$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0d414a18-fab9-4052-b9b5-07a662fab301.roa File: 0d414a18-fab9-4052-b9b5-07a662fab301.roa (raw, json) Hash identifier: bfS2e7JXpAImqFZE5uffFIdkK03KkKAM+WFd4NFo2pg= Subject key identifier: 42:E9:F4:ED:4B:CA:5A:4C:05:65:C4:88:64:2A:90:0E:02:77:D6:FB Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4EB7257009E036FB3F0A7B781B32E4368A4CC5EF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0d414a18-fab9-4052-b9b5-07a662fab301.roa Signing time: Mon 13 Oct 2025 17:55:20 +0000 ROA not before: Mon 13 Oct 2025 17:55:20 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8a00::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:b7:25:70:09:e0:36:fb:3f:0a:7b:78:1b:32:e4:36:8a:4c:c5:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 13 17:55:20 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=bc280d624f107cd8785ebe0bd5a1a209c3a99e6374135d0d3e6508b030f123de, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:83:ad:c0:5b:7b:40:63:48:5c:c9:f7:29:11: c8:1d:91:7a:db:5c:c7:51:a9:71:8e:dd:d6:bb:e4: c9:35:35:af:43:1b:b5:b9:7a:66:72:65:e6:e3:54: 2f:00:02:4a:26:62:37:f7:b3:a7:5e:7c:c5:4b:05: d4:2f:f2:ba:58:3b:61:0c:31:e3:df:c0:dc:1d:2d: f0:fe:1d:36:cc:a1:ec:9a:ac:f4:5d:5d:e4:f8:eb: 1b:8e:2f:a2:14:97:7f:bb:38:74:6c:33:5d:32:63: 1d:dd:7f:99:31:2d:a4:d3:4d:a0:c0:4e:b3:fc:61: cc:2f:8d:6d:94:6a:ac:ad:db:03:da:58:6b:9c:7c: 71:2f:ad:bf:19:62:c5:1a:da:65:01:19:6d:e3:23: 2e:95:ef:ea:7a:e5:dc:7c:41:67:52:c5:2e:08:b5: bf:59:f0:12:b8:e0:bc:0f:9e:aa:23:af:52:f6:b2: ef:35:2a:07:71:09:c5:c3:95:1c:bf:a0:c1:88:3f: df:40:ec:70:14:ff:6e:87:d3:e9:22:fa:36:de:f3: 9d:39:1c:08:14:24:c1:0f:d7:81:4e:9f:de:85:30: 55:d5:95:e9:fd:99:61:9d:53:0c:2e:a9:fa:72:c2: c5:9e:81:4d:a7:28:30:08:d8:54:d6:49:95:6b:8e: 0f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:E9:F4:ED:4B:CA:5A:4C:05:65:C4:88:64:2A:90:0E:02:77:D6:FB X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0d414a18-fab9-4052-b9b5-07a662fab301.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8a00::/39 Signature Algorithm: sha256WithRSAEncryption 98:2c:a9:f6:49:ba:1f:a1:6c:33:11:aa:a6:bd:db:a8:2c:05: c8:97:d7:c2:cf:2a:d9:7f:96:71:8d:94:65:d8:54:b1:b5:b0: d6:a8:da:52:6d:aa:e3:8d:9f:8d:a8:a2:eb:81:5b:35:ce:64: ed:25:2c:01:03:f7:84:9c:2a:dd:50:06:ab:cb:dd:7e:1a:56: 37:63:1c:df:96:e9:be:10:82:6e:cc:2a:bd:91:38:dd:8f:03: 86:3e:b4:cd:8c:0e:c4:cc:47:e7:c4:f3:af:de:eb:af:fa:23: 1d:85:25:51:3f:97:49:73:0a:de:85:d7:ec:8b:f1:88:e8:6e: 8b:ef:64:1b:e5:44:27:e2:4c:3c:b0:49:de:2a:9e:fc:78:7c: cd:ce:4c:e2:75:4f:5e:6b:a6:23:a8:4b:49:18:71:a7:cf:5e: 43:53:51:4b:d8:ba:12:1a:85:06:6a:0f:55:4c:99:e7:ed:04: 46:16:98:1a:7b:06:85:8b:2e:91:73:3f:f0:0a:2c:ac:d8:fb: 51:82:5b:d9:6b:43:0f:1a:ff:d1:b6:4a:45:82:16:33:28:d7: 77:30:89:7e:b8:2d:6f:e1:01:62:0f:78:8e:b6:a8:58:8c:5c: b0:00:7a:8d:13:00:6e:7e:0f:69:62:21:b8:cd:6e:27:e4:f6: 87:a4:ca:0a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUTrclcAngNvs/Cnt4GzLkNopMxe8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDEzMTc1NTIwWhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYzI4MGQ2MjRmMTA3Y2Q4Nzg1ZWJlMGJkNWExYTIwOWMz YTk5ZTYzNzQxMzVkMGQzZTY1MDhiMDMwZjEyM2RlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMg63AW3tAY0hcyfcpEcgdkXrbXMdRqXGO3da75Mk1Na9D G7W5emZyZebjVC8AAkomYjf3s6defMVLBdQv8rpYO2EMMePfwNwdLfD+HTbMoeya rPRdXeT46xuOL6IUl3+7OHRsM10yYx3df5kxLaTTTaDATrP8YcwvjW2Uaqyt2wPa WGucfHEvrb8ZYsUa2mUBGW3jIy6V7+p65dx8QWdSxS4Itb9Z8BK44LwPnqojr1L2 su81KgdxCcXDlRy/oMGIP99A7HAU/26H0+ki+jbe8505HAgUJMEP14FOn96FMFXV len9mWGdUwwuqfpywsWegU2nKDAI2FTWSZVrjg/xAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUQun07UvKWkwFZcSIZCqQDgJ31vswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBkNDE0YTE4LWZhYjktNDA1Mi1iOWI1LTA3YTY2MmZhYjMwMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAPDxijANBgkqhkiG9w0BAQsFAAOCAQEAmCyp9km6H6FsMxGqpr3bqCwF yJfXws8q2X+WcY2UZdhUsbWw1qjaUm2q442fjaii64FbNc5k7SUsAQP3hJwq3VAG q8vdfhpWN2Mc35bpvhCCbswqvZE43Y8Dhj60zYwOxMxH58Tzr97rr/ojHYUlUT+X SXMK3oXX7IvxiOhui+9kG+VEJ+JMPLBJ3iqe/Hh8zc5M4nVPXmumI6hLSRhxp89e Q1NRS9i6EhqFBmoPVUyZ5+0ERhaYGnsGhYsukXM/8AosrNj7UYJb2WtDDxr/0bZK RYIWMyjXdzCJfrgtb+EBYg94jraoWIxcsAB6jRMAbn4PaWIhuM1uJ+T2h6TKCg== -----END CERTIFICATE-----Generated at Mon Oct 20 14:02:46 2025 by rpki-client