$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa File: 9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa (raw, json) Hash identifier: cLitmiAR72DA0fy8s5Nto186OGc9e6lVAsjP7AlKKbU= Subject key identifier: 05:35:E9:BD:EF:99:22:CF:FE:D4:31:BC:0B:CA:41:43:F6:25:26:08 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2ADE068356711131CF0C32F6136AF5E5A12809AD Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa Signing time: Tue 09 Sep 2025 15:40:22 +0000 ROA not before: Tue 09 Sep 2025 15:40:22 +0000 ROA not after: Tue 14 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5503::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 16 Sep 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:de:06:83:56:71:11:31:cf:0c:32:f6:13:6a:f5:e5:a1:28:09:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 9 15:40:22 2025 GMT Not After : Oct 14 23:59:59 2025 GMT Subject: serialNumber=cade5893a8af97f0fa01d7c08ea97d7ba11dcab9f84fde7d9ff0c89f00b39782, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:7f:df:e5:aa:82:83:21:de:1c:fe:42:d6:16: d6:13:a0:c7:33:5b:00:83:05:6a:d7:75:d2:18:1a: cf:b4:76:e3:88:07:4d:f0:e0:25:32:a1:9e:cb:43: 67:b3:93:7f:97:a4:87:af:02:37:54:b7:53:e7:33: 35:b1:50:95:79:81:3b:56:ea:1b:bf:ca:56:95:9c: c8:2f:e8:ad:ea:35:62:01:f5:7d:61:a2:25:15:5e: 7d:98:03:98:3f:7a:20:8b:2a:18:96:61:85:64:54: 51:1a:76:a5:16:cb:8e:20:4e:fd:7f:5c:0e:b5:78: 1e:ed:2b:63:72:3d:f8:37:f1:a2:ca:bc:a8:cd:32: d8:db:e3:95:0b:f4:7e:4a:3d:0b:94:f3:f1:64:27: 3f:89:57:4d:df:66:89:45:34:57:08:98:e1:b6:8c: c2:ac:ce:a1:b3:eb:44:22:08:25:f9:84:40:57:b4: 9d:de:4a:69:b7:fa:3b:e8:02:aa:88:25:f4:f8:2b: d2:b5:6b:cc:40:e6:27:8e:f8:12:23:65:65:a8:3e: 50:4e:80:c8:25:d5:3a:c9:3e:1b:20:50:c1:15:15: 51:ba:94:00:b9:0d:a8:00:34:e1:b6:d0:70:c9:4a: e9:21:99:31:ef:ca:f8:a1:7b:22:48:14:80:e4:0f: 25:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:35:E9:BD:EF:99:22:CF:FE:D4:31:BC:0B:CA:41:43:F6:25:26:08 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5503::/48 Signature Algorithm: sha256WithRSAEncryption 48:d9:a9:8a:6a:a6:2c:0d:9b:15:bd:69:73:66:cc:8e:b6:d6: 19:3d:9e:7c:80:a7:7c:21:22:0e:8d:af:a9:c9:6a:ac:f4:4a: 18:da:a5:f1:83:31:15:58:8e:1e:69:43:de:cc:c8:c4:e9:c7: 8d:6d:8e:8d:1f:a2:4b:f2:2c:fc:e7:36:76:64:b2:d2:97:d7: 96:d2:28:79:22:a6:98:65:32:2d:77:89:b7:ad:83:ff:71:98: 6e:3d:66:44:22:d9:1e:43:90:5b:60:16:ed:48:eb:6d:59:f3: b5:9e:98:6d:94:40:7f:07:b8:84:0d:ed:e2:77:3f:44:75:56: 80:41:da:c8:ba:a0:76:91:ef:1a:df:94:00:0b:1b:dc:ba:ba: 85:2d:c1:36:3a:21:c5:3c:bb:56:3e:68:e1:f0:4e:27:19:68: a5:74:7d:0f:14:0c:1e:d8:fd:f9:5e:52:e1:2b:64:a7:2b:f6: 79:cf:aa:46:45:36:61:1e:83:c2:e5:75:ea:dc:6d:ca:9c:6e: b4:83:6d:80:7d:6c:db:e5:da:b5:6b:aa:a8:75:d8:49:74:cc: 48:8c:df:e4:b1:b5:28:08:49:f3:46:45:36:22:53:63:e2:6f: 4a:02:58:dc:7a:ed:8f:12:31:15:56:2a:f3:d3:a1:f0:e5:5c: 2d:57:3d:81 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKt4Gg1ZxETHPDDL2E2r15aEoCa0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTA5MTU0MDIyWhcNMjUxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYWRlNTg5M2E4YWY5N2YwZmEwMWQ3YzA4ZWE5N2Q3YmEx MWRjYWI5Zjg0ZmRlN2Q5ZmYwYzg5ZjAwYjM5NzgyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDef9/lqoKDId4c/kLWFtYToMczWwCDBWrXddIYGs+0duOI B03w4CUyoZ7LQ2ezk3+XpIevAjdUt1PnMzWxUJV5gTtW6hu/ylaVnMgv6K3qNWIB 9X1hoiUVXn2YA5g/eiCLKhiWYYVkVFEadqUWy44gTv1/XA61eB7tK2NyPfg38aLK vKjNMtjb45UL9H5KPQuU8/FkJz+JV03fZolFNFcImOG2jMKszqGz60QiCCX5hEBX tJ3eSmm3+jvoAqqIJfT4K9K1a8xA5ieO+BIjZWWoPlBOgMgl1TrJPhsgUMEVFVG6 lAC5DagANOG20HDJSukhmTHvyviheyJIFIDkDyUzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUBTXpve+ZIs/+1DG8C8pBQ/YlJggwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzk3MzhiYjBkLTFhODQtNDYwMS1iYzZiLTI1YmE3ZjQ5YzcyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQMwDQYJKoZIhvcNAQELBQADggEBAEjZqYpqpiwNmxW9aXNmzI62 1hk9nnyAp3whIg6Nr6nJaqz0ShjapfGDMRVYjh5pQ97MyMTpx41tjo0fokvyLPzn NnZkstKX15bSKHkipphlMi13ibetg/9xmG49ZkQi2R5DkFtgFu1I621Z87WemG2U QH8HuIQN7eJ3P0R1VoBB2si6oHaR7xrflAALG9y6uoUtwTY6IcU8u1Y+aOHwTicZ aKV0fQ8UDB7Y/fleUuErZKcr9nnPqkZFNmEeg8LldercbcqcbrSDbYB9bNvl2rVr qqh12El0zEiM3+SxtSgISfNGRTYiU2Pib0oCWNx67Y8SMRVWKvPTofDlXC1XPYE= -----END CERTIFICATE-----Generated at Mon Sep 15 19:18:04 2025 by rpki-client