqkxNC25wegO7SUqnhA= Subject key identifier: 19:05:F9:97:40:11:D1:08:4E:B5:86:CC:12:E6:0C:8B:7D:99:85:DD Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5E576F7E18AB68FAEE561FE588E8890EA3A565BE Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6ac404eb-6a32-4ac1-b9d5-391986a6379c.roa Signing time: Mon 11 Aug 2025 15:30:58 +0000 ROA not before: Mon 11 Aug 2025 15:30:58 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8b01::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:57:6f:7e:18:ab:68:fa:ee:56:1f:e5:88:e8:89:0e:a3:a5:65:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 11 15:30:58 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=575a60f52b9de5fb3c7036cb068ef4ee24c0e11524a6858fb587b35d6fe4d538, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:dd:3c:e8:0f:79:52:3b:76:45:16:17:9b:86: e8:8e:9f:d9:7d:99:70:8c:b1:c0:6d:56:e2:d8:b3: 8b:f0:0c:d5:1a:a8:14:ca:df:bf:da:15:c9:66:63: 46:c4:f6:e9:b1:db:58:26:1b:6f:74:25:b4:20:a4: b5:c3:7f:95:1a:b0:c1:3f:47:ca:dd:17:fd:bf:f3: 97:b1:18:e4:c5:82:e3:c3:3f:71:9c:2b:2a:1b:58: ea:39:61:d7:2e:72:b8:69:76:be:d4:aa:1c:09:6c: c9:d7:b6:d5:9a:c7:ac:89:0b:12:08:a8:4f:b3:cd: 49:e7:4f:d4:2a:23:2d:d5:48:34:77:27:ae:11:67: 24:d2:58:bc:10:ba:81:e9:3b:83:28:8f:84:8b:8f: 2a:27:9c:91:77:ec:26:8b:39:7a:51:a7:46:42:1d: 2d:14:68:d9:ea:b8:cc:b9:a2:f0:c4:89:55:9a:f9: f4:2c:0c:fc:3c:04:15:e0:9a:b5:1f:d4:2a:bd:99: 69:30:23:90:23:f6:ff:d5:c7:e8:b5:2e:50:6b:3a: 8b:11:0e:48:0d:30:ad:40:3f:6f:34:a6:61:6c:03: a8:36:08:af:fc:3f:52:96:9f:e9:04:2f:6a:a6:2e: bb:0c:4e:37:28:05:2b:51:27:f6:e4:12:7b:f2:90: 7f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:05:F9:97:40:11:D1:08:4E:B5:86:CC:12:E6:0C:8B:7D:99:85:DD X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6ac404eb-6a32-4ac1-b9d5-391986a6379c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8b01::/48 Signature Algorithm: sha256WithRSAEncryption 5b:8f:28:d9:85:81:60:f8:53:d7:6d:7e:a5:40:38:cc:be:c3: 6e:c7:42:02:cc:4b:cd:a0:12:98:d8:9a:1e:45:56:a5:67:ef: 52:e4:fb:a8:3d:f0:95:86:3a:45:10:aa:68:4a:ff:d6:d7:a9: 2e:94:41:b4:7a:d1:00:18:f2:ef:d6:d3:f8:c1:43:0a:24:4d: 55:6b:25:b7:e6:53:3e:eb:54:ce:78:6d:fb:3d:6c:b7:4b:7a: 24:ba:1c:2a:69:e7:23:65:f6:d6:b1:32:70:94:d9:80:18:53: b6:3a:49:62:02:e7:54:d7:10:04:3c:4d:4f:ec:3e:4f:af:ed: 28:f5:ca:8f:af:02:7e:46:47:a3:4d:c5:51:53:16:47:67:5d: bc:9c:4b:11:dc:f4:01:30:b2:8b:80:e0:20:b9:4a:94:ee:7f: 6a:1b:b6:f5:83:1f:04:62:f8:2b:83:18:70:86:a7:af:98:08: d6:a6:ce:e9:db:cd:82:a7:df:90:02:73:03:19:8d:c7:b0:6e: 57:5c:a6:d8:ee:cc:aa:d8:8e:ef:c2:c1:ca:8d:7d:51:33:71: 7e:ae:a8:09:38:68:68:f1:44:82:7a:b7:bb:ec:9c:3a:af:77: 16:a3:34:fd:aa:14:de:f5:69:13:79:16:c5:77:54:57:a9:b7: b1:ed:8f:d6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXldvfhiraPruVh/liOiJDqOlZb4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODExMTUzMDU4WhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NzVhNjBmNTJiOWRlNWZiM2M3MDM2Y2IwNjhlZjRlZTI0 YzBlMTE1MjRhNjg1OGZiNTg3YjM1ZDZmZTRkNTM4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDH3TzoD3lSO3ZFFhebhuiOn9l9mXCMscBtVuLYs4vwDNUa qBTK37/aFclmY0bE9umx21gmG290JbQgpLXDf5UasME/R8rdF/2/85exGOTFguPD P3GcKyobWOo5Ydcucrhpdr7UqhwJbMnXttWax6yJCxIIqE+zzUnnT9QqIy3VSDR3 J64RZyTSWLwQuoHpO4Moj4SLjyonnJF37CaLOXpRp0ZCHS0UaNnquMy5ovDEiVWa +fQsDPw8BBXgmrUf1Cq9mWkwI5Aj9v/Vx+i1LlBrOosRDkgNMK1AP280pmFsA6g2 CK/8P1KWn+kEL2qmLrsMTjcoBStRJ/bkEnvykH9DAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUGQX5l0AR0QhOtYbMEuYMi32Zhd0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzZhYzQwNGViLTZhMzItNGFjMS1iOWQ1LTM5MTk4NmE2Mzc5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDxiwEwDQYJKoZIhvcNAQELBQADggEBAFuPKNmFgWD4U9dtfqVAOMy+ w27HQgLMS82gEpjYmh5FVqVn71Lk+6g98JWGOkUQqmhK/9bXqS6UQbR60QAY8u/W 0/jBQwokTVVrJbfmUz7rVM54bfs9bLdLeiS6HCpp5yNl9taxMnCU2YAYU7Y6SWIC 51TXEAQ8TU/sPk+v7Sj1yo+vAn5GR6NNxVFTFkdnXbycSxHc9AEwsouA4CC5SpTu f2obtvWDHwRi+CuDGHCGp6+YCNamzunbzYKn35ACcwMZjcewbldcptjuzKrYju/C wcqNfVEzcX6uqAk4aGjxRIJ6t7vsnDqvdxajNP2qFN71aRN5FsV3VFept7Htj9Y= -----END CERTIFICATE-----Generated at Wed Aug 20 10:45:09 2025 by rpki-client