$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0a9c1ab1-49ce-487d-9702-dc4efc450447.roa File: 0a9c1ab1-49ce-487d-9702-dc4efc450447.roa (raw, json) Hash identifier: qcdhM2M3/Hv7sPT26G6JPZb5elTflv4QBcMJgih/ShI= Subject key identifier: 63:7A:49:03:BF:15:D4:AE:A0:69:62:F4:5A:5F:4D:49:BE:B6:78:55 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3D7550C54F3C10A415A1A40245C8C246BAB9544C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0a9c1ab1-49ce-487d-9702-dc4efc450447.roa Signing time: Mon 06 Oct 2025 17:40:43 +0000 ROA not before: Mon 06 Oct 2025 17:40:43 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6118::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:75:50:c5:4f:3c:10:a4:15:a1:a4:02:45:c8:c2:46:ba:b9:54:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 6 17:40:43 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=4fffec464c4ae52fc44a80ff6542bff377e9d845bf8991bbaacfa4d2c2e445ec, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:de:63:9a:fd:c8:ae:fd:11:0b:e3:5a:fd:b9: 52:f6:39:78:be:b6:99:3d:b9:44:d1:d8:db:4e:aa: 88:5e:36:5f:0d:b7:e5:f9:19:07:66:de:bd:de:c4: 9f:b3:f0:84:76:dd:85:6f:e4:e4:7b:01:fd:d7:92: 70:6c:a8:02:0e:b1:55:5e:7e:47:b2:62:0a:db:41: 95:4a:be:ce:75:01:23:27:2b:83:95:14:1a:6c:9c: 7f:c4:ed:37:12:f9:05:b7:eb:e7:76:68:f9:6a:56: fe:e5:0f:f1:ec:dc:be:41:a7:53:03:53:29:82:a0: bc:f4:d8:41:6c:5e:73:0f:a9:64:e7:7f:c4:2d:28: 7f:5f:5d:e9:06:7f:9b:11:f0:a0:e9:2d:c0:62:c3: 21:9f:db:40:a0:21:cc:45:47:ce:da:aa:0a:4c:fe: cd:2a:1f:4e:ef:f9:0d:0b:40:5c:99:f7:b8:be:42: 69:7a:d6:67:05:37:3e:7c:6f:ad:e4:22:31:04:5c: 82:a4:c1:ec:81:3b:5e:db:00:98:07:58:50:f5:4b: 41:6f:b8:ba:f5:55:48:a6:4c:59:a2:28:cf:16:95: a0:5b:3f:f4:6d:4d:7a:a7:65:a5:d6:e6:7d:4d:9e: 95:e8:56:0e:37:6e:23:c7:83:96:db:f4:78:39:60: 61:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:7A:49:03:BF:15:D4:AE:A0:69:62:F4:5A:5F:4D:49:BE:B6:78:55 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0a9c1ab1-49ce-487d-9702-dc4efc450447.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6118::/48 Signature Algorithm: sha256WithRSAEncryption 2e:d5:d3:51:b8:f2:2e:2b:28:bd:cd:65:4b:2e:61:71:05:a1: 95:3b:83:aa:f5:0e:92:3e:cd:38:8b:42:3a:13:30:39:73:1d: 6d:55:a4:88:eb:03:94:b9:ad:3d:48:33:4d:a9:a1:bb:56:f0: 71:af:58:68:f3:19:a4:32:6d:b0:4b:bf:6f:2e:39:01:44:8c: 10:60:dd:c7:c6:45:5e:ad:c9:c4:b9:a8:a5:51:1b:61:e5:72: 83:7f:17:a3:b3:3f:1b:29:1b:1e:d7:89:4a:cc:ae:62:a2:36: 00:59:fd:de:83:0c:52:21:b4:23:a3:cf:62:ff:d5:ec:73:47: 3d:1e:6d:26:ef:b1:2d:3b:9f:48:fd:9a:d5:06:ea:2e:df:e1: 0f:75:7f:7b:a2:69:be:fb:b6:b3:9b:43:26:45:13:54:dd:7e: e4:63:4f:7d:da:53:36:07:a4:d4:f5:74:6d:b5:a4:96:18:9a: ba:71:2c:90:d4:5b:83:25:04:e5:54:d3:85:9f:65:65:4a:ca: 83:7f:e7:50:ce:f7:03:b6:45:1e:44:16:45:c3:c1:07:15:89: ee:95:5a:6e:8c:51:59:89:6e:02:8e:b8:a8:ba:b9:3a:13:e4: 4b:57:9a:38:4b:8c:e8:80:ca:4d:2f:5a:1a:15:fb:45:b0:24: 5a:7a:45:0f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPXVQxU88EKQVoaQCRcjCRrq5VEwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDA2MTc0MDQzWhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZmZmZWM0NjRjNGFlNTJmYzQ0YTgwZmY2NTQyYmZmMzc3 ZTlkODQ1YmY4OTkxYmJhYWNmYTRkMmMyZTQ0NWVjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDF3mOa/ciu/REL41r9uVL2OXi+tpk9uUTR2NtOqoheNl8N t+X5GQdm3r3exJ+z8IR23YVv5OR7Af3XknBsqAIOsVVefkeyYgrbQZVKvs51ASMn K4OVFBpsnH/E7TcS+QW36+d2aPlqVv7lD/Hs3L5Bp1MDUymCoLz02EFsXnMPqWTn f8QtKH9fXekGf5sR8KDpLcBiwyGf20CgIcxFR87aqgpM/s0qH07v+Q0LQFyZ97i+ Qml61mcFNz58b63kIjEEXIKkweyBO17bAJgHWFD1S0FvuLr1VUimTFmiKM8WlaBb P/RtTXqnZaXW5n1NnpXoVg43biPHg5bb9Hg5YGFJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUY3pJA78V1K6gaWL0Wl9NSb62eFUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBhOWMxYWIxLTQ5Y2UtNDg3ZC05NzAyLWRjNGVmYzQ1MDQ0Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRgwDQYJKoZIhvcNAQELBQADggEBAC7V01G48i4rKL3NZUsuYXEF oZU7g6r1DpI+zTiLQjoTMDlzHW1VpIjrA5S5rT1IM02pobtW8HGvWGjzGaQybbBL v28uOQFEjBBg3cfGRV6tycS5qKVRG2HlcoN/F6OzPxspGx7XiUrMrmKiNgBZ/d6D DFIhtCOjz2L/1exzRz0ebSbvsS07n0j9mtUG6i7f4Q91f3uiab77trObQyZFE1Td fuRjT33aUzYHpNT1dG21pJYYmrpxLJDUW4MlBOVU04WfZWVKyoN/51DO9wO2RR5E FkXDwQcVie6VWm6MUVmJbgKOuKi6uToT5EtXmjhLjOiAyk0vWhoV+0WwJFp6RQ8= -----END CERTIFICATE-----Generated at Wed Oct 8 19:45:08 2025 by rpki-client