$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa File: cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa (raw, json) Hash identifier: pSGcrxiSCUX2KeDwQUo59tRmK2EnXkkxmWR5CkHS9F8= Subject key identifier: FE:73:43:F0:53:29:2F:9B:A7:2C:A5:73:28:41:71:16:DA:81:C5:DA Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2F1151C43572E2C43407D81E06CCC5D5779F4919 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa Signing time: Mon 01 Sep 2025 19:10:32 +0000 ROA not before: Mon 01 Sep 2025 19:10:32 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5518::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 16 Sep 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:11:51:c4:35:72:e2:c4:34:07:d8:1e:06:cc:c5:d5:77:9f:49:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 1 19:10:32 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=d88546f8871c455e02639b04b15e6e97f2f02316bdbcdf7fed9b0d80f6d07770, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:a0:5e:55:c2:40:f9:62:81:3c:2e:be:42:5c: fb:ad:f7:cf:4f:8c:3f:ba:39:db:4f:fe:c3:4c:89: e6:3d:02:48:cc:3f:4f:00:71:ff:f9:80:92:da:00: f7:90:d7:1c:9f:a3:1c:4f:a3:7f:e2:0c:02:f1:09: f3:5f:5d:50:38:32:8f:91:1c:fa:28:6c:53:0e:b1: ee:a7:82:7d:22:11:28:96:87:98:69:5a:7b:8e:16: da:3d:bc:8d:23:e7:91:3c:f0:70:50:b9:c5:a1:f9: c8:b4:90:61:78:01:7c:7d:5e:ab:ea:fb:8a:fb:2e: 5f:27:13:c8:fa:b5:e7:b2:9e:77:20:bd:65:47:3d: 9c:53:03:46:c0:47:ac:a5:7d:50:f8:2e:19:47:e4: b7:58:fa:03:63:0e:33:bc:22:cd:fd:28:59:a6:e7: 3f:c3:e4:f2:de:74:7f:b6:93:32:af:2c:1b:98:d7: 80:4b:87:33:b5:cb:3f:7c:24:f9:6f:4c:79:63:48: 19:1b:f7:1b:9b:01:18:63:18:5d:14:39:4d:12:1f: ad:59:89:63:8e:25:bc:a3:03:17:8a:14:e5:90:ff: 8c:10:e5:17:72:ac:9c:4f:18:e8:f5:bb:4b:ea:61: 3b:e2:bd:1a:d4:48:54:f2:99:ee:6d:1e:c3:f0:00: ad:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:73:43:F0:53:29:2F:9B:A7:2C:A5:73:28:41:71:16:DA:81:C5:DA X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5518::/48 Signature Algorithm: sha256WithRSAEncryption 13:59:35:19:88:bb:82:2c:f2:c5:f7:a7:87:80:b5:22:ba:f7: 91:01:dd:47:2f:01:60:b9:92:0c:be:c7:ac:a9:e6:5d:1b:b7: 71:68:d2:d6:b3:09:27:ea:55:1f:21:ef:9c:9f:d0:a1:25:fe: ab:56:7c:04:ff:16:53:51:0d:0d:45:cc:82:1e:3e:d3:81:d0: f5:e2:2f:43:d3:1a:1a:de:04:66:a2:62:13:e9:3f:32:27:63: 58:17:c3:3b:94:e6:31:2a:43:83:7e:2d:11:7f:f5:d4:90:93: 96:40:27:ee:71:76:91:84:ed:80:1e:9f:5f:c7:43:99:36:26: c1:aa:ee:f6:47:1e:96:e9:1c:5e:14:e1:ea:11:79:cb:ff:94: 94:75:bc:9b:20:12:ec:82:61:f6:51:21:9b:c8:14:04:a6:a8: 43:9b:29:b1:7e:91:e8:4a:f6:33:e3:ee:07:b6:d4:ad:76:be: de:24:c4:f7:2a:7a:7b:95:3e:5c:fd:ca:4e:85:3a:1c:08:9d: 31:65:55:af:a0:71:f9:66:a8:ce:5e:43:03:9d:bb:b5:e7:ce: 92:9f:40:21:2a:3e:93:10:14:48:70:ae:89:3a:3e:a3:08:cf: 69:a0:81:cd:c9:75:72:05:a2:23:76:de:3f:a1:34:03:c2:8d: bf:4a:6a:6d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULxFRxDVy4sQ0B9geBszF1XefSRkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTAxMTkxMDMyWhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkODg1NDZmODg3MWM0NTVlMDI2MzliMDRiMTVlNmU5N2Yy ZjAyMzE2YmRiY2RmN2ZlZDliMGQ4MGY2ZDA3NzcwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDzoF5VwkD5YoE8Lr5CXPut989PjD+6OdtP/sNMieY9AkjM P08Acf/5gJLaAPeQ1xyfoxxPo3/iDALxCfNfXVA4Mo+RHPoobFMOse6ngn0iESiW h5hpWnuOFto9vI0j55E88HBQucWh+ci0kGF4AXx9Xqvq+4r7Ll8nE8j6teeynncg vWVHPZxTA0bAR6ylfVD4LhlH5LdY+gNjDjO8Is39KFmm5z/D5PLedH+2kzKvLBuY 14BLhzO1yz98JPlvTHljSBkb9xubARhjGF0UOU0SH61ZiWOOJbyjAxeKFOWQ/4wQ 5RdyrJxPGOj1u0vqYTvivRrUSFTyme5tHsPwAK1HAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU/nND8FMpL5unLKVzKEFxFtqBxdowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NiZjQzZDk5LTRkMDEtNGQyNC1hZGE5LTZlMzQzNjhkMWQ3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRgwDQYJKoZIhvcNAQELBQADggEBABNZNRmIu4Is8sX3p4eAtSK6 95EB3UcvAWC5kgy+x6yp5l0bt3Fo0tazCSfqVR8h75yf0KEl/qtWfAT/FlNRDQ1F zIIePtOB0PXiL0PTGhreBGaiYhPpPzInY1gXwzuU5jEqQ4N+LRF/9dSQk5ZAJ+5x dpGE7YAen1/HQ5k2JsGq7vZHHpbpHF4U4eoRecv/lJR1vJsgEuyCYfZRIZvIFASm qEObKbF+kehK9jPj7ge21K12vt4kxPcqenuVPlz9yk6FOhwInTFlVa+gcflmqM5e QwOdu7XnzpKfQCEqPpMQFEhwrok6PqMIz2mggc3JdXIFoiN23j+hNAPCjb9Kam0= -----END CERTIFICATE-----Generated at Mon Sep 15 16:21:10 2025 by rpki-client