$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa File: 514fa870-df33-4dfe-a228-5ea96e0f3560.roa (raw, json) Hash identifier: 9Rl9BPz5Yy8cNwgMEQnxUukxFEdLEyS9Ms6Y3haAJfo= Subject key identifier: 2B:02:4C:C0:8C:EC:83:4E:9B:39:75:52:D2:65:B0:8E:07:E1:C7:E6 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 542830D7D78711FC0FB2055A66416A0A9B0D225C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa Signing time: Tue 30 Sep 2025 00:46:02 +0000 ROA not before: Tue 30 Sep 2025 00:46:02 +0000 ROA not after: Tue 04 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:90::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:28:30:d7:d7:87:11:fc:0f:b2:05:5a:66:41:6a:0a:9b:0d:22:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 30 00:46:02 2025 GMT Not After : Nov 4 23:59:59 2025 GMT Subject: serialNumber=53858d5dcf7608fd196f19f10b24055503426f2371d9b50aa6000043d58fb017, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:dd:d0:ba:44:1b:65:94:11:f7:24:22:69:f4: 36:1c:58:fb:34:8f:8e:1b:d8:bb:e5:2c:0c:65:a4: 35:03:99:99:76:71:ae:35:f9:a3:33:34:b8:90:75: 74:21:84:50:85:eb:16:b4:51:eb:e2:bb:4e:d2:78: 55:68:6c:29:75:96:95:8c:93:17:24:0f:68:34:24: 48:6a:92:4f:44:8a:94:07:10:cf:da:41:d5:b4:2c: 7b:df:6f:27:9c:8c:36:2b:23:a8:23:3e:fb:a4:72: e6:5e:b6:80:6b:4c:ed:3d:29:5a:5d:96:a4:6b:b1: 1b:20:f8:11:27:94:73:79:4d:05:aa:87:96:6f:ff: 80:d9:32:e7:73:31:84:53:99:67:06:0f:11:a9:bb: 90:5f:a8:1a:14:c0:35:5d:52:aa:a5:11:f5:d3:80: 5d:81:99:8c:7c:3b:bf:bd:93:a2:5f:a0:d2:5d:f8: d8:b2:7a:24:6d:cf:09:37:ea:dc:a6:30:3f:25:54: f7:62:ea:26:ef:a3:1c:5a:d1:3f:bf:ba:57:83:57: b1:71:d1:01:d9:52:83:32:67:a1:90:8a:56:f8:05: aa:ba:73:9b:7c:7d:9c:9a:de:4b:a8:c4:6b:36:c3: 1c:d7:00:8a:83:b7:9d:96:6b:52:46:37:57:bf:16: 66:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:02:4C:C0:8C:EC:83:4E:9B:39:75:52:D2:65:B0:8E:07:E1:C7:E6 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:90::/44 Signature Algorithm: sha256WithRSAEncryption 78:39:47:aa:58:b4:61:32:79:53:8f:0a:1c:20:59:cd:bc:e9: 1a:78:da:a5:e3:8c:cc:7f:95:bb:c3:47:d0:ed:c2:c5:7a:18: 93:af:c9:18:12:4c:2b:81:90:16:f2:f5:3f:b4:ef:66:38:44: 78:cd:0c:0b:4e:38:68:9e:8a:fb:94:14:a2:9d:ea:23:9b:aa: 59:a8:1a:ba:3a:fa:86:4b:3e:b9:5f:90:c2:4d:bc:43:6d:6b: 41:08:cc:ea:86:b2:d7:ec:3e:b1:20:ca:6d:a7:d8:db:55:e9: 62:ac:ef:ed:e8:5d:f5:d1:d5:f7:f4:2f:66:37:37:fa:e8:bc: 9b:ff:be:fe:12:bc:ce:53:a4:4e:f0:cb:45:97:7e:ee:ea:83: cb:c6:b8:b0:26:c6:1c:3f:a9:25:51:89:e0:69:70:8a:d8:65: 62:79:b6:e7:10:33:df:34:30:39:26:02:77:c1:9e:53:17:e8: 09:57:9e:7a:6e:f1:8f:41:53:e7:ad:36:ac:72:aa:75:b1:43: a6:63:1c:0f:f0:08:62:b3:41:c4:db:fe:cc:b5:45:02:9a:d8: 89:e6:e6:24:0b:d2:fe:4c:a3:cd:6e:79:7f:f5:b7:b3:03:ec: 0e:75:5f:9e:db:d5:fd:0d:24:79:e2:f0:ce:c5:bf:06:f7:35: 03:a1:83:88 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVCgw19eHEfwPsgVaZkFqCpsNIlwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTMwMDA0NjAyWhcNMjUxMTA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1Mzg1OGQ1ZGNmNzYwOGZkMTk2ZjE5ZjEwYjI0MDU1NTAz NDI2ZjIzNzFkOWI1MGFhNjAwMDA0M2Q1OGZiMDE3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDD3dC6RBtllBH3JCJp9DYcWPs0j44b2LvlLAxlpDUDmZl2 ca41+aMzNLiQdXQhhFCF6xa0Ueviu07SeFVobCl1lpWMkxckD2g0JEhqkk9EipQH EM/aQdW0LHvfbyecjDYrI6gjPvukcuZetoBrTO09KVpdlqRrsRsg+BEnlHN5TQWq h5Zv/4DZMudzMYRTmWcGDxGpu5BfqBoUwDVdUqqlEfXTgF2BmYx8O7+9k6JfoNJd +NiyeiRtzwk36tymMD8lVPdi6ibvoxxa0T+/uleDV7Fx0QHZUoMyZ6GQilb4Baq6 c5t8fZya3kuoxGs2wxzXAIqDt52Wa1JGN1e/FmZrAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKwJMwIzsg06bOXVS0mWwjgfhx+YwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzUxNGZhODcwLWRmMzMtNGRmZS1hMjI4LTVlYTk2ZTBmMzU2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAJAwDQYJKoZIhvcNAQELBQADggEBAHg5R6pYtGEyeVOPChwgWc28 6Rp42qXjjMx/lbvDR9DtwsV6GJOvyRgSTCuBkBby9T+072Y4RHjNDAtOOGieivuU FKKd6iObqlmoGro6+oZLPrlfkMJNvENta0EIzOqGstfsPrEgym2n2NtV6WKs7+3o XfXR1ff0L2Y3N/rovJv/vv4SvM5TpE7wy0WXfu7qg8vGuLAmxhw/qSVRieBpcIrY ZWJ5tucQM980MDkmAnfBnlMX6AlXnnpu8Y9BU+etNqxyqnWxQ6ZjHA/wCGKzQcTb /sy1RQKa2Inm5iQL0v5Mo81ueX/1t7MD7A51X57b1f0NJHni8M7Fvwb3NQOhg4g= -----END CERTIFICATE-----Generated at Thu Oct 9 01:21:49 2025 by rpki-client