$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d87c0155-8519-40f6-b9d9-99e1ab6574d4.roa File: d87c0155-8519-40f6-b9d9-99e1ab6574d4.roa (raw, json) Hash identifier: iCZEsXvCDdGneQtI98XIlW4qgw+f14V3u1ck1bAU7Os= Subject key identifier: 70:D7:9D:A9:82:39:99:6E:08:0B:8C:FA:6D:39:57:D9:8D:17:48:ED Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 45AA0548A87EF790F0C2DC7D4FF02FC9882BBC08 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d87c0155-8519-40f6-b9d9-99e1ab6574d4.roa Signing time: Mon 06 Oct 2025 17:40:27 +0000 ROA not before: Mon 06 Oct 2025 17:40:27 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:611c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:aa:05:48:a8:7e:f7:90:f0:c2:dc:7d:4f:f0:2f:c9:88:2b:bc:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 6 17:40:27 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=b2fe5165d46758cf2953035693755c60c36bb373410b8cf20a11f3e8623871c0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9b:11:8e:b7:fb:39:04:2e:a0:83:73:f6:cc: 47:f5:fe:13:58:e2:98:0e:e8:7b:84:05:6b:7f:7c: 00:e7:6d:9f:da:33:96:59:36:77:5a:67:ee:c5:94: 1b:1b:46:a2:90:3d:ee:5b:f8:7a:5c:b0:70:fe:f7: dd:62:e2:dd:dd:6b:9b:d9:1b:c1:ef:3d:d5:8d:39: 9d:67:41:2b:18:95:9d:eb:09:d3:49:99:b6:a7:de: f3:77:c8:96:3b:04:ed:f6:04:3f:6a:8d:6f:6b:23: 86:42:4a:a1:5e:d5:d6:e7:42:0c:df:da:8a:28:ad: 56:62:6b:cc:a7:25:7a:ed:7e:1b:ce:0d:e8:a5:fb: f2:23:e9:88:47:66:10:bd:93:e0:49:54:15:55:91: 78:d0:7b:f6:43:7a:68:74:53:2e:d1:6b:6c:1f:6e: 3b:9a:4b:e9:ce:e6:34:9f:e1:72:4d:99:2d:3c:4f: f5:42:f3:1f:72:12:4a:52:c2:47:d4:e2:8c:ab:b9: 9d:e7:11:f3:3c:bf:0b:14:9f:23:e3:1d:a6:96:94: 72:15:a4:3c:6b:20:6f:3e:21:2c:2c:f3:70:e2:de: 10:91:10:78:e5:ae:82:61:a7:ec:ec:2f:63:bc:46: 14:29:19:5b:e8:9d:cb:0f:5c:79:9f:43:2d:05:eb: e3:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:D7:9D:A9:82:39:99:6E:08:0B:8C:FA:6D:39:57:D9:8D:17:48:ED X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d87c0155-8519-40f6-b9d9-99e1ab6574d4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:611c::/48 Signature Algorithm: sha256WithRSAEncryption 3f:be:c9:cd:11:9d:ef:58:0c:2b:f8:f1:6d:a1:08:92:35:04: 7b:ce:4e:6b:27:10:39:67:f4:3a:0e:29:38:a0:d8:f7:21:36: 18:b7:f3:ad:b8:2e:1c:d4:3a:a5:2f:21:c0:c2:d2:50:b4:d8: 06:87:fa:c0:7a:bc:5a:e1:5a:22:63:2d:5c:33:6e:2b:c5:90: 2a:9f:ec:59:ac:9e:9d:d2:0c:44:a9:4e:11:b6:8e:13:b6:d7: ed:88:d7:5d:ed:b1:3d:05:ef:13:c6:ed:4a:8b:f7:21:7a:0b: d1:fb:1c:75:3a:60:70:00:c1:6a:95:7c:91:d8:58:56:bb:fa: ee:62:6a:3f:74:6f:90:09:2b:ec:49:10:2b:ec:23:ca:40:5b: 90:59:8c:57:c0:28:c1:ae:52:91:08:ce:47:75:79:70:74:4d: ce:79:b0:fe:1e:2d:48:21:71:9d:2e:7c:d7:1d:cc:ea:b4:37: e2:8c:37:a1:37:07:90:4e:51:d9:9b:d8:b4:10:08:28:85:4f: 66:49:29:86:38:d2:0d:ac:02:08:97:02:cb:0f:fd:34:73:51: b7:1b:c1:68:be:09:be:73:5a:91:f7:f3:49:6e:d8:c7:ff:26: 03:e7:2b:6f:a0:90:df:ef:6e:93:db:a8:6f:f4:48:01:4d:24: 4e:f5:22:10 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURaoFSKh+95Dwwtx9T/AvyYgrvAgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDA2MTc0MDI3WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMmZlNTE2NWQ0Njc1OGNmMjk1MzAzNTY5Mzc1NWM2MGMz NmJiMzczNDEwYjhjZjIwYTExZjNlODYyMzg3MWMwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+mxGOt/s5BC6gg3P2zEf1/hNY4pgO6HuEBWt/fADnbZ/a M5ZZNndaZ+7FlBsbRqKQPe5b+HpcsHD+991i4t3da5vZG8HvPdWNOZ1nQSsYlZ3r CdNJmban3vN3yJY7BO32BD9qjW9rI4ZCSqFe1dbnQgzf2ooorVZia8ynJXrtfhvO Deil+/Ij6YhHZhC9k+BJVBVVkXjQe/ZDemh0Uy7Ra2wfbjuaS+nO5jSf4XJNmS08 T/VC8x9yEkpSwkfU4oyruZ3nEfM8vwsUnyPjHaaWlHIVpDxrIG8+ISws83Di3hCR EHjlroJhp+zsL2O8RhQpGVvoncsPXHmfQy0F6+PjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcNedqYI5mW4IC4z6bTlX2Y0XSO0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Q4N2MwMTU1LTg1MTktNDBmNi1iOWQ5LTk5ZTFhYjY1NzRkNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRwwDQYJKoZIhvcNAQELBQADggEBAD++yc0Rne9YDCv48W2hCJI1 BHvOTmsnEDln9DoOKTig2PchNhi38624LhzUOqUvIcDC0lC02AaH+sB6vFrhWiJj LVwzbivFkCqf7Fmsnp3SDESpThG2jhO21+2I113tsT0F7xPG7UqL9yF6C9H7HHU6 YHAAwWqVfJHYWFa7+u5iaj90b5AJK+xJECvsI8pAW5BZjFfAKMGuUpEIzkd1eXB0 Tc55sP4eLUghcZ0ufNcdzOq0N+KMN6E3B5BOUdmb2LQQCCiFT2ZJKYY40g2sAgiX AssP/TRzUbcbwWi+Cb5zWpH380lu2Mf/JgPnK2+gkN/vbpPbqG/0SAFNJE71IhA= -----END CERTIFICATE-----Generated at Wed Oct 8 19:44:36 2025 by rpki-client