$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa File: cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa (raw, json) Hash identifier: wWaiR3OSPgmy9j6ibNKdmBKOwI/rI/cF93kmCDwNg/k= Subject key identifier: 91:D3:75:08:77:86:19:79:2B:83:0B:90:31:50:C5:98:98:0B:4B:D3 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2C109EF90CE03E7126C68915FB8ACCCE7A0CA9F6 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa Signing time: Tue 05 Aug 2025 18:21:01 +0000 ROA not before: Tue 05 Aug 2025 18:21:01 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5518::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:10:9e:f9:0c:e0:3e:71:26:c6:89:15:fb:8a:cc:ce:7a:0c:a9:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:21:01 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=15ba2487de1f53bc585bfc854e60a784fdc8f24592cef30c9ae703090eca3503, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e3:6a:08:1b:8c:1a:f4:5d:45:fe:c5:ad:e4: 5f:95:b7:23:d1:6c:97:61:2c:71:14:39:7e:99:14: 16:0f:83:c7:b5:05:9e:86:ed:23:38:d0:f7:96:ce: 82:5c:27:2d:18:46:90:89:d1:ce:34:43:44:63:95: 1f:80:6d:cd:5f:d5:f0:ea:56:33:b4:d1:d0:db:01: 96:ab:6a:3d:cb:fa:cb:6a:4b:ff:ce:1b:bb:b6:79: ac:c0:91:dc:3f:c2:50:66:84:f4:be:2f:ff:cd:5d: da:ad:7f:11:19:57:8c:de:d4:59:19:2f:47:62:06: d2:b1:29:b9:13:1c:cc:18:fe:d8:f8:58:50:7a:ea: 27:aa:c2:93:10:13:0b:c0:8e:72:b6:29:41:44:73: b5:a2:7c:2c:2d:9c:13:30:81:8f:1e:7f:5b:bb:d1: 98:9f:7c:4a:45:d0:62:27:f2:2b:b3:d0:21:d8:07: 35:03:be:a5:c2:23:45:9b:ae:63:7a:eb:e3:57:62: 70:09:96:7a:1d:bf:04:a6:a1:44:12:b6:32:57:f3: 60:c6:b3:91:b5:75:cd:7e:e4:c9:6c:42:ff:d2:ea: 0e:b8:0a:a0:ac:46:46:11:27:0d:42:41:44:21:ef: 17:f1:4d:95:15:b1:55:57:cf:01:a5:45:91:20:eb: 58:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:D3:75:08:77:86:19:79:2B:83:0B:90:31:50:C5:98:98:0B:4B:D3 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5518::/48 Signature Algorithm: sha256WithRSAEncryption 86:a7:db:6f:ca:a8:ee:61:06:5b:12:da:eb:7b:43:7d:17:df: 10:c9:7f:28:13:79:5c:6d:40:9b:a2:f5:e6:27:d6:b4:f5:cc: 84:83:e8:0c:da:bc:bc:b9:d8:2f:7a:de:0e:3b:2b:fb:e6:eb: 8d:5a:2a:a2:78:da:21:3d:08:0e:51:e4:6f:97:6c:62:00:3e: 28:24:31:88:30:ac:31:df:2a:ba:ae:0c:71:12:56:aa:21:05: 83:4d:59:12:fc:3b:89:04:0b:1a:b9:bb:c7:b9:31:52:f8:7c: cc:5d:5a:79:82:05:68:8e:df:12:28:10:c5:3c:8a:5d:b7:9c: cc:1b:55:2f:0a:87:72:8b:82:ee:bc:0c:f3:23:26:9d:5a:74: 78:93:e4:b5:8f:2b:ef:1f:db:fe:a2:fe:78:0c:d3:21:31:91: ba:39:46:ec:50:14:b0:c0:84:22:c4:16:13:36:a3:f5:97:02: ab:cf:1d:ad:45:8a:5a:4e:f6:b3:ee:0b:41:bd:a2:bc:8d:de: 09:99:03:36:e3:80:03:53:0d:b5:c7:ef:df:56:9b:d9:ac:77: 9a:83:cd:22:65:40:c6:60:3f:3e:50:cb:4d:5c:f6:5d:69:68: af:a4:8a:ef:57:cb:87:68:da:20:c7:7b:59:45:89:ed:fd:09: 06:db:44:75 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULBCe+QzgPnEmxokV+4rMznoMqfYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgyMTAxWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNWJhMjQ4N2RlMWY1M2JjNTg1YmZjODU0ZTYwYTc4NGZk YzhmMjQ1OTJjZWYzMGM5YWU3MDMwOTBlY2EzNTAzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDX42oIG4wa9F1F/sWt5F+VtyPRbJdhLHEUOX6ZFBYPg8e1 BZ6G7SM40PeWzoJcJy0YRpCJ0c40Q0RjlR+Abc1f1fDqVjO00dDbAZaraj3L+stq S//OG7u2eazAkdw/wlBmhPS+L//NXdqtfxEZV4ze1FkZL0diBtKxKbkTHMwY/tj4 WFB66ieqwpMQEwvAjnK2KUFEc7WifCwtnBMwgY8ef1u70ZiffEpF0GIn8iuz0CHY BzUDvqXCI0WbrmN66+NXYnAJlnodvwSmoUQStjJX82DGs5G1dc1+5MlsQv/S6g64 CqCsRkYRJw1CQUQh7xfxTZUVsVVXzwGlRZEg61jnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUkdN1CHeGGXkrgwuQMVDFmJgLS9MwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NiZjQzZDk5LTRkMDEtNGQyNC1hZGE5LTZlMzQzNjhkMWQ3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRgwDQYJKoZIhvcNAQELBQADggEBAIan22/KqO5hBlsS2ut7Q30X 3xDJfygTeVxtQJui9eYn1rT1zISD6AzavLy52C963g47K/vm641aKqJ42iE9CA5R 5G+XbGIAPigkMYgwrDHfKrquDHESVqohBYNNWRL8O4kECxq5u8e5MVL4fMxdWnmC BWiO3xIoEMU8il23nMwbVS8Kh3KLgu68DPMjJp1adHiT5LWPK+8f2/6i/ngM0yEx kbo5RuxQFLDAhCLEFhM2o/WXAqvPHa1FilpO9rPuC0G9oryN3gmZAzbjgANTDbXH 799Wm9msd5qDzSJlQMZgPz5Qy01c9l1paK+kiu9Xy4do2iDHe1lFie39CQbbRHU= -----END CERTIFICATE-----Generated at Wed Aug 20 10:42:32 2025 by rpki-client