$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/344bc29d-01a1-4e8a-bded-f30ec2519804.roa File: 344bc29d-01a1-4e8a-bded-f30ec2519804.roa (raw, json) Hash identifier: gD0ksnP5AmGqcv/XFLTb/pilA/meYSYoryiu6K/rXY8= Subject key identifier: 23:7D:A2:E3:33:28:CA:F0:24:41:99:E7:6B:C4:2C:70:78:13:52:7D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0160074D4DF94B3957ED98468EE5076245E1BAD9 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/344bc29d-01a1-4e8a-bded-f30ec2519804.roa Signing time: Fri 26 Sep 2025 18:20:18 +0000 ROA not before: Fri 26 Sep 2025 18:20:18 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:700::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:60:07:4d:4d:f9:4b:39:57:ed:98:46:8e:e5:07:62:45:e1:ba:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:20:18 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=46808209240d30ba51696bf1654474af0523e847aba9cd0bbf1d51261e4d7615, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e2:28:ed:9e:7c:52:03:0a:0e:de:68:76:82: 26:13:8f:8e:a2:ca:b9:12:9c:c1:80:83:0f:25:9a: 9f:16:1d:a3:e7:e0:28:cf:fc:a7:45:f3:e4:dc:e1: ac:a8:91:e8:89:90:76:02:80:80:db:46:d5:30:2e: 0d:44:1c:f8:2f:2d:56:a6:eb:6c:2b:fa:49:97:eb: c8:da:b1:26:79:e2:65:18:0d:8d:61:b4:fa:ef:d5: 1a:f8:3c:5d:ee:b9:02:4b:70:c3:97:7e:56:c6:63: 86:06:95:c5:1f:e2:97:e3:a8:46:7b:4f:21:48:e1: 03:7e:50:1d:cd:86:aa:17:63:75:53:0e:b8:52:f4: e4:32:de:e3:83:f1:e1:20:46:2f:95:02:48:07:aa: 88:46:65:60:2a:8a:ea:01:9e:9a:ed:bb:17:b6:af: 0b:cc:8f:fc:89:98:36:6f:28:14:44:a4:d1:33:8e: e3:3e:34:8c:18:19:2f:89:94:4f:17:da:92:44:72: a9:09:0c:11:5f:23:0a:f6:2f:9d:77:b7:d7:67:c5: 18:ea:f7:01:ca:75:cf:91:ce:93:12:f9:9c:14:52: 95:f2:ae:e4:84:5e:2b:e2:9b:b6:83:d6:46:8a:3f: b9:a0:77:a9:84:eb:58:27:3d:b9:bd:80:be:6b:4a: fa:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:7D:A2:E3:33:28:CA:F0:24:41:99:E7:6B:C4:2C:70:78:13:52:7D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/344bc29d-01a1-4e8a-bded-f30ec2519804.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:700::/40 Signature Algorithm: sha256WithRSAEncryption 19:7f:78:c6:38:f2:6b:6f:d7:53:6a:78:0c:ed:8b:69:9f:f9: 89:6c:6d:6b:c2:f7:2a:56:4d:11:55:ac:db:8f:64:44:b1:18: 45:d5:72:81:ec:21:b6:d5:1d:54:08:44:10:80:74:5d:4b:83: ac:5b:2f:d9:f0:9a:75:83:25:1e:f4:dd:68:98:17:59:4d:f1: f4:a6:ea:d8:bc:f5:01:21:9d:da:02:be:e6:9e:b6:3f:3e:79: b8:c5:13:35:e8:dd:20:20:00:58:8d:81:59:d8:83:dd:39:3b: 20:1f:54:7d:27:52:8e:22:ce:cd:77:01:75:f1:58:d6:70:78: a6:f1:5c:93:eb:e6:0f:20:56:68:4d:a2:be:38:95:3b:96:5b: d4:07:86:8e:d3:de:2e:e2:62:97:cb:21:c6:8c:7b:a3:11:36: 8d:59:d1:1a:ee:16:e4:03:8a:a5:7f:d3:c7:01:fd:ab:1a:fa: 14:2d:9b:08:89:64:08:9d:f7:c4:a0:dc:b6:aa:4e:47:a7:4c: 99:fb:32:78:46:68:d5:75:b9:b1:ff:0f:08:1c:42:f8:39:74: bb:11:32:09:be:91:ec:ee:19:78:eb:4b:c4:9b:fc:f1:6c:61: 68:f7:ba:0d:93:76:a7:43:1e:03:b0:58:f6:f8:d6:2b:1f:de: fc:2b:cd:c6 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUAWAHTU35SzlX7ZhGjuUHYkXhutkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgyMDE4WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NjgwODIwOTI0MGQzMGJhNTE2OTZiZjE2NTQ0NzRhZjA1 MjNlODQ3YWJhOWNkMGJiZjFkNTEyNjFlNGQ3NjE1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDe4ijtnnxSAwoO3mh2giYTj46iyrkSnMGAgw8lmp8WHaPn 4CjP/KdF8+Tc4ayokeiJkHYCgIDbRtUwLg1EHPgvLVam62wr+kmX68jasSZ54mUY DY1htPrv1Rr4PF3uuQJLcMOXflbGY4YGlcUf4pfjqEZ7TyFI4QN+UB3NhqoXY3VT DrhS9OQy3uOD8eEgRi+VAkgHqohGZWAqiuoBnprtuxe2rwvMj/yJmDZvKBREpNEz juM+NIwYGS+JlE8X2pJEcqkJDBFfIwr2L513t9dnxRjq9wHKdc+RzpMS+ZwUUpXy ruSEXivim7aD1kaKP7mgd6mE61gnPbm9gL5rSvr7AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUI32i4zMoyvAkQZnna8QscHgTUn0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM0NGJjMjlkLTAxYTEtNGU4YS1iZGVkLWYzMGVjMjUxOTgwNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwBzANBgkqhkiG9w0BAQsFAAOCAQEAGX94xjjya2/XU2p4DO2LaZ/5 iWxta8L3KlZNEVWs249kRLEYRdVygewhttUdVAhEEIB0XUuDrFsv2fCadYMlHvTd aJgXWU3x9Kbq2Lz1ASGd2gK+5p62Pz55uMUTNejdICAAWI2BWdiD3Tk7IB9UfSdS jiLOzXcBdfFY1nB4pvFck+vmDyBWaE2ivjiVO5Zb1AeGjtPeLuJil8shxox7oxE2 jVnRGu4W5AOKpX/TxwH9qxr6FC2bCIlkCJ33xKDctqpOR6dMmfsyeEZo1XW5sf8P CBxC+Dl0uxEyCb6R7O4ZeOtLxJv88WxhaPe6DZN2p0MeA7BY9vjWKx/e/CvNxg== -----END CERTIFICATE-----Generated at Mon Oct 20 13:53:07 2025 by rpki-client