$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/222906d2-a6a0-40ad-9e41-eab2d7ff35a4.roa File: 222906d2-a6a0-40ad-9e41-eab2d7ff35a4.roa (raw, json) Hash identifier: RV/eh8nwwF0XKyLMq5YGtw5QjaAYCMcaP1evUNTZoqI= Subject key identifier: E5:49:4A:5C:0E:FC:A8:63:FA:2E:1D:16:EE:07:0C:70:B8:FB:0C:73 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 17CD75515FDFB34A48E2A6CE5AF52E8F41095533 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/222906d2-a6a0-40ad-9e41-eab2d7ff35a4.roa Signing time: Tue 21 Oct 2025 12:50:42 +0000 ROA not before: Tue 21 Oct 2025 12:50:42 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 23 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:cd:75:51:5f:df:b3:4a:48:e2:a6:ce:5a:f5:2e:8f:41:09:55:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:42 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=2b27c469ae6d76d81c5f56972b2f21bbb233335a826d5e35f636316b2ae51135, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fe:0f:be:2d:03:95:f2:af:70:3c:69:ba:a0: c3:a6:e2:b1:b3:c6:65:10:a2:80:8c:d3:f9:f6:d9: 63:31:4c:06:4e:d6:3b:3b:4f:0a:08:f6:ff:a3:f8: b8:7a:69:3f:32:8f:de:03:ee:13:c2:13:bb:04:af: b4:69:2b:e2:95:ae:d3:c0:e8:6b:52:1f:c7:28:50: a4:38:16:ec:17:5f:f2:f3:d7:79:00:52:a1:dc:6b: f5:92:ca:0e:42:61:dd:2b:99:2b:e4:a9:46:09:9b: aa:67:ff:e1:2e:d3:3f:6d:ef:e2:aa:32:29:e2:14: 79:71:f3:89:9a:ed:c1:93:be:a9:1b:f1:89:8f:a2: 4d:bc:7a:38:29:04:30:b7:20:dc:be:7a:d2:ce:8f: 54:7d:70:7b:43:63:f7:51:44:0a:14:2f:6a:f1:f4: c8:fc:bb:45:e0:48:c6:fd:c9:49:f1:f1:44:ec:87: ca:ea:e4:0d:8b:17:5e:18:a7:3c:a2:c8:cd:60:11: 08:97:88:c2:83:96:78:ef:f8:1b:04:ae:9f:af:81: 76:ff:78:cb:4b:a5:aa:e4:77:7c:c8:85:d5:b6:1c: 7a:ff:69:44:95:a7:7d:4e:89:8e:a3:9b:ca:aa:8a: bf:a3:c1:70:ba:57:11:6e:f6:7f:05:f8:d9:8d:1f: b3:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:49:4A:5C:0E:FC:A8:63:FA:2E:1D:16:EE:07:0C:70:B8:FB:0C:73 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/222906d2-a6a0-40ad-9e41-eab2d7ff35a4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:40::/48 Signature Algorithm: sha256WithRSAEncryption 8f:99:8b:10:74:88:d5:07:72:71:26:69:54:a8:72:55:13:65: 73:30:a3:94:b0:96:34:dd:7b:4b:84:cd:d0:c5:96:52:77:04: d9:5a:48:86:3e:a9:96:33:95:41:17:b7:06:df:08:f7:3d:c2: 3f:4f:bd:41:e8:d1:9a:16:22:6d:45:cf:5d:1d:27:17:54:05: a2:25:4c:79:88:44:8f:f0:af:3f:05:6e:08:b9:d2:8d:3a:10: bd:f2:4a:14:3d:b6:0f:af:57:44:71:c7:26:24:46:48:95:cc: 38:a9:bb:96:95:3e:d1:50:02:43:77:d1:1d:a2:f8:7a:68:6a: 85:db:4b:05:4a:1c:0f:48:4d:ea:df:ae:5f:5c:3f:22:66:d1: f5:1c:50:62:e1:68:d2:18:fe:37:c5:c1:1a:d9:76:d4:96:f7: 2e:d6:55:50:66:8b:77:35:83:f8:94:df:47:5b:b9:b2:3c:dc: 1d:b4:f6:10:c0:8c:e5:bc:35:d1:48:41:f0:03:97:ca:13:40: bb:6f:63:d7:54:fe:24:86:75:c4:51:60:9c:ec:1a:f5:14:cf: c4:df:80:15:cb:62:f1:48:87:3d:e9:5c:d9:ee:14:fc:75:4c: 70:a7:a5:e6:a8:13:4d:b6:f4:e0:6e:92:bb:cd:3d:74:a9:fb: ec:fb:92:82 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUF811UV/fs0pI4qbOWvUuj0EJVTMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDQyWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYjI3YzQ2OWFlNmQ3NmQ4MWM1ZjU2OTcyYjJmMjFiYmIy MzMzMzVhODI2ZDVlMzVmNjM2MzE2YjJhZTUxMTM1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCy/g++LQOV8q9wPGm6oMOm4rGzxmUQooCM0/n22WMxTAZO 1js7TwoI9v+j+Lh6aT8yj94D7hPCE7sEr7RpK+KVrtPA6GtSH8coUKQ4FuwXX/Lz 13kAUqHca/WSyg5CYd0rmSvkqUYJm6pn/+Eu0z9t7+KqMiniFHlx84ma7cGTvqkb 8YmPok28ejgpBDC3INy+etLOj1R9cHtDY/dRRAoUL2rx9Mj8u0XgSMb9yUnx8UTs h8rq5A2LF14YpzyiyM1gEQiXiMKDlnjv+BsErp+vgXb/eMtLparkd3zIhdW2HHr/ aUSVp31OiY6jm8qqir+jwXC6VxFu9n8F+NmNH7PfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5UlKXA78qGP6Lh0W7gcMcLj7DHMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzIyMjkwNmQyLWE2YTAtNDBhZC05ZTQxLWVhYjJkN2ZmMzVhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAEAwDQYJKoZIhvcNAQELBQADggEBAI+ZixB0iNUHcnEmaVSoclUT ZXMwo5SwljTde0uEzdDFllJ3BNlaSIY+qZYzlUEXtwbfCPc9wj9PvUHo0ZoWIm1F z10dJxdUBaIlTHmIRI/wrz8Fbgi50o06EL3yShQ9tg+vV0RxxyYkRkiVzDipu5aV PtFQAkN30R2i+HpoaoXbSwVKHA9ITerfrl9cPyJm0fUcUGLhaNIY/jfFwRrZdtSW 9y7WVVBmi3c1g/iU30dbubI83B209hDAjOW8NdFIQfADl8oTQLtvY9dU/iSGdcRR YJzsGvUUz8TfgBXLYvFIhz3pXNnuFPx1THCnpeaoE0229OBukrvNPXSp++z7koI= -----END CERTIFICATE-----Generated at Wed Oct 22 01:53:29 2025 by rpki-client