$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2754057-8887-4dfa-96d2-8349e00ea226.roa File: d2754057-8887-4dfa-96d2-8349e00ea226.roa (raw, json) Hash identifier: feYIaFZ61USkUJO7ivXDej1MkPJNbkDr2WTHbDtOz7s= Subject key identifier: 82:E4:E2:77:C7:25:6D:49:36:89:F3:5D:CD:CB:03:EE:C7:6B:B8:F4 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7C7EC3A260BF24E39435B6C1C6BC12D3A98BBC96 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2754057-8887-4dfa-96d2-8349e00ea226.roa Signing time: Mon 06 Oct 2025 17:40:28 +0000 ROA not before: Mon 06 Oct 2025 17:40:28 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6108::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:7e:c3:a2:60:bf:24:e3:94:35:b6:c1:c6:bc:12:d3:a9:8b:bc:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 6 17:40:28 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=c1b64dd21bb8ba4763362e8d6f303dee1c1000c772656e25d0eea8c6aae420e2, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1d:f2:58:7f:13:b6:c3:53:4c:d6:3c:19:2e: 81:31:38:c8:49:b1:14:d6:69:5d:2c:af:cb:24:d1: 04:c4:55:26:f1:ce:d6:ba:c5:61:22:a7:72:b7:37: 65:60:fb:4b:a4:53:9d:70:40:06:df:32:fc:5c:e3: 4d:3c:87:17:18:3f:be:e7:d8:4d:b1:7e:4f:ad:2c: f6:48:7b:fb:bb:b2:4d:55:63:a6:0e:77:2e:87:c0: ef:06:5f:c8:af:f0:f5:b3:d2:4b:44:86:db:bb:a0: ad:36:01:da:0f:97:64:9a:95:64:f0:46:43:b6:4a: 82:9f:e5:20:14:17:b0:3e:9a:ab:cf:06:82:c3:a6: 94:85:5b:c3:7a:5a:3d:d8:8f:f3:7e:8b:25:b6:db: b7:b2:b6:29:ce:89:35:41:e1:40:64:fa:85:f2:ec: c8:6f:17:77:a1:29:6c:23:a1:e9:5b:37:b6:1e:a4: 37:0a:01:da:0a:07:a5:c4:31:31:6c:1d:3a:53:31: 78:89:b8:08:62:d1:22:5b:53:e0:56:f8:ca:a5:31: 8f:ed:13:3e:d3:c8:eb:7d:cf:8a:b6:f9:c5:20:d2: ea:5d:0c:50:eb:b8:d8:e2:42:a1:f4:b4:04:3e:b6: 16:0f:39:d7:8b:0b:50:ef:5e:41:35:d1:4c:7e:b4: ae:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:E4:E2:77:C7:25:6D:49:36:89:F3:5D:CD:CB:03:EE:C7:6B:B8:F4 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2754057-8887-4dfa-96d2-8349e00ea226.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6108::/48 Signature Algorithm: sha256WithRSAEncryption 9b:37:1d:1f:28:0d:3a:9d:1c:29:01:9c:14:79:4e:95:53:69: 68:06:09:90:68:1a:8a:0b:80:92:16:9c:49:8a:50:65:ea:24: 2b:96:fb:59:82:0f:16:2f:f6:10:cd:0c:5d:45:86:16:ef:84: 12:a9:39:99:ca:91:83:31:16:c4:bf:55:50:7d:d8:90:f8:96: c2:e9:2d:61:45:b5:2d:36:8b:78:6f:c0:6b:36:b7:05:01:d6: 91:3b:fd:2f:75:27:37:40:89:6a:a4:23:9a:bd:a4:dd:67:23: 2b:1b:67:d2:67:fc:08:ad:b2:7f:f7:7b:46:2c:48:9f:12:c1: b2:0c:27:64:09:cc:1e:c5:cb:58:a8:e6:71:e4:3c:4f:37:6f: 21:e4:a5:ec:ba:c5:e0:6a:c3:d2:59:51:d1:84:ec:62:b1:17: 48:86:3e:a6:45:af:5e:1e:c2:d9:d5:fd:bf:93:83:a4:38:06: be:b6:9a:73:4e:ad:d8:ef:d8:3b:04:4d:ee:72:fe:84:e6:3a: 1d:22:f4:5e:e1:be:82:d7:3b:34:eb:74:b0:53:2b:4a:4c:29: 83:a3:ab:82:cf:9b:82:d2:62:34:23:75:10:a6:dc:f2:10:80: 22:f0:06:f2:4e:06:ad:40:b3:d0:f8:ad:c2:69:d1:5e:e0:bc: 42:35:a4:62 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfH7DomC/JOOUNbbBxrwS06mLvJYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDA2MTc0MDI4WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMWI2NGRkMjFiYjhiYTQ3NjMzNjJlOGQ2ZjMwM2RlZTFj MTAwMGM3NzI2NTZlMjVkMGVlYThjNmFhZTQyMGUyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIHfJYfxO2w1NM1jwZLoExOMhJsRTWaV0sr8sk0QTEVSbx zta6xWEip3K3N2Vg+0ukU51wQAbfMvxc4008hxcYP77n2E2xfk+tLPZIe/u7sk1V Y6YOdy6HwO8GX8iv8PWz0ktEhtu7oK02AdoPl2SalWTwRkO2SoKf5SAUF7A+mqvP BoLDppSFW8N6Wj3Yj/N+iyW227eytinOiTVB4UBk+oXy7MhvF3ehKWwjoelbN7Ye pDcKAdoKB6XEMTFsHTpTMXiJuAhi0SJbU+BW+MqlMY/tEz7TyOt9z4q2+cUg0upd DFDruNjiQqH0tAQ+thYPOdeLC1DvXkE10Ux+tK63AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUguTid8clbUk2ifNdzcsD7sdruPQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2QyNzU0MDU3LTg4ODctNGRmYS05NmQyLTgzNDllMDBlYTIyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQgwDQYJKoZIhvcNAQELBQADggEBAJs3HR8oDTqdHCkBnBR5TpVT aWgGCZBoGooLgJIWnEmKUGXqJCuW+1mCDxYv9hDNDF1FhhbvhBKpOZnKkYMxFsS/ VVB92JD4lsLpLWFFtS02i3hvwGs2twUB1pE7/S91JzdAiWqkI5q9pN1nIysbZ9Jn /Aitsn/3e0YsSJ8SwbIMJ2QJzB7Fy1io5nHkPE83byHkpey6xeBqw9JZUdGE7GKx F0iGPqZFr14ewtnV/b+Tg6Q4Br62mnNOrdjv2DsETe5y/oTmOh0i9F7hvoLXOzTr dLBTK0pMKYOjq4LPm4LSYjQjdRCm3PIQgCLwBvJOBq1As9D4rcJp0V7gvEI1pGI= -----END CERTIFICATE-----Generated at Wed Oct 8 21:19:57 2025 by rpki-client