$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c7dfb6fc-ab51-45b7-aa1c-723b8c263e73.roa File: c7dfb6fc-ab51-45b7-aa1c-723b8c263e73.roa (raw, json) Hash identifier: nO/b2T9X1FMFvY6gK/mOplNjSt5FbNIQvxdffpy+y2w= Subject key identifier: 42:EB:1B:6B:0C:C2:2F:2F:FF:A6:ED:CA:2D:74:BD:AE:AF:0A:A2:7E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 61D69A668DF527D095178B6B8C92AD4583C0C24F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c7dfb6fc-ab51-45b7-aa1c-723b8c263e73.roa Signing time: Mon 08 Sep 2025 18:37:17 +0000 ROA not before: Mon 08 Sep 2025 18:37:17 +0000 ROA not after: Mon 13 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f109::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:d6:9a:66:8d:f5:27:d0:95:17:8b:6b:8c:92:ad:45:83:c0:c2:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 8 18:37:17 2025 GMT Not After : Oct 13 23:59:59 2025 GMT Subject: serialNumber=bde169ecf1e058ce810352f9cd3a45f0d0a5df92cd0476370445dce870450d82, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:15:c5:02:36:be:99:cb:6a:49:a6:d7:97:b6: 46:b5:f3:52:27:e6:5f:4c:45:34:b1:c7:aa:16:0b: cc:eb:34:c6:d1:05:1c:e4:f3:b0:b8:1e:f1:a7:5b: 7a:51:c4:7e:67:56:d3:bd:c3:62:94:e8:5e:08:8d: f7:b4:ad:36:40:64:2d:3e:1c:f2:c2:25:2c:4e:57: 0d:be:bf:df:1a:a1:03:73:d9:16:8e:1c:a9:da:fb: ea:6f:10:73:55:d6:d4:de:bd:ba:99:eb:0a:82:02: 90:a1:2b:81:7e:9e:92:f0:f2:8a:cd:66:20:28:bb: 5d:66:2b:9b:9e:9f:a0:93:68:35:0e:e0:aa:ee:71: 14:c1:e2:74:36:00:08:23:3d:e9:fb:b2:ed:d7:0e: c4:66:00:58:7f:d5:65:01:d9:08:09:ee:26:a9:ec: f2:60:36:4e:6a:33:ee:ac:72:eb:fd:ae:97:1e:6a: ee:c8:93:bd:96:cf:ae:4e:53:68:20:8d:7e:aa:fc: 3a:67:fe:55:d3:a1:2f:60:73:bd:10:d8:3f:12:cc: 7b:e0:2c:c6:83:8c:ad:16:29:e3:70:87:48:da:0a: 4d:a2:40:7e:8a:b6:74:01:35:03:53:88:2b:53:6e: 88:25:e6:71:25:ed:ba:e3:9b:2e:68:23:6b:71:16: 81:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:EB:1B:6B:0C:C2:2F:2F:FF:A6:ED:CA:2D:74:BD:AE:AF:0A:A2:7E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c7dfb6fc-ab51-45b7-aa1c-723b8c263e73.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f109::/48 Signature Algorithm: sha256WithRSAEncryption 60:34:b9:64:fe:e8:48:4f:45:82:7f:c6:49:7d:ea:e2:db:b1: 67:69:f6:6a:24:34:eb:a2:96:6e:b4:df:91:4a:10:1d:e7:1a: 8b:09:94:86:bd:56:0a:25:c8:e2:b7:2e:96:f0:ef:c4:e9:9e: 04:d4:b7:f0:d9:03:c2:cc:07:c1:89:bd:84:ae:72:71:40:cc: 94:d1:3a:7a:40:ab:8d:d7:d5:e6:89:11:c6:f1:e2:70:8c:ac: e5:c8:0a:a9:86:b1:58:5c:0e:62:59:f1:6d:3a:21:a8:ba:1e: 72:7d:e9:1a:0d:30:3d:c2:7e:7d:b4:c9:67:a2:5b:4f:0c:b4: de:4a:12:2e:5e:60:c3:aa:0d:06:61:75:09:1c:82:67:76:df: c7:b0:1e:fa:88:e0:eb:bd:f5:f8:c5:ca:c0:b7:f8:9b:ca:3c: 88:f5:57:05:c8:d0:b0:ea:57:de:f0:74:0d:63:54:da:3a:68: 71:85:a5:cb:49:10:76:81:d1:ef:0b:99:e3:eb:68:2b:97:da: b7:5c:be:7e:0d:43:5c:9f:b5:be:3e:eb:5e:5c:9a:de:ec:7c: ba:80:4c:cd:3d:c4:8f:f5:e7:bf:2a:2d:00:ce:45:b6:9f:15: 00:de:1f:1c:cd:af:66:bb:f8:bc:a1:43:24:e2:6d:9b:6b:25: 65:1d:bd:a8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYdaaZo31J9CVF4trjJKtRYPAwk8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTA4MTgzNzE3WhcNMjUxMDEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZGUxNjllY2YxZTA1OGNlODEwMzUyZjljZDNhNDVmMGQw YTVkZjkyY2QwNDc2MzcwNDQ1ZGNlODcwNDUwZDgyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjFcUCNr6Zy2pJpteXtka181In5l9MRTSxx6oWC8zrNMbR BRzk87C4HvGnW3pRxH5nVtO9w2KU6F4Ijfe0rTZAZC0+HPLCJSxOVw2+v98aoQNz 2RaOHKna++pvEHNV1tTevbqZ6wqCApChK4F+npLw8orNZiAou11mK5uen6CTaDUO 4KrucRTB4nQ2AAgjPen7su3XDsRmAFh/1WUB2QgJ7iap7PJgNk5qM+6scuv9rpce au7Ik72Wz65OU2ggjX6q/Dpn/lXToS9gc70Q2D8SzHvgLMaDjK0WKeNwh0jaCk2i QH6KtnQBNQNTiCtTbogl5nEl7brjmy5oI2txFoEPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQusbawzCLy//pu3KLXS9rq8Kon4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M3ZGZiNmZjLWFiNTEtNDViNy1hYTFjLTcyM2I4YzI2M2U3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QkwDQYJKoZIhvcNAQELBQADggEBAGA0uWT+6EhPRYJ/xkl96uLb sWdp9mokNOuilm6035FKEB3nGosJlIa9VgolyOK3Lpbw78TpngTUt/DZA8LMB8GJ vYSucnFAzJTROnpAq43X1eaJEcbx4nCMrOXICqmGsVhcDmJZ8W06Iai6HnJ96RoN MD3Cfn20yWeiW08MtN5KEi5eYMOqDQZhdQkcgmd238ewHvqI4Ou99fjFysC3+JvK PIj1VwXI0LDqV97wdA1jVNo6aHGFpctJEHaB0e8LmePraCuX2rdcvn4NQ1yftb4+ 615cmt7sfLqATM09xI/1578qLQDORbafFQDeHxzNr2a7+LyhQyTibZtrJWUdvag= -----END CERTIFICATE-----Generated at Fri Sep 19 09:38:33 2025 by rpki-client