$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a4c99211-8489-4968-bb5b-fa10b298aaaf.roa File: a4c99211-8489-4968-bb5b-fa10b298aaaf.roa (raw, json) Hash identifier: uWHvZx61e3Rp40g8HOSHsZPWgGp1qvB8DRFC/DAaz74= Subject key identifier: BB:71:57:40:5B:05:A0:DF:42:A1:8A:EB:B5:EF:55:FD:86:7A:96:F2 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6786A65427FE6A033602085D06CCEF68286C80A8 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a4c99211-8489-4968-bb5b-fa10b298aaaf.roa Signing time: Mon 29 Sep 2025 15:23:43 +0000 ROA not before: Mon 29 Sep 2025 15:23:43 +0000 ROA not after: Mon 03 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:86:a6:54:27:fe:6a:03:36:02:08:5d:06:cc:ef:68:28:6c:80:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 29 15:23:43 2025 GMT Not After : Nov 3 23:59:59 2025 GMT Subject: serialNumber=d88eb94d82851f93dbd38515587103b0f368123f7238b096f97f3babcddfbc8e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:ae:22:e8:4a:6b:0b:ab:43:da:86:96:f6:ca: 23:31:57:1b:68:eb:db:c0:d0:5a:d0:52:8e:38:62: cf:89:00:7d:7f:98:b8:cd:d1:65:41:6d:cb:fc:3e: e3:76:e0:f3:2c:d5:be:ba:a5:99:0d:35:34:ad:ff: b1:80:ef:c8:e8:f1:80:a1:4a:ec:04:3e:fa:60:79: b8:a2:1e:55:2e:68:cc:44:0e:31:87:54:04:b0:98: 62:9f:77:e9:44:16:30:6a:ba:75:2c:a7:a4:ab:7f: 94:5d:ba:d4:a1:61:d7:71:b2:ff:44:33:3d:bf:26: 55:28:a3:5a:e4:29:ac:4f:66:0e:98:ee:a0:a7:72: 2b:5f:c4:18:94:b8:45:9b:33:ca:95:56:26:a2:f3: 74:e5:31:32:c2:3e:ed:c3:29:fc:3f:6f:5a:3b:87: 31:1d:99:9b:a6:73:b0:7b:3d:d9:19:b7:22:2d:4d: b7:08:e2:6d:fa:9f:2b:cf:fd:aa:8f:06:91:1b:60: 83:1c:c8:74:8f:13:aa:fb:37:b8:18:1c:2f:2a:dd: 83:c0:c3:63:07:e4:80:94:af:71:f5:60:ef:df:f4: a1:75:c7:a2:ba:9c:52:ab:d2:d3:f6:a2:6f:db:8d: f5:5e:5b:64:ca:54:1e:f2:29:b5:ed:98:d8:32:0f: 59:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:71:57:40:5B:05:A0:DF:42:A1:8A:EB:B5:EF:55:FD:86:7A:96:F2 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a4c99211-8489-4968-bb5b-fa10b298aaaf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f000::/44 Signature Algorithm: sha256WithRSAEncryption 4c:ff:c8:dc:50:7f:6c:75:b4:5b:d7:97:d8:16:9a:ac:a9:48: 67:38:e8:4c:af:a5:b7:09:fa:d0:0e:72:c4:69:04:83:27:99: 39:0c:99:bc:59:02:ec:5c:15:17:60:da:2b:27:28:4b:39:bb: e2:81:20:2d:3c:33:90:a9:49:d4:79:76:09:6f:7d:f8:71:77: 76:96:37:8c:af:58:fa:95:47:d7:6a:3e:47:df:aa:0c:1d:c5: 65:da:9e:e3:b6:0e:e7:d9:34:ed:af:a2:06:79:d1:1a:af:a4: 83:fe:0e:41:16:04:1f:1f:61:85:bf:72:d3:77:1b:a9:39:1c: e6:32:ed:45:bc:e2:22:94:b1:ee:dd:24:4d:b1:0b:da:1f:5d: 11:80:cd:6a:da:18:6a:e1:cd:a5:41:37:b5:f4:a5:d3:df:7a: 7c:fc:24:a0:34:ba:ed:7a:3d:ef:8a:38:a9:4b:7c:da:53:1e: 74:47:a1:da:5f:10:70:05:cd:ad:7c:68:02:38:12:04:a8:0d: 2f:b4:de:84:be:94:98:8f:db:65:97:75:a6:37:06:3b:3f:2d: 19:8d:e6:a7:28:ce:00:0b:ed:b6:ef:66:20:01:93:3f:05:d0: f8:28:74:96:d2:d3:88:29:cf:b4:82:11:9c:7e:1e:b3:46:c6: 14:39:ea:1d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZ4amVCf+agM2AghdBszvaChsgKgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI5MTUyMzQzWhcNMjUxMTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkODhlYjk0ZDgyODUxZjkzZGJkMzg1MTU1ODcxMDNiMGYz NjgxMjNmNzIzOGIwOTZmOTdmM2JhYmNkZGZiYzhlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXriLoSmsLq0Pahpb2yiMxVxto69vA0FrQUo44Ys+JAH1/ mLjN0WVBbcv8PuN24PMs1b66pZkNNTSt/7GA78jo8YChSuwEPvpgebiiHlUuaMxE DjGHVASwmGKfd+lEFjBqunUsp6Srf5RdutShYddxsv9EMz2/JlUoo1rkKaxPZg6Y 7qCncitfxBiUuEWbM8qVViai83TlMTLCPu3DKfw/b1o7hzEdmZumc7B7PdkZtyIt TbcI4m36nyvP/aqPBpEbYIMcyHSPE6r7N7gYHC8q3YPAw2MH5ICUr3H1YO/f9KF1 x6K6nFKr0tP2om/bjfVeW2TKVB7yKbXtmNgyD1lpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUu3FXQFsFoN9CoYrrte9V/YZ6lvIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E0Yzk5MjExLTg0ODktNDk2OC1iYjViLWZhMTBiMjk4YWFhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78AAwDQYJKoZIhvcNAQELBQADggEBAEz/yNxQf2x1tFvXl9gWmqyp SGc46EyvpbcJ+tAOcsRpBIMnmTkMmbxZAuxcFRdg2isnKEs5u+KBIC08M5CpSdR5 dglvffhxd3aWN4yvWPqVR9dqPkffqgwdxWXanuO2DufZNO2vogZ50RqvpIP+DkEW BB8fYYW/ctN3G6k5HOYy7UW84iKUse7dJE2xC9ofXRGAzWraGGrhzaVBN7X0pdPf enz8JKA0uu16Pe+KOKlLfNpTHnRHodpfEHAFza18aAI4EgSoDS+03oS+lJiP22WX daY3Bjs/LRmN5qcozgAL7bbvZiABkz8F0PgodJbS04gpz7SCEZx+HrNGxhQ56h0= -----END CERTIFICATE-----Generated at Wed Oct 8 19:45:09 2025 by rpki-client