$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1713f755-e887-41fa-83fe-8bab1dc14311.roa File: 1713f755-e887-41fa-83fe-8bab1dc14311.roa (raw, json) Hash identifier: Xn83184Sow7qdHRGeQRVdhD0bFyDHEwSAeVdZY88z20= Subject key identifier: A4:F5:90:C7:31:39:58:85:C1:B4:F8:F6:6C:39:73:CA:A7:F3:D1:F4 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2C0F2E589825EBF5A26B4410A09C47DDDE0CAA51 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1713f755-e887-41fa-83fe-8bab1dc14311.roa Signing time: Fri 26 Sep 2025 18:20:13 +0000 ROA not before: Fri 26 Sep 2025 18:20:13 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ea00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:0f:2e:58:98:25:eb:f5:a2:6b:44:10:a0:9c:47:dd:de:0c:aa:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:20:13 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=6a8ad8500d0f3c087c0142044ee266cb6b7acd0b13aa5ea827601fb0487447e0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:00:03:ec:34:aa:3a:c4:2a:23:44:64:78:1b: aa:34:21:25:fb:fb:ae:da:8b:cc:00:e8:9a:84:de: ec:2b:c8:fc:54:d2:52:26:58:f6:f7:7a:50:0e:d0: e3:48:0a:21:d3:a9:07:3e:00:96:7b:06:6c:c7:e9: 0b:5d:23:5e:1c:d8:56:66:3c:04:09:54:4e:84:f6: f7:f8:e8:40:9b:1d:9c:25:7a:fa:9a:eb:5b:39:68: 84:17:b4:d7:eb:3e:f5:2c:f3:a3:06:c1:f8:eb:d4: fc:8a:7a:a1:65:3e:43:9d:32:b9:b4:a2:90:44:d7: 70:27:b7:39:a2:ab:20:f3:da:f8:cd:bc:59:79:e7: 80:36:8e:6f:8c:87:c6:3d:56:12:2b:0b:e7:81:eb: 50:e4:be:98:c0:67:0b:fb:98:5e:1a:04:fb:c5:e1: 77:50:32:ff:a0:01:e8:a9:27:fd:1a:93:72:2b:06: 15:43:df:79:dc:f0:ca:cb:27:26:85:c5:88:40:46: 40:32:4d:77:51:63:55:01:6f:de:90:15:04:2d:0a: 03:8f:83:cd:ea:76:8a:a8:d2:f5:20:e7:ef:71:06: 00:a6:b3:b5:ba:95:c1:41:cd:9a:61:65:1b:37:87: 8a:b3:d0:f0:cb:92:f8:90:15:ab:b2:d1:be:c8:9a: 51:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:F5:90:C7:31:39:58:85:C1:B4:F8:F6:6C:39:73:CA:A7:F3:D1:F4 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1713f755-e887-41fa-83fe-8bab1dc14311.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ea00::/42 Signature Algorithm: sha256WithRSAEncryption 47:d2:7b:fd:f8:dd:76:1d:7c:ff:d2:46:0c:17:40:aa:6d:37: 12:b8:21:2a:10:1c:94:9a:41:e0:96:9c:4a:9e:9a:2e:c8:c6: 7a:6e:c0:f4:9d:7b:4b:ab:6c:e0:51:8a:2e:67:e6:44:3c:00: 1f:21:b0:3e:d7:ac:ec:88:1d:e1:54:41:3f:88:ed:bf:e5:17: fa:81:c8:71:de:1a:c6:f3:52:13:bf:e0:ef:75:c5:e7:23:f2: b3:e6:7c:0a:21:04:1c:c8:cc:77:a2:16:6a:d3:aa:9b:6b:3d: 78:f9:b7:32:3a:72:bb:4f:68:63:30:db:c7:1c:da:4f:70:c6: 51:83:f7:38:ed:15:65:c1:33:c8:8a:7b:90:34:24:55:08:f9: 65:7a:ed:eb:84:5f:5c:8b:31:43:95:79:32:f7:5e:59:d9:5d: 86:bf:16:97:81:b3:9e:3f:97:de:4f:ed:20:5a:27:36:51:4e: eb:75:bf:43:8a:c6:08:20:7c:5c:5c:5a:a2:2c:17:7b:fd:39: 0d:2b:a4:13:40:0e:d2:07:0c:8f:e1:60:22:4d:bc:a8:71:0d: a7:5d:a0:0e:af:43:54:90:85:88:1e:b6:92:3a:4b:da:a1:ed: 5d:10:84:2b:13:50:90:f1:0c:0b:d3:ed:0b:cc:40:49:1b:0a: ba:65:6a:5f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULA8uWJgl6/Wia0QQoJxH3d4MqlEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgyMDEzWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YThhZDg1MDBkMGYzYzA4N2MwMTQyMDQ0ZWUyNjZjYjZi N2FjZDBiMTNhYTVlYTgyNzYwMWZiMDQ4NzQ0N2UwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRAAPsNKo6xCojRGR4G6o0ISX7+67ai8wA6JqE3uwryPxU 0lImWPb3elAO0ONICiHTqQc+AJZ7BmzH6QtdI14c2FZmPAQJVE6E9vf46ECbHZwl evqa61s5aIQXtNfrPvUs86MGwfjr1PyKeqFlPkOdMrm0opBE13AntzmiqyDz2vjN vFl554A2jm+Mh8Y9VhIrC+eB61DkvpjAZwv7mF4aBPvF4XdQMv+gAeipJ/0ak3Ir BhVD33nc8MrLJyaFxYhARkAyTXdRY1UBb96QFQQtCgOPg83qdoqo0vUg5+9xBgCm s7W6lcFBzZphZRs3h4qz0PDLkviQFauy0b7ImlGTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUpPWQxzE5WIXBtPj2bDlzyqfz0fQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzE3MTNmNzU1LWU4ODctNDFmYS04M2ZlLThiYWIxZGMxNDMxMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76gAwDQYJKoZIhvcNAQELBQADggEBAEfSe/343XYdfP/SRgwXQKpt NxK4ISoQHJSaQeCWnEqemi7IxnpuwPSde0urbOBRii5n5kQ8AB8hsD7XrOyIHeFU QT+I7b/lF/qByHHeGsbzUhO/4O91xecj8rPmfAohBBzIzHeiFmrTqptrPXj5tzI6 crtPaGMw28cc2k9wxlGD9zjtFWXBM8iKe5A0JFUI+WV67euEX1yLMUOVeTL3XlnZ XYa/FpeBs54/l95P7SBaJzZRTut1v0OKxgggfFxcWqIsF3v9OQ0rpBNADtIHDI/h YCJNvKhxDaddoA6vQ1SQhYgetpI6S9qh7V0QhCsTUJDxDAvT7QvMQEkbCrplal8= -----END CERTIFICATE-----Generated at Mon Oct 20 13:53:07 2025 by rpki-client