$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/16493254-23cd-454e-98e8-0cfbdb8f499f.roa File: 16493254-23cd-454e-98e8-0cfbdb8f499f.roa (raw, json) Hash identifier: Eg5ng2dBti2Gak+wCTvbMpUmFE4QzAsJW5/oDWW2bio= Subject key identifier: 30:72:30:11:00:4A:E5:70:89:94:C8:16:94:B1:07:6C:A3:71:22:C0 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2F0B50C7AD4C098EA8FAFB4C47097F0EC87464F6 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/16493254-23cd-454e-98e8-0cfbdb8f499f.roa Signing time: Mon 06 Oct 2025 17:37:44 +0000 ROA not before: Mon 06 Oct 2025 17:37:44 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:611f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:0b:50:c7:ad:4c:09:8e:a8:fa:fb:4c:47:09:7f:0e:c8:74:64:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 6 17:37:44 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=f044748be3ec78b6b65d264fbe9bfda1a90d8742126ce6b4cc6bdcb950198e84, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:9b:19:b2:2b:ed:88:54:4c:20:03:7d:70:4a: 3d:61:2a:47:b3:73:a3:93:06:93:b7:dc:48:d3:08: d9:a1:c7:2d:88:02:a4:b8:69:d1:ca:44:ff:40:a2: 84:0a:f8:82:c0:46:28:f7:0d:e9:4e:0e:8b:db:fd: b1:c4:c6:93:d4:9b:ef:48:f0:7f:ff:68:d2:10:56: 79:70:ce:a1:d9:1d:fa:8a:ca:02:db:21:a5:bb:2f: c9:7b:cf:54:5c:bd:5e:d3:31:4a:55:7c:4b:81:48: f6:a9:68:52:f3:87:81:e0:28:89:16:5d:fd:f4:93: ec:10:a6:8d:92:ce:4e:df:82:24:b3:13:fc:76:d2: d4:4d:78:7e:22:b8:8f:62:b1:49:ff:36:15:2b:3d: 98:33:0a:ed:5c:63:9f:87:13:94:c8:c6:4f:1f:4e: a1:27:68:10:29:5d:d3:35:e0:99:61:4a:d0:6d:00: 96:b2:da:90:c2:04:78:d2:f3:52:08:bc:21:dc:07: fc:69:67:85:9e:8f:ce:4a:44:0d:9c:d2:5c:9e:3e: 3d:18:3c:ca:da:cc:7f:7b:3a:12:99:bc:b2:b7:85: c9:67:03:f2:99:14:27:38:1c:91:b4:80:75:b5:94: b7:4c:71:42:64:cd:45:b6:c7:d5:56:b1:ea:9e:af: f5:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:72:30:11:00:4A:E5:70:89:94:C8:16:94:B1:07:6C:A3:71:22:C0 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/16493254-23cd-454e-98e8-0cfbdb8f499f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:611f::/48 Signature Algorithm: sha256WithRSAEncryption 6d:36:0b:55:c8:87:16:8f:c5:31:e4:d5:94:45:55:e4:2c:10: f9:66:a4:8f:d6:bd:e4:27:8b:d8:08:ee:2e:09:c8:f1:16:46: 91:6c:3c:df:7c:e3:75:38:87:70:d6:88:33:6e:d1:4e:77:4d: e7:a4:b4:1a:4d:10:e0:0e:f0:37:2c:be:b8:ec:d3:4c:0d:35: ad:8c:d6:da:57:bf:a9:d1:ad:3f:94:7b:97:d3:8b:71:12:90: 83:88:17:27:74:e7:d5:04:ca:d9:54:6e:42:ac:08:94:5d:a4: 67:78:91:b9:67:9c:0a:72:4f:bb:ad:fb:6b:c1:b4:7b:c4:c3: e7:27:4b:32:1d:ce:43:73:6c:71:42:f1:29:77:f1:f4:69:f4: 25:55:27:5e:ac:f4:0f:b5:a3:d9:c8:60:8f:89:04:1f:45:c7: 94:a4:f0:8a:1a:cf:a4:4f:39:85:4f:27:24:42:77:d7:ae:1d: bf:31:dc:32:dc:e9:c0:bf:50:30:ec:5e:34:6d:59:27:98:47: c7:54:3b:41:d7:8a:05:ab:53:4a:4d:e5:b3:89:ab:33:4c:e0: 72:2c:57:54:61:2d:5d:8e:d7:5e:a0:fe:72:66:26:37:9a:7b: f2:a9:a3:54:37:10:a5:9a:82:44:30:5d:58:5b:02:3b:e3:c3: f7:8e:34:92 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULwtQx61MCY6o+vtMRwl/Dsh0ZPYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDA2MTczNzQ0WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMDQ0NzQ4YmUzZWM3OGI2YjY1ZDI2NGZiZTliZmRhMWE5 MGQ4NzQyMTI2Y2U2YjRjYzZiZGNiOTUwMTk4ZTg0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCPmxmyK+2IVEwgA31wSj1hKkezc6OTBpO33EjTCNmhxy2I AqS4adHKRP9AooQK+ILARij3DelODovb/bHExpPUm+9I8H//aNIQVnlwzqHZHfqK ygLbIaW7L8l7z1RcvV7TMUpVfEuBSPapaFLzh4HgKIkWXf30k+wQpo2Szk7fgiSz E/x20tRNeH4iuI9isUn/NhUrPZgzCu1cY5+HE5TIxk8fTqEnaBApXdM14JlhStBt AJay2pDCBHjS81IIvCHcB/xpZ4Wej85KRA2c0lyePj0YPMrazH97OhKZvLK3hcln A/KZFCc4HJG0gHW1lLdMcUJkzUW2x9VWseqer/W9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUMHIwEQBK5XCJlMgWlLEHbKNxIsAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzE2NDkzMjU0LTIzY2QtNDU0ZS05OGU4LTBjZmJkYjhmNDk5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYR8wDQYJKoZIhvcNAQELBQADggEBAG02C1XIhxaPxTHk1ZRFVeQs EPlmpI/WveQni9gI7i4JyPEWRpFsPN9843U4h3DWiDNu0U53TeektBpNEOAO8Dcs vrjs00wNNa2M1tpXv6nRrT+Ue5fTi3ESkIOIFyd059UEytlUbkKsCJRdpGd4kbln nApyT7ut+2vBtHvEw+cnSzIdzkNzbHFC8Sl38fRp9CVVJ16s9A+1o9nIYI+JBB9F x5Sk8Ioaz6RPOYVPJyRCd9euHb8x3DLc6cC/UDDsXjRtWSeYR8dUO0HXigWrU0pN 5bOJqzNM4HIsV1RhLV2O116g/nJmJjeae/Kpo1Q3EKWagkQwXVhbAjvjw/eONJI= -----END CERTIFICATE-----Generated at Mon Oct 20 14:02:44 2025 by rpki-client