$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/14518d87-9a80-47da-80c6-efeb62f0643b.roa File: 14518d87-9a80-47da-80c6-efeb62f0643b.roa (raw, json) Hash identifier: Uckk9zmuHfpE8ul/PHfLcCYzCOet7piBbndJkTSs7Qk= Subject key identifier: C0:CD:28:16:83:FE:07:99:B8:01:0E:15:34:C4:0A:7F:32:15:06:74 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 33C6B365FD209BD1C74C8EC6A1431ADD71402AEC Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/14518d87-9a80-47da-80c6-efeb62f0643b.roa Signing time: Fri 26 Sep 2025 18:10:48 +0000 ROA not before: Fri 26 Sep 2025 18:10:48 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 20 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:c6:b3:65:fd:20:9b:d1:c7:4c:8e:c6:a1:43:1a:dd:71:40:2a:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:10:48 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=e08e3429b1b2158c589c22ddc03fe0da342e931f3e32256a897cb525a107e51f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:28:e0:0e:17:59:d0:ff:2c:a9:91:4c:ba:ac: 96:ef:84:6c:cd:89:4a:ba:ce:62:89:2a:17:95:ce: 00:e8:52:9e:fb:3e:90:00:a8:c5:90:32:84:c0:63: d3:47:fb:3b:3f:76:e8:ae:14:45:53:cd:5c:ea:ec: 90:01:e9:27:b8:6c:10:f5:b2:5f:89:0f:a9:de:c8: eb:ca:25:4e:81:9d:f2:63:2c:42:3f:44:2c:5b:a2: 20:9b:35:11:82:d3:4c:f3:9a:92:ed:70:e1:ac:17: 1a:6c:f4:17:05:7f:36:70:cf:87:74:89:81:9d:48: 5f:bf:e4:3d:ff:ee:fd:35:78:e2:5f:7c:ad:e2:8b: 59:a7:9e:73:ed:c0:1c:48:b8:05:0e:6a:7c:e5:51: 55:5f:2e:4e:a1:81:e9:d7:1d:9d:46:43:61:4e:a6: 16:2e:46:e2:28:d0:79:ec:1d:cf:04:e0:c8:92:ae: 92:04:4c:d6:2c:cb:88:2c:e5:b9:b8:3d:75:16:ff: 27:09:64:d3:e9:2f:b9:c7:a9:ef:11:63:12:70:da: 48:06:a4:ff:fa:45:2a:49:14:51:50:e1:85:46:d8: 55:37:96:89:85:35:d8:6d:79:25:fc:a0:d5:d1:a4: 8b:16:3f:8e:1b:8a:8f:53:7a:e2:1d:14:02:ae:3b: 48:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:CD:28:16:83:FE:07:99:B8:01:0E:15:34:C4:0A:7F:32:15:06:74 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/14518d87-9a80-47da-80c6-efeb62f0643b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:3::/48 Signature Algorithm: sha256WithRSAEncryption 5f:27:1e:75:a6:63:c1:e2:38:18:ac:b4:83:89:57:43:84:59: be:7c:39:ee:8a:5f:5a:01:7f:05:02:e8:f3:71:10:ee:8b:22: ec:cb:34:78:c7:3d:c0:59:8a:3c:ac:7c:f6:f9:fe:6b:94:20: 39:e8:c1:6d:01:e2:e4:8c:c4:66:e2:8e:10:8a:65:df:4f:b5: 72:12:fb:ad:6f:d6:eb:6f:61:fb:6e:62:04:a5:75:a0:3d:5c: c7:68:95:a4:b4:58:31:f0:2c:07:1e:73:1e:cb:d1:5b:e4:b3: 3e:12:8c:5e:f0:87:f1:c5:5f:63:14:a3:57:53:a1:2e:1b:f7: dd:f9:38:20:57:05:57:cd:4a:8b:8e:8b:5a:e1:2b:27:33:a8: 49:6c:bd:85:3c:1b:dd:b9:88:ac:a4:a4:cf:c6:15:f9:be:6e: 9f:b2:a3:99:e9:2d:44:a0:58:58:6c:e7:96:ca:12:e2:94:68: 89:72:77:88:f5:26:f0:ff:77:43:ac:29:2f:21:d4:e7:59:9a: b4:fe:63:fd:66:b8:ca:0b:55:dd:ef:b8:86:54:88:a0:e2:a0: 85:a8:00:30:51:32:e7:f9:a3:81:3e:21:90:ec:47:1e:1f:4f: 08:b7:72:69:2c:a2:d6:fd:b7:e9:5f:e8:a9:e7:ab:e6:bb:22: 26:86:37:c7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUM8azZf0gm9HHTI7GoUMa3XFAKuwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgxMDQ4WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMDhlMzQyOWIxYjIxNThjNTg5YzIyZGRjMDNmZTBkYTM0 MmU5MzFmM2UzMjI1NmE4OTdjYjUyNWExMDdlNTFmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtKOAOF1nQ/yypkUy6rJbvhGzNiUq6zmKJKheVzgDoUp77 PpAAqMWQMoTAY9NH+zs/duiuFEVTzVzq7JAB6Se4bBD1sl+JD6neyOvKJU6BnfJj LEI/RCxboiCbNRGC00zzmpLtcOGsFxps9BcFfzZwz4d0iYGdSF+/5D3/7v01eOJf fK3ii1mnnnPtwBxIuAUOanzlUVVfLk6hgenXHZ1GQ2FOphYuRuIo0HnsHc8E4MiS rpIETNYsy4gs5bm4PXUW/ycJZNPpL7nHqe8RYxJw2kgGpP/6RSpJFFFQ4YVG2FU3 lomFNdhteSX8oNXRpIsWP44bio9TeuIdFAKuO0jvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUwM0oFoP+B5m4AQ4VNMQKfzIVBnQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzE0NTE4ZDg3LTlhODAtNDdkYS04MGM2LWVmZWI2MmYwNjQzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAMwDQYJKoZIhvcNAQELBQADggEBAF8nHnWmY8HiOBistIOJV0OE Wb58Oe6KX1oBfwUC6PNxEO6LIuzLNHjHPcBZijysfPb5/muUIDnowW0B4uSMxGbi jhCKZd9PtXIS+61v1utvYftuYgSldaA9XMdolaS0WDHwLAcecx7L0Vvksz4SjF7w h/HFX2MUo1dToS4b9935OCBXBVfNSouOi1rhKyczqElsvYU8G925iKykpM/GFfm+ bp+yo5npLUSgWFhs55bKEuKUaIlyd4j1JvD/d0OsKS8h1OdZmrT+Y/1muMoLVd3v uIZUiKDioIWoADBRMuf5o4E+IZDsRx4fTwi3cmksotb9t+lf6Knnq+a7IiaGN8c= -----END CERTIFICATE-----Generated at Sun Oct 19 17:31:01 2025 by rpki-client