$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da202649-b5ac-45d7-ab2c-22fec234c600.roa File: da202649-b5ac-45d7-ab2c-22fec234c600.roa (raw, json) Hash identifier: 81ovnRE2slHQrEyJSc2ouWFBHzzeygJlkf+pDEp+m6Q= Subject key identifier: FF:BB:76:F1:33:52:0D:FA:65:8C:3D:79:B4:D7:BB:C8:A2:B9:69:34 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 599C8B1C0A26F79295F309535C658E7A5A7AC049 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da202649-b5ac-45d7-ab2c-22fec234c600.roa Signing time: Mon 08 Sep 2025 18:37:14 +0000 ROA not before: Mon 08 Sep 2025 18:37:14 +0000 ROA not after: Mon 13 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f106::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:9c:8b:1c:0a:26:f7:92:95:f3:09:53:5c:65:8e:7a:5a:7a:c0:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 8 18:37:14 2025 GMT Not After : Oct 13 23:59:59 2025 GMT Subject: serialNumber=1f4d76eec65f87096def02efbad98b0fd7e3c5facac1bd167d646135e0d3623e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:cf:8b:56:c3:f1:26:60:c0:a2:49:5d:a5:df: 64:86:ed:67:26:98:75:3d:08:b5:97:66:0a:56:6c: 6d:dd:d3:eb:2e:44:68:e4:bb:cb:a0:80:a6:e0:2b: 3d:48:47:22:3c:c5:7b:d1:d2:5d:b3:01:d7:21:53: 12:1a:34:05:33:39:98:17:c7:98:99:39:1e:85:7a: d1:d5:49:d9:12:6b:c3:a4:b0:d9:58:9d:39:6e:41: e1:f8:d6:63:b6:3c:80:d1:2f:08:8b:43:be:80:ee: 0b:d8:47:9d:ce:e5:17:ee:00:23:98:9c:54:c9:39: 04:bd:12:97:6c:50:a1:40:8e:b6:1b:0e:03:7f:e8: cc:b7:14:ee:e1:53:77:1c:a0:35:e5:74:72:b1:6f: 73:25:c6:9b:87:24:a6:e8:ef:d0:30:34:67:a9:7c: 05:7a:e2:70:4d:40:f7:da:b0:41:1e:37:b7:56:ad: 3f:d3:65:7d:ac:15:bb:b8:9b:bc:7c:bc:cd:66:fa: 8e:e8:65:6b:f6:25:54:5e:01:be:76:5a:3a:1f:5d: a8:00:bb:2d:4e:4b:2b:d2:db:5e:ec:e2:7f:78:03: ec:5b:dc:a2:8c:9a:f4:ae:53:47:79:eb:3b:97:45: 9e:06:74:81:d3:cb:cc:a6:a6:4d:2a:4f:d7:9b:5a: 25:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:BB:76:F1:33:52:0D:FA:65:8C:3D:79:B4:D7:BB:C8:A2:B9:69:34 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da202649-b5ac-45d7-ab2c-22fec234c600.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f106::/48 Signature Algorithm: sha256WithRSAEncryption 59:f2:79:f4:8e:9a:8a:19:9a:09:9d:17:10:a1:c9:35:08:1f: 6e:b9:97:5a:05:b3:5f:5a:ef:06:7f:7d:7b:0a:a5:3e:f8:9c: 6c:5c:4e:07:d1:7f:2f:9f:3c:6e:0b:38:94:94:27:c4:f1:ff: 9c:cd:e8:b2:4d:b1:01:ca:dc:a6:41:26:49:51:a8:36:e5:69: 2c:a6:4f:97:ff:4c:ef:e5:f0:d1:f1:15:eb:f1:b9:d8:35:5e: 9d:88:31:87:58:f5:c1:91:37:42:e1:a1:60:1b:d6:e7:69:72: 05:10:69:06:fa:62:2f:9a:5d:0c:64:2c:6a:1c:b5:a7:ba:96: 42:19:87:e0:26:05:d0:e3:51:54:fd:0f:34:f3:8a:16:6b:b9: a0:d5:00:6f:43:1f:27:ea:bf:3b:64:e4:72:79:cd:d2:3d:c0: 05:3e:14:b7:0b:4a:c8:b6:6d:b2:92:d5:97:46:eb:4f:e9:54: 9f:f4:72:5a:54:bc:bf:19:ae:57:f1:3e:e5:49:f7:d6:62:9d: c3:c2:dd:7e:ff:f6:99:ec:19:d9:c2:39:f4:6d:e3:ca:42:a5: 6b:66:74:23:9f:0d:c3:87:ef:bf:b9:ce:0c:f3:cb:2d:0d:77: 4d:48:7b:0c:f0:39:ae:ad:9f:58:5c:1a:f7:f1:0e:07:03:c9: a7:d2:38:1f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWZyLHAom95KV8wlTXGWOelp6wEkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTA4MTgzNzE0WhcNMjUxMDEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZjRkNzZlZWM2NWY4NzA5NmRlZjAyZWZiYWQ5OGIwZmQ3 ZTNjNWZhY2FjMWJkMTY3ZDY0NjEzNWUwZDM2MjNlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFz4tWw/EmYMCiSV2l32SG7WcmmHU9CLWXZgpWbG3d0+su RGjku8uggKbgKz1IRyI8xXvR0l2zAdchUxIaNAUzOZgXx5iZOR6FetHVSdkSa8Ok sNlYnTluQeH41mO2PIDRLwiLQ76A7gvYR53O5RfuACOYnFTJOQS9EpdsUKFAjrYb DgN/6My3FO7hU3ccoDXldHKxb3MlxpuHJKbo79AwNGepfAV64nBNQPfasEEeN7dW rT/TZX2sFbu4m7x8vM1m+o7oZWv2JVReAb52WjofXagAuy1OSyvS217s4n94A+xb 3KKMmvSuU0d56zuXRZ4GdIHTy8ympk0qT9ebWiVlAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU/7t28TNSDfpljD15tNe7yKK5aTQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RhMjAyNjQ5LWI1YWMtNDVkNy1hYjJjLTIyZmVjMjM0YzYwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QYwDQYJKoZIhvcNAQELBQADggEBAFnyefSOmooZmgmdFxChyTUI H265l1oFs19a7wZ/fXsKpT74nGxcTgfRfy+fPG4LOJSUJ8Tx/5zN6LJNsQHK3KZB JklRqDblaSymT5f/TO/l8NHxFevxudg1Xp2IMYdY9cGRN0LhoWAb1udpcgUQaQb6 Yi+aXQxkLGoctae6lkIZh+AmBdDjUVT9DzTzihZruaDVAG9DHyfqvztk5HJ5zdI9 wAU+FLcLSsi2bbKS1ZdG60/pVJ/0clpUvL8ZrlfxPuVJ99ZincPC3X7/9pnsGdnC OfRt48pCpWtmdCOfDcOH77+5zgzzyy0Nd01IewzwOa6tn1hcGvfxDgcDyafSOB8= -----END CERTIFICATE-----Generated at Fri Sep 19 09:49:16 2025 by rpki-client