$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d5fcd505-6e9b-4ab1-9666-aed833408042.roa File: d5fcd505-6e9b-4ab1-9666-aed833408042.roa (raw, json) Hash identifier: RIdASzb/mm6D92hH6C0Cy3HY7wp0Wq84njKLRy4eGt0= Subject key identifier: A0:77:BF:38:85:43:B2:92:A4:53:13:70:39:E8:BA:6D:CD:D5:5A:14 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0D671AACF89F9D444C6D031A5A5DA1790F1307F6 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d5fcd505-6e9b-4ab1-9666-aed833408042.roa Signing time: Wed 13 Aug 2025 06:22:11 +0000 ROA not before: Wed 13 Aug 2025 06:22:11 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6101::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:67:1a:ac:f8:9f:9d:44:4c:6d:03:1a:5a:5d:a1:79:0f:13:07:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 13 06:22:11 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=89060a982b220a88d781e050ddf75dfd1aba66052b84a0c328ee99ebb7628f54, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:5c:8d:fb:3e:71:8d:1b:9c:33:44:b7:6b:e7: 66:d3:ec:9a:86:4b:d7:95:c5:b2:b4:df:eb:f0:b1: 24:0c:b9:d1:7e:83:f6:ff:fb:2d:3b:ac:fc:f2:60: ef:5d:18:a0:dc:21:42:ca:e1:1c:d9:73:53:41:07: 73:93:30:0d:b9:84:eb:68:6b:cc:92:78:a4:4b:cb: d1:b8:20:73:52:72:b6:69:29:26:a1:38:da:99:1f: 52:40:f0:df:24:13:06:d6:b3:37:23:22:71:dd:93: 27:e3:28:dd:e5:e1:91:88:36:4a:68:e9:d1:b9:5f: 80:0e:e0:1e:c0:fd:cf:69:7a:da:5a:da:fa:98:5c: df:be:bd:45:02:91:ec:0f:27:be:fe:31:ed:e5:07: 10:d9:df:b4:9a:7d:2e:e7:da:4d:a1:2a:50:c4:84: f4:85:98:f1:b2:1f:ea:a5:4d:4e:a0:d7:ac:1b:e8: c8:5d:b1:18:05:37:b1:09:d6:ba:60:06:41:32:42: 9d:da:13:f4:8b:49:99:2c:0a:33:46:7c:df:c5:e1: c1:e3:41:e4:96:34:a8:a4:57:81:e5:b1:fa:59:62: 63:a5:ba:f1:40:4a:1e:70:e8:e8:54:f1:52:8c:0a: 4b:27:13:c2:a7:56:ac:c6:63:7d:ab:c7:b9:fa:05: 3f:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:77:BF:38:85:43:B2:92:A4:53:13:70:39:E8:BA:6D:CD:D5:5A:14 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d5fcd505-6e9b-4ab1-9666-aed833408042.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6101::/48 Signature Algorithm: sha256WithRSAEncryption 75:c4:89:ef:a2:90:c6:dd:12:02:7c:85:7e:b4:63:51:04:d0: f6:50:95:93:d5:48:91:12:0b:53:09:2a:0d:4b:dd:84:db:4d: e6:90:61:ad:16:b7:79:ea:4b:be:78:8c:31:7d:5f:51:fc:3e: 8c:44:b2:22:cf:58:56:fd:35:42:16:1d:36:e2:1a:09:09:cb: 44:9d:6f:f6:d0:e6:7b:a8:4d:ed:68:62:25:b3:47:aa:1d:d4: d5:2a:bc:1d:44:aa:c3:30:b2:e0:c3:c7:46:84:5b:ee:c0:d3: 4d:67:07:09:37:10:49:46:9b:e4:22:49:38:d6:f2:94:8c:49: 2d:3c:c3:9a:e8:75:9c:91:e2:3c:59:33:dd:7b:b7:61:90:46: 26:d4:8e:bf:11:f6:7a:ce:0d:7b:7d:52:66:a7:18:d0:8e:3e: b2:ce:c0:26:45:e2:d4:f4:7b:7c:db:99:6b:14:78:ae:50:55: 60:47:68:d8:fe:87:a4:99:c2:86:82:35:d7:0b:10:de:7d:b3: b9:08:ce:e2:8a:97:12:9c:37:69:29:1b:45:76:35:50:e7:28: c7:7a:67:04:46:be:b2:b1:93:63:9d:4e:db:5c:02:b1:6f:8c: ce:42:18:4e:47:41:ca:32:21:10:29:72:ad:d7:61:7a:8b:5a: 08:43:d6:fa -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDWcarPifnURMbQMaWl2heQ8TB/YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODEzMDYyMjExWhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4OTA2MGE5ODJiMjIwYTg4ZDc4MWUwNTBkZGY3NWRmZDFh YmE2NjA1MmI4NGEwYzMyOGVlOTllYmI3NjI4ZjU0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVXI37PnGNG5wzRLdr52bT7JqGS9eVxbK03+vwsSQMudF+ g/b/+y07rPzyYO9dGKDcIULK4RzZc1NBB3OTMA25hOtoa8ySeKRLy9G4IHNScrZp KSahONqZH1JA8N8kEwbWszcjInHdkyfjKN3l4ZGINkpo6dG5X4AO4B7A/c9petpa 2vqYXN++vUUCkewPJ77+Me3lBxDZ37SafS7n2k2hKlDEhPSFmPGyH+qlTU6g16wb 6MhdsRgFN7EJ1rpgBkEyQp3aE/SLSZksCjNGfN/F4cHjQeSWNKikV4HlsfpZYmOl uvFASh5w6OhU8VKMCksnE8KnVqzGY32rx7n6BT8DAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUoHe/OIVDspKkUxNwOei6bc3VWhQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Q1ZmNkNTA1LTZlOWItNGFiMS05NjY2LWFlZDgzMzQwODA0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQEwDQYJKoZIhvcNAQELBQADggEBAHXEie+ikMbdEgJ8hX60Y1EE 0PZQlZPVSJESC1MJKg1L3YTbTeaQYa0Wt3nqS754jDF9X1H8PoxEsiLPWFb9NUIW HTbiGgkJy0Sdb/bQ5nuoTe1oYiWzR6od1NUqvB1EqsMwsuDDx0aEW+7A001nBwk3 EElGm+QiSTjW8pSMSS08w5rodZyR4jxZM917t2GQRibUjr8R9nrODXt9UmanGNCO PrLOwCZF4tT0e3zbmWsUeK5QVWBHaNj+h6SZwoaCNdcLEN59s7kIzuKKlxKcN2kp G0V2NVDnKMd6ZwRGvrKxk2OdTttcArFvjM5CGE5HQcoyIRApcq3XYXqLWghD1vo= -----END CERTIFICATE-----Generated at Wed Aug 20 13:05:27 2025 by rpki-client