$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1a5323d-810c-4209-a36d-e85d1d062c2e.roa File: a1a5323d-810c-4209-a36d-e85d1d062c2e.roa (raw, json) Hash identifier: QaXwxtreVn+ZntCBl6qDaEh5Cy9icPPNQlH9eeltxjo= Subject key identifier: C2:58:0F:64:2B:A9:E8:E3:DC:EC:6A:D6:4B:05:83:3F:6A:1D:35:03 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1CED22E54351EAD39F8D8977C592E1FCA37A4D09 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1a5323d-810c-4209-a36d-e85d1d062c2e.roa Signing time: Mon 08 Sep 2025 18:37:18 +0000 ROA not before: Mon 08 Sep 2025 18:37:18 +0000 ROA not after: Mon 13 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f10a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:ed:22:e5:43:51:ea:d3:9f:8d:89:77:c5:92:e1:fc:a3:7a:4d:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 8 18:37:18 2025 GMT Not After : Oct 13 23:59:59 2025 GMT Subject: serialNumber=9683d6125b86a3d8e90e5ebcf7fa417311c354e105814e383f955f7d08bb2c28, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:75:f2:61:7b:1c:22:10:fa:55:66:e9:6b:aa: 9a:7f:b3:be:e7:20:be:7a:c5:fb:fd:96:42:26:ba: be:d0:7c:50:bc:28:d5:70:dc:93:31:47:bf:1d:20: e0:66:a3:3b:b6:6a:1e:fa:c0:46:6c:35:f0:36:a8: fd:aa:a2:3d:bd:10:c4:5a:fe:62:b7:82:d7:f7:43: 3d:70:72:9b:dd:d8:05:1a:6d:45:86:6f:fd:3c:41: 60:60:55:c1:e4:27:ed:91:8c:64:81:d6:27:3e:bc: 87:c1:89:55:e5:7e:c3:4d:c8:b4:da:96:14:dc:f8: db:9d:52:3a:82:81:a5:b3:f2:56:8a:94:b4:8f:e8: 04:1c:dc:db:59:64:f9:00:70:23:3c:1c:f5:50:97: e1:e3:08:11:9e:41:51:a4:8c:03:1b:2f:24:60:a2: f6:ee:73:c1:3d:ac:76:c0:ff:31:32:f1:51:84:cd: 72:fe:d8:9b:88:a2:d9:38:6c:6e:a1:ed:1a:3d:ae: ab:ec:b6:98:57:8d:c5:cc:ac:12:80:53:a2:b0:b5: df:32:a9:ba:dc:2e:46:f3:5b:2f:ff:c3:37:a6:1e: aa:fc:90:41:f7:b9:ba:1f:51:bf:1d:af:e6:e5:c3: c1:89:7b:94:8c:39:f8:17:41:fb:d7:b6:42:40:52: bf:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:58:0F:64:2B:A9:E8:E3:DC:EC:6A:D6:4B:05:83:3F:6A:1D:35:03 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1a5323d-810c-4209-a36d-e85d1d062c2e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f10a::/48 Signature Algorithm: sha256WithRSAEncryption 94:9b:b2:b7:60:d1:25:a1:53:fd:a2:2e:89:fd:ad:1b:5d:4f: 9f:e4:08:c9:e7:ed:47:fd:80:ed:75:c6:cb:18:94:ef:7e:c7: 7f:40:8a:16:f2:02:22:94:a2:ed:9d:e3:d4:2d:5d:c2:5d:5d: 73:99:c6:31:f9:11:d4:ad:c8:32:49:a8:1f:59:15:18:5b:06: 8d:b1:a2:0f:cc:82:19:61:a7:9f:77:3a:f7:66:9d:40:76:27: 4a:0e:17:91:9a:50:86:4d:d4:5d:84:c2:5a:8a:fd:44:b1:90: 93:e0:d8:0b:83:97:28:39:64:6b:bd:f1:56:c0:ac:ec:86:3d: 39:88:c2:69:21:d5:be:5e:5b:62:6d:4c:05:ed:ba:70:74:ae: fd:6b:54:23:44:a6:de:e7:82:f3:fb:a0:03:dd:a1:54:eb:8a: 01:c3:fd:4f:0d:6c:93:8a:e0:c7:2e:0d:e7:0a:6b:06:72:34: e5:53:38:f2:9c:23:66:ca:18:09:ae:21:ab:98:f5:9a:4f:34: f7:0b:f3:89:f6:16:24:fc:7a:40:16:96:43:b0:84:ca:6e:77: 77:96:38:2c:12:ab:f7:d7:7e:da:c5:d2:9c:32:13:c8:41:b5: e4:23:2d:fc:a4:79:4b:5e:98:06:69:5a:d7:a7:b9:fa:9d:99: 7e:fc:fc:62 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHO0i5UNR6tOfjYl3xZLh/KN6TQkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTA4MTgzNzE4WhcNMjUxMDEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NjgzZDYxMjViODZhM2Q4ZTkwZTVlYmNmN2ZhNDE3MzEx YzM1NGUxMDU4MTRlMzgzZjk1NWY3ZDA4YmIyYzI4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTdfJhexwiEPpVZulrqpp/s77nIL56xfv9lkImur7QfFC8 KNVw3JMxR78dIOBmozu2ah76wEZsNfA2qP2qoj29EMRa/mK3gtf3Qz1wcpvd2AUa bUWGb/08QWBgVcHkJ+2RjGSB1ic+vIfBiVXlfsNNyLTalhTc+NudUjqCgaWz8laK lLSP6AQc3NtZZPkAcCM8HPVQl+HjCBGeQVGkjAMbLyRgovbuc8E9rHbA/zEy8VGE zXL+2JuIotk4bG6h7Ro9rqvstphXjcXMrBKAU6Kwtd8yqbrcLkbzWy//wzemHqr8 kEH3ubofUb8dr+blw8GJe5SMOfgXQfvXtkJAUr+JAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUwlgPZCup6OPc7GrWSwWDP2odNQMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ExYTUzMjNkLTgxMGMtNDIwOS1hMzZkLWU4NWQxZDA2MmMyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QowDQYJKoZIhvcNAQELBQADggEBAJSbsrdg0SWhU/2iLon9rRtd T5/kCMnn7Uf9gO11xssYlO9+x39AihbyAiKUou2d49QtXcJdXXOZxjH5EdStyDJJ qB9ZFRhbBo2xog/Mghlhp593OvdmnUB2J0oOF5GaUIZN1F2EwlqK/USxkJPg2AuD lyg5ZGu98VbArOyGPTmIwmkh1b5eW2JtTAXtunB0rv1rVCNEpt7ngvP7oAPdoVTr igHD/U8NbJOK4McuDecKawZyNOVTOPKcI2bKGAmuIauY9ZpPNPcL84n2FiT8ekAW lkOwhMpud3eWOCwSq/fXftrF0pwyE8hBteQjLfykeUtemAZpWtenufqdmX78/GI= -----END CERTIFICATE-----Generated at Fri Sep 19 19:38:26 2025 by rpki-client