$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5aab2439-03d3-439a-885f-e2f641886f3d.roa File: 5aab2439-03d3-439a-885f-e2f641886f3d.roa (raw, json) Hash identifier: bIQblhBjYgBcs8I5paCh2G+rMuZyW2mkhCcU4AQIpbo= Subject key identifier: 6F:15:B5:DB:B1:55:7F:CC:D3:DA:1C:31:60:7C:E4:3B:BC:26:7F:21 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 70DFF1320BBB5C4DD79B55F0D4816184C68B7529 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5aab2439-03d3-439a-885f-e2f641886f3d.roa Signing time: Mon 06 Oct 2025 17:40:09 +0000 ROA not before: Mon 06 Oct 2025 17:40:09 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f020::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:df:f1:32:0b:bb:5c:4d:d7:9b:55:f0:d4:81:61:84:c6:8b:75:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 6 17:40:09 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=88417b2c2a3ba819c83b248b2f1e58e1b0759c7f36b8e63b60137ccedeecb950, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:02:77:67:65:54:5d:ba:35:9f:fb:73:48:96: 65:05:6e:35:91:1f:33:a7:8d:47:ba:22:db:23:32: 34:47:fb:06:67:3f:b3:1c:aa:ef:6d:19:89:07:d0: f2:9e:dc:d3:9b:50:c1:ef:1d:1e:37:2f:f2:29:ea: f0:a3:c4:cb:50:cb:23:c6:7b:ed:d6:a9:60:13:d2: e5:1c:32:09:bf:8b:b2:61:bd:5b:df:8d:2a:e1:93: a8:9c:b4:ff:f6:87:4c:e6:e1:22:b3:74:83:d9:99: 09:34:51:7f:25:ed:c2:b5:e8:b7:a6:ea:a7:6a:e5: 30:b2:ba:2d:71:09:6e:06:6d:f6:ae:05:63:08:8e: 4a:b1:bf:01:28:11:d9:2f:9f:47:38:ef:bb:87:8c: ea:20:81:d4:f2:6d:67:13:c1:58:45:15:83:a4:b1: c4:0c:9d:23:96:08:95:9f:86:4f:8c:62:32:cb:1f: aa:d4:52:aa:dc:7c:fa:c7:4e:28:63:ee:b5:a1:44: 4f:b9:59:92:c1:3f:89:75:73:03:19:fc:59:42:a0: 6e:32:f9:f4:75:c6:8b:93:a3:be:e1:e9:61:06:7f: a4:67:85:20:fb:c2:35:60:81:9e:81:48:57:39:76: 97:74:58:4b:d9:23:7b:cf:55:85:ae:98:0d:a9:7e: 65:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:15:B5:DB:B1:55:7F:CC:D3:DA:1C:31:60:7C:E4:3B:BC:26:7F:21 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5aab2439-03d3-439a-885f-e2f641886f3d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f020::/44 Signature Algorithm: sha256WithRSAEncryption 8d:43:d2:5d:8d:68:03:c4:a9:27:60:3d:8e:a1:da:66:e7:61: 79:27:9f:46:a9:4d:7b:a1:3b:e1:66:23:ce:f5:5d:16:86:aa: 3a:19:4f:64:d8:a4:49:a7:8a:a8:32:34:4d:b5:d3:2e:b2:e2: 01:59:dd:b2:5c:12:d4:8f:c2:34:ee:98:6d:1f:71:75:87:2c: 29:ff:0a:56:f7:7b:f4:75:c3:50:2b:3a:4a:2a:74:cf:5c:3a: bf:ad:3d:65:c4:4a:91:7c:b4:1c:d0:5e:bb:ff:c2:9d:56:f7: cc:49:03:90:dd:ec:4e:9d:0d:33:19:ba:88:1f:82:1d:04:10: ce:c4:4f:80:23:f7:34:db:01:29:46:09:06:fb:8c:87:af:c5: d3:0d:78:2d:89:86:e1:7b:a4:4a:31:1d:9a:eb:39:ed:46:66: 39:38:ec:82:51:41:65:48:fd:86:3e:05:2c:45:d0:6b:db:72: 97:a9:27:b5:02:2f:d2:20:c6:c6:2a:1f:0a:ce:1a:fb:29:e2: b1:97:2e:cc:42:ee:50:c7:49:5b:70:46:77:4a:24:09:27:04: 77:ab:88:c8:65:4e:3d:9f:6f:b0:ca:78:02:35:ba:14:33:b4: 16:99:dd:8a:2b:84:ff:f1:b2:f4:87:4b:28:c7:44:a8:21:09: 76:b9:30:62 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcN/xMgu7XE3Xm1Xw1IFhhMaLdSkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDA2MTc0MDA5WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ODQxN2IyYzJhM2JhODE5YzgzYjI0OGIyZjFlNThlMWIw NzU5YzdmMzZiOGU2M2I2MDEzN2NjZWRlZWNiOTUwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6AndnZVRdujWf+3NIlmUFbjWRHzOnjUe6ItsjMjRH+wZn P7Mcqu9tGYkH0PKe3NObUMHvHR43L/Ip6vCjxMtQyyPGe+3WqWAT0uUcMgm/i7Jh vVvfjSrhk6ictP/2h0zm4SKzdIPZmQk0UX8l7cK16Lem6qdq5TCyui1xCW4Gbfau BWMIjkqxvwEoEdkvn0c477uHjOoggdTybWcTwVhFFYOkscQMnSOWCJWfhk+MYjLL H6rUUqrcfPrHTihj7rWhRE+5WZLBP4l1cwMZ/FlCoG4y+fR1xouTo77h6WEGf6Rn hSD7wjVggZ6BSFc5dpd0WEvZI3vPVYWumA2pfmVdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbxW127FVf8zT2hwxYHzkO7wmfyEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzVhYWIyNDM5LTAzZDMtNDM5YS04ODVmLWUyZjY0MTg4NmYzZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78CAwDQYJKoZIhvcNAQELBQADggEBAI1D0l2NaAPEqSdgPY6h2mbn YXknn0apTXuhO+FmI871XRaGqjoZT2TYpEmniqgyNE210y6y4gFZ3bJcEtSPwjTu mG0fcXWHLCn/Clb3e/R1w1ArOkoqdM9cOr+tPWXESpF8tBzQXrv/wp1W98xJA5Dd 7E6dDTMZuogfgh0EEM7ET4Aj9zTbASlGCQb7jIevxdMNeC2JhuF7pEoxHZrrOe1G Zjk47IJRQWVI/YY+BSxF0GvbcpepJ7UCL9IgxsYqHwrOGvsp4rGXLsxC7lDHSVtw RndKJAknBHeriMhlTj2fb7DKeAI1uhQztBaZ3YorhP/xsvSHSyjHRKghCXa5MGI= -----END CERTIFICATE-----Generated at Wed Oct 8 19:45:24 2025 by rpki-client