$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/21659f7e-dfb0-401c-964b-6f52493a3df0.roa File: 21659f7e-dfb0-401c-964b-6f52493a3df0.roa (raw, json) Hash identifier: U/BGGr5QChmoK9ibkSCxgyYDwEpqwPHvUbPp6yx3zVw= Subject key identifier: F0:12:D8:10:54:28:5D:F8:20:35:59:72:B4:02:F1:84:42:50:62:39 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 361321C73F6442F8AE5FAD0A14D34FD14676F721 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/21659f7e-dfb0-401c-964b-6f52493a3df0.roa Signing time: Mon 06 Oct 2025 17:37:41 +0000 ROA not before: Mon 06 Oct 2025 17:37:41 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6105::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:13:21:c7:3f:64:42:f8:ae:5f:ad:0a:14:d3:4f:d1:46:76:f7:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 6 17:37:41 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=8d57e2ba3af5ac70a3344936863748cf7a98cc72b28676493d8b2a7674782cb8, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ea:dd:9f:61:4e:92:c1:55:cf:93:80:20:a9: 3c:6f:b0:9c:48:73:ba:7e:10:09:ff:59:e7:e5:89: 4c:41:56:6f:ac:88:df:57:87:03:af:42:a5:44:e1: 07:65:5b:c0:39:80:bd:4c:81:e6:85:c1:02:58:4d: dd:e1:60:94:7c:5e:ba:3e:de:cb:2e:be:58:dc:43: c7:25:ec:85:5b:60:49:98:a8:65:a0:4b:6c:ee:ae: d5:51:f9:49:a1:91:78:e1:69:ff:18:a7:91:d0:31: a5:d7:ef:93:12:05:3b:fe:7c:3f:ed:ec:ff:a2:f8: cc:1c:10:03:3d:c9:09:aa:5f:f0:df:5d:a7:cc:d7: 48:df:eb:1d:ab:e6:66:58:02:8e:84:e8:ae:7c:70: 79:08:f8:cb:35:e5:58:92:a7:42:fc:c9:62:20:14: bd:58:d4:b3:f6:f6:59:a7:d6:ac:fc:33:df:d6:ad: c4:12:21:eb:b5:d9:5b:3b:b3:95:25:2d:f0:a9:1f: 4c:d5:e8:af:8f:df:f9:a2:df:9f:61:fc:a0:12:9d: f4:2b:c9:e1:46:a9:33:4d:68:6a:e1:ab:75:56:da: 55:cf:4d:e9:f3:58:d8:35:2e:e5:5d:cd:21:5a:18: 7e:13:a6:c4:69:f9:ed:f9:0e:23:a1:69:33:0c:69: 6a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:12:D8:10:54:28:5D:F8:20:35:59:72:B4:02:F1:84:42:50:62:39 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/21659f7e-dfb0-401c-964b-6f52493a3df0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6105::/48 Signature Algorithm: sha256WithRSAEncryption 90:54:90:2c:de:ca:09:62:59:28:c1:fb:0e:84:1c:e2:eb:5d: 30:4c:0c:ca:05:b9:7b:72:47:18:09:1a:7d:d3:4f:e8:5e:55: b2:6c:a8:38:09:34:c7:21:85:4e:02:cb:e7:4e:60:07:9f:b1: ad:bf:16:5e:66:b6:26:0d:2d:51:78:af:ca:ae:10:c1:1e:ab: 3a:90:d0:d0:e0:89:a7:59:87:56:94:cf:a8:12:76:c4:aa:ff: e3:0b:c9:8e:03:24:48:12:a0:53:af:8d:2a:42:e5:17:db:c6: bd:4a:a7:70:a8:2d:4e:2d:93:c4:ef:bd:c4:4c:10:9f:a0:fa: 1d:0e:22:ee:11:cd:fa:42:0f:04:dd:bd:e8:3d:de:b7:e0:d3: 42:b1:87:18:7f:29:09:7f:88:e3:70:61:f9:e9:50:13:08:60: 7d:02:40:3a:df:72:1a:db:0a:dc:17:ae:00:73:b4:f9:95:22: 7b:40:22:ae:1c:f3:5b:a3:ae:f0:20:f3:66:d8:c5:47:2b:1b: 0b:e3:c3:77:67:f9:ac:21:f4:a5:d3:05:85:ae:2a:5e:df:17: 54:da:3f:2e:4c:86:27:b8:d2:6f:f0:08:67:a3:10:f2:0f:3e: d7:2c:ee:63:07:d7:65:53:6b:97:05:18:f7:2a:da:c7:e4:ec: 7d:da:db:2f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNhMhxz9kQviuX60KFNNP0UZ29yEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDA2MTczNzQxWhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZDU3ZTJiYTNhZjVhYzcwYTMzNDQ5MzY4NjM3NDhjZjdh OThjYzcyYjI4Njc2NDkzZDhiMmE3Njc0NzgyY2I4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDD6t2fYU6SwVXPk4AgqTxvsJxIc7p+EAn/WefliUxBVm+s iN9XhwOvQqVE4QdlW8A5gL1MgeaFwQJYTd3hYJR8Xro+3ssuvljcQ8cl7IVbYEmY qGWgS2zurtVR+UmhkXjhaf8Yp5HQMaXX75MSBTv+fD/t7P+i+MwcEAM9yQmqX/Df XafM10jf6x2r5mZYAo6E6K58cHkI+Ms15ViSp0L8yWIgFL1Y1LP29lmn1qz8M9/W rcQSIeu12Vs7s5UlLfCpH0zV6K+P3/mi359h/KASnfQryeFGqTNNaGrhq3VW2lXP TenzWNg1LuVdzSFaGH4TpsRp+e35DiOhaTMMaWo7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8BLYEFQoXfggNVlytALxhEJQYjkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzIxNjU5ZjdlLWRmYjAtNDAxYy05NjRiLTZmNTI0OTNhM2RmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQUwDQYJKoZIhvcNAQELBQADggEBAJBUkCzeygliWSjB+w6EHOLr XTBMDMoFuXtyRxgJGn3TT+heVbJsqDgJNMchhU4Cy+dOYAefsa2/Fl5mtiYNLVF4 r8quEMEeqzqQ0NDgiadZh1aUz6gSdsSq/+MLyY4DJEgSoFOvjSpC5Rfbxr1Kp3Co LU4tk8TvvcRMEJ+g+h0OIu4RzfpCDwTdveg93rfg00Kxhxh/KQl/iONwYfnpUBMI YH0CQDrfchrbCtwXrgBztPmVIntAIq4c81ujrvAg82bYxUcrGwvjw3dn+awh9KXT BYWuKl7fF1TaPy5Mhie40m/wCGejEPIPPtcs7mMH12VTa5cFGPcq2sfk7H3a2y8= -----END CERTIFICATE-----Generated at Wed Oct 8 19:44:49 2025 by rpki-client