$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa File: fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa (raw, json) Hash identifier: tfIi5jYlzoVfXVlAkYjMOXhMd7iTkEXKzS1wVOIyQ8M= Subject key identifier: 79:85:CA:90:7A:3D:90:C2:3B:B1:02:BB:53:0F:75:14:80:BF:26:04 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6434E88E45F382DC7C647505B9B4F77CAB915FB5 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa Signing time: Tue 19 Aug 2025 16:50:05 +0000 ROA not before: Tue 19 Aug 2025 16:50:05 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f000::/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:34:e8:8e:45:f3:82:dc:7c:64:75:05:b9:b4:f7:7c:ab:91:5f:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 19 16:50:05 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=86de478eb48bf9f1c648e45a603ec1940032277b07ce0bc16776553c08b922ec, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:eb:82:22:90:f9:ab:cc:20:ee:4d:99:70:b6: f0:32:ae:bb:44:4f:7c:f8:09:7d:09:4a:76:54:12: 58:53:e6:97:42:41:45:47:9e:2a:4b:09:ae:d8:f5: 0d:4f:58:5b:1f:90:50:d7:e3:2c:31:95:96:d4:3c: 46:2e:9b:71:c1:38:d1:b1:a7:92:27:0b:1f:d2:cd: 22:ba:95:59:e9:01:06:b8:1f:06:7c:0c:50:5c:70: 8a:86:2e:21:d6:e3:fe:e8:3e:b9:fa:85:c7:4d:d2: ce:19:2f:92:9a:21:c1:3f:e6:2e:e1:b5:d6:78:f0: da:9e:b1:5b:dd:dd:54:18:4b:1b:bc:ca:f8:25:1f: a9:ae:9f:b2:fb:bf:0c:9a:f8:78:0e:50:88:a5:44: 47:32:44:b8:be:27:8d:9c:77:ea:db:99:70:cd:07: 26:49:6f:4e:b2:94:76:6e:b3:42:db:7d:ed:08:05: 9a:47:6f:8f:84:df:40:87:a4:51:0f:69:b3:03:9e: 3c:14:84:a6:31:8b:13:fb:00:41:f6:84:bd:c2:0a: 02:78:cd:8a:53:8b:71:ee:19:6b:6c:8a:55:24:96: ae:59:fe:8a:52:49:25:a8:0b:47:61:b1:64:22:df: ac:5a:62:5a:e1:65:80:f6:3e:08:20:e9:0e:91:15: 32:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:85:CA:90:7A:3D:90:C2:3B:B1:02:BB:53:0F:75:14:80:BF:26:04 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f000::/24 Signature Algorithm: sha256WithRSAEncryption 3f:39:b4:ce:2c:b3:0b:d1:e0:9a:7f:6a:ba:c6:16:69:40:50: 04:8a:96:b0:50:3a:7c:82:db:64:08:bb:a4:46:46:77:5d:a8: 7a:4b:85:e1:41:d5:fb:2f:d6:e6:23:e3:c5:b6:4e:dc:86:a0: f1:19:d1:52:36:db:c2:bf:1c:cc:e9:de:10:a7:3b:9e:24:9c: db:26:e9:4b:de:1e:5c:f0:9d:95:e4:4d:c6:4d:47:48:4f:3f: 6b:f5:6f:a1:71:f5:ea:d8:fa:6b:e6:d8:10:0c:d0:eb:57:ae: ed:38:cc:11:f6:c3:23:00:2b:9f:18:43:ee:d5:62:95:8a:43: 53:84:1f:0d:9b:e8:49:38:98:c6:28:46:e7:15:45:23:d0:ad: 4b:35:dd:05:5d:d3:15:80:cf:36:52:83:05:a1:a6:00:ac:b3: 16:59:5c:c1:8b:35:02:e4:13:fb:b3:ee:53:d4:b4:8a:ea:ef: 45:75:12:6f:aa:94:2e:2f:bd:08:26:86:05:6e:3d:d8:4f:59: 2b:ef:56:ae:c8:e5:f4:ff:ca:14:79:13:64:9f:0e:f6:3b:28: 00:fe:1b:8f:3e:0e:2c:db:38:6b:31:f3:2e:23:e4:47:b6:85: 3f:f6:41:4e:05:7c:b6:6d:5f:d4:16:c4:61:92:8d:17:88:64: 5e:f5:06:09 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZDTojkXzgtx8ZHUFubT3fKuRX7UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE5MTY1MDA1WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NmRlNDc4ZWI0OGJmOWYxYzY0OGU0NWE2MDNlYzE5NDAw MzIyNzdiMDdjZTBiYzE2Nzc2NTUzYzA4YjkyMmVjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+64IikPmrzCDuTZlwtvAyrrtET3z4CX0JSnZUElhT5pdC QUVHnipLCa7Y9Q1PWFsfkFDX4ywxlZbUPEYum3HBONGxp5InCx/SzSK6lVnpAQa4 HwZ8DFBccIqGLiHW4/7oPrn6hcdN0s4ZL5KaIcE/5i7htdZ48NqesVvd3VQYSxu8 yvglH6mun7L7vwya+HgOUIilREcyRLi+J42cd+rbmXDNByZJb06ylHZus0Lbfe0I BZpHb4+E30CHpFEPabMDnjwUhKYxixP7AEH2hL3CCgJ4zYpTi3HuGWtsilUklq5Z /opSSSWoC0dhsWQi36xaYlrhZYD2Pggg6Q6RFTLhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeYXKkHo9kMI7sQK7Uw91FIC/JgQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ZjNjJhNGVkLWE0YmYtNDYzNC1iNmYzLTBjNzBiZWRiNzA2OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAC MAYDBAAmAPAwDQYJKoZIhvcNAQELBQADggEBAD85tM4sswvR4Jp/arrGFmlAUASK lrBQOnyC22QIu6RGRnddqHpLheFB1fsv1uYj48W2TtyGoPEZ0VI228K/HMzp3hCn O54knNsm6UveHlzwnZXkTcZNR0hPP2v1b6Fx9erY+mvm2BAM0OtXru04zBH2wyMA K58YQ+7VYpWKQ1OEHw2b6Ek4mMYoRucVRSPQrUs13QVd0xWAzzZSgwWhpgCssxZZ XMGLNQLkE/uz7lPUtIrq70V1Em+qlC4vvQgmhgVuPdhPWSvvVq7I5fT/yhR5E2Sf DvY7KAD+G48+DizbOGsx8y4j5Ee2hT/2QU4FfLZtX9QWxGGSjReIZF71Bgk= -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:17 2025 by rpki-client