$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a3e10b40-ca3b-4631-9c39-e3dee6a31d8e.roa File: a3e10b40-ca3b-4631-9c39-e3dee6a31d8e.roa (raw, json) Hash identifier: +yg+kj7iV3SGW59A7gc6wtme8bSsG1PVxZcuCB6bTSc= Subject key identifier: 25:55:06:64:C5:50:2A:83:EB:AE:8C:FA:15:A8:51:D6:35:E7:B5:9B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: AD01594C8F311E9C393C9A1A7F5228B035CE63 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a3e10b40-ca3b-4631-9c39-e3dee6a31d8e.roa Signing time: Mon 08 Sep 2025 18:37:19 +0000 ROA not before: Mon 08 Sep 2025 18:37:19 +0000 ROA not after: Mon 13 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f10b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: ad:01:59:4c:8f:31:1e:9c:39:3c:9a:1a:7f:52:28:b0:35:ce:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 8 18:37:19 2025 GMT Not After : Oct 13 23:59:59 2025 GMT Subject: serialNumber=1c12e532d4fe1c6d3571f9aa5e759a7c99c2c7f4be8675e7e8187e590781a056, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:1c:c5:3f:ae:f0:e6:57:5b:c6:21:98:a0:77: f1:6c:8b:8e:87:49:9b:92:72:2d:81:2f:a2:08:71: 53:7a:a7:4c:e2:4e:2d:9f:d6:08:61:13:1c:24:98: 80:8f:c5:77:74:1b:5c:29:21:c2:ee:59:3d:be:7f: 72:de:2c:cc:3e:84:a5:78:d9:42:43:b1:0e:8d:6a: 8b:1a:83:2c:14:28:37:bb:0a:a4:7c:c2:9e:2c:e8: 73:19:74:b9:6e:14:7f:01:d8:80:0c:01:f8:91:33: 0a:50:bf:b7:f2:60:f3:ec:87:4f:62:16:89:b8:40: 1c:b2:50:e6:39:9f:eb:d8:fc:1e:5e:02:f1:13:91: ca:42:95:53:e7:d0:cc:bf:b5:d0:09:18:bb:a5:26: 70:67:55:0b:7e:c8:93:d4:34:5a:74:0c:32:21:93: d8:8e:78:88:eb:ce:39:a6:a8:d2:3e:75:ef:b9:a1: 1b:1f:ad:eb:2b:20:57:ed:f9:5d:0a:08:c7:57:3a: dc:c4:f5:55:1e:2f:92:bf:26:ff:e2:07:62:78:b5: 26:5d:ee:af:95:c7:74:63:55:38:52:92:e1:01:75: a5:0f:dc:47:5d:b1:3f:51:ed:6f:a4:54:11:c8:b2: 0c:41:7a:d5:a4:55:4a:60:a0:c5:29:06:cc:0e:76: 98:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:55:06:64:C5:50:2A:83:EB:AE:8C:FA:15:A8:51:D6:35:E7:B5:9B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a3e10b40-ca3b-4631-9c39-e3dee6a31d8e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f10b::/48 Signature Algorithm: sha256WithRSAEncryption 07:78:21:14:e4:c4:65:fc:05:a8:92:e3:ad:b5:3b:3a:4d:ef: e5:ee:80:70:49:39:d1:2c:23:94:58:dc:a1:46:c8:11:30:55: 90:31:ee:1d:ac:98:9d:70:5c:53:63:0e:01:24:16:59:4a:03: 7b:b5:e3:c6:a2:ba:84:c5:e0:f7:68:dc:de:43:87:64:7f:30: 12:0d:09:a2:8f:42:bd:e4:81:03:52:06:79:ad:f6:bc:1c:b1: dc:6a:81:c4:aa:20:5c:18:19:c4:40:68:a4:2f:d3:2a:f2:b0: 23:8b:41:18:70:4d:4d:44:ee:fc:55:70:4d:94:8a:d0:e5:ed: 3d:47:71:66:e2:11:f3:c5:0c:e7:c6:ba:56:b4:20:74:58:38: 4e:44:76:34:4a:9b:c8:fd:bd:74:ef:7c:d5:68:91:a0:e9:39: 22:a4:19:1a:49:2f:c3:55:45:50:ee:a5:8b:10:f6:e2:1f:40: 5c:ac:2c:69:db:65:a7:f2:b6:10:9a:d5:90:df:76:6b:91:6a: 2a:56:62:be:53:09:d4:3c:cf:f5:89:bd:da:8c:8a:b2:30:39: e9:63:43:80:a5:1d:e5:c7:93:cb:4c:75:4e:08:9f:29:26:a6: ce:eb:fa:98:e9:31:16:2c:15:97:a2:97:fb:0d:14:41:5e:fc: 35:20:c3:14 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUAK0BWUyPMR6cOTyaGn9SKLA1zmMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTA4MTgzNzE5WhcNMjUxMDEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxYzEyZTUzMmQ0ZmUxYzZkMzU3MWY5YWE1ZTc1OWE3Yzk5 YzJjN2Y0YmU4Njc1ZTdlODE4N2U1OTA3ODFhMDU2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBHMU/rvDmV1vGIZigd/Fsi46HSZuSci2BL6IIcVN6p0zi Ti2f1ghhExwkmICPxXd0G1wpIcLuWT2+f3LeLMw+hKV42UJDsQ6NaosagywUKDe7 CqR8wp4s6HMZdLluFH8B2IAMAfiRMwpQv7fyYPPsh09iFom4QByyUOY5n+vY/B5e AvETkcpClVPn0My/tdAJGLulJnBnVQt+yJPUNFp0DDIhk9iOeIjrzjmmqNI+de+5 oRsfresrIFft+V0KCMdXOtzE9VUeL5K/Jv/iB2J4tSZd7q+Vx3RjVThSkuEBdaUP 3EddsT9R7W+kVBHIsgxBetWkVUpgoMUpBswOdph7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUJVUGZMVQKoPrroz6FahR1jXntZswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2EzZTEwYjQwLWNhM2ItNDYzMS05YzM5LWUzZGVlNmEzMWQ4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QswDQYJKoZIhvcNAQELBQADggEBAAd4IRTkxGX8BaiS4621OzpN 7+XugHBJOdEsI5RY3KFGyBEwVZAx7h2smJ1wXFNjDgEkFllKA3u148aiuoTF4Pdo 3N5Dh2R/MBINCaKPQr3kgQNSBnmt9rwcsdxqgcSqIFwYGcRAaKQv0yrysCOLQRhw TU1E7vxVcE2UitDl7T1HcWbiEfPFDOfGula0IHRYOE5EdjRKm8j9vXTvfNVokaDp OSKkGRpJL8NVRVDupYsQ9uIfQFysLGnbZafythCa1ZDfdmuRaipWYr5TCdQ8z/WJ vdqMirIwOeljQ4ClHeXHk8tMdU4Inykmps7r+pjpMRYsFZeil/sNFEFe/DUgwxQ= -----END CERTIFICATE-----Generated at Fri Sep 19 09:47:01 2025 by rpki-client