$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef295804-89a7-4ec3-826e-73e32733dc02.roa File: ef295804-89a7-4ec3-826e-73e32733dc02.roa (raw, json) Hash identifier: 1vyqos3RpaeWFLgrg1Amb16989sfBi/EBvIDoyDx61g= Subject key identifier: 33:9D:DD:48:02:92:59:81:02:97:0D:B0:29:2E:CD:27:5E:C0:FF:AD Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4CEAA58B9BA9F9086F40BF1282455F68717526B8 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef295804-89a7-4ec3-826e-73e32733dc02.roa Signing time: Fri 26 Sep 2025 18:00:46 +0000 ROA not before: Fri 26 Sep 2025 18:00:46 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:551d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:ea:a5:8b:9b:a9:f9:08:6f:40:bf:12:82:45:5f:68:71:75:26:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:00:46 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=08331890ccdae0eb1f6a6707882d44a10ec15a5c36be3e68075836354b6e0305, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c0:bc:02:a9:5d:ec:56:70:88:c5:ba:0c:90: 86:d5:15:4e:1a:a3:a1:de:3a:c6:03:7d:f3:da:2d: 6b:94:4b:56:22:a9:b3:6c:02:67:08:bf:74:86:b3: 56:17:6d:dc:e3:3e:fb:03:37:49:56:d4:85:b3:92: 58:41:d9:38:10:f6:17:23:62:79:0c:ee:8b:14:59: 2e:9c:06:9a:c9:46:53:0a:08:fd:07:55:f0:69:5c: 2d:16:02:3e:ca:8c:f9:6c:7a:86:9e:aa:0a:b1:cb: e2:7b:c1:68:22:4e:37:85:c1:3e:6f:41:7a:47:6e: a3:5d:11:df:d1:ee:0b:10:eb:f9:6f:15:f6:9e:aa: 7b:64:09:54:21:34:97:ff:ff:10:ad:0a:c9:d3:44: 07:81:02:61:24:7a:7b:42:c7:40:b8:7a:af:d8:db: b5:18:e2:6e:13:7d:64:1f:b0:37:7a:c6:e1:4a:f6: ee:6d:7d:a9:a0:c9:71:86:cd:7a:6a:93:95:61:1c: 64:53:29:48:3c:42:50:84:a3:18:8e:c0:96:77:73: 48:6e:94:1c:4f:12:29:e7:9b:49:27:ce:dc:17:e1: 10:2f:aa:bc:df:ef:36:1e:a3:24:e1:05:3f:ec:6b: 09:c1:37:6d:33:d3:15:76:99:d4:c5:96:55:33:70: ec:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:9D:DD:48:02:92:59:81:02:97:0D:B0:29:2E:CD:27:5E:C0:FF:AD X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef295804-89a7-4ec3-826e-73e32733dc02.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551d::/48 Signature Algorithm: sha256WithRSAEncryption 67:a8:89:36:6b:18:f7:0c:04:a9:4a:5d:2b:33:8c:19:66:a0: 4d:30:ef:01:85:da:06:ed:25:88:7d:ab:8f:b2:71:48:5c:51: a2:20:8c:f4:72:a6:99:b5:48:90:e1:d3:0d:9e:91:26:65:89: e8:f7:f8:96:51:b2:bc:3d:53:7a:71:2d:e2:64:4b:2a:89:a5: 18:e0:0d:c8:2f:45:a4:8f:61:55:d7:5f:c0:b5:d1:b4:ce:63: fe:08:6a:fb:2b:bb:36:1f:86:f2:19:29:5f:60:e5:14:31:bb: 42:75:56:f5:8f:2a:ce:8e:e1:99:9f:07:27:14:29:86:23:e7: 98:1e:86:36:5a:ab:99:d8:70:9a:3c:c1:3a:f6:a3:21:d2:cb: f5:40:9c:fc:60:1f:0e:57:6a:74:39:55:0c:f1:61:4e:07:b0: 3d:53:8c:bc:70:c0:a6:e0:4a:b3:84:7f:76:7d:7b:25:57:ba: 40:fb:73:5c:59:65:4a:b3:ea:a4:74:cd:9f:51:ac:e1:74:ec: f6:9c:69:6a:42:8d:51:89:e3:25:c5:bc:8c:57:fb:f0:0e:c7: 3d:5b:a5:2c:87:36:9e:27:63:79:f3:97:80:ea:d5:73:c2:8f: 24:27:cb:8a:69:67:87:c5:8f:e0:a6:76:dc:e7:c2:e2:17:78: 98:c7:d2:7b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTOqli5up+QhvQL8SgkVfaHF1JrgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgwMDQ2WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AwODMzMTg5MGNjZGFlMGViMWY2YTY3MDc4ODJkNDRhMTBl YzE1YTVjMzZiZTNlNjgwNzU4MzYzNTRiNmUwMzA1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpwLwCqV3sVnCIxboMkIbVFU4ao6HeOsYDffPaLWuUS1Yi qbNsAmcIv3SGs1YXbdzjPvsDN0lW1IWzklhB2TgQ9hcjYnkM7osUWS6cBprJRlMK CP0HVfBpXC0WAj7KjPlseoaeqgqxy+J7wWgiTjeFwT5vQXpHbqNdEd/R7gsQ6/lv FfaeqntkCVQhNJf//xCtCsnTRAeBAmEkentCx0C4eq/Y27UY4m4TfWQfsDd6xuFK 9u5tfamgyXGGzXpqk5VhHGRTKUg8QlCEoxiOwJZ3c0hulBxPEinnm0knztwX4RAv qrzf7zYeoyThBT/sawnBN20z0xV2mdTFllUzcOwLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUM53dSAKSWYEClw2wKS7NJ17A/60wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VmMjk1ODA0LTg5YTctNGVjMy04MjZlLTczZTMyNzMzZGMwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVR0wDQYJKoZIhvcNAQELBQADggEBAGeoiTZrGPcMBKlKXSszjBlm oE0w7wGF2gbtJYh9q4+ycUhcUaIgjPRyppm1SJDh0w2ekSZliej3+JZRsrw9U3px LeJkSyqJpRjgDcgvRaSPYVXXX8C10bTOY/4IavsruzYfhvIZKV9g5RQxu0J1VvWP Ks6O4ZmfBycUKYYj55gehjZaq5nYcJo8wTr2oyHSy/VAnPxgHw5XanQ5VQzxYU4H sD1TjLxwwKbgSrOEf3Z9eyVXukD7c1xZZUqz6qR0zZ9RrOF07PacaWpCjVGJ4yXF vIxX+/AOxz1bpSyHNp4nY3nzl4Dq1XPCjyQny4ppZ4fFj+CmdtznwuIXeJjH0ns= -----END CERTIFICATE-----Generated at Wed Oct 8 19:45:22 2025 by rpki-client