$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/06ea2b4a-6dfc-489d-b8f1-dc7f93cac1c3.roa File: 06ea2b4a-6dfc-489d-b8f1-dc7f93cac1c3.roa (raw, json) Hash identifier: UCWZZkIT1tPkuUoyJRQFibvIWCYRLM7ka9vGZbwkmCo= Subject key identifier: 2C:4F:49:89:6E:74:C1:E1:00:B1:36:C7:7B:9C:EB:9E:6A:B7:2E:0F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7F4EBE0106D3EC7B17B0D207B9F846DF4E7398C8 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/06ea2b4a-6dfc-489d-b8f1-dc7f93cac1c3.roa Signing time: Fri 26 Sep 2025 18:11:20 +0000 ROA not before: Fri 26 Sep 2025 18:11:20 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e900::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:4e:be:01:06:d3:ec:7b:17:b0:d2:07:b9:f8:46:df:4e:73:98:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:11:20 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=8b44ec36c01055c50d9c9ed7b3c1313c2e8ce527cba969a84542cac89ce5e5fb, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:97:f6:ea:e5:aa:b2:39:59:4e:9c:5d:41:3f: 0c:d1:cf:2a:d6:a9:c6:6e:b9:40:56:df:06:8c:a1: e4:24:c2:9b:ac:7f:d1:6a:3b:79:d4:1f:e0:00:3d: 1b:07:85:f6:87:c0:4f:92:9a:ad:3f:ff:c9:fb:e6: db:4f:a4:09:e4:57:0c:ee:29:64:0b:60:04:23:08: 04:6e:07:2c:41:e0:50:0d:f8:e8:4f:54:07:61:c1: e1:2a:91:60:0e:00:4c:38:54:65:a8:c8:de:d1:7d: d2:de:85:5a:3c:44:18:e3:64:63:f9:ea:94:61:36: f5:41:d0:88:31:2a:de:a6:5a:f0:3f:ff:a2:8f:f0: 69:12:72:fe:ae:df:4a:05:ea:71:e5:6b:8f:e6:ea: 87:37:5d:3c:c2:c4:73:45:5e:f6:14:8f:39:07:33: 10:18:38:71:1e:dc:fc:2d:33:d5:90:23:c1:a9:5d: cd:8f:c0:d7:84:3a:02:a0:e3:0b:a8:ef:3a:85:ca: c4:6b:ce:9c:86:13:a7:51:84:50:b9:99:4d:5c:7f: eb:6c:e8:46:a6:90:73:aa:5d:56:7e:d5:a0:b2:cb: 4f:e3:17:b0:85:5e:e9:28:19:cb:de:bd:80:df:64: 47:dd:4c:3d:ae:4d:0c:39:d3:04:3e:1f:5c:29:81: 89:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:4F:49:89:6E:74:C1:E1:00:B1:36:C7:7B:9C:EB:9E:6A:B7:2E:0F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/06ea2b4a-6dfc-489d-b8f1-dc7f93cac1c3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e900::/42 Signature Algorithm: sha256WithRSAEncryption 23:96:ea:e2:29:09:52:39:d1:35:2b:b1:39:af:78:22:6b:a8: 0b:c3:1a:2f:74:3c:52:57:2f:37:0a:60:2b:b3:a8:52:67:9a: 2c:c8:03:40:35:5b:ba:2b:fb:af:11:b5:ab:9b:9a:09:d3:d0: d8:fa:79:3f:25:a2:45:7e:ef:21:ae:29:90:03:82:12:25:0e: ab:b4:86:d7:51:e8:bc:d0:36:0c:14:37:0a:c6:e0:c4:16:7c: 44:2a:ca:af:24:7b:84:ab:cd:f6:f5:79:33:34:c9:38:54:55: a3:ba:c5:31:0e:47:51:04:90:78:4c:21:d4:0a:63:cf:6f:4c: f6:ae:69:29:e4:8c:ce:d5:96:23:95:4c:bd:9f:a8:44:d3:7f: a8:60:c2:e8:23:9f:58:85:5d:84:6b:5a:95:a4:86:f0:e0:df: d3:2d:11:54:20:cc:19:b0:41:5e:5c:37:d4:6f:ac:6a:a7:ad: d9:6b:00:14:54:24:ec:03:23:f5:39:5d:7b:99:f9:f3:3a:a7: fb:11:ad:9c:a8:1d:16:f3:1e:69:30:92:ac:72:f4:7f:44:ec: af:b8:31:9e:60:8e:79:20:87:33:3c:c5:c8:e3:e6:0e:83:37: 02:cd:2a:cd:32:24:49:bf:a5:aa:4d:73:16:e9:6c:b3:f5:89: 84:3a:65:9f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUf06+AQbT7HsXsNIHufhG305zmMgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgxMTIwWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4YjQ0ZWMzNmMwMTA1NWM1MGQ5YzllZDdiM2MxMzEzYzJl OGNlNTI3Y2JhOTY5YTg0NTQyY2FjODljZTVlNWZiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9l/bq5aqyOVlOnF1BPwzRzyrWqcZuuUBW3waMoeQkwpus f9FqO3nUH+AAPRsHhfaHwE+Smq0//8n75ttPpAnkVwzuKWQLYAQjCARuByxB4FAN +OhPVAdhweEqkWAOAEw4VGWoyN7RfdLehVo8RBjjZGP56pRhNvVB0IgxKt6mWvA/ /6KP8GkScv6u30oF6nHla4/m6oc3XTzCxHNFXvYUjzkHMxAYOHEe3PwtM9WQI8Gp Xc2PwNeEOgKg4wuo7zqFysRrzpyGE6dRhFC5mU1cf+ts6EamkHOqXVZ+1aCyy0/j F7CFXukoGcvevYDfZEfdTD2uTQw50wQ+H1wpgYnNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQULE9JiW50weEAsTbHe5zrnmq3Lg8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzA2ZWEyYjRhLTZkZmMtNDg5ZC1iOGYxLWRjN2Y5M2NhYzFjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76QAwDQYJKoZIhvcNAQELBQADggEBACOW6uIpCVI50TUrsTmveCJr qAvDGi90PFJXLzcKYCuzqFJnmizIA0A1W7or+68RtaubmgnT0Nj6eT8lokV+7yGu KZADghIlDqu0htdR6LzQNgwUNwrG4MQWfEQqyq8ke4Srzfb1eTM0yThUVaO6xTEO R1EEkHhMIdQKY89vTPauaSnkjM7VliOVTL2fqETTf6hgwugjn1iFXYRrWpWkhvDg 39MtEVQgzBmwQV5cN9RvrGqnrdlrABRUJOwDI/U5XXuZ+fM6p/sRrZyoHRbzHmkw kqxy9H9E7K+4MZ5gjnkghzM8xcjj5g6DNwLNKs0yJEm/papNcxbpbLP1iYQ6ZZ8= -----END CERTIFICATE-----Generated at Wed Oct 8 21:30:59 2025 by rpki-client