$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa File: 9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa (raw, json) Hash identifier: Qk8ei4yIB04w68yzh0f/HKfeV3YU2zU1J36k2OS2jjQ= Subject key identifier: 49:AE:4B:7B:F2:EB:CB:17:05:F6:A7:6F:8E:F2:E2:48:D5:99:59:C5 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 681E8EE9D193A74118B603F59AEFC970EC60D63D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa Signing time: Fri 15 Aug 2025 15:30:09 +0000 ROA not before: Fri 15 Aug 2025 15:30:09 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5503::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:1e:8e:e9:d1:93:a7:41:18:b6:03:f5:9a:ef:c9:70:ec:60:d6:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 15 15:30:09 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=ff61bf164c78955f67bea385248c7bf1c56fe210f16d29775efdcef5d86fac7c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:bf:09:f7:b5:49:ac:b2:ea:73:42:fb:27:54: 0d:87:8e:75:d8:cd:92:f4:12:74:a4:7a:89:cb:14: 17:a2:1b:a9:2f:ad:f6:1d:93:60:6e:8c:42:6b:a0: 46:fa:d0:50:44:3e:0e:bd:7a:a6:7c:69:ab:9a:97: 63:57:5b:c0:b9:28:31:5e:de:72:d8:e9:22:9c:94: 29:87:c6:6c:1d:55:fe:2e:c4:c2:a0:0f:4c:7a:a4: ff:8c:e9:8c:31:1e:0b:6a:36:9e:e4:20:4d:a3:a0: 29:96:75:fd:fd:f9:49:2a:41:0c:75:91:bf:52:5f: f2:58:04:60:bf:f1:eb:e6:04:e0:21:c3:7f:2a:45: 92:67:9e:1d:ee:6a:5e:d6:46:f2:93:df:0e:43:3b: 94:ea:a1:ec:33:ec:b9:16:eb:03:3f:2a:e3:18:92: 3b:78:3a:a6:9a:fb:7b:0f:98:92:3b:ab:96:b3:7f: ab:0e:74:07:0b:86:6e:0d:57:8c:6a:c7:56:d3:62: b0:ab:93:33:b7:16:48:43:7e:c7:3b:5c:b8:50:9f: 37:ef:97:55:8c:64:1c:d3:c0:30:dc:27:04:23:5a: 56:3d:98:16:b3:fe:23:e8:42:d4:1a:6e:a9:5f:8e: 10:51:fe:b1:56:a9:46:e2:e3:f4:12:c7:a5:00:a8: f5:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:AE:4B:7B:F2:EB:CB:17:05:F6:A7:6F:8E:F2:E2:48:D5:99:59:C5 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5503::/48 Signature Algorithm: sha256WithRSAEncryption 32:a9:77:1c:a7:68:31:c7:cd:45:46:c5:9e:33:51:df:d7:b9: 89:ea:89:28:b2:aa:9a:8b:b2:02:22:9a:6f:9c:0f:3d:2d:63: 22:17:ce:08:fd:de:00:43:8b:2a:a2:1f:a6:47:f5:45:66:40: 5e:21:e7:5c:49:78:57:6f:30:bf:5b:b6:66:71:6a:d4:f0:c9: d4:e0:8f:01:c1:04:d9:4e:f5:5e:8f:23:57:ee:41:7b:09:20: b1:81:0e:9a:22:d8:ed:8c:86:c6:89:f9:e6:76:43:f9:72:10: 31:0a:3a:72:c2:0c:d9:42:03:45:5f:a7:72:9c:96:54:2e:ed: a4:04:16:aa:52:f9:14:9a:31:3f:6e:87:f8:48:66:9b:81:e2: cd:ec:c6:a4:96:31:16:9c:1a:c2:d8:52:4b:8f:6c:1e:fc:c4: 88:2f:d8:af:c5:72:b5:2e:ec:da:5d:02:6f:b0:d3:f1:30:88: 87:04:c4:00:7b:29:e7:6d:97:db:f3:9a:f5:7e:a9:64:db:43: 47:0f:01:87:7f:75:3b:90:7c:00:3e:48:96:b0:c5:9a:36:b7: 80:b2:67:68:22:32:22:55:c2:d6:d6:f3:05:62:44:f5:ab:41: 7e:88:57:fd:30:91:2d:63:13:40:d2:ef:a9:b4:c1:dc:9b:91: 17:a3:52:28 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUaB6O6dGTp0EYtgP1mu/JcOxg1j0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE1MTUzMDA5WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZjYxYmYxNjRjNzg5NTVmNjdiZWEzODUyNDhjN2JmMWM1 NmZlMjEwZjE2ZDI5Nzc1ZWZkY2VmNWQ4NmZhYzdjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEvwn3tUmssupzQvsnVA2HjnXYzZL0EnSkeonLFBeiG6kv rfYdk2BujEJroEb60FBEPg69eqZ8aaual2NXW8C5KDFe3nLY6SKclCmHxmwdVf4u xMKgD0x6pP+M6YwxHgtqNp7kIE2joCmWdf39+UkqQQx1kb9SX/JYBGC/8evmBOAh w38qRZJnnh3ual7WRvKT3w5DO5Tqoewz7LkW6wM/KuMYkjt4Oqaa+3sPmJI7q5az f6sOdAcLhm4NV4xqx1bTYrCrkzO3FkhDfsc7XLhQnzfvl1WMZBzTwDDcJwQjWlY9 mBaz/iPoQtQabqlfjhBR/rFWqUbi4/QSx6UAqPWxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUSa5Le/LryxcF9qdvjvLiSNWZWcUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzk3MzhiYjBkLTFhODQtNDYwMS1iYzZiLTI1YmE3ZjQ5YzcyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQMwDQYJKoZIhvcNAQELBQADggEBADKpdxynaDHHzUVGxZ4zUd/X uYnqiSiyqpqLsgIimm+cDz0tYyIXzgj93gBDiyqiH6ZH9UVmQF4h51xJeFdvML9b tmZxatTwydTgjwHBBNlO9V6PI1fuQXsJILGBDpoi2O2MhsaJ+eZ2Q/lyEDEKOnLC DNlCA0Vfp3KcllQu7aQEFqpS+RSaMT9uh/hIZpuB4s3sxqSWMRacGsLYUkuPbB78 xIgv2K/FcrUu7NpdAm+w0/EwiIcExAB7Kedtl9vzmvV+qWTbQ0cPAYd/dTuQfAA+ SJawxZo2t4CyZ2giMiJVwtbW8wViRPWrQX6IV/0wkS1jE0DS76m0wdybkRejUig= -----END CERTIFICATE-----Generated at Wed Aug 20 10:44:32 2025 by rpki-client