$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c2745679-db1e-409b-9051-e4eb09db7fe3.roa File: c2745679-db1e-409b-9051-e4eb09db7fe3.roa (raw, json) Hash identifier: 45+G1lJOswhecnjUw7M3agDxTxkem2zfIiPBeFqF3tI= Subject key identifier: 0A:FB:D7:9D:3F:65:F9:A4:EF:F0:45:BD:74:02:EF:22:6B:77:65:97 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0BD10E870DC209AA651948B8CB6D1561CD441D8F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c2745679-db1e-409b-9051-e4eb09db7fe3.roa Signing time: Fri 15 Aug 2025 21:22:02 +0000 ROA not before: Fri 15 Aug 2025 21:22:02 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:611d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:d1:0e:87:0d:c2:09:aa:65:19:48:b8:cb:6d:15:61:cd:44:1d:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 15 21:22:02 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=3c55360a24ffeb32a4942b1b808ef2227b30dbb21b846ee75e1ff26d2ea4e250, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:09:c7:d2:fd:1b:e6:bc:10:28:2f:87:cf:07: d3:07:17:d1:f1:fb:a4:65:25:bc:94:d0:28:2c:9b: 53:b3:a0:dc:1d:c1:73:0d:d2:32:1b:ba:d6:35:4d: 8b:7a:f7:f0:9f:fd:fd:5b:28:58:64:23:fa:5c:7c: 10:e8:9d:6f:11:3a:4b:e7:35:58:85:c0:5e:2e:ea: d5:df:68:b7:bf:6c:fc:ad:20:27:2c:82:f9:b3:40: 2f:b4:95:3e:39:bc:70:fd:b7:3a:f4:bf:85:fd:f2: 17:6c:0c:f0:2c:55:d8:6c:21:20:72:42:8e:53:56: bb:30:40:d4:99:96:ba:74:f6:8f:1b:29:7c:48:7f: 13:ca:43:13:ee:68:0d:92:2e:71:7d:f7:62:36:c6: b2:ec:c2:dc:06:28:31:67:aa:99:09:07:cf:75:60: 5a:f0:74:a1:1d:17:31:c2:74:cb:fc:87:84:b7:b8: 72:da:9a:31:4a:45:63:0a:c8:f0:35:7a:4a:92:14: 66:63:65:bb:46:26:32:02:d8:8a:3a:1b:bd:b7:43: 14:4f:c9:7c:1e:a2:1a:e1:b8:a3:b5:d1:c3:20:17: 93:a6:02:fc:d6:d0:f8:79:71:52:a2:d7:be:e0:2e: fa:ef:b1:ac:7e:e1:cb:4d:a6:33:0f:c0:f3:f9:0a: ba:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:FB:D7:9D:3F:65:F9:A4:EF:F0:45:BD:74:02:EF:22:6B:77:65:97 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c2745679-db1e-409b-9051-e4eb09db7fe3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:611d::/48 Signature Algorithm: sha256WithRSAEncryption 71:a7:44:b8:d5:12:cb:40:30:2b:b6:34:38:6a:25:ea:88:6a: 0c:4f:72:1b:93:50:c2:6c:99:67:91:65:e8:60:35:e1:f7:1d: f3:d2:fb:ff:c1:38:ad:22:5c:55:67:75:63:3a:4e:92:8e:2b: 1a:fd:f7:08:f5:59:a4:ff:78:92:52:04:5d:d8:f8:f2:81:c1: 2c:88:23:a3:26:75:cd:95:99:e8:52:ec:53:73:dc:67:c4:da: 54:57:58:45:93:80:a3:7d:00:a5:a1:c8:0d:ad:67:4a:1b:0d: fa:ba:ce:94:73:97:48:34:7e:cb:32:df:0e:bc:d1:e4:7d:cb: ed:68:99:e9:3b:7b:67:16:7b:1e:a3:c5:dc:2c:ad:dd:2f:8a: 4d:3f:c5:4d:d4:73:c3:68:77:41:47:5c:e0:20:0b:05:01:de: b1:3a:39:ad:c7:49:05:cd:9f:d6:c2:29:cc:70:ed:ca:5e:cc: 83:92:b9:2c:c9:f6:0e:46:0f:5c:fc:c9:14:7f:a5:45:16:69: b6:c0:29:5c:df:7d:1a:00:3f:27:23:fa:9b:e6:fe:75:9f:6a: af:22:5d:f8:d7:28:85:a6:76:3f:38:9c:a8:8b:fa:98:a1:f2: df:e1:aa:4d:49:d2:19:af:fb:40:03:d7:07:08:23:bd:56:2a: 50:6b:b7:6a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUC9EOhw3CCaplGUi4y20VYc1EHY8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE1MjEyMjAyWhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYzU1MzYwYTI0ZmZlYjMyYTQ5NDJiMWI4MDhlZjIyMjdi MzBkYmIyMWI4NDZlZTc1ZTFmZjI2ZDJlYTRlMjUwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5CcfS/RvmvBAoL4fPB9MHF9Hx+6RlJbyU0Cgsm1OzoNwd wXMN0jIbutY1TYt69/Cf/f1bKFhkI/pcfBDonW8ROkvnNViFwF4u6tXfaLe/bPyt ICcsgvmzQC+0lT45vHD9tzr0v4X98hdsDPAsVdhsISByQo5TVrswQNSZlrp09o8b KXxIfxPKQxPuaA2SLnF992I2xrLswtwGKDFnqpkJB891YFrwdKEdFzHCdMv8h4S3 uHLamjFKRWMKyPA1ekqSFGZjZbtGJjIC2Io6G723QxRPyXweohrhuKO10cMgF5Om AvzW0Ph5cVKi177gLvrvsax+4ctNpjMPwPP5CrqtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUCvvXnT9l+aTv8EW9dALvImt3ZZcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2MyNzQ1Njc5LWRiMWUtNDA5Yi05MDUxLWU0ZWIwOWRiN2ZlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYR0wDQYJKoZIhvcNAQELBQADggEBAHGnRLjVEstAMCu2NDhqJeqI agxPchuTUMJsmWeRZehgNeH3HfPS+//BOK0iXFVndWM6TpKOKxr99wj1WaT/eJJS BF3Y+PKBwSyII6Mmdc2VmehS7FNz3GfE2lRXWEWTgKN9AKWhyA2tZ0obDfq6zpRz l0g0fssy3w680eR9y+1omek7e2cWex6jxdwsrd0vik0/xU3Uc8Nod0FHXOAgCwUB 3rE6Oa3HSQXNn9bCKcxw7cpezIOSuSzJ9g5GD1z8yRR/pUUWabbAKVzffRoAPycj +pvm/nWfaq8iXfjXKIWmdj84nKiL+pih8t/hqk1J0hmv+0AD1wcII71WKlBrt2o= -----END CERTIFICATE-----Generated at Wed Aug 20 10:44:34 2025 by rpki-client