$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7c0c4811-7db0-4cc0-8fa1-6dbda4055b97.roa File: 7c0c4811-7db0-4cc0-8fa1-6dbda4055b97.roa (raw, json) Hash identifier: Qh+YgEfSBpSTpK2KpCfQUUq7UudDjsRyuifjyWAu/tA= Subject key identifier: 33:61:CC:D2:A2:8A:27:A5:06:B7:EF:52:14:44:E1:FA:85:38:DF:1E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5E23A7CF18308A2BEA23995ADAEF27EE7646E550 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7c0c4811-7db0-4cc0-8fa1-6dbda4055b97.roa Signing time: Fri 26 Sep 2025 18:11:26 +0000 ROA not before: Fri 26 Sep 2025 18:11:26 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:eb00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:23:a7:cf:18:30:8a:2b:ea:23:99:5a:da:ef:27:ee:76:46:e5:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:11:26 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=4042b3a62e1df89531606d14abc43f13de847805928594703ecb2a14310a6d8e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d8:5d:42:66:7b:02:7c:bf:60:15:90:29:92: 7f:af:55:8f:05:be:65:a0:53:09:d5:1a:f1:a8:78: 5b:42:68:85:72:c6:f8:87:d5:92:0e:01:16:c6:6e: c0:5d:0c:54:06:7f:95:88:57:0d:2c:64:92:ad:3b: a0:a7:61:f9:dc:a0:92:6f:b7:b3:2c:3c:da:8d:56: 16:ab:52:57:a2:ed:7c:43:3a:8e:05:a6:ae:48:19: bf:8f:60:11:ff:67:4c:18:6c:47:dd:38:33:52:80: c2:0d:1b:46:dc:02:55:f7:e2:f1:f6:8d:0d:9f:c2: 33:f1:e0:bb:b7:30:be:d7:9e:32:0c:fe:72:33:76: 95:8f:39:46:cd:c1:ff:0c:6a:9b:1f:1e:8a:8b:e6: 48:94:18:20:b0:d1:9a:32:29:5c:31:95:1a:e8:29: 4a:56:3e:c3:be:b9:a0:1b:9f:04:26:c5:9a:3c:a2: dc:b7:ad:5f:6c:cd:5e:35:6b:1b:1a:96:fe:00:52: ab:38:ed:7f:aa:7d:ea:f9:98:3e:65:b5:58:36:b5: 7f:31:c2:f2:e7:f4:c2:c0:3e:b1:aa:8c:ee:4f:73: bc:ca:f3:81:9d:68:49:57:04:0b:3f:30:95:fb:d4: 52:e7:b7:67:e2:c2:56:f7:cc:50:a8:c2:35:6b:2e: 77:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:61:CC:D2:A2:8A:27:A5:06:B7:EF:52:14:44:E1:FA:85:38:DF:1E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7c0c4811-7db0-4cc0-8fa1-6dbda4055b97.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:eb00::/40 Signature Algorithm: sha256WithRSAEncryption 2a:cd:e1:20:06:17:53:02:2c:ab:6e:db:37:89:b8:f4:0b:64: 46:e8:f3:0e:3a:9d:f6:d2:b9:a5:94:0b:11:65:14:f0:6c:59: 98:d8:76:f4:d6:a2:00:fb:e4:5e:da:db:3b:f4:d0:52:2f:52: 81:76:41:5b:d5:ff:04:f7:1e:36:1a:d0:d0:a2:19:24:ec:fe: 0f:d9:cd:d8:3b:10:f4:76:9c:e2:ff:d0:38:0b:c6:b4:5c:c5: 04:a1:1b:36:91:20:9b:da:ff:73:3e:04:7c:69:86:0c:0f:0b: 3b:84:19:b5:b3:13:5c:12:66:c2:3f:be:8c:1d:f7:60:f0:a2: 27:fb:d0:6e:6e:18:be:b4:a3:53:99:64:6e:21:58:f1:43:a7: d9:38:15:d6:ee:3f:d7:de:6f:4c:af:4d:4d:09:38:e5:fa:60: 1d:91:0d:8f:92:d0:47:7c:d0:15:f2:51:b6:15:4d:92:84:47: 88:fd:ff:29:59:8a:96:94:36:80:7a:80:cf:f2:ab:66:c6:5d: f6:5c:8b:79:dd:26:35:5c:27:f6:19:ec:ca:d2:15:76:13:1e: 2b:2b:01:db:6d:ab:51:e7:01:ad:35:0b:71:ce:0a:9e:35:0d: 77:35:bb:fb:c2:03:09:5f:cc:a9:ce:71:24:a7:20:fa:a1:c6: 1e:4b:22:80 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUXiOnzxgwiivqI5la2u8n7nZG5VAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgxMTI2WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MDQyYjNhNjJlMWRmODk1MzE2MDZkMTRhYmM0M2YxM2Rl ODQ3ODA1OTI4NTk0NzAzZWNiMmExNDMxMGE2ZDhlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC02F1CZnsCfL9gFZApkn+vVY8FvmWgUwnVGvGoeFtCaIVy xviH1ZIOARbGbsBdDFQGf5WIVw0sZJKtO6CnYfncoJJvt7MsPNqNVharUlei7XxD Oo4Fpq5IGb+PYBH/Z0wYbEfdODNSgMING0bcAlX34vH2jQ2fwjPx4Lu3ML7XnjIM /nIzdpWPOUbNwf8MapsfHoqL5kiUGCCw0ZoyKVwxlRroKUpWPsO+uaAbnwQmxZo8 oty3rV9szV41axsalv4AUqs47X+qfer5mD5ltVg2tX8xwvLn9MLAPrGqjO5Pc7zK 84GdaElXBAs/MJX71FLnt2fiwlb3zFCowjVrLncfAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUM2HM0qKKJ6UGt+9SFETh+oU43x4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzdjMGM0ODExLTdkYjAtNGNjMC04ZmExLTZkYmRhNDA1NWI5Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD76zANBgkqhkiG9w0BAQsFAAOCAQEAKs3hIAYXUwIsq27bN4m49Atk RujzDjqd9tK5pZQLEWUU8GxZmNh29NaiAPvkXtrbO/TQUi9SgXZBW9X/BPceNhrQ 0KIZJOz+D9nN2DsQ9Hac4v/QOAvGtFzFBKEbNpEgm9r/cz4EfGmGDA8LO4QZtbMT XBJmwj++jB33YPCiJ/vQbm4YvrSjU5lkbiFY8UOn2TgV1u4/195vTK9NTQk45fpg HZENj5LQR3zQFfJRthVNkoRHiP3/KVmKlpQ2gHqAz/KrZsZd9lyLed0mNVwn9hns ytIVdhMeKysB222rUecBrTULcc4KnjUNdzW7+8IDCV/Mqc5xJKcg+qHGHksigA== -----END CERTIFICATE-----Generated at Wed Oct 8 19:44:31 2025 by rpki-client