$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/17964269-4037-4ed5-aaa5-d2527a564b59.roa File: 17964269-4037-4ed5-aaa5-d2527a564b59.roa (raw, json) Hash identifier: nC+OXBv6PpNdMX8HZYi1DLl5CaMdgBHVioy2w7ZeBPw= Subject key identifier: AB:00:B0:69:A9:75:71:87:D4:29:73:53:3A:73:1C:92:A6:0E:05:C0 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 529E1FCE52CEC417145EDC4B7DCDA196BCF4EB1B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/17964269-4037-4ed5-aaa5-d2527a564b59.roa Signing time: Mon 06 Oct 2025 17:37:46 +0000 ROA not before: Mon 06 Oct 2025 17:37:46 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6114::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:9e:1f:ce:52:ce:c4:17:14:5e:dc:4b:7d:cd:a1:96:bc:f4:eb:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 6 17:37:46 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=b1c1bc7ae17f118b3e836bb665800d0dbd1e6cae99bec9f55839592a5968299a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:51:be:6e:75:e9:70:e7:50:7b:59:ba:9c:55: d4:a9:d7:76:72:9f:41:16:28:ae:6b:51:73:67:fd: 0d:cc:95:b1:b3:1f:4c:6f:21:26:fa:ea:c3:bb:8b: a8:35:9f:b8:39:8a:8a:ec:c1:c8:47:c8:30:46:52: 2b:27:41:4a:f6:57:94:08:44:bd:44:16:af:64:87: 78:c6:d8:c1:5c:4a:a2:b0:6f:1c:08:2c:a9:7d:4c: 05:0f:76:fe:1f:33:37:15:01:22:26:c5:a5:5e:ec: 44:73:e3:aa:c1:a0:23:39:29:d8:87:62:f5:7a:62: 12:df:f9:33:39:9b:f1:cd:d5:6b:ab:f0:36:24:2e: 25:90:09:26:c2:59:84:45:88:5a:a7:e1:bf:04:ed: ab:ab:f3:1a:ed:c0:3a:e6:f0:1c:b9:0d:fa:cc:f7: 1d:79:99:b0:f4:02:e3:b2:fc:06:e0:e6:a4:ea:59: 57:be:7d:33:03:14:22:84:bb:1f:f4:20:d3:92:70: 03:8e:47:11:73:b5:0f:f1:c3:28:07:88:df:eb:d3: 5d:88:f8:b5:1e:51:49:1b:5d:fb:be:1c:d0:df:f9: 13:d1:8a:90:6d:26:8f:fd:63:d2:36:54:46:a7:cb: 22:43:b7:b3:4a:16:4e:e8:cc:0e:da:11:b4:9a:8e: 9f:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:00:B0:69:A9:75:71:87:D4:29:73:53:3A:73:1C:92:A6:0E:05:C0 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/17964269-4037-4ed5-aaa5-d2527a564b59.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6114::/48 Signature Algorithm: sha256WithRSAEncryption 96:e6:e4:a4:d6:ca:a7:57:c2:d9:b0:1e:b3:8c:64:e9:e3:6b: 89:29:2a:b0:99:cf:41:0b:e3:5b:51:52:61:47:9b:ac:83:f8: 9e:40:c4:5b:df:ec:f2:aa:2e:4b:4e:8a:a9:51:84:66:50:6f: 71:ae:f3:75:26:a1:02:df:b2:e2:92:7b:5c:7a:cd:dd:c7:74: d6:66:b9:f3:f5:6c:48:37:c3:e6:ca:c1:ce:9f:47:cd:9f:ae: 49:48:99:ff:1f:7a:d3:38:83:9c:2b:52:f8:22:7e:b4:a7:f8: 13:45:3e:52:6a:71:da:52:40:4f:1c:01:24:8e:a7:fb:0f:c8: 82:c0:d3:08:c4:c4:6e:bb:cf:7e:6e:38:df:36:d4:3f:d5:d5: 0d:ad:3b:c2:23:b5:39:31:50:06:e8:6b:21:12:12:07:34:c5: 4b:37:39:aa:6b:65:bc:41:1a:11:8f:82:7c:44:80:29:df:6c: 4c:e4:38:0d:05:4f:80:55:61:7d:fb:44:57:54:d9:70:9c:b9: 9f:7a:fd:34:a2:95:ba:bc:5a:08:4b:04:1b:6f:dd:4c:da:a1: a8:fd:33:fc:5f:57:8d:34:e2:ec:c0:0e:a3:8d:9b:f9:1f:2a: 6a:0b:fe:74:6a:4a:72:73:d8:69:80:e9:64:6c:52:75:f5:56: 55:25:f0:35 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUp4fzlLOxBcUXtxLfc2hlrz06xswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDA2MTczNzQ2WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMWMxYmM3YWUxN2YxMThiM2U4MzZiYjY2NTgwMGQwZGJk MWU2Y2FlOTliZWM5ZjU1ODM5NTkyYTU5NjgyOTlhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmUb5udelw51B7WbqcVdSp13Zyn0EWKK5rUXNn/Q3MlbGz H0xvISb66sO7i6g1n7g5iorswchHyDBGUisnQUr2V5QIRL1EFq9kh3jG2MFcSqKw bxwILKl9TAUPdv4fMzcVASImxaVe7ERz46rBoCM5KdiHYvV6YhLf+TM5m/HN1Wur 8DYkLiWQCSbCWYRFiFqn4b8E7aur8xrtwDrm8By5DfrM9x15mbD0AuOy/Abg5qTq WVe+fTMDFCKEux/0INOScAOORxFztQ/xwygHiN/r012I+LUeUUkbXfu+HNDf+RPR ipBtJo/9Y9I2VEanyyJDt7NKFk7ozA7aEbSajp+xAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUqwCwaal1cYfUKXNTOnMckqYOBcAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzE3OTY0MjY5LTQwMzctNGVkNS1hYWE1LWQyNTI3YTU2NGI1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRQwDQYJKoZIhvcNAQELBQADggEBAJbm5KTWyqdXwtmwHrOMZOnj a4kpKrCZz0EL41tRUmFHm6yD+J5AxFvf7PKqLktOiqlRhGZQb3Gu83UmoQLfsuKS e1x6zd3HdNZmufP1bEg3w+bKwc6fR82frklImf8fetM4g5wrUvgifrSn+BNFPlJq cdpSQE8cASSOp/sPyILA0wjExG67z35uON821D/V1Q2tO8IjtTkxUAboayESEgc0 xUs3OaprZbxBGhGPgnxEgCnfbEzkOA0FT4BVYX37RFdU2XCcuZ96/TSilbq8WghL BBtv3Uzaoaj9M/xfV4004uzADqONm/kfKmoL/nRqSnJz2GmA6WRsUnX1VlUl8DU= -----END CERTIFICATE-----Generated at Wed Oct 8 19:42:47 2025 by rpki-client