$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/789a1aef-77f7-4108-9d41-1a97c18e12cb.roa File: 789a1aef-77f7-4108-9d41-1a97c18e12cb.roa (raw, json) Hash identifier: 6WqxdZx78wsUM4tj4/D8Gl1ILkmovlrsz/fnWxQS4zU= Subject key identifier: EB:C0:D1:B4:C1:72:8D:28:60:E1:80:F9:4A:B3:3E:EF:4D:54:9B:23 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 68ACDC4AA29C1A86592782647606946A585B788B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/789a1aef-77f7-4108-9d41-1a97c18e12cb.roa Signing time: Mon 01 Sep 2025 19:31:07 +0000 ROA not before: Mon 01 Sep 2025 19:31:07 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f00c::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:ac:dc:4a:a2:9c:1a:86:59:27:82:64:76:06:94:6a:58:5b:78:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 1 19:31:07 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=b41a2dd6369e5e458adc155d6c8f1152f3b4ff45b58674c9b03c720e6c17f293, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:bb:1e:ec:3c:6f:7f:f6:44:12:f4:0e:80:aa: 62:9e:01:0d:3b:e5:af:4a:0e:0e:6a:fd:b8:9e:64: 66:78:61:1d:b2:7e:fe:2c:97:5a:92:3a:c9:db:cb: 7d:cc:15:38:0a:63:da:ef:34:b5:c1:d1:a2:d4:d1: 51:cd:27:5b:81:2b:a0:47:df:58:ae:c6:f1:dd:53: 53:63:dc:9a:45:72:1f:6d:30:08:13:fa:12:2a:a5: 90:91:d5:5f:4d:b6:a6:4f:9c:44:84:59:0c:28:45: 89:98:29:07:6c:d5:5f:09:b3:62:e5:f2:f6:2e:3c: 51:ed:66:63:bb:0f:c0:58:41:25:61:3e:68:4e:78: 0c:85:df:db:25:40:54:14:7b:b0:ca:04:57:0c:b0: 6e:a2:c4:5f:4f:af:09:fe:b3:3e:0b:71:c8:08:cf: de:fa:d9:cc:96:60:54:d2:85:9c:a0:58:9c:7b:90: 16:73:dc:7d:c8:7b:16:31:62:4f:fc:89:15:a7:b9: 33:47:81:2d:be:c4:51:40:68:f0:84:44:91:92:98: 0a:2a:39:95:5a:8d:af:1c:2c:64:6e:01:24:0c:33: 9f:aa:c6:54:48:b4:8a:03:66:64:48:2f:c5:dc:c8: c1:c3:d4:1e:4e:cc:8e:e9:7e:05:86:b9:37:be:ca: 61:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:C0:D1:B4:C1:72:8D:28:60:E1:80:F9:4A:B3:3E:EF:4D:54:9B:23 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/789a1aef-77f7-4108-9d41-1a97c18e12cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f00c::/39 Signature Algorithm: sha256WithRSAEncryption 5d:00:e0:84:ec:10:94:95:b0:e6:ad:34:21:d4:98:96:78:5f: 2e:50:6a:3e:65:e4:fa:3d:0d:1e:7a:0a:a4:1a:87:f0:91:ed: 21:03:8b:64:0e:dd:77:9b:21:d4:45:c2:fa:ee:ae:eb:d5:46: b4:ba:c2:00:2b:19:a6:95:5e:99:ee:5e:99:8f:3f:5b:b1:b2: 39:3b:fb:85:88:e5:2f:fa:24:36:1c:d9:da:2d:1a:3a:1c:bd: 28:5e:0e:ed:b3:b2:31:41:84:11:bd:d4:db:aa:b6:1c:13:2a: b6:ac:9a:85:d9:f5:e5:35:a0:d6:94:17:ff:84:25:6e:aa:e3: 10:af:c7:f0:d4:6b:ac:e7:29:6b:62:43:84:47:53:8a:ef:80: 02:07:a6:a9:59:07:dd:f0:1a:26:86:9d:ac:d2:4d:9e:86:2b: 8d:21:fe:62:2c:ac:da:99:77:f3:b2:d0:37:1b:dd:3f:5d:e9: ea:be:73:7c:76:96:89:4d:84:eb:ee:5a:80:46:ca:a6:00:25: ba:9e:a6:cb:6e:c0:63:3c:05:88:5d:fc:4a:2b:94:ff:ca:40: 28:4c:9d:96:dd:97:7e:12:39:2d:44:a2:8b:22:33:b1:8d:23: 00:57:fb:3c:82:a4:15:17:c6:9a:f9:8c:bd:79:6b:b2:03:98: ed:dd:1c:e6 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUaKzcSqKcGoZZJ4JkdgaUalhbeIswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTAxMTkzMTA3WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNDFhMmRkNjM2OWU1ZTQ1OGFkYzE1NWQ2YzhmMTE1MmYz YjRmZjQ1YjU4Njc0YzliMDNjNzIwZTZjMTdmMjkzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgux7sPG9/9kQS9A6AqmKeAQ075a9KDg5q/bieZGZ4YR2y fv4sl1qSOsnby33MFTgKY9rvNLXB0aLU0VHNJ1uBK6BH31iuxvHdU1Nj3JpFch9t MAgT+hIqpZCR1V9NtqZPnESEWQwoRYmYKQds1V8Js2Ll8vYuPFHtZmO7D8BYQSVh PmhOeAyF39slQFQUe7DKBFcMsG6ixF9Prwn+sz4LccgIz9762cyWYFTShZygWJx7 kBZz3H3IexYxYk/8iRWnuTNHgS2+xFFAaPCERJGSmAoqOZVaja8cLGRuASQMM5+q xlRItIoDZmRIL8XcyMHD1B5OzI7pfgWGuTe+ymG5AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU68DRtMFyjShg4YD5SrM+701UmyMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzc4OWExYWVmLTc3ZjctNDEwOC05ZDQxLTFhOTdjMThlMTJjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAPAMADANBgkqhkiG9w0BAQsFAAOCAQEAXQDghOwQlJWw5q00IdSYlnhf LlBqPmXk+j0NHnoKpBqH8JHtIQOLZA7dd5sh1EXC+u6u69VGtLrCACsZppVeme5e mY8/W7GyOTv7hYjlL/okNhzZ2i0aOhy9KF4O7bOyMUGEEb3U26q2HBMqtqyahdn1 5TWg1pQX/4QlbqrjEK/H8NRrrOcpa2JDhEdTiu+AAgemqVkH3fAaJoadrNJNnoYr jSH+Yiys2pl387LQNxvdP13p6r5zfHaWiU2E6+5agEbKpgAlup6my27AYzwFiF38 SiuU/8pAKEydlt2XfhI5LUSiiyIzsY0jAFf7PIKkFRfGmvmMvXlrsgOY7d0c5g== -----END CERTIFICATE-----Generated at Thu Sep 18 22:30:28 2025 by rpki-client