$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/48713909-c1f3-4664-9c83-d3f0ba77a7f0.roa File: 48713909-c1f3-4664-9c83-d3f0ba77a7f0.roa (raw, json) Hash identifier: rJpG2zCFq0wjcQf8b2GVXvJIWTpwJz81+JxECyoIvxQ= Subject key identifier: D7:97:74:F2:3B:10:20:5A:C8:83:81:44:D0:DD:E9:05:85:7D:38:5C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0FCF7A9FCA6C77F6748F43C7AC95309BA59879E2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/48713909-c1f3-4664-9c83-d3f0ba77a7f0.roa Signing time: Mon 06 Oct 2025 17:40:05 +0000 ROA not before: Mon 06 Oct 2025 17:40:05 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:108::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:cf:7a:9f:ca:6c:77:f6:74:8f:43:c7:ac:95:30:9b:a5:98:79:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 6 17:40:05 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=f7a85690a6d2f58b76039f9c33d01f08dde1d182a075641de75c106aecdc1ce5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:36:cf:e0:42:90:1e:6e:fd:67:c2:f7:83:43: 27:55:c8:9f:ee:8b:d9:e4:29:2d:fa:3c:14:06:65: d5:aa:de:cf:6f:5a:11:ac:ad:73:f2:35:42:62:bb: c9:f0:7b:9a:48:5c:92:b7:5c:44:81:99:fa:f8:29: a1:9e:fe:51:f5:96:75:3e:d3:6a:6c:54:09:8a:e2: 86:81:cc:e4:59:5d:19:44:3e:64:9a:82:2c:b3:ff: 8d:9d:13:f9:94:97:00:d0:b3:01:09:de:22:c7:2f: 0f:bd:64:83:91:6e:77:31:87:61:28:a6:1d:1f:25: ec:a5:18:33:0a:d5:f4:1f:78:20:79:9b:cd:fb:b8: 1f:18:da:a5:c1:18:f7:84:17:75:c3:56:0f:c0:92: ce:27:ff:f5:43:12:c0:bb:51:fd:9e:d7:7c:21:7b: a9:62:22:48:e3:a3:87:14:3d:60:76:28:6d:95:30: 51:d5:d6:cd:50:ae:e7:8d:9f:93:e7:8e:8e:70:79: 16:0f:ac:b9:65:bd:a1:60:56:06:47:10:b7:d7:63: 78:c6:bd:8b:8f:4b:19:c3:d5:9c:c8:5d:c5:49:52: bb:74:ab:96:6a:a5:4a:d0:ef:de:df:d9:02:dd:85: 4d:c5:83:66:bf:b9:3e:f4:12:20:5a:da:d3:43:b8: e9:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:97:74:F2:3B:10:20:5A:C8:83:81:44:D0:DD:E9:05:85:7D:38:5C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/48713909-c1f3-4664-9c83-d3f0ba77a7f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:108::/47 Signature Algorithm: sha256WithRSAEncryption 47:10:6e:a3:27:82:63:f2:3a:38:ab:a5:01:71:dd:1e:da:27: 2d:c8:bc:3e:a4:8d:4e:4b:a6:08:4a:87:0c:51:ab:d1:1e:14: 30:66:e9:ed:76:1f:1c:63:10:d5:9b:0f:0e:79:33:b0:d1:a5: 9a:ba:50:e4:b2:07:e3:9b:28:cf:75:02:0f:08:5b:26:4f:f2: d8:ea:2d:81:ea:68:cf:28:93:12:00:dc:dc:f9:04:bd:be:2d: 72:2a:a3:b4:3f:59:c0:1e:15:19:fc:25:1a:0e:1e:3e:99:1c: 53:b2:62:ee:de:79:63:d4:94:7b:aa:7d:a5:f6:ff:09:57:19: 52:18:20:eb:13:d3:a9:6b:52:c0:90:4e:38:ca:47:1e:66:74: 50:82:b1:67:44:a3:d7:3d:a1:60:ec:91:fe:c1:78:ab:54:c4: bf:a3:ab:c0:e8:0e:ff:d8:c3:83:67:27:2d:ba:c2:1f:ff:8d: e9:61:df:8e:91:d7:c7:89:9e:29:25:35:55:14:89:df:13:e1: c5:5b:5e:39:78:38:28:38:4d:16:7d:e8:e4:1f:7e:4d:98:c2: a1:ce:3a:a2:af:66:c7:db:0c:9c:bb:a8:0c:f8:37:11:94:50: 8f:d1:1f:14:b6:ae:cb:3b:bc:54:68:c8:4b:d9:8f:77:60:cb: a6:64:9e:27 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUD896n8psd/Z0j0PHrJUwm6WYeeIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDA2MTc0MDA1WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmN2E4NTY5MGE2ZDJmNThiNzYwMzlmOWMzM2QwMWYwOGRk ZTFkMTgyYTA3NTY0MWRlNzVjMTA2YWVjZGMxY2U1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDxNs/gQpAebv1nwveDQydVyJ/ui9nkKS36PBQGZdWq3s9v WhGsrXPyNUJiu8nwe5pIXJK3XESBmfr4KaGe/lH1lnU+02psVAmK4oaBzORZXRlE PmSagiyz/42dE/mUlwDQswEJ3iLHLw+9ZIORbncxh2Eoph0fJeylGDMK1fQfeCB5 m837uB8Y2qXBGPeEF3XDVg/Aks4n//VDEsC7Uf2e13whe6liIkjjo4cUPWB2KG2V MFHV1s1QrueNn5Pnjo5weRYPrLllvaFgVgZHELfXY3jGvYuPSxnD1ZzIXcVJUrt0 q5ZqpUrQ797f2QLdhU3Fg2a/uT70EiBa2tNDuOl5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU15d08jsQIFrIg4FE0N3pBYV9OFwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzQ4NzEzOTA5LWMxZjMtNDY2NC05YzgzLWQzZjBiYTc3YTdmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAPDwAQgwDQYJKoZIhvcNAQELBQADggEBAEcQbqMngmPyOjirpQFx3R7a Jy3IvD6kjU5LpghKhwxRq9EeFDBm6e12HxxjENWbDw55M7DRpZq6UOSyB+ObKM91 Ag8IWyZP8tjqLYHqaM8okxIA3Nz5BL2+LXIqo7Q/WcAeFRn8JRoOHj6ZHFOyYu7e eWPUlHuqfaX2/wlXGVIYIOsT06lrUsCQTjjKRx5mdFCCsWdEo9c9oWDskf7BeKtU xL+jq8DoDv/Yw4NnJy26wh//jelh346R18eJniklNVUUid8T4cVbXjl4OCg4TRZ9 6OQffk2YwqHOOqKvZsfbDJy7qAz4NxGUUI/RHxS2rss7vFRoyEvZj3dgy6Zknic= -----END CERTIFICATE-----Generated at Mon Oct 20 13:52:30 2025 by rpki-client