$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/100ca166-7317-4d78-8102-ea1dfe26d0e3.roa File: 100ca166-7317-4d78-8102-ea1dfe26d0e3.roa (raw, json) Hash identifier: yFYdFepdruiiB7ICwFNfBToDFoZsqQ/CAckMzIXAfgQ= Subject key identifier: AC:02:C1:16:5A:8D:71:03:89:94:D3:45:EB:C8:B5:C9:F3:3C:B4:AC Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 498592D1A0652A57F5690CB79BF0BC6CC24B8911 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/100ca166-7317-4d78-8102-ea1dfe26d0e3.roa Signing time: Fri 26 Sep 2025 18:00:11 +0000 ROA not before: Fri 26 Sep 2025 18:00:11 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:551a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:85:92:d1:a0:65:2a:57:f5:69:0c:b7:9b:f0:bc:6c:c2:4b:89:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:00:11 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=29a78cbeda8bdcca414c209bdce4a771f44c7f80ecfe5b75f83b1c3946190ac0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d1:54:49:3f:4a:d0:07:60:89:00:d4:73:5e: c0:8b:77:bb:2c:b4:79:c4:ff:6b:f8:84:e9:eb:86: bf:e1:57:cd:cb:db:fd:6b:8d:9c:f5:99:22:9c:6c: 7e:0f:d9:54:a1:3c:2c:be:b5:f8:cb:0b:f2:ab:10: 39:99:a6:55:87:a1:21:73:30:fc:f8:c5:3d:a9:27: 33:e8:e2:12:6a:2f:26:f7:0c:a4:56:b2:3d:8d:61: cb:80:de:49:a5:29:f5:ae:99:c0:cb:67:8c:d3:65: 2d:9b:46:6e:cd:e4:ba:7c:d0:25:26:0c:a8:34:27: b6:11:c5:3b:10:5a:2e:a2:29:27:60:8f:86:84:14: 4c:61:31:44:2f:7f:17:88:4d:e3:6d:d9:e4:ca:51: 1f:1c:0f:d2:7d:f5:34:bd:1b:ef:65:d5:8d:0b:0e: c3:7e:7f:1b:8c:14:34:6a:41:c4:f3:0f:ff:f4:41: 98:cc:6b:09:00:8d:31:0b:cb:93:63:be:be:bd:6d: 45:57:9f:94:85:ac:ef:4d:14:af:7c:bc:f4:71:e1: e3:1c:1a:df:48:b9:30:b3:33:7a:1d:af:55:2e:32: b7:15:aa:36:39:1b:f5:33:64:ea:6f:ef:2c:c7:2a: 96:9a:a8:72:23:0b:77:86:f4:2b:44:46:c9:a1:7a: 8d:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:02:C1:16:5A:8D:71:03:89:94:D3:45:EB:C8:B5:C9:F3:3C:B4:AC X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/100ca166-7317-4d78-8102-ea1dfe26d0e3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551a::/48 Signature Algorithm: sha256WithRSAEncryption 74:ab:84:43:3a:42:ad:0d:e4:4a:f4:9d:6b:68:da:c0:d6:07: 71:9b:1d:02:ab:b8:34:ee:92:f0:e7:95:e3:f4:ec:64:9d:16: a7:09:98:a6:d1:6e:11:ab:c3:19:1e:13:9b:4b:eb:eb:7a:98: 4e:d4:f6:84:64:44:d1:1d:f0:21:f9:98:80:bb:2d:eb:bc:50: da:03:c7:65:0c:e8:e5:13:02:59:5e:b7:cc:72:61:02:2f:01: 61:63:7a:a4:17:2e:bf:e4:ef:65:a9:ae:43:51:83:03:53:84: a7:c3:e4:d5:14:ae:0c:8e:ea:49:ca:40:e8:78:9f:1c:ff:69: 8a:ae:94:95:4f:08:ba:b7:f8:b2:91:dc:94:1c:02:b2:e8:6c: ab:99:1e:d5:30:74:ec:50:53:94:56:a8:34:73:63:ce:e1:25: 04:ee:66:2e:dd:77:5c:b0:8f:8b:e9:84:fd:34:ee:89:53:4d: 60:36:df:b0:a5:c5:7b:45:cb:bf:c2:0a:5e:db:77:02:f1:ec: 9c:9e:e7:28:de:16:ba:1d:32:93:ff:34:5e:11:fe:99:2c:1a: ca:bf:08:19:0d:8d:50:1e:bd:b4:b2:83:ee:51:f3:59:4b:c7: c1:1f:52:4c:0a:60:b7:09:4e:38:dd:58:a0:3b:65:c4:a4:ab: 76:b2:8a:8b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSYWS0aBlKlf1aQy3m/C8bMJLiREwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgwMDExWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyOWE3OGNiZWRhOGJkY2NhNDE0YzIwOWJkY2U0YTc3MWY0 NGM3ZjgwZWNmZTViNzVmODNiMWMzOTQ2MTkwYWMwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCw0VRJP0rQB2CJANRzXsCLd7sstHnE/2v4hOnrhr/hV83L 2/1rjZz1mSKcbH4P2VShPCy+tfjLC/KrEDmZplWHoSFzMPz4xT2pJzPo4hJqLyb3 DKRWsj2NYcuA3kmlKfWumcDLZ4zTZS2bRm7N5Lp80CUmDKg0J7YRxTsQWi6iKSdg j4aEFExhMUQvfxeITeNt2eTKUR8cD9J99TS9G+9l1Y0LDsN+fxuMFDRqQcTzD//0 QZjMawkAjTELy5Njvr69bUVXn5SFrO9NFK98vPRx4eMcGt9IuTCzM3odr1UuMrcV qjY5G/UzZOpv7yzHKpaaqHIjC3eG9CtERsmheo1bAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUrALBFlqNcQOJlNNF68i1yfM8tKwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzEwMGNhMTY2LTczMTctNGQ3OC04MTAyLWVhMWRmZTI2ZDBlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRowDQYJKoZIhvcNAQELBQADggEBAHSrhEM6Qq0N5Er0nWto2sDW B3GbHQKruDTukvDnleP07GSdFqcJmKbRbhGrwxkeE5tL6+t6mE7U9oRkRNEd8CH5 mIC7Leu8UNoDx2UM6OUTAllet8xyYQIvAWFjeqQXLr/k72WprkNRgwNThKfD5NUU rgyO6knKQOh4nxz/aYqulJVPCLq3+LKR3JQcArLobKuZHtUwdOxQU5RWqDRzY87h JQTuZi7dd1ywj4vphP007olTTWA237ClxXtFy7/CCl7bdwLx7Jye5yjeFrodMpP/ NF4R/pksGsq/CBkNjVAevbSyg+5R81lLx8EfUkwKYLcJTjjdWKA7ZcSkq3ayios= -----END CERTIFICATE-----Generated at Wed Oct 8 19:45:07 2025 by rpki-client