$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/dac6a5ca-4991-4707-9646-5eeece7b0bc5.roa File: dac6a5ca-4991-4707-9646-5eeece7b0bc5.roa (raw, json) Hash identifier: aeuGJFzY9+ipDtpxym+jukphVlWM8c8xiDC3ChcSXJ8= Subject key identifier: 1C:0B:5A:D3:1A:A9:11:14:28:49:6F:EB:10:80:91:D3:C6:22:0C:3E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0934DD07855B1ED52A392E48DF2937B3F85EF8C6 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/dac6a5ca-4991-4707-9646-5eeece7b0bc5.roa Signing time: Fri 15 Aug 2025 21:22:24 +0000 ROA not before: Fri 15 Aug 2025 21:22:24 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6112::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:34:dd:07:85:5b:1e:d5:2a:39:2e:48:df:29:37:b3:f8:5e:f8:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 15 21:22:24 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=1146308bbe29004815eff50d63903d5ec215e350e19f5952b6359f3c2ec8aa0a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:bc:fa:2f:03:00:fb:10:d8:b7:7c:59:52:d1: a0:a5:d7:30:f4:e3:07:46:c4:a5:56:bf:62:a5:34: ea:f5:68:0c:a9:9d:29:97:72:cf:30:b6:e5:e3:09: b0:a0:93:98:71:4b:22:07:54:27:7c:d0:d6:43:78: 5e:1e:a5:62:e8:b2:ab:0d:a1:99:79:42:19:f4:35: 09:1d:fb:4b:cc:15:c8:e0:64:9d:b6:da:15:bd:c0: 3a:5e:ee:e1:e5:82:f3:48:29:7e:86:25:7c:5f:4d: 4c:a6:83:a3:09:61:33:25:0f:6e:c2:10:40:c9:09: 26:67:9b:cb:0c:84:b3:90:4f:83:8f:aa:ee:e9:7f: dc:d2:e7:51:51:67:4a:c8:ed:c3:b6:2f:59:59:9e: 52:47:d1:00:84:41:12:b0:a4:b7:ef:93:a8:10:32: fe:bb:7d:6d:7b:70:63:0e:62:97:c5:18:dd:45:34: e8:50:05:73:29:4c:89:37:fe:8f:73:3e:72:ff:48: 10:9e:db:85:d7:b6:ae:23:75:8f:38:98:63:4f:e1: 46:9c:45:d2:2d:43:04:8d:60:2a:fe:b0:75:2a:88: 08:51:36:e2:bd:af:5a:27:fa:7e:58:86:ad:4f:37: 97:af:1e:3b:ac:f2:3f:e1:4b:2d:9f:70:2b:9b:a5: d7:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:0B:5A:D3:1A:A9:11:14:28:49:6F:EB:10:80:91:D3:C6:22:0C:3E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/dac6a5ca-4991-4707-9646-5eeece7b0bc5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6112::/48 Signature Algorithm: sha256WithRSAEncryption 40:12:f7:bd:78:85:ee:16:73:7b:77:9b:9a:37:9b:43:22:1e: 81:8f:89:f6:8a:98:51:2f:d1:de:bb:25:2e:f7:60:00:b7:c2: f4:46:4e:0a:49:da:ff:1b:cf:92:aa:df:03:c1:53:98:f0:40: d9:d9:52:f8:3b:b4:87:90:06:b4:4f:13:43:23:fc:c3:da:76: 77:98:72:2b:d0:85:d7:ed:3e:2d:a5:90:0a:a0:ca:ee:ee:b1: 13:1c:9e:19:a0:c7:fb:1f:84:24:cc:fc:f5:74:f4:7b:53:95: 43:2a:b2:3f:9a:fc:34:57:d6:c4:eb:2a:2a:49:68:e0:f8:b4: b0:bd:77:5c:00:7c:b3:39:34:be:bc:6f:2b:bd:b2:5f:58:49: ca:c7:7c:bf:bf:f5:d9:45:ba:3b:6e:cf:2a:be:4e:1f:53:c1: de:1b:27:3b:60:02:5b:89:5c:61:1c:5f:8f:e2:a9:da:91:26: 4c:99:f6:e8:ab:04:f4:bd:05:b0:f0:0d:0d:27:9c:72:a0:e6: e9:a6:bf:2b:53:82:5e:b6:e1:28:1c:db:88:a9:80:d9:d1:d0: 37:8b:52:59:f2:e9:de:f7:4e:1d:85:02:54:3d:4e:a8:0e:34: ec:18:84:dc:61:51:d6:68:ad:cc:36:19:ab:72:b7:d8:a9:00: ff:6d:3c:f1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCTTdB4VbHtUqOS5I3yk3s/he+MYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE1MjEyMjI0WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMTQ2MzA4YmJlMjkwMDQ4MTVlZmY1MGQ2MzkwM2Q1ZWMy MTVlMzUwZTE5ZjU5NTJiNjM1OWYzYzJlYzhhYTBhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1vPovAwD7ENi3fFlS0aCl1zD04wdGxKVWv2KlNOr1aAyp nSmXcs8wtuXjCbCgk5hxSyIHVCd80NZDeF4epWLosqsNoZl5Qhn0NQkd+0vMFcjg ZJ222hW9wDpe7uHlgvNIKX6GJXxfTUymg6MJYTMlD27CEEDJCSZnm8sMhLOQT4OP qu7pf9zS51FRZ0rI7cO2L1lZnlJH0QCEQRKwpLfvk6gQMv67fW17cGMOYpfFGN1F NOhQBXMpTIk3/o9zPnL/SBCe24XXtq4jdY84mGNP4UacRdItQwSNYCr+sHUqiAhR NuK9r1on+n5Yhq1PN5evHjus8j/hSy2fcCubpddfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUHAta0xqpERQoSW/rEICR08YiDD4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RhYzZhNWNhLTQ5OTEtNDcwNy05NjQ2LTVlZWVjZTdiMGJjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRIwDQYJKoZIhvcNAQELBQADggEBAEAS9714he4Wc3t3m5o3m0Mi HoGPifaKmFEv0d67JS73YAC3wvRGTgpJ2v8bz5Kq3wPBU5jwQNnZUvg7tIeQBrRP E0Mj/MPadneYcivQhdftPi2lkAqgyu7usRMcnhmgx/sfhCTM/PV09HtTlUMqsj+a /DRX1sTrKipJaOD4tLC9d1wAfLM5NL68byu9sl9YScrHfL+/9dlFujtuzyq+Th9T wd4bJztgAluJXGEcX4/iqdqRJkyZ9uirBPS9BbDwDQ0nnHKg5ummvytTgl624Sgc 24ipgNnR0DeLUlny6d73Th2FAlQ9TqgONOwYhNxhUdZorcw2Gatyt9ipAP9tPPE= -----END CERTIFICATE-----Generated at Wed Aug 20 13:19:29 2025 by rpki-client