$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/59630120-022f-4db2-870c-b5a5f46ee77a.roa File: 59630120-022f-4db2-870c-b5a5f46ee77a.roa (raw, json) Hash identifier: SbkcBe+RLH8taTaYihRIamQwnzAibGSeCTP7KBXYZzE= Subject key identifier: 0B:50:02:97:61:42:C2:AB:5B:91:37:53:9E:61:28:E0:F3:0D:32:25 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 16D0847ACF141CFF4F5D74C738144CE6C01FE83B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/59630120-022f-4db2-870c-b5a5f46ee77a.roa Signing time: Fri 03 Oct 2025 15:18:16 +0000 ROA not before: Fri 03 Oct 2025 15:18:16 +0000 ROA not after: Fri 07 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f2:7101::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:d0:84:7a:cf:14:1c:ff:4f:5d:74:c7:38:14:4c:e6:c0:1f:e8:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 3 15:18:16 2025 GMT Not After : Nov 7 23:59:59 2025 GMT Subject: serialNumber=4d2146eb879f9e5659353bcbb624ef747086f4ed8d25007114c5bc094f12e521, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:dc:8b:e2:c1:7b:c7:a5:4d:31:1d:fe:a5:dd: 4a:31:d3:0c:6b:97:01:c6:af:79:e4:04:ed:49:ab: 43:75:89:75:0a:c2:aa:1b:80:0b:8b:28:23:ea:a3: d8:86:c2:6a:ce:64:c3:85:c9:07:d8:b9:5e:fe:9e: d2:f9:73:bd:48:9c:37:6b:c4:38:c9:a4:c7:58:f2: de:18:1c:2a:89:db:d1:ba:c3:bc:e5:4e:00:35:82: 87:36:6c:90:c0:45:2a:19:ab:7d:38:75:84:5d:fa: ca:a5:31:93:3f:44:6c:2a:cb:ee:a8:8d:77:a5:b4: 17:aa:92:a1:55:fe:ff:90:64:02:bf:ab:98:2d:34: f3:2a:6c:3c:f4:b4:60:de:82:2c:6e:7a:bd:38:a8: ef:ac:fd:37:fa:3e:52:b4:87:23:22:c7:52:09:a7: 14:c9:fb:4f:c1:bc:68:d8:ba:da:09:02:e0:73:d5: 3d:4e:63:68:09:81:bc:85:ec:d8:04:8c:6b:7f:07: 26:ac:a7:39:c7:70:12:09:f2:cb:54:a6:ae:a0:a9: c9:70:25:1e:fd:2a:ed:dd:18:70:b1:b7:f5:c9:db: 51:80:07:f9:38:51:31:9b:a6:31:cb:3f:30:69:10: 5f:d6:bf:6a:d4:d5:fe:02:77:fe:81:22:83:4e:ce: 48:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:50:02:97:61:42:C2:AB:5B:91:37:53:9E:61:28:E0:F3:0D:32:25 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/59630120-022f-4db2-870c-b5a5f46ee77a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7101::/48 Signature Algorithm: sha256WithRSAEncryption 01:a6:fc:37:7a:80:fe:b1:f2:3e:cd:52:0b:67:55:52:c8:da: 88:58:0c:02:de:30:f7:c9:23:cc:3e:6a:fb:d5:e3:6f:8d:70: 83:4c:19:9d:15:27:e7:45:da:45:5a:9a:f0:3c:3e:78:af:b0: f5:a1:56:4a:55:26:d8:8f:0e:fe:b6:a8:ca:30:17:54:c7:b8: 38:00:a7:33:59:a5:f3:80:59:90:e6:31:86:90:b8:4e:48:3c: 61:92:18:5f:38:e8:d6:79:d2:6d:54:06:34:b8:6b:0e:cc:ac: e3:5d:11:ea:60:e7:bf:dd:b4:f7:3c:53:97:d6:7c:55:77:21: a7:9f:8a:a5:56:bb:37:19:57:1a:93:97:41:63:44:c6:68:69: 15:d8:fd:d5:6f:6c:15:76:d7:7e:40:bf:64:bb:c8:88:5c:3a: 2c:d5:0f:d2:cc:9a:5f:b7:d4:62:42:70:aa:09:bd:8a:9e:26: 51:b5:d6:0e:d1:77:76:37:39:b3:9e:4b:7e:18:d5:15:b5:6b: 27:47:7a:7f:b5:57:a7:3c:b6:25:20:ba:c0:ff:b2:7c:87:28: fa:7d:3e:5c:32:53:44:48:ac:24:bb:a4:4f:a7:05:37:f0:6d: 9f:fb:cf:d2:6b:89:76:ea:16:96:16:fc:44:65:c2:14:68:21: 1f:34:5f:9b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFtCEes8UHP9PXXTHOBRM5sAf6DswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDAzMTUxODE2WhcNMjUxMTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZDIxNDZlYjg3OWY5ZTU2NTkzNTNiY2JiNjI0ZWY3NDcw ODZmNGVkOGQyNTAwNzExNGM1YmMwOTRmMTJlNTIxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCr3IviwXvHpU0xHf6l3Uox0wxrlwHGr3nkBO1Jq0N1iXUK wqobgAuLKCPqo9iGwmrOZMOFyQfYuV7+ntL5c71InDdrxDjJpMdY8t4YHCqJ29G6 w7zlTgA1goc2bJDARSoZq304dYRd+sqlMZM/RGwqy+6ojXeltBeqkqFV/v+QZAK/ q5gtNPMqbDz0tGDegixuer04qO+s/Tf6PlK0hyMix1IJpxTJ+0/BvGjYutoJAuBz 1T1OY2gJgbyF7NgEjGt/ByaspznHcBIJ8stUpq6gqclwJR79Ku3dGHCxt/XJ21GA B/k4UTGbpjHLPzBpEF/Wv2rU1f4Cd/6BIoNOzkglAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUC1ACl2FCwqtbkTdTnmEo4PMNMiUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU5NjMwMTIwLTAyMmYtNGRiMi04NzBjLWI1YTVmNDZlZTc3YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDycQEwDQYJKoZIhvcNAQELBQADggEBAAGm/Dd6gP6x8j7NUgtnVVLI 2ohYDALeMPfJI8w+avvV42+NcINMGZ0VJ+dF2kVamvA8PnivsPWhVkpVJtiPDv62 qMowF1THuDgApzNZpfOAWZDmMYaQuE5IPGGSGF846NZ50m1UBjS4aw7MrONdEepg 57/dtPc8U5fWfFV3IaefiqVWuzcZVxqTl0FjRMZoaRXY/dVvbBV2135Av2S7yIhc OizVD9LMml+31GJCcKoJvYqeJlG11g7Rd3Y3ObOeS34Y1RW1aydHen+1V6c8tiUg usD/snyHKPp9PlwyU0RIrCS7pE+nBTfwbZ/7z9JriXbqFpYW/ERlwhRoIR80X5s= -----END CERTIFICATE-----Generated at Wed Oct 8 21:17:05 2025 by rpki-client