$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3eb80061-d999-4560-9395-9a007e8e03f9.roa File: 3eb80061-d999-4560-9395-9a007e8e03f9.roa (raw, json) Hash identifier: czxwescjDmlYyuwjZzEAh+GFqMfDICISue5freky0Go= Subject key identifier: F1:59:2F:E6:BC:0C:6A:27:E9:93:5B:17:BC:8D:10:94:DB:58:49:11 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5A1C4B6429CE795FD92845BACB55E48E7E17BFF3 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3eb80061-d999-4560-9395-9a007e8e03f9.roa Signing time: Mon 06 Oct 2025 17:40:08 +0000 ROA not before: Mon 06 Oct 2025 17:40:08 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f030::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:1c:4b:64:29:ce:79:5f:d9:28:45:ba:cb:55:e4:8e:7e:17:bf:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 6 17:40:08 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=94e12948f15c6ca055eaf63489fc48e939eb2de85a1b6be903ad18ca65106a04, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:3a:8c:a5:ad:84:6b:36:55:e8:0a:12:c5:c1: a6:3f:fa:fc:b5:e9:7f:d2:64:d4:e8:ed:ab:38:3d: 91:6c:70:66:be:b2:9a:da:6a:e0:eb:34:b2:78:05: 77:d4:58:ab:0e:4d:36:02:5a:8f:87:dc:a8:c0:20: 27:e2:51:84:ea:70:53:84:00:93:ef:80:b7:4d:1b: 9d:5f:e4:59:06:48:88:0d:ee:19:d1:6e:b1:80:e9: d5:72:f9:b9:2f:34:79:ad:45:56:aa:c4:25:2b:cf: 5b:7a:8f:3e:46:cf:58:20:3b:0a:02:bb:d7:60:6d: 0a:37:0f:04:64:97:32:13:ec:40:b5:8c:02:a2:e5: cc:af:a7:d2:23:9c:42:ac:5b:1f:58:ae:1e:78:60: 9e:10:94:5b:53:0d:fc:0b:89:98:f9:13:9f:d3:bc: 00:66:d8:93:a8:a0:e4:41:92:c6:a6:14:48:a4:e2: 6c:ab:45:4e:2d:ea:e8:05:a3:f7:39:5a:0e:22:c0: ca:90:55:f4:08:99:e6:78:54:b0:33:2f:b9:9b:4e: 04:29:5f:3b:33:d4:30:73:52:e5:5e:08:36:2e:7d: df:dc:c0:13:56:dc:c2:c1:19:7a:23:0b:68:cd:34: bd:49:75:36:3b:b9:cb:07:3d:a9:a1:d1:bf:da:f5: 6a:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:59:2F:E6:BC:0C:6A:27:E9:93:5B:17:BC:8D:10:94:DB:58:49:11 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3eb80061-d999-4560-9395-9a007e8e03f9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f030::/44 Signature Algorithm: sha256WithRSAEncryption 8a:4d:77:ef:ca:e4:74:aa:5c:b3:f1:4c:c7:82:2f:ac:35:4d: 15:7d:c1:c8:ff:c8:4a:38:c7:18:a7:b0:f7:df:d7:05:51:1d: df:23:d3:48:8b:03:cb:b0:ea:c3:c3:6f:3a:28:72:ba:67:fd: 95:e1:48:7f:93:0c:32:ff:5f:1c:d7:93:91:1d:ed:0d:de:6b: a8:4d:6c:c6:0d:23:5c:05:8d:f0:77:70:3d:e5:5a:3f:40:bc: 59:0a:59:29:58:88:4c:08:22:90:ea:25:0a:88:81:cc:cc:1e: 56:90:80:dd:b4:5a:f2:8e:6d:e3:be:11:cb:fb:34:cc:39:62: 07:9b:a9:1f:a4:71:fb:a6:25:c5:47:82:0a:4c:76:89:62:83: 92:c7:f6:00:c0:23:f9:aa:b4:f9:b2:13:2b:ea:03:2e:43:de: 07:58:2c:17:c0:53:b8:9d:12:21:e1:93:c1:b5:3d:60:14:e5: f7:c9:1f:91:f5:58:d4:57:c9:84:69:0e:7b:bb:91:a2:fd:da: e6:e9:25:bb:a5:89:42:2b:52:c9:92:8e:49:fc:ff:ed:3e:df: 72:18:8e:53:06:4d:5e:d7:92:89:25:3f:3a:e6:fd:aa:25:be: 44:8e:11:78:71:bf:20:2f:10:38:a1:d2:9e:e1:64:f1:44:ea: e7:af:13:f6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWhxLZCnOeV/ZKEW6y1Xkjn4Xv/MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDA2MTc0MDA4WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NGUxMjk0OGYxNWM2Y2EwNTVlYWY2MzQ4OWZjNDhlOTM5 ZWIyZGU4NWExYjZiZTkwM2FkMThjYTY1MTA2YTA0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuOoylrYRrNlXoChLFwaY/+vy16X/SZNTo7as4PZFscGa+ spraauDrNLJ4BXfUWKsOTTYCWo+H3KjAICfiUYTqcFOEAJPvgLdNG51f5FkGSIgN 7hnRbrGA6dVy+bkvNHmtRVaqxCUrz1t6jz5Gz1ggOwoCu9dgbQo3DwRklzIT7EC1 jAKi5cyvp9IjnEKsWx9Yrh54YJ4QlFtTDfwLiZj5E5/TvABm2JOooORBksamFEik 4myrRU4t6ugFo/c5Wg4iwMqQVfQImeZ4VLAzL7mbTgQpXzsz1DBzUuVeCDYufd/c wBNW3MLBGXojC2jNNL1JdTY7ucsHPamh0b/a9WqRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8Vkv5rwMaifpk1sXvI0QlNtYSREwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzNlYjgwMDYxLWQ5OTktNDU2MC05Mzk1LTlhMDA3ZThlMDNmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78DAwDQYJKoZIhvcNAQELBQADggEBAIpNd+/K5HSqXLPxTMeCL6w1 TRV9wcj/yEo4xxinsPff1wVRHd8j00iLA8uw6sPDbzoocrpn/ZXhSH+TDDL/XxzX k5Ed7Q3ea6hNbMYNI1wFjfB3cD3lWj9AvFkKWSlYiEwIIpDqJQqIgczMHlaQgN20 WvKObeO+Ecv7NMw5YgebqR+kcfumJcVHggpMdolig5LH9gDAI/mqtPmyEyvqAy5D 3gdYLBfAU7idEiHhk8G1PWAU5ffJH5H1WNRXyYRpDnu7kaL92ubpJbuliUIrUsmS jkn8/+0+33IYjlMGTV7XkoklPzrm/aolvkSOEXhxvyAvEDih0p7hZPFE6uevE/Y= -----END CERTIFICATE-----Generated at Mon Oct 20 14:02:41 2025 by rpki-client