$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c91dc110-e4d6-4a78-90dc-94e4d2083c89.roa File: c91dc110-e4d6-4a78-90dc-94e4d2083c89.roa (raw, json) Hash identifier: h2H65wESQujuG9E0gEn92iqmOv7NkjSwAQmr0W/eujM= Subject key identifier: 71:10:EB:0B:AB:7F:8D:D5:05:E0:AF:2C:0B:6F:C3:75:8B:FC:1E:5B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 06BCE1B4EB3735BA1D1D53CF187C81E0F69C93D0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c91dc110-e4d6-4a78-90dc-94e4d2083c89.roa Signing time: Fri 15 Aug 2025 15:30:14 +0000 ROA not before: Fri 15 Aug 2025 15:30:14 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:bc:e1:b4:eb:37:35:ba:1d:1d:53:cf:18:7c:81:e0:f6:9c:93:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 15 15:30:14 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=6e774fbde1e0c4fce3b61b6f736a2f3cbac10bd5047525abf9aff7b3c85e33f5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:c0:bd:01:6a:a3:3d:bd:2e:01:0d:12:0b:f8: 4d:39:6b:ca:55:cd:10:7a:57:77:e3:98:60:52:c2: e0:8c:ab:c3:db:b7:06:01:68:7c:b4:62:4f:5f:e4: 9a:31:55:cf:be:ec:9e:9f:d0:b9:1d:f5:11:6c:0f: 95:a2:8c:5d:cc:ad:28:8c:af:b4:23:3e:ae:38:e2: f4:25:1e:1d:0d:90:2f:8e:54:7a:55:22:c2:fa:d1: 62:fa:fd:73:b7:d1:f9:ea:15:3c:09:03:44:d4:76: e3:df:2d:ef:81:12:af:28:83:ed:7d:7b:30:61:99: d2:04:5b:d0:62:c3:6d:34:bb:33:a0:01:2c:0a:1c: 42:3c:0e:91:bc:4a:e8:9a:75:f7:5a:95:b2:05:db: d4:74:8c:92:72:74:93:7f:f6:9f:e7:83:b7:c2:fd: f4:19:51:83:3d:4f:6d:9b:2c:7e:8c:1a:e0:dc:f9: 18:40:02:2f:b8:67:18:40:b2:ba:a9:cf:61:48:be: f7:1a:51:48:f4:ed:16:7b:d0:3c:8b:e4:4e:2b:f1: 19:8f:d1:8c:ee:4a:ee:fd:2e:b9:1e:ae:a9:37:ec: f9:37:1b:37:bb:0c:0d:1f:83:85:3f:8a:a9:2c:4b: 7a:c3:b9:9d:24:a2:1a:38:e9:da:ae:5e:31:50:d7: 73:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:10:EB:0B:AB:7F:8D:D5:05:E0:AF:2C:0B:6F:C3:75:8B:FC:1E:5B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c91dc110-e4d6-4a78-90dc-94e4d2083c89.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:100::/40 Signature Algorithm: sha256WithRSAEncryption 84:c7:e7:01:83:b4:35:93:65:57:8c:86:50:3c:d4:e4:29:99: 6f:14:91:6a:b2:12:20:08:20:43:2a:13:c9:c0:e6:7d:3e:70: a8:28:2f:5b:e5:5e:01:3c:47:04:86:20:d9:70:5f:2d:67:81: 0a:fc:97:d4:0a:b3:92:df:92:14:ed:f3:aa:17:48:39:69:2e: 49:25:28:26:85:59:48:cb:9a:ff:fc:7f:fd:a3:60:57:96:16: 58:ec:95:40:5f:2c:eb:66:37:ed:20:b5:63:0c:ce:ae:a7:16: 78:a9:68:23:62:75:79:cc:f7:3a:e2:28:8c:c9:f7:c0:e7:ee: f4:5b:51:77:80:e1:0c:9a:34:49:4e:51:ac:6b:f4:a4:21:dc: 35:69:5e:9b:83:54:58:5c:a7:36:d2:0c:35:73:1f:a9:b0:11: 79:8f:87:bf:b7:f9:29:38:3f:96:46:87:b8:d2:b5:89:31:96: 00:5f:c6:3d:47:56:2b:40:a6:a6:b7:00:50:72:a4:ee:49:2e: 39:80:c6:57:1d:d7:8d:df:e0:f2:8f:fb:f3:62:f3:08:b0:bd: 91:32:9d:11:41:33:64:57:f0:31:87:e1:e9:50:bc:9d:60:51: 04:2d:a9:8a:9e:19:11:ed:a6:c9:8c:dc:83:03:17:25:35:f6: e4:f1:f3:10 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUBrzhtOs3NbodHVPPGHyB4Pack9AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE1MTUzMDE0WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTc3NGZiZGUxZTBjNGZjZTNiNjFiNmY3MzZhMmYzY2Jh YzEwYmQ1MDQ3NTI1YWJmOWFmZjdiM2M4NWUzM2Y1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXwL0BaqM9vS4BDRIL+E05a8pVzRB6V3fjmGBSwuCMq8Pb twYBaHy0Yk9f5JoxVc++7J6f0Lkd9RFsD5WijF3MrSiMr7QjPq444vQlHh0NkC+O VHpVIsL60WL6/XO30fnqFTwJA0TUduPfLe+BEq8og+19ezBhmdIEW9Biw200uzOg ASwKHEI8DpG8SuiadfdalbIF29R0jJJydJN/9p/ng7fC/fQZUYM9T22bLH6MGuDc +RhAAi+4ZxhAsrqpz2FIvvcaUUj07RZ70DyL5E4r8RmP0YzuSu79Lrkerqk37Pk3 Gze7DA0fg4U/iqksS3rDuZ0koho46dquXjFQ13NjAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUcRDrC6t/jdUF4K8sC2/DdYv8HlswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M5MWRjMTEwLWU0ZDYtNGE3OC05MGRjLTk0ZTRkMjA4M2M4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwATANBgkqhkiG9w0BAQsFAAOCAQEAhMfnAYO0NZNlV4yGUDzU5CmZ bxSRarISIAggQyoTycDmfT5wqCgvW+VeATxHBIYg2XBfLWeBCvyX1Aqzkt+SFO3z qhdIOWkuSSUoJoVZSMua//x//aNgV5YWWOyVQF8s62Y37SC1YwzOrqcWeKloI2J1 ecz3OuIojMn3wOfu9FtRd4DhDJo0SU5RrGv0pCHcNWlem4NUWFynNtIMNXMfqbAR eY+Hv7f5KTg/lkaHuNK1iTGWAF/GPUdWK0CmprcAUHKk7kkuOYDGVx3Xjd/g8o/7 82LzCLC9kTKdEUEzZFfwMYfh6VC8nWBRBC2pip4ZEe2myYzcgwMXJTX25PHzEA== -----END CERTIFICATE-----Generated at Wed Aug 20 10:43:01 2025 by rpki-client