$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a5ad0a6c-878f-42f8-8a48-37426a6ee1ca.roa File: a5ad0a6c-878f-42f8-8a48-37426a6ee1ca.roa (raw, json) Hash identifier: b4wuEnNAj0hgd6qhXr9kxGSk4tfMO5+mlZpCmJaeFsw= Subject key identifier: 70:DC:5B:3F:66:A8:E8:9E:96:69:2A:50:73:59:BB:1F:8D:C6:B2:2C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 104B27CAF1B982FED5DB675E95A7B520A3F16AA4 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a5ad0a6c-878f-42f8-8a48-37426a6ee1ca.roa Signing time: Fri 03 Oct 2025 15:18:21 +0000 ROA not before: Fri 03 Oct 2025 15:18:21 +0000 ROA not after: Fri 07 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6102::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:4b:27:ca:f1:b9:82:fe:d5:db:67:5e:95:a7:b5:20:a3:f1:6a:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 3 15:18:21 2025 GMT Not After : Nov 7 23:59:59 2025 GMT Subject: serialNumber=808862d3c300fbe7ec694ed9cf0a61cd50a75f11f06d2d7e059c5db8ec491e6a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:32:98:4a:b3:01:bd:32:02:a8:1a:5b:c0:84: cd:2c:0d:67:73:c4:d2:e1:91:18:f6:1f:6b:9f:ee: 63:a4:36:20:2c:be:7f:19:3b:4b:cd:5c:79:f4:ef: e2:c1:55:db:24:a7:d5:c7:4f:15:67:06:9a:0c:47: 9b:cb:7c:1a:d2:c7:08:a1:8c:f6:19:02:90:83:dd: 74:a7:01:99:25:75:41:8d:66:92:12:2c:8c:7b:d7: ea:71:0d:91:f1:97:15:6d:18:26:93:07:2b:2b:54: fe:86:ed:2f:06:94:4b:be:b3:cb:bc:b1:78:d0:b8: 7e:68:d8:c4:42:ea:8c:bd:6b:5a:66:54:c0:5b:eb: 31:03:cd:34:10:9e:87:14:8e:28:2d:1f:26:08:c1: 44:c2:03:da:96:32:3d:ae:bc:30:07:91:d6:7f:d2: 95:56:94:08:b4:81:0b:48:8f:e9:32:b8:4f:56:57: ac:82:2d:a7:c6:53:53:7e:0c:b1:f5:48:db:2e:fe: c8:4e:48:9a:1d:34:12:6e:6d:47:89:1b:e0:c9:f6: 94:78:f4:fc:ba:2e:e0:f3:eb:f8:89:da:9f:f5:a9: b4:22:ec:56:42:fb:fb:65:25:ae:d9:08:2d:1e:f8: 3d:ed:94:99:ef:64:82:6e:d3:d6:3e:d1:98:93:f4: 01:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:DC:5B:3F:66:A8:E8:9E:96:69:2A:50:73:59:BB:1F:8D:C6:B2:2C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a5ad0a6c-878f-42f8-8a48-37426a6ee1ca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6102::/48 Signature Algorithm: sha256WithRSAEncryption 51:ac:a8:ea:02:e4:db:77:d3:df:6d:de:6c:66:e6:1c:d2:77: 74:f1:65:84:8b:38:48:6c:ba:b9:f2:7b:52:be:66:56:6b:73: d8:c2:84:d6:b9:a5:9e:e1:72:37:36:6d:22:1f:ec:6c:54:07: f2:4e:1e:a3:41:1a:db:96:8f:84:61:4e:cb:8a:73:90:f0:03: 0a:2b:7f:01:cf:4b:69:38:94:42:8b:b6:7a:fc:ec:02:29:3b: e5:f5:9e:dd:23:5e:81:49:d0:8e:90:c1:db:a4:a9:09:cb:6c: 96:37:b8:5f:0f:71:40:19:be:89:c8:f2:b2:16:f0:37:86:62: 25:a9:02:f6:f7:a4:48:a7:db:9a:99:51:ae:c6:68:a9:51:53: 43:0e:27:12:86:f4:ce:a8:46:e9:6a:8f:b1:c1:82:fe:86:38: 2f:15:b5:7b:97:c8:7b:69:49:95:ed:b5:5c:cd:e3:65:9d:67: e7:0e:1f:45:2d:41:24:39:18:25:b5:a4:fe:db:e6:6a:3d:b8: 75:ce:b7:25:ab:cb:53:40:bc:fd:d5:76:a7:27:c4:39:97:3f: 1c:b0:44:bb:25:c3:2d:a2:0b:e1:8e:4a:41:26:05:12:d3:52: 53:54:2f:43:c9:94:77:2b:99:7b:01:27:b1:f3:b4:8f:4d:57: dc:68:18:95 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEEsnyvG5gv7V22delae1IKPxaqQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDAzMTUxODIxWhcNMjUxMTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDg4NjJkM2MzMDBmYmU3ZWM2OTRlZDljZjBhNjFjZDUw YTc1ZjExZjA2ZDJkN2UwNTljNWRiOGVjNDkxZTZhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5MphKswG9MgKoGlvAhM0sDWdzxNLhkRj2H2uf7mOkNiAs vn8ZO0vNXHn07+LBVdskp9XHTxVnBpoMR5vLfBrSxwihjPYZApCD3XSnAZkldUGN ZpISLIx71+pxDZHxlxVtGCaTBysrVP6G7S8GlEu+s8u8sXjQuH5o2MRC6oy9a1pm VMBb6zEDzTQQnocUjigtHyYIwUTCA9qWMj2uvDAHkdZ/0pVWlAi0gQtIj+kyuE9W V6yCLafGU1N+DLH1SNsu/shOSJodNBJubUeJG+DJ9pR49Py6LuDz6/iJ2p/1qbQi 7FZC+/tlJa7ZCC0e+D3tlJnvZIJu09Y+0ZiT9AErAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcNxbP2ao6J6WaSpQc1m7H43GsiwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E1YWQwYTZjLTg3OGYtNDJmOC04YTQ4LTM3NDI2YTZlZTFjYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQIwDQYJKoZIhvcNAQELBQADggEBAFGsqOoC5Nt3099t3mxm5hzS d3TxZYSLOEhsurnye1K+ZlZrc9jChNa5pZ7hcjc2bSIf7GxUB/JOHqNBGtuWj4Rh TsuKc5DwAworfwHPS2k4lEKLtnr87AIpO+X1nt0jXoFJ0I6QwdukqQnLbJY3uF8P cUAZvonI8rIW8DeGYiWpAvb3pEin25qZUa7GaKlRU0MOJxKG9M6oRulqj7HBgv6G OC8VtXuXyHtpSZXttVzN42WdZ+cOH0UtQSQ5GCW1pP7b5mo9uHXOtyWry1NAvP3V dqcnxDmXPxywRLslwy2iC+GOSkEmBRLTUlNUL0PJlHcrmXsBJ7HztI9NV9xoGJU= -----END CERTIFICATE-----Generated at Wed Oct 8 21:30:54 2025 by rpki-client