$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4b04bc90-cc5c-48b6-be4f-8c1e0fa64617.roa File: 4b04bc90-cc5c-48b6-be4f-8c1e0fa64617.roa (raw, json) Hash identifier: hDku7hFVAxw3cfhRBpgnH07z2T/h+0VtDltbWz27ZU8= Subject key identifier: 44:4C:A4:B8:D8:BC:92:1B:EE:0D:1A:F7:83:CE:31:DE:5A:1E:99:B7 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 655D7CA71105FB5378DA53599BE18CE82D35CDC9 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4b04bc90-cc5c-48b6-be4f-8c1e0fa64617.roa Signing time: Tue 30 Sep 2025 00:46:02 +0000 ROA not before: Tue 30 Sep 2025 00:46:02 +0000 ROA not after: Tue 04 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8b00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:5d:7c:a7:11:05:fb:53:78:da:53:59:9b:e1:8c:e8:2d:35:cd:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 30 00:46:02 2025 GMT Not After : Nov 4 23:59:59 2025 GMT Subject: serialNumber=79193fde7c826b4f72df381e9b8f42511aad6a62aa592651a2627d3d4a944414, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:02:28:e6:93:09:9f:58:ef:b8:5d:9b:9b:15: 0b:00:22:bb:03:67:ef:f4:3b:1f:4a:9f:a0:68:1b: f5:f6:e8:6c:9d:da:1e:37:ae:d5:6f:96:b0:23:54: 06:79:7f:cc:e7:98:b6:37:df:ed:8b:46:80:01:e6: cb:e8:c2:b9:fa:8d:fa:3b:52:07:9b:80:a0:c2:44: 0f:87:6e:67:65:67:fd:39:f1:95:1e:46:cb:d9:ae: cf:7d:8c:40:4a:30:7b:5e:b6:67:3a:46:c6:12:86: 69:ef:a1:6c:a4:2e:83:c6:55:5b:a3:9a:a2:e6:dd: 37:ec:57:3a:ef:19:2f:34:a3:68:74:da:c1:18:a4: 91:0f:bf:e1:0b:6c:1c:e1:4c:ef:96:e8:71:59:45: 69:0a:df:a2:3e:3a:4f:43:6f:28:fd:d6:35:8c:c9: d2:2d:70:8d:16:4a:9d:3b:33:76:92:59:36:f8:f4: 1b:4a:ab:74:d6:49:55:24:1c:f3:7d:db:16:a6:b8: e6:9d:59:91:05:74:dc:1b:38:94:9b:6f:6b:00:a2: bf:0f:3e:d5:82:6a:76:cb:ab:96:dc:cb:ed:bb:04: 94:d4:28:59:73:38:b4:06:72:8a:97:7b:d8:d2:8e: d6:d9:69:21:68:7b:c0:44:4e:13:1e:3d:ec:5b:f6: 18:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:4C:A4:B8:D8:BC:92:1B:EE:0D:1A:F7:83:CE:31:DE:5A:1E:99:B7 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4b04bc90-cc5c-48b6-be4f-8c1e0fa64617.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8b00::/40 Signature Algorithm: sha256WithRSAEncryption 7b:ce:41:43:16:6e:5a:8d:d7:b6:d4:f6:7c:26:98:9f:e3:4d: 1c:61:2a:11:04:12:37:21:67:65:c1:e3:6b:de:3b:c6:23:34: ed:b9:2d:ca:cf:bc:be:9a:cf:b4:a3:b1:3b:89:a8:7e:1d:62: de:57:a5:cb:21:07:61:cf:ff:59:d6:84:6f:19:c0:56:12:ab: 8f:b1:d7:81:b8:0e:3b:3d:b3:b3:19:58:c5:97:7d:16:61:f4: f3:a2:15:27:e3:b7:f8:9a:8b:59:48:2e:22:2b:0c:20:e8:ec: 64:dc:eb:e5:63:18:b1:b7:fc:eb:c5:49:f2:de:23:03:8c:56: 30:e9:a1:c2:49:83:d6:18:f6:9a:7e:90:6c:e7:d4:47:1c:d5: 6d:f8:db:21:d2:2d:11:de:f5:c6:ff:c2:43:ef:a7:97:fc:f7: d2:d3:d9:91:7c:c3:ef:f2:63:dd:13:d3:83:eb:a5:42:79:68: ae:77:8b:d9:4a:6a:53:0a:82:0e:9c:2f:dc:46:74:d1:d0:a6: c2:58:ae:d5:51:d8:df:62:1b:8a:84:69:27:ad:6e:6d:58:ed: 03:96:f6:64:59:6c:06:8f:66:97:c2:e0:65:85:63:96:60:39: b5:79:d2:cb:10:d2:69:01:b0:7b:1f:a7:af:cb:da:d0:71:ad: d7:85:2c:97 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUZV18pxEF+1N42lNZm+GM6C01zckwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTMwMDA0NjAyWhcNMjUxMTA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3OTE5M2ZkZTdjODI2YjRmNzJkZjM4MWU5YjhmNDI1MTFh YWQ2YTYyYWE1OTI2NTFhMjYyN2QzZDRhOTQ0NDE0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzAijmkwmfWO+4XZubFQsAIrsDZ+/0Ox9Kn6BoG/X26Gyd 2h43rtVvlrAjVAZ5f8znmLY33+2LRoAB5svowrn6jfo7UgebgKDCRA+HbmdlZ/05 8ZUeRsvZrs99jEBKMHtetmc6RsYShmnvoWykLoPGVVujmqLm3TfsVzrvGS80o2h0 2sEYpJEPv+ELbBzhTO+W6HFZRWkK36I+Ok9Dbyj91jWMydItcI0WSp07M3aSWTb4 9BtKq3TWSVUkHPN92xamuOadWZEFdNwbOJSbb2sAor8PPtWCanbLq5bcy+27BJTU KFlzOLQGcoqXe9jSjtbZaSFoe8BEThMePexb9hjvAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUREykuNi8khvuDRr3g84x3loembcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzRiMDRiYzkwLWNjNWMtNDhiNi1iZTRmLThjMWUwZmE2NDYxNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDxizANBgkqhkiG9w0BAQsFAAOCAQEAe85BQxZuWo3XttT2fCaYn+NN HGEqEQQSNyFnZcHja947xiM07bktys+8vprPtKOxO4mofh1i3lelyyEHYc//WdaE bxnAVhKrj7HXgbgOOz2zsxlYxZd9FmH086IVJ+O3+JqLWUguIisMIOjsZNzr5WMY sbf868VJ8t4jA4xWMOmhwkmD1hj2mn6QbOfURxzVbfjbIdItEd71xv/CQ++nl/z3 0tPZkXzD7/Jj3RPTg+ulQnlorneL2UpqUwqCDpwv3EZ00dCmwliu1VHY32IbioRp J61ubVjtA5b2ZFlsBo9ml8LgZYVjlmA5tXnSyxDSaQGwex+nr8va0HGt14Uslw== -----END CERTIFICATE-----Generated at Mon Oct 20 13:53:24 2025 by rpki-client