$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f30a276d-715e-46ee-8158-fd4576a10978.roa File: f30a276d-715e-46ee-8158-fd4576a10978.roa (raw, json) Hash identifier: BvbSdAo4lZtbVsd7mvdDVKsBCbqCTaJ135aUMg6tSlw= Subject key identifier: 6E:28:40:6B:96:84:8F:57:9F:1D:69:0F:24:76:FE:AA:8A:E0:26:9B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5AB4A771E89BDB0DD33ABE587A5FA8F011A7283F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f30a276d-715e-46ee-8158-fd4576a10978.roa Signing time: Fri 26 Sep 2025 18:10:16 +0000 ROA not before: Fri 26 Sep 2025 18:10:16 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:ec00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:b4:a7:71:e8:9b:db:0d:d3:3a:be:58:7a:5f:a8:f0:11:a7:28:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:10:16 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=508dc5e39bbe90a38117e9c0f75b46d9de2f2941bcc0dbf1394fbaf2dab2982a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:c3:a0:83:e0:97:01:e8:8a:69:ae:ff:6e:da: 4f:75:b7:ae:fc:f2:df:b2:14:6a:33:09:71:bc:31: 7e:c7:d3:a9:83:a2:6f:02:ad:0a:f9:55:89:13:ef: 0e:d5:b4:f5:f7:09:f2:ff:05:ed:42:85:18:df:42: 42:f2:21:0f:25:52:c7:30:2c:66:20:74:c9:2c:71: 75:d8:1e:79:e0:58:2b:a3:29:1d:04:4e:92:c0:91: e1:19:41:be:75:8c:5f:78:1c:35:a6:dc:70:3f:c5: 39:75:ba:45:b4:db:db:73:5f:d0:b5:dc:94:54:da: d6:2b:46:4c:d0:64:fe:58:9e:dd:2c:04:0d:44:f9: b3:49:c7:6c:1b:84:7f:94:5d:e1:ee:30:ff:21:1a: 10:f1:ba:18:90:dd:bd:a6:7d:8c:f1:d6:2d:a5:7e: 22:62:b0:db:0c:d4:17:ee:6e:11:ce:7b:62:e9:e6: b6:f7:9f:07:df:71:4d:04:26:38:bd:be:f2:f9:e9: a6:a2:5b:54:36:66:5c:5a:59:8a:a8:fb:fc:42:94: ed:2a:3e:c9:1b:e8:67:a5:5e:d5:ed:ba:a7:c2:49: 94:60:85:e2:a0:7c:1a:1f:a8:50:63:24:76:1f:37: 79:48:bf:68:0d:5b:09:5b:81:50:64:b8:9b:e9:25: c3:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:28:40:6B:96:84:8F:57:9F:1D:69:0F:24:76:FE:AA:8A:E0:26:9B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f30a276d-715e-46ee-8158-fd4576a10978.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ec00::/40 Signature Algorithm: sha256WithRSAEncryption 76:b9:5f:15:d9:3a:86:ee:fe:6b:1d:cc:d0:a5:85:d7:9d:0c: 16:be:d4:8a:13:3c:dd:01:f7:f1:ae:e9:82:bc:24:5c:6c:e4: a1:8d:e1:33:6c:f7:28:34:85:b2:84:3d:b7:93:ca:68:cf:40: 5f:10:3f:29:c8:fa:75:62:d1:30:15:20:3b:bd:77:44:77:b3: 61:a8:ef:63:7c:0c:ff:ed:d0:e4:09:49:c0:2e:99:78:9a:06: 97:77:65:91:d7:da:ed:bb:a5:97:15:51:d4:69:fd:fd:62:89: 81:ad:cd:73:9f:a2:e8:73:27:58:54:9f:dc:b3:a0:15:c0:35: 36:f2:5c:ee:7a:e7:6d:ab:3a:0c:dd:6c:2f:09:c7:92:e6:6d: 6d:80:6a:ed:61:5b:a3:a4:68:d6:04:b3:bc:86:49:48:ed:13: 92:4c:b3:d5:d0:9d:e3:c1:0d:3b:0f:26:a4:1d:c2:24:3b:5f: ed:95:f7:af:8d:3a:e3:52:a0:dd:8d:4d:57:6c:6d:cb:41:e4: ca:ef:e0:f8:14:18:e3:54:11:0b:e6:a6:26:2a:ea:9f:d1:38: 63:94:1d:db:42:d6:b5:b4:34:cd:a6:3e:a6:a3:b3:e3:4d:3d: f1:64:f9:8a:a9:de:93:a8:a3:21:06:7b:69:85:ae:a5:44:bb: 0e:66:35:9c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUWrSnceib2w3TOr5Yel+o8BGnKD8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgxMDE2WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MDhkYzVlMzliYmU5MGEzODExN2U5YzBmNzViNDZkOWRl MmYyOTQxYmNjMGRiZjEzOTRmYmFmMmRhYjI5ODJhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLw6CD4JcB6Ipprv9u2k91t6788t+yFGozCXG8MX7H06mD om8CrQr5VYkT7w7VtPX3CfL/Be1ChRjfQkLyIQ8lUscwLGYgdMkscXXYHnngWCuj KR0ETpLAkeEZQb51jF94HDWm3HA/xTl1ukW029tzX9C13JRU2tYrRkzQZP5Ynt0s BA1E+bNJx2wbhH+UXeHuMP8hGhDxuhiQ3b2mfYzx1i2lfiJisNsM1BfubhHOe2Lp 5rb3nwffcU0EJji9vvL56aaiW1Q2ZlxaWYqo+/xClO0qPskb6GelXtXtuqfCSZRg heKgfBofqFBjJHYfN3lIv2gNWwlbgVBkuJvpJcMpAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUbihAa5aEj1efHWkPJHb+qorgJpswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2YzMGEyNzZkLTcxNWUtNDZlZS04MTU4LWZkNDU3NmExMDk3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD77DANBgkqhkiG9w0BAQsFAAOCAQEAdrlfFdk6hu7+ax3M0KWF150M Fr7UihM83QH38a7pgrwkXGzkoY3hM2z3KDSFsoQ9t5PKaM9AXxA/Kcj6dWLRMBUg O713RHezYajvY3wM/+3Q5AlJwC6ZeJoGl3dlkdfa7bullxVR1Gn9/WKJga3Nc5+i 6HMnWFSf3LOgFcA1NvJc7nrnbas6DN1sLwnHkuZtbYBq7WFbo6Ro1gSzvIZJSO0T kkyz1dCd48ENOw8mpB3CJDtf7ZX3r40641Kg3Y1NV2xty0Hkyu/g+BQY41QRC+am Jirqn9E4Y5Qd20LWtbQ0zaY+pqOz40098WT5iqnek6ijIQZ7aYWupUS7DmY1nA== -----END CERTIFICATE-----Generated at Wed Oct 8 19:44:27 2025 by rpki-client