$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a0024e00-f937-4b63-91df-d45ce0a6a27d.roa File: a0024e00-f937-4b63-91df-d45ce0a6a27d.roa (raw, json) Hash identifier: S+N9ibQgwL1b6KB6fIQJSk9s1GEmoHiZ8/tm8ueYZcg= Subject key identifier: AF:ED:56:AC:A6:A6:87:07:64:AD:3E:03:62:C0:77:A1:3F:A1:F2:12 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 274F405B0953DFB19513598D198A701B15F5A3D1 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a0024e00-f937-4b63-91df-d45ce0a6a27d.roa Signing time: Fri 26 Sep 2025 18:10:50 +0000 ROA not before: Fri 26 Sep 2025 18:10:50 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6010::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:4f:40:5b:09:53:df:b1:95:13:59:8d:19:8a:70:1b:15:f5:a3:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:10:50 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=4c9f3d722280bb4319e6f7878ac45a312fb47df60e4998ba9aa52e5b751892dd, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:dc:c1:91:1c:2f:45:f1:5b:e3:bd:8e:ac:6e: 86:18:5b:7e:c0:f6:b6:7c:b0:00:f9:eb:e1:e1:bc: 31:2b:e3:f4:54:c1:bc:d0:3e:e0:e4:9c:3d:b9:f6: e0:6e:0c:69:e6:72:cb:79:43:aa:4b:8a:e6:8e:3a: f9:d9:c9:06:bc:cc:f2:77:11:f5:5e:ec:64:d1:54: 96:f9:0b:be:ec:ab:fb:bb:a3:c8:b6:da:11:52:f8: 05:a8:b0:c5:63:da:04:52:74:64:64:de:53:0e:b3: e9:03:3d:0c:7b:6c:c6:fe:da:f0:72:6d:9e:3d:b8: fc:20:ca:7f:7f:4a:9f:69:67:bb:51:72:28:aa:f6: 98:95:e0:27:83:e5:49:dd:3f:b0:9e:5e:69:ab:20: ea:8b:e1:fc:24:ee:68:d2:a9:66:2b:07:22:00:74: de:9d:4d:67:d2:a1:2e:0e:40:ef:cc:87:b7:d9:10: a6:ea:00:e6:2f:f3:8c:1b:e4:47:ba:d9:81:88:fb: 32:ac:50:3c:de:cb:f4:65:d2:57:9f:c3:0f:d3:49: 07:f6:f1:02:90:5c:f5:7a:85:13:18:f9:1c:6d:0e: 15:b9:ea:1b:74:e3:fb:a1:ce:d2:95:be:04:e1:e4: ed:46:db:53:a5:83:f5:17:ea:a1:60:6e:e7:36:14: 82:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:ED:56:AC:A6:A6:87:07:64:AD:3E:03:62:C0:77:A1:3F:A1:F2:12 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a0024e00-f937-4b63-91df-d45ce0a6a27d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6010::/44 Signature Algorithm: sha256WithRSAEncryption 74:83:5d:f7:c7:23:c5:cf:e4:26:4f:11:70:28:ad:1b:62:d3: c2:aa:e6:5d:34:6c:db:57:b5:15:e9:cd:c6:d8:ba:0e:6b:d6: 41:66:98:d5:e9:da:cd:7a:3e:b5:b8:bf:6e:21:a5:4e:d6:9d: 69:0d:2f:8b:49:bb:99:b3:86:b3:ad:64:8b:96:06:ef:32:c2: 13:00:f2:47:9b:a2:f3:29:54:d8:08:ed:77:2b:0a:21:a7:5e: 9d:c7:4b:92:e7:86:52:6a:9f:9f:3d:50:72:63:d8:72:96:74: 9e:57:8e:1d:bb:4b:b8:55:fd:53:df:ce:b3:4d:a3:d2:46:b7: 8c:d9:4e:99:bc:7e:5e:b0:a9:80:aa:92:0b:43:cf:34:fb:c7: 9c:1f:1f:54:94:8d:e4:49:40:24:c8:4e:a6:99:ad:a0:dc:64: ce:fb:3b:40:9f:2d:ec:57:69:81:16:49:93:3f:cc:06:f3:6a: e5:72:0f:c4:7b:3b:02:bb:5a:e7:09:81:d7:54:c9:ea:a3:73: e5:f5:d5:6f:ab:33:d5:37:f3:77:bd:01:a1:f3:cd:72:09:44: 4e:4a:d9:f3:31:67:8c:88:24:8e:7d:51:d7:32:9f:bf:30:1a: f6:23:b2:80:a0:1f:44:67:b7:60:34:14:98:f6:47:99:a4:d0: 51:cf:03:cd -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJ09AWwlT37GVE1mNGYpwGxX1o9EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgxMDUwWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0YzlmM2Q3MjIyODBiYjQzMTllNmY3ODc4YWM0NWEzMTJm YjQ3ZGY2MGU0OTk4YmE5YWE1MmU1Yjc1MTg5MmRkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCl3MGRHC9F8VvjvY6sboYYW37A9rZ8sAD56+HhvDEr4/RU wbzQPuDknD259uBuDGnmcst5Q6pLiuaOOvnZyQa8zPJ3EfVe7GTRVJb5C77sq/u7 o8i22hFS+AWosMVj2gRSdGRk3lMOs+kDPQx7bMb+2vBybZ49uPwgyn9/Sp9pZ7tR ciiq9piV4CeD5UndP7CeXmmrIOqL4fwk7mjSqWYrByIAdN6dTWfSoS4OQO/Mh7fZ EKbqAOYv84wb5Ee62YGI+zKsUDzey/Rl0lefww/TSQf28QKQXPV6hRMY+RxtDhW5 6ht04/uhztKVvgTh5O1G21Olg/UX6qFgbuc2FIKrAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUr+1WrKamhwdkrT4DYsB3oT+h8hIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2EwMDI0ZTAwLWY5MzctNGI2My05MWRmLWQ0NWNlMGE2YTI3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwYBAwDQYJKoZIhvcNAQELBQADggEBAHSDXffHI8XP5CZPEXAorRti 08Kq5l00bNtXtRXpzcbYug5r1kFmmNXp2s16PrW4v24hpU7WnWkNL4tJu5mzhrOt ZIuWBu8ywhMA8kebovMpVNgI7XcrCiGnXp3HS5LnhlJqn589UHJj2HKWdJ5Xjh27 S7hV/VPfzrNNo9JGt4zZTpm8fl6wqYCqkgtDzzT7x5wfH1SUjeRJQCTITqaZraDc ZM77O0CfLexXaYEWSZM/zAbzauVyD8R7OwK7WucJgddUyeqjc+X11W+rM9U383e9 AaHzzXIJRE5K2fMxZ4yIJI59Udcyn78wGvYjsoCgH0Rnt2A0FJj2R5mk0FHPA80= -----END CERTIFICATE-----Generated at Wed Oct 8 23:12:17 2025 by rpki-client