$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b51f360b-51dd-46ed-9df1-5d5b37dcb02b.roa File: b51f360b-51dd-46ed-9df1-5d5b37dcb02b.roa (raw, json) Hash identifier: mwGwI8APbaw59gi2AF+xI+yX56yfjN2AXoWALBoFmrg= Subject key identifier: BD:17:67:E0:04:D2:67:9A:AF:9F:A1:48:D3:5A:73:6D:8F:EF:55:49 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 107DE0C8909D88E124F56234C1B26E9C1A0B74AA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b51f360b-51dd-46ed-9df1-5d5b37dcb02b.roa Signing time: Mon 06 Oct 2025 17:40:29 +0000 ROA not before: Mon 06 Oct 2025 17:40:29 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:611b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:7d:e0:c8:90:9d:88:e1:24:f5:62:34:c1:b2:6e:9c:1a:0b:74:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 6 17:40:29 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=0a127dd2f0f641c4da3d2d5ca56a96291d50147cd56e3b641080e11e7ec09b4e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:9c:f4:68:cc:98:05:5d:16:a3:bb:ce:ec:25: cb:18:02:d0:27:99:be:b7:68:85:8b:86:cc:e3:fb: 60:25:b9:52:fa:0f:6f:57:93:e1:3f:7c:f9:e2:ca: 19:66:71:df:52:53:1d:8d:dd:4a:de:8b:91:4d:ca: f6:8c:2b:18:f1:92:ba:ae:fb:ee:3d:5e:12:fc:c8: 79:c0:e7:f3:fe:bf:19:e1:34:73:7b:ba:3b:7a:23: 11:45:b5:9d:8f:be:a8:25:f9:0c:ee:a0:a1:61:60: 77:6e:9e:54:c6:bc:6f:57:1b:8d:78:39:5f:5c:e1: b9:cc:61:8c:2e:d0:03:32:84:98:63:b0:91:8d:fb: 3c:0a:e4:0d:2b:42:f7:9a:af:57:12:db:ee:da:b0: f2:d5:4f:22:14:5d:3b:de:89:8c:02:b2:35:e8:9f: 4d:d2:44:ea:f3:8d:3b:d0:df:8a:e0:e4:97:23:2c: c1:fb:a0:9e:e1:18:0f:9c:f6:08:d9:b5:dd:52:8b: d5:66:6a:f1:17:6b:37:ba:7c:c8:99:c6:0a:9a:16: 4a:fd:da:72:64:24:d8:50:07:ca:ff:db:94:2f:f1: 68:df:f8:07:94:be:90:4f:66:90:8f:1f:68:ce:47: 6d:d9:41:9f:37:32:64:3d:33:19:d5:1f:d9:db:7b: 70:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:17:67:E0:04:D2:67:9A:AF:9F:A1:48:D3:5A:73:6D:8F:EF:55:49 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b51f360b-51dd-46ed-9df1-5d5b37dcb02b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:611b::/48 Signature Algorithm: sha256WithRSAEncryption 09:c8:80:29:86:69:e1:a0:3d:c4:d6:41:dc:f2:09:b0:19:39: 9f:0c:1a:8a:2c:c7:cb:77:6b:0d:b0:f8:1b:04:9d:69:1e:06: 73:fc:b3:87:bb:21:51:d6:cd:f2:c6:39:dc:b3:c0:3d:b6:84: a2:e2:d8:a6:83:b5:7d:7c:8a:19:14:f8:44:eb:cf:72:dc:58: 4a:a3:dc:03:0b:3c:4b:54:73:78:a3:d7:a1:4d:cc:25:5a:2f: 0e:0c:c7:8f:aa:0b:67:bd:bf:93:de:e4:6a:73:43:ab:63:75: d9:5e:12:13:01:8a:1e:cd:ce:63:8e:b0:ec:01:ea:70:ef:04: 70:29:ed:8e:1e:9b:67:91:60:4d:48:a9:39:35:81:28:76:ff: e1:34:08:50:a8:b3:c1:98:44:68:28:8a:07:f5:1b:b9:65:51: 83:28:58:98:b6:69:41:1b:20:3e:de:89:35:d1:ad:4c:02:de: eb:42:5d:8d:2f:d1:c5:c2:c0:8e:4d:ad:e7:c2:87:d5:49:b0: b2:2c:82:5d:c8:e4:0d:ff:34:65:20:1f:3b:1b:c9:d8:1e:21: 44:c0:35:a5:c4:3f:36:98:8d:1f:5e:cf:00:b6:3e:76:fe:38: 0d:4b:0d:c2:ef:fb:ad:90:b3:c5:0d:8c:b5:de:1a:7b:ec:38: 2f:c7:da:d1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEH3gyJCdiOEk9WI0wbJunBoLdKowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDA2MTc0MDI5WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYTEyN2RkMmYwZjY0MWM0ZGEzZDJkNWNhNTZhOTYyOTFk NTAxNDdjZDU2ZTNiNjQxMDgwZTExZTdlYzA5YjRlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjnPRozJgFXRaju87sJcsYAtAnmb63aIWLhszj+2AluVL6 D29Xk+E/fPniyhlmcd9SUx2N3Urei5FNyvaMKxjxkrqu++49XhL8yHnA5/P+vxnh NHN7ujt6IxFFtZ2Pvqgl+QzuoKFhYHdunlTGvG9XG414OV9c4bnMYYwu0AMyhJhj sJGN+zwK5A0rQvear1cS2+7asPLVTyIUXTveiYwCsjXon03SROrzjTvQ34rg5Jcj LMH7oJ7hGA+c9gjZtd1Si9VmavEXaze6fMiZxgqaFkr92nJkJNhQB8r/25Qv8Wjf +AeUvpBPZpCPH2jOR23ZQZ83MmQ9MxnVH9nbe3D7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUvRdn4ATSZ5qvn6FI01pzbY/vVUkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2I1MWYzNjBiLTUxZGQtNDZlZC05ZGYxLTVkNWIzN2RjYjAyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRswDQYJKoZIhvcNAQELBQADggEBAAnIgCmGaeGgPcTWQdzyCbAZ OZ8MGoosx8t3aw2w+BsEnWkeBnP8s4e7IVHWzfLGOdyzwD22hKLi2KaDtX18ihkU +ETrz3LcWEqj3AMLPEtUc3ij16FNzCVaLw4Mx4+qC2e9v5Pe5GpzQ6tjddleEhMB ih7NzmOOsOwB6nDvBHAp7Y4em2eRYE1IqTk1gSh2/+E0CFCos8GYRGgoigf1G7ll UYMoWJi2aUEbID7eiTXRrUwC3utCXY0v0cXCwI5NrefCh9VJsLIsgl3I5A3/NGUg HzsbydgeIUTANaXEPzaYjR9ezwC2Pnb+OA1LDcLv+62Qs8UNjLXeGnvsOC/H2tE= -----END CERTIFICATE-----Generated at Wed Oct 8 23:10:11 2025 by rpki-client