$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ae8e0646-a3de-4f6f-9f98-8689213b0505.roa File: ae8e0646-a3de-4f6f-9f98-8689213b0505.roa (raw, json) Hash identifier: A2KsDeH9nDKN/9NNdITYd1yKaxkAHByTHwj+KJc2Xto= Subject key identifier: CA:3E:BA:42:12:91:A9:30:DC:AD:0B:DB:CE:DE:52:D7:1F:82:43:32 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 72F04E64AEC3D8D574E677F559AAAE88208F4388 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ae8e0646-a3de-4f6f-9f98-8689213b0505.roa Signing time: Fri 26 Sep 2025 18:20:14 +0000 ROA not before: Fri 26 Sep 2025 18:20:14 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:ea00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:f0:4e:64:ae:c3:d8:d5:74:e6:77:f5:59:aa:ae:88:20:8f:43:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:20:14 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=8001cd75f4f275751694b045841e1ff0352cd0610f1add137b9f683e06f63c8f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a8:15:bf:64:fa:fc:cf:7b:b7:9c:cf:9b:8d: ef:75:8e:e5:99:20:87:cd:a8:7e:3f:69:69:c2:2b: 6f:1e:90:d9:49:26:9e:fa:14:16:99:aa:2b:aa:41: 7a:d2:d2:af:5a:2f:ae:65:fb:f6:b5:a8:08:7e:d0: 1c:20:6d:8d:5a:e7:50:36:32:97:bd:27:3b:de:b8: 22:87:03:a1:a0:a6:fd:c4:2c:8f:c3:c0:e3:04:81: 7e:78:e8:72:a7:70:9d:ea:d8:09:30:04:ce:43:dc: a3:79:a9:bb:e4:0f:e8:83:c8:c7:d5:6d:07:03:f9: 04:42:43:58:8b:ac:a1:7a:46:56:9c:78:44:31:18: 8a:cc:b3:25:30:3d:c2:e7:7d:d2:72:7b:f4:4c:c2: 4f:0d:06:2a:04:37:19:e0:ef:e8:9f:e6:e5:22:cd: 24:af:4d:15:4b:d3:3f:23:31:23:25:75:d5:d7:2e: b0:7e:f3:32:54:e5:20:f1:f3:3c:e0:75:ad:51:01: 78:18:60:4e:19:6d:21:36:2c:27:ec:70:9c:6f:b5: 47:b9:f8:12:a2:02:26:d6:4d:da:bf:fc:b8:d5:83: c2:0a:26:43:82:12:eb:17:aa:55:78:3e:a6:a4:82: 6c:1b:d1:4c:87:ec:4d:a2:a8:6a:f4:26:95:3d:41: ce:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:3E:BA:42:12:91:A9:30:DC:AD:0B:DB:CE:DE:52:D7:1F:82:43:32 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ae8e0646-a3de-4f6f-9f98-8689213b0505.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ea00::/40 Signature Algorithm: sha256WithRSAEncryption 1c:f8:a9:4f:ae:6e:53:46:fb:0a:3d:f2:af:a5:1b:83:79:f8: d3:00:d9:dd:ac:2f:77:74:1f:fc:a9:10:52:e9:57:b3:77:ab: bd:79:24:1f:62:e5:90:2f:e1:33:94:68:c6:a6:e3:63:d9:18: 95:6a:ef:86:a8:bf:d9:9c:62:5c:22:7f:ab:90:a8:8c:e2:a9: a2:36:36:be:65:df:14:8d:46:33:d4:ea:8b:10:8f:e3:f3:9b: 50:ca:f6:c1:31:50:3b:b8:95:6e:86:4e:38:23:39:fb:4c:b8: 84:9e:0e:74:4d:94:f2:a4:09:dc:c7:d4:19:7f:b2:04:a6:5d: 95:27:41:8e:3d:51:13:33:d0:28:fa:18:37:de:9e:01:d7:a3: 3c:22:bf:96:4d:d2:32:08:07:f2:a7:b0:7a:f6:19:02:cf:ed: 4e:53:99:3a:a8:78:bc:b9:13:da:58:fd:83:4c:09:d6:8f:d1: f8:68:4b:77:72:cb:f7:fc:d0:6e:27:41:0a:db:34:3c:71:e6: 8c:80:e8:c0:91:ee:0c:27:06:04:ee:ce:af:a6:20:b3:7b:6a: ad:72:d2:2e:0a:15:50:db:20:b3:0c:79:de:f4:e6:dc:d3:ba: ab:3a:13:e1:59:9f:59:c4:a8:5b:b6:d8:d6:16:8f:66:99:e6: 6c:a9:9f:3c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUcvBOZK7D2NV05nf1WaquiCCPQ4gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgyMDE0WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDAxY2Q3NWY0ZjI3NTc1MTY5NGIwNDU4NDFlMWZmMDM1 MmNkMDYxMGYxYWRkMTM3YjlmNjgzZTA2ZjYzYzhmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5qBW/ZPr8z3u3nM+bje91juWZIIfNqH4/aWnCK28ekNlJ Jp76FBaZqiuqQXrS0q9aL65l+/a1qAh+0BwgbY1a51A2Mpe9JzveuCKHA6Ggpv3E LI/DwOMEgX546HKncJ3q2AkwBM5D3KN5qbvkD+iDyMfVbQcD+QRCQ1iLrKF6Rlac eEQxGIrMsyUwPcLnfdJye/RMwk8NBioENxng7+if5uUizSSvTRVL0z8jMSMlddXX LrB+8zJU5SDx8zzgda1RAXgYYE4ZbSE2LCfscJxvtUe5+BKiAibWTdq//LjVg8IK JkOCEusXqlV4Pqakgmwb0UyH7E2iqGr0JpU9Qc5tAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUyj66QhKRqTDcrQvbzt5S1x+CQzIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FlOGUwNjQ2LWEzZGUtNGY2Zi05Zjk4LTg2ODkyMTNiMDUwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD76jANBgkqhkiG9w0BAQsFAAOCAQEAHPipT65uU0b7Cj3yr6Ubg3n4 0wDZ3awvd3Qf/KkQUulXs3ervXkkH2LlkC/hM5RoxqbjY9kYlWrvhqi/2ZxiXCJ/ q5CojOKpojY2vmXfFI1GM9TqixCP4/ObUMr2wTFQO7iVboZOOCM5+0y4hJ4OdE2U 8qQJ3MfUGX+yBKZdlSdBjj1REzPQKPoYN96eAdejPCK/lk3SMggH8qewevYZAs/t TlOZOqh4vLkT2lj9g0wJ1o/R+GhLd3LL9/zQbidBCts0PHHmjIDowJHuDCcGBO7O r6Ygs3tqrXLSLgoVUNsgswx53vTm3NO6qzoT4VmfWcSoW7bY1haPZpnmbKmfPA== -----END CERTIFICATE-----Generated at Wed Oct 8 19:44:34 2025 by rpki-client