$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa File: a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa (raw, json) Hash identifier: yB2I52j6nZTX8lxt2e2UFg9goNz+Ywk3oqGpomC4Axo= Subject key identifier: C5:5F:91:49:5C:CF:4F:2C:A9:5A:81:23:44:DA:0E:3B:E1:81:91:A4 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 41406A62F04C59259B00D7A22A6BFD19BECF8886 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa Signing time: Mon 01 Sep 2025 19:10:22 +0000 ROA not before: Mon 01 Sep 2025 19:10:22 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:551c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Sep 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:40:6a:62:f0:4c:59:25:9b:00:d7:a2:2a:6b:fd:19:be:cf:88:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 1 19:10:22 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=6219d143dcd33c61f4e9e753cc0e7b745dd80390c7cf89fb8f122f1017131b19, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:5f:fc:11:a4:5e:8c:ac:fa:25:ff:ab:8b:39: 6f:33:a8:73:89:d4:02:78:30:cd:ac:42:3e:35:6a: 16:25:9c:8c:31:27:de:71:f6:74:72:d4:cb:ac:4f: 32:42:9c:1b:89:09:a2:21:99:76:cf:da:e1:bd:85: e3:57:04:81:ac:0a:08:ab:64:f2:ec:96:35:22:49: 2f:fb:de:86:70:47:9c:26:5d:92:7a:1c:8c:68:0e: f7:a7:e3:b0:c6:a6:1a:65:29:41:b6:98:73:f7:76: 23:4f:0c:78:89:57:ea:c0:21:c9:1b:0b:60:69:ad: 9d:e7:5e:2e:a8:28:fb:87:f4:0a:8a:ef:9c:b9:c4: 73:c7:50:3d:59:58:3f:0f:c4:c3:09:54:e7:d6:2f: 6d:11:6b:80:82:a9:c9:73:4a:38:4f:a8:0c:18:00: 8d:94:d0:bf:c7:11:f0:db:c4:99:aa:aa:38:47:4c: ff:a0:1a:56:98:1e:3e:e6:88:dd:b2:77:ca:12:42: 04:29:4e:4c:99:d6:0f:2e:df:64:7a:0b:fb:a9:b1: 45:2a:fa:18:93:19:82:44:00:15:a7:13:d1:8e:76: b1:34:ee:d6:7b:c7:1b:3d:9d:87:f7:90:15:a0:1a: a8:3b:6c:e1:74:f1:ef:a0:86:be:b1:84:26:5b:6f: 1c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:5F:91:49:5C:CF:4F:2C:A9:5A:81:23:44:DA:0E:3B:E1:81:91:A4 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551c::/48 Signature Algorithm: sha256WithRSAEncryption a2:6d:fc:08:c4:1d:46:18:ae:28:03:24:7f:92:18:2b:97:98: cd:68:97:16:dc:2b:ea:96:e6:99:23:c8:0d:78:5b:29:2e:ae: 86:87:e8:cc:4d:8d:66:75:d1:c9:f3:02:78:a0:63:c2:97:93: 36:db:0f:24:c2:d4:ed:8b:09:1e:87:37:d0:49:2a:8e:70:1a: e7:f7:14:d7:7e:b1:d1:d0:8c:07:87:81:1c:31:04:77:18:90: e5:01:55:9f:fa:a6:93:1b:f2:06:47:e4:75:f9:ac:6a:18:19: 80:81:3d:bf:a3:4d:0f:a6:96:b9:48:c2:33:c5:85:c1:16:b0: df:5f:53:9d:1d:56:92:8c:fe:8f:62:77:0b:50:06:db:40:17: 4c:42:ef:7f:70:cc:e8:ce:86:5a:cc:1e:3b:c6:d7:2a:ee:57: 43:a5:ad:1b:59:b5:a9:cd:fc:37:88:13:6e:3e:c8:22:14:b7: ca:b4:74:fe:dc:e5:d6:e3:c2:41:4b:64:17:70:fc:cf:af:65: 1b:a4:b4:fd:88:b3:35:ef:43:b7:64:93:b1:b8:2d:4b:ab:54: 97:4d:b3:12:98:29:c4:21:39:5a:21:94:b4:e6:ba:28:5f:40: 5a:03:b9:f6:e4:a6:ef:33:ba:8a:cb:d9:c0:c5:f2:22:c7:41: a0:20:16:15 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQUBqYvBMWSWbANeiKmv9Gb7PiIYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTAxMTkxMDIyWhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MjE5ZDE0M2RjZDMzYzYxZjRlOWU3NTNjYzBlN2I3NDVk ZDgwMzkwYzdjZjg5ZmI4ZjEyMmYxMDE3MTMxYjE5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbX/wRpF6MrPol/6uLOW8zqHOJ1AJ4MM2sQj41ahYlnIwx J95x9nRy1MusTzJCnBuJCaIhmXbP2uG9heNXBIGsCgirZPLsljUiSS/73oZwR5wm XZJ6HIxoDven47DGphplKUG2mHP3diNPDHiJV+rAIckbC2BprZ3nXi6oKPuH9AqK 75y5xHPHUD1ZWD8PxMMJVOfWL20Ra4CCqclzSjhPqAwYAI2U0L/HEfDbxJmqqjhH TP+gGlaYHj7miN2yd8oSQgQpTkyZ1g8u32R6C/upsUUq+hiTGYJEABWnE9GOdrE0 7tZ7xxs9nYf3kBWgGqg7bOF08e+ghr6xhCZbbxz7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUxV+RSVzPTyypWoEjRNoOO+GBkaQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E2NWRjNTc5LTU1ZDAtNDY0MC04ZWU1LTZiZDcwZTNkZDcyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRwwDQYJKoZIhvcNAQELBQADggEBAKJt/AjEHUYYrigDJH+SGCuX mM1olxbcK+qW5pkjyA14WykuroaH6MxNjWZ10cnzAnigY8KXkzbbDyTC1O2LCR6H N9BJKo5wGuf3FNd+sdHQjAeHgRwxBHcYkOUBVZ/6ppMb8gZH5HX5rGoYGYCBPb+j TQ+mlrlIwjPFhcEWsN9fU50dVpKM/o9idwtQBttAF0xC739wzOjOhlrMHjvG1yru V0OlrRtZtanN/DeIE24+yCIUt8q0dP7c5dbjwkFLZBdw/M+vZRuktP2IszXvQ7dk k7G4LUurVJdNsxKYKcQhOVohlLTmuihfQFoDufbkpu8zuorL2cDF8iLHQaAgFhU= -----END CERTIFICATE-----Generated at Wed Sep 17 23:39:02 2025 by rpki-client