$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/df5a5b5e-7d3e-401e-a4e6-4d4a0175d77f.roa File: df5a5b5e-7d3e-401e-a4e6-4d4a0175d77f.roa (raw, json) Hash identifier: cu5qkF9EEZjoTTEZsEZpUBLF9GMSb/NZiMSbtPBIWus= Subject key identifier: 6B:7C:B5:48:FF:68:95:D5:8C:88:D8:15:0D:A9:1D:4A:F9:D8:20:5B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 221F2619B141B1B680BF83CF38D348B3CCF1DFAD Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/df5a5b5e-7d3e-401e-a4e6-4d4a0175d77f.roa Signing time: Fri 15 Aug 2025 21:23:43 +0000 ROA not before: Fri 15 Aug 2025 21:23:43 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6117::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:1f:26:19:b1:41:b1:b6:80:bf:83:cf:38:d3:48:b3:cc:f1:df:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 15 21:23:43 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=40782753d4221d28739aeb0dc036216135ca4b7c561bcc8e56097ae3c7a78c68, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:75:26:9f:e1:1c:6e:9c:22:b0:8d:7b:d9:49: c5:99:17:5b:45:53:55:51:e7:66:51:a9:fc:be:25: e0:c5:b9:47:f7:1d:83:e5:a2:1d:62:80:9a:e8:aa: 5a:49:2f:e1:5f:80:7f:2b:a0:cf:11:13:6e:25:76: 40:4b:01:eb:86:f2:bb:ea:7a:3c:bd:ae:86:96:fc: 5a:38:ae:20:f1:1a:d6:52:68:c0:2f:4d:94:c1:f9: 98:b7:8c:92:6b:2e:30:94:cf:f6:65:4a:79:72:2f: 6f:ad:db:e7:d2:fa:e3:c4:cc:d4:4c:4f:05:f6:92: 4c:05:fe:35:8c:c9:3a:aa:fe:5e:7b:96:bd:32:44: f1:4a:69:a0:4d:3d:b6:ea:c6:0e:54:9f:d6:7a:53: 7b:f5:29:21:36:f3:89:63:cd:f1:f1:71:b9:76:c3: 7f:12:1c:f9:c4:e5:8e:44:12:ec:9d:7a:81:0e:bf: e1:b8:8f:f6:c3:1d:63:c3:fb:7a:a5:59:14:f9:3e: 37:5e:25:b6:a3:b8:10:1a:b9:64:ce:48:87:30:fd: ad:44:8e:7a:8e:47:32:e8:27:3b:5f:a5:bb:6a:9f: d1:24:51:e6:39:ab:57:87:ad:1f:16:01:39:be:d1: 39:95:b0:e1:aa:cc:26:ba:04:39:45:d6:7b:c9:5c: 60:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:7C:B5:48:FF:68:95:D5:8C:88:D8:15:0D:A9:1D:4A:F9:D8:20:5B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/df5a5b5e-7d3e-401e-a4e6-4d4a0175d77f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6117::/48 Signature Algorithm: sha256WithRSAEncryption a7:f0:9a:a2:44:46:ae:52:c1:a9:76:8d:19:74:b6:a8:c5:dc: c9:e9:ef:64:2b:ce:4c:3b:2a:2b:a2:61:66:9b:3f:f6:e4:97: 91:53:8a:d5:d3:47:86:dd:a6:8b:1a:9b:4d:51:c5:f7:5e:7b: aa:d1:ac:ad:1f:b1:a6:35:c6:ca:3d:e0:54:e0:04:f0:19:ed: 68:b1:45:c6:e2:ca:85:23:a5:6b:cf:14:54:85:39:97:6b:25: 74:5f:be:59:b8:09:b1:3f:04:74:07:36:89:84:44:b1:1b:e0: e8:4e:bf:ab:b0:a5:db:06:7f:20:3a:44:5e:cb:78:c7:71:ea: 35:71:f8:f3:a3:6c:bb:f8:72:c8:97:bf:70:ef:a0:8f:6a:f8: f6:a9:43:ae:9e:96:72:1b:a1:54:2f:13:c5:d9:e8:bc:8f:55: 78:96:0b:ba:31:ea:1d:c5:55:39:fc:32:3a:bc:ef:f4:64:91: eb:e7:80:10:da:ae:75:2c:4f:d4:d7:f6:82:d5:83:f4:4c:95: 35:80:f9:03:13:f3:d2:e6:09:6e:75:55:33:4e:27:8c:19:d4: d2:cd:76:88:d3:5b:3a:19:68:1e:91:91:a0:84:21:4a:25:f6: 75:b2:b9:ad:a6:26:f8:05:ac:5f:57:68:63:ff:95:07:45:d1: 83:1b:3e:a6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIh8mGbFBsbaAv4PPONNIs8zx360wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE1MjEyMzQzWhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MDc4Mjc1M2Q0MjIxZDI4NzM5YWViMGRjMDM2MjE2MTM1 Y2E0YjdjNTYxYmNjOGU1NjA5N2FlM2M3YTc4YzY4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRdSaf4RxunCKwjXvZScWZF1tFU1VR52ZRqfy+JeDFuUf3 HYPloh1igJroqlpJL+FfgH8roM8RE24ldkBLAeuG8rvqejy9roaW/Fo4riDxGtZS aMAvTZTB+Zi3jJJrLjCUz/ZlSnlyL2+t2+fS+uPEzNRMTwX2kkwF/jWMyTqq/l57 lr0yRPFKaaBNPbbqxg5Un9Z6U3v1KSE284ljzfHxcbl2w38SHPnE5Y5EEuydeoEO v+G4j/bDHWPD+3qlWRT5PjdeJbajuBAauWTOSIcw/a1EjnqORzLoJztfpbtqn9Ek UeY5q1eHrR8WATm+0TmVsOGqzCa6BDlF1nvJXGCXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUa3y1SP9oldWMiNgVDakdSvnYIFswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RmNWE1YjVlLTdkM2UtNDAxZS1hNGU2LTRkNGEwMTc1ZDc3Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRcwDQYJKoZIhvcNAQELBQADggEBAKfwmqJERq5Swal2jRl0tqjF 3Mnp72Qrzkw7KiuiYWabP/bkl5FTitXTR4bdposam01Rxfdee6rRrK0fsaY1xso9 4FTgBPAZ7WixRcbiyoUjpWvPFFSFOZdrJXRfvlm4CbE/BHQHNomERLEb4OhOv6uw pdsGfyA6RF7LeMdx6jVx+POjbLv4csiXv3DvoI9q+PapQ66elnIboVQvE8XZ6LyP VXiWC7ox6h3FVTn8Mjq87/RkkevngBDarnUsT9TX9oLVg/RMlTWA+QMT89LmCW51 VTNOJ4wZ1NLNdojTWzoZaB6RkaCEIUol9nWyua2mJvgFrF9XaGP/lQdF0YMbPqY= -----END CERTIFICATE-----Generated at Wed Aug 20 10:42:41 2025 by rpki-client