$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a4f9065c-8922-4d3f-b9ac-82a6edd499c9.roa File: a4f9065c-8922-4d3f-b9ac-82a6edd499c9.roa (raw, json) Hash identifier: LWNjPMPSeAhW57hY03MYDIgq+ii5L9uqTiBqFPDOcsk= Subject key identifier: B3:86:C3:3E:92:6C:FD:B7:E7:A9:4D:E0:6F:15:60:CB:AA:62:2C:D1 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 31A81097D7E889720BC0CF531B710819E4A95712 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a4f9065c-8922-4d3f-b9ac-82a6edd499c9.roa Signing time: Mon 08 Sep 2025 18:37:09 +0000 ROA not before: Mon 08 Sep 2025 18:37:09 +0000 ROA not after: Mon 13 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f101::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:a8:10:97:d7:e8:89:72:0b:c0:cf:53:1b:71:08:19:e4:a9:57:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 8 18:37:09 2025 GMT Not After : Oct 13 23:59:59 2025 GMT Subject: serialNumber=c948e52c6a3c550562ace432a99d78fab8aa1a4f1f66924bd2f6c1f6d5522959, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c0:d8:05:2c:40:d0:7c:fe:e8:5c:db:8c:1e: f3:cf:c1:44:df:78:71:58:31:52:c8:f7:fc:56:32: 05:66:24:9a:ef:6f:bf:60:93:87:3e:94:11:c3:80: d9:71:8e:5b:e9:60:aa:cd:d1:b9:6f:57:9d:33:9c: 69:e2:9b:74:fa:64:a2:37:15:6b:33:bc:5e:d9:2d: 9c:4c:6e:b6:aa:18:9b:b6:52:3e:43:c1:de:36:03: 5f:70:7b:15:e4:bd:c4:01:11:4b:57:4b:ec:24:a2: 3d:b0:d4:b9:a3:0f:a3:3d:6c:d3:43:9e:b1:e1:24: b6:de:09:5f:d8:27:34:df:8c:74:82:8c:68:9a:7f: 45:8d:75:dc:1f:8a:ca:69:45:61:c2:ea:50:bb:09: b7:53:c9:02:f8:42:a0:c7:65:46:14:4e:c6:c5:3e: 28:d3:68:68:c0:e9:3a:64:b3:3d:bb:9a:52:bb:bb: 62:de:b6:7a:7a:dc:ff:ae:e5:f8:a4:fb:eb:62:b1: 8d:04:c8:5e:23:3d:c3:6e:11:b0:e6:f1:56:bc:ab: 23:8e:f3:5c:84:18:fa:da:b8:87:26:72:35:96:ee: 8b:c7:e2:b2:d9:c7:11:26:e7:fb:6e:d9:03:09:cf: 8f:1b:cc:35:8f:11:53:9c:16:39:24:63:08:31:f9: 85:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:86:C3:3E:92:6C:FD:B7:E7:A9:4D:E0:6F:15:60:CB:AA:62:2C:D1 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a4f9065c-8922-4d3f-b9ac-82a6edd499c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f101::/48 Signature Algorithm: sha256WithRSAEncryption 27:36:38:2c:74:3a:a0:05:d9:72:5e:23:f9:81:5f:1d:96:c6: 69:f1:10:34:c9:88:a2:89:9f:66:e8:6f:93:ab:29:53:04:0e: 2e:08:e0:86:0b:fc:bc:b7:ec:7f:e6:14:a7:63:e2:39:d0:14: a6:a0:77:e5:9a:da:2a:14:ea:68:de:03:4f:37:13:1a:27:ed: 1b:71:3b:6b:84:c8:43:70:94:b4:27:e1:41:c8:3d:79:7d:bc: 55:bf:58:b8:6f:54:14:24:40:6a:5e:ba:83:21:1f:d3:38:68: 7b:d8:0f:19:40:e6:0a:44:e1:df:05:41:d9:73:45:f9:64:f8: 1b:87:65:5f:10:27:b4:df:4f:79:71:85:0d:a4:ca:92:3c:2a: 87:68:fd:a3:fb:a6:93:b3:5a:70:13:9a:4b:d5:3e:68:d8:54: b6:66:6b:76:f0:35:e2:4b:ca:b5:71:87:dd:5e:ef:7c:f9:bf: a9:dc:5a:60:26:71:7c:5e:46:7a:00:8b:c1:fb:1d:4b:67:cd: 43:ac:06:e8:77:3f:e1:84:11:ce:2e:da:56:41:22:89:eb:ef: 5e:1d:ba:2b:4c:5a:01:fe:0b:d0:89:5b:ee:47:e9:3f:24:25: 5e:53:82:d3:74:5d:ed:7a:4c:ec:5e:60:23:cd:8b:72:89:a1: ad:f0:4d:0e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMagQl9foiXILwM9TG3EIGeSpVxIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTA4MTgzNzA5WhcNMjUxMDEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjOTQ4ZTUyYzZhM2M1NTA1NjJhY2U0MzJhOTlkNzhmYWI4 YWExYTRmMWY2NjkyNGJkMmY2YzFmNmQ1NTIyOTU5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+wNgFLEDQfP7oXNuMHvPPwUTfeHFYMVLI9/xWMgVmJJrv b79gk4c+lBHDgNlxjlvpYKrN0blvV50znGnim3T6ZKI3FWszvF7ZLZxMbraqGJu2 Uj5Dwd42A19wexXkvcQBEUtXS+wkoj2w1LmjD6M9bNNDnrHhJLbeCV/YJzTfjHSC jGiaf0WNddwfisppRWHC6lC7CbdTyQL4QqDHZUYUTsbFPijTaGjA6Tpksz27mlK7 u2Letnp63P+u5fik++tisY0EyF4jPcNuEbDm8Va8qyOO81yEGPrauIcmcjWW7ovH 4rLZxxEm5/tu2QMJz48bzDWPEVOcFjkkYwgx+YWHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUs4bDPpJs/bfnqU3gbxVgy6piLNEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E0ZjkwNjVjLTg5MjItNGQzZi1iOWFjLTgyYTZlZGQ0OTljOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QEwDQYJKoZIhvcNAQELBQADggEBACc2OCx0OqAF2XJeI/mBXx2W xmnxEDTJiKKJn2bob5OrKVMEDi4I4IYL/Ly37H/mFKdj4jnQFKagd+Wa2ioU6mje A083Exon7RtxO2uEyENwlLQn4UHIPXl9vFW/WLhvVBQkQGpeuoMhH9M4aHvYDxlA 5gpE4d8FQdlzRflk+BuHZV8QJ7TfT3lxhQ2kypI8Kodo/aP7ppOzWnATmkvVPmjY VLZma3bwNeJLyrVxh91e73z5v6ncWmAmcXxeRnoAi8H7HUtnzUOsBuh3P+GEEc4u 2lZBIonr714duitMWgH+C9CJW+5H6T8kJV5TgtN0Xe16TOxeYCPNi3KJoa3wTQ4= -----END CERTIFICATE-----Generated at Fri Sep 19 08:03:55 2025 by rpki-client