$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5fbd3b27-26aa-45ad-8f59-d53a6a248a88.roa File: 5fbd3b27-26aa-45ad-8f59-d53a6a248a88.roa (raw, json) Hash identifier: JDZNJwa6ZazZxPQLhQ5hK10NdKtzFo4nHqiXsl7ADYo= Subject key identifier: 55:BE:91:C7:92:66:08:4B:01:3C:95:68:D7:D9:9E:DE:85:84:FC:B2 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7385E7FDDD6299549D7A641DC604A17228BB029B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5fbd3b27-26aa-45ad-8f59-d53a6a248a88.roa Signing time: Mon 06 Oct 2025 17:40:24 +0000 ROA not before: Mon 06 Oct 2025 17:40:24 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:610c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:85:e7:fd:dd:62:99:54:9d:7a:64:1d:c6:04:a1:72:28:bb:02:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 6 17:40:24 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=64574cd3e37e4df86808b24aa42ecdf2efcfdbcc545c91e5f73a78455a2c3fa4, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:f5:e0:b7:73:32:88:1b:1c:48:3e:2d:fb:a3: 7f:18:e8:be:e2:ab:4f:3f:61:96:c8:53:47:48:20: fe:9c:50:d0:de:db:bc:cc:7e:df:c6:7f:59:21:f6: e2:59:64:15:41:aa:47:ff:4a:a3:74:ee:70:70:51: e2:11:f7:65:7b:4c:af:c2:93:13:17:a2:e1:41:5b: 59:fc:72:67:db:21:9c:ea:b3:79:c7:08:42:db:ab: 5c:78:57:ef:a4:9f:17:57:a2:7b:73:45:ed:65:2c: f2:3f:8e:8c:57:d3:a7:7c:b5:04:2e:99:0b:b7:8b: c1:79:6c:92:1b:2a:ed:2b:bb:3b:31:2e:55:9c:ae: 69:e4:4a:03:6f:d1:b2:4e:82:60:4b:36:ab:dc:e4: e6:75:21:f4:e2:dc:15:a1:30:b9:b7:47:3f:87:6b: 73:5d:89:2e:55:05:52:16:b6:44:dd:08:02:69:87: c4:7b:05:fb:48:18:dc:6c:3c:fe:20:ba:6d:6b:cc: be:b5:55:f3:2b:ec:26:fc:52:5c:e5:3e:81:f0:92: 0b:ad:1e:8f:36:26:1d:1f:d0:d5:05:16:45:f2:8f: f3:13:4d:75:97:63:2d:6f:e5:87:d5:d5:b4:17:cb: 31:31:3e:29:f3:7a:07:14:4f:b8:dd:26:e8:e7:e7: 95:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:BE:91:C7:92:66:08:4B:01:3C:95:68:D7:D9:9E:DE:85:84:FC:B2 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5fbd3b27-26aa-45ad-8f59-d53a6a248a88.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:610c::/48 Signature Algorithm: sha256WithRSAEncryption 3b:1b:de:f4:cd:4b:e3:3b:45:db:3e:64:33:54:12:6c:e5:dd: 92:71:c8:67:5f:13:5f:f5:16:0c:8c:e7:a5:f0:ba:f7:f6:b1: a8:0e:5e:b7:ea:71:ce:b6:60:4f:98:33:60:fa:8e:8f:39:0b: 42:fb:5e:a9:a3:e4:b1:65:f3:56:ef:f5:cf:75:9a:04:81:4b: ef:39:ad:84:b7:6b:47:75:86:06:cd:86:95:26:b5:17:5e:34: 9f:91:ff:29:56:d7:c2:2c:e0:7d:5e:3d:ce:81:93:ba:fe:7d: 62:ac:d3:4e:7e:4a:66:f9:6a:54:52:3c:bc:45:27:3b:7b:0d: 81:95:0b:9f:f7:05:a8:6d:51:d4:15:73:47:1e:57:9c:cc:dd: 4b:c7:65:e0:d2:d2:f0:5e:9d:0e:3a:f6:c9:7a:9d:bf:68:a7: ca:d7:08:93:2d:7c:44:71:f9:55:99:c1:65:dd:d8:c9:4f:6f: 5e:c5:87:48:c8:cb:7e:59:ae:43:99:74:15:e4:49:46:44:a2: b4:86:ad:11:e0:f0:df:ba:4d:ae:6c:e1:2b:52:89:23:be:ad: d3:27:f0:c7:04:29:9c:86:4d:3d:75:cd:e1:e3:f9:fe:33:fd: 10:e7:8b:83:f4:ec:d6:38:b8:c7:f9:5b:ea:e6:58:b5:af:1c: e8:97:70:a8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUc4Xn/d1imVSdemQdxgShcii7ApswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDA2MTc0MDI0WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NDU3NGNkM2UzN2U0ZGY4NjgwOGIyNGFhNDJlY2RmMmVm Y2ZkYmNjNTQ1YzkxZTVmNzNhNzg0NTVhMmMzZmE0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCT9eC3czKIGxxIPi37o38Y6L7iq08/YZbIU0dIIP6cUNDe 27zMft/Gf1kh9uJZZBVBqkf/SqN07nBwUeIR92V7TK/CkxMXouFBW1n8cmfbIZzq s3nHCELbq1x4V++knxdXontzRe1lLPI/joxX06d8tQQumQu3i8F5bJIbKu0ruzsx LlWcrmnkSgNv0bJOgmBLNqvc5OZ1IfTi3BWhMLm3Rz+Ha3NdiS5VBVIWtkTdCAJp h8R7BftIGNxsPP4gum1rzL61VfMr7Cb8UlzlPoHwkgutHo82Jh0f0NUFFkXyj/MT TXWXYy1v5YfV1bQXyzExPinzegcUT7jdJujn55V9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUVb6Rx5JmCEsBPJVo19me3oWE/LIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzVmYmQzYjI3LTI2YWEtNDVhZC04ZjU5LWQ1M2E2YTI0OGE4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQwwDQYJKoZIhvcNAQELBQADggEBADsb3vTNS+M7Rds+ZDNUEmzl 3ZJxyGdfE1/1FgyM56Xwuvf2sagOXrfqcc62YE+YM2D6jo85C0L7Xqmj5LFl81bv 9c91mgSBS+85rYS3a0d1hgbNhpUmtRdeNJ+R/ylW18Is4H1ePc6Bk7r+fWKs005+ Smb5alRSPLxFJzt7DYGVC5/3BahtUdQVc0ceV5zM3UvHZeDS0vBenQ469sl6nb9o p8rXCJMtfERx+VWZwWXd2MlPb17Fh0jIy35ZrkOZdBXkSUZEorSGrRHg8N+6Ta5s 4StSiSO+rdMn8McEKZyGTT11zeHj+f4z/RDni4P07NY4uMf5W+rmWLWvHOiXcKg= -----END CERTIFICATE-----Generated at Wed Oct 8 19:42:47 2025 by rpki-client