$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2910bcfa-4bcb-4125-a56f-4bb9596f5adf.roa File: 2910bcfa-4bcb-4125-a56f-4bb9596f5adf.roa (raw, json) Hash identifier: cmaatngz/OelJ6DVI3N5+YT+qBCXglFtTYRqZjn3NN8= Subject key identifier: 5E:78:40:DE:07:1A:5E:8F:4A:A9:7C:51:8D:1F:DE:E3:E7:83:65:F9 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 39480272DEB6A433F82E67AA0925BC5FA758A497 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2910bcfa-4bcb-4125-a56f-4bb9596f5adf.roa Signing time: Fri 26 Sep 2025 18:00:36 +0000 ROA not before: Fri 26 Sep 2025 18:00:36 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:500::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:48:02:72:de:b6:a4:33:f8:2e:67:aa:09:25:bc:5f:a7:58:a4:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:00:36 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=23daeac835aa1d3a2a683d4fa356b4223107d07be0746673c82bcf55193b1774, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e3:c1:31:a9:e0:be:1e:ca:35:7c:ee:f8:0f: 33:48:0a:8a:66:7e:d8:0a:0c:a6:ad:6a:f3:64:eb: 3c:34:86:07:99:a1:fb:f1:36:20:73:0a:40:16:50: ef:9e:af:a9:46:f0:54:07:e7:43:8b:25:f5:e0:86: 8f:28:a1:4a:10:60:d1:9e:47:1d:38:23:45:5d:e0: 6e:ac:a5:7b:96:ac:bb:be:71:08:f7:03:51:bd:38: be:6b:43:89:cd:80:b9:e0:eb:a6:60:74:b9:db:97: 84:be:0e:d8:3e:11:d5:e9:4d:07:9c:cc:79:a8:af: 93:44:35:8d:ba:e8:55:c7:3f:91:11:cd:f9:bb:76: 89:7c:03:79:a4:b4:13:43:06:b8:53:c3:d3:4d:c8: ff:4a:3c:83:a1:06:a2:4a:7c:6c:d7:43:40:14:6c: 80:87:14:41:8d:45:e5:b0:58:59:3e:4f:6b:cb:95: bc:58:ce:64:65:12:e1:75:cd:89:8f:6f:ce:d9:4c: b7:89:0a:f3:c4:d4:49:3d:0c:dc:07:f7:c0:ed:64: f1:07:92:dd:ad:d1:ad:35:2d:47:0c:ea:90:00:5a: 6d:e0:8a:47:81:45:d3:20:11:0f:c6:61:8d:97:27: 27:8f:ee:c8:db:60:97:e4:c3:c4:7e:de:91:fe:bf: 01:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:78:40:DE:07:1A:5E:8F:4A:A9:7C:51:8D:1F:DE:E3:E7:83:65:F9 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2910bcfa-4bcb-4125-a56f-4bb9596f5adf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:500::/40 Signature Algorithm: sha256WithRSAEncryption 8d:cc:4c:cd:fd:5d:7b:ee:96:59:37:7e:aa:f3:52:5d:4b:ed: 4b:49:74:60:18:23:67:3e:70:7a:a7:bf:0f:f0:81:d4:57:00: 7c:0a:4b:6a:cd:dc:b4:7a:80:11:a9:de:11:88:71:4b:9c:34: 57:23:bc:6f:61:c9:36:10:7b:f9:38:1a:bf:c2:e2:0f:7a:12: 83:d8:fc:77:d5:f8:ff:41:01:c8:22:9e:86:eb:64:e4:56:a2: a8:c3:e8:c3:2b:94:0f:4b:e8:70:ae:f4:cf:f5:82:e7:aa:26: 82:f0:92:ad:ad:f7:b9:b9:ff:66:a5:55:eb:98:cd:c5:60:3d: b2:a7:05:c7:03:98:95:ef:bc:7d:7b:19:3a:c1:64:28:46:14: 8d:ec:9e:2b:57:df:09:2e:0f:95:9a:a1:45:cb:f3:07:9a:9b: 17:ac:28:05:1a:9e:43:d4:ac:90:b1:1f:23:dd:5b:88:41:c1: 7b:f4:72:d2:cb:22:97:7f:5f:ff:db:4a:76:5d:63:46:85:f9: 8f:48:e8:d8:b1:94:77:1d:21:a6:3c:0b:8a:26:ed:80:ea:cd: f7:85:c1:02:5d:9c:c6:f6:00:99:e1:74:31:9e:f4:3a:9d:57: 30:08:55:d3:64:f9:b0:56:f6:46:f8:d8:00:7c:3b:50:03:3e: 38:1f:83:80 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUOUgCct62pDP4LmeqCSW8X6dYpJcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgwMDM2WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyM2RhZWFjODM1YWExZDNhMmE2ODNkNGZhMzU2YjQyMjMx MDdkMDdiZTA3NDY2NzNjODJiY2Y1NTE5M2IxNzc0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+48ExqeC+Hso1fO74DzNICopmftgKDKatavNk6zw0hgeZ ofvxNiBzCkAWUO+er6lG8FQH50OLJfXgho8ooUoQYNGeRx04I0Vd4G6spXuWrLu+ cQj3A1G9OL5rQ4nNgLng66ZgdLnbl4S+Dtg+EdXpTQeczHmor5NENY266FXHP5ER zfm7dol8A3mktBNDBrhTw9NNyP9KPIOhBqJKfGzXQ0AUbICHFEGNReWwWFk+T2vL lbxYzmRlEuF1zYmPb87ZTLeJCvPE1Ek9DNwH98DtZPEHkt2t0a01LUcM6pAAWm3g ikeBRdMgEQ/GYY2XJyeP7sjbYJfkw8R+3pH+vwEzAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUXnhA3gcaXo9KqXxRjR/e4+eDZfkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzI5MTBiY2ZhLTRiY2ItNDEyNS1hNTZmLTRiYjk1OTZmNWFkZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwBTANBgkqhkiG9w0BAQsFAAOCAQEAjcxMzf1de+6WWTd+qvNSXUvt S0l0YBgjZz5weqe/D/CB1FcAfApLas3ctHqAEaneEYhxS5w0VyO8b2HJNhB7+Tga v8LiD3oSg9j8d9X4/0EByCKehutk5FaiqMPowyuUD0vocK70z/WC56omgvCSra33 ubn/ZqVV65jNxWA9sqcFxwOYle+8fXsZOsFkKEYUjeyeK1ffCS4PlZqhRcvzB5qb F6woBRqeQ9SskLEfI91biEHBe/Ry0ssil39f/9tKdl1jRoX5j0jo2LGUdx0hpjwL iibtgOrN94XBAl2cxvYAmeF0MZ70Op1XMAhV02T5sFb2RvjYAHw7UAM+OB+DgA== -----END CERTIFICATE-----Generated at Mon Oct 20 13:52:33 2025 by rpki-client