$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4c062590-8f7f-4f01-9123-64634a17a4cd.roa File: 4c062590-8f7f-4f01-9123-64634a17a4cd.roa (raw, json) Hash identifier: yvOxsyNCgkQLUriNBmt4dHIWLtx2T0RVq6vUuQd4Fto= Subject key identifier: 99:E9:F5:5A:2B:31:69:26:9F:C5:41:5B:99:C4:E7:6B:F4:C3:89:AB Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0867A6BD4B248B5EAF683E2E0C7BDB42DE755E20 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4c062590-8f7f-4f01-9123-64634a17a4cd.roa Signing time: Fri 26 Sep 2025 18:11:23 +0000 ROA not before: Fri 26 Sep 2025 18:11:23 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e900::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:67:a6:bd:4b:24:8b:5e:af:68:3e:2e:0c:7b:db:42:de:75:5e:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:11:23 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=de6d3d1c120d471aee3278cc4267b292f925b6867950e56d0c56c059180308b0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3e:ef:39:68:0a:6e:3a:9e:d0:3f:35:22:c7: 4f:00:6f:8e:bf:fc:ed:8e:88:ae:05:9e:88:32:30: 3f:9c:99:df:71:77:eb:86:84:b4:9f:5d:3d:9a:b3: 1a:ef:ea:4c:01:0f:08:db:28:86:4d:16:09:54:11: 2e:bb:10:e3:24:e4:0b:c3:3a:1d:f9:36:65:6b:be: f5:e4:50:3c:36:6b:f8:a4:c4:96:5a:59:51:db:50: b3:07:a6:a0:46:fb:ea:26:a1:24:31:63:cb:62:ef: 83:40:76:af:c0:1b:00:5c:76:c2:e9:10:85:a3:26: 30:2d:eb:78:f0:dc:fd:10:b0:26:64:fe:cb:2f:c9: d9:01:13:b1:c8:81:6a:2a:30:9d:25:0e:19:f1:13: 3d:f1:bf:54:2c:dc:00:8f:ee:a7:69:39:c2:aa:d6: 5f:bc:70:01:2d:21:6f:4e:10:08:24:3a:68:7f:ec: d0:e6:3c:45:4f:29:ab:13:6b:48:1d:57:da:af:9d: 93:da:2b:58:cf:58:9f:d0:a0:63:48:56:2f:eb:53: 64:3a:9f:4e:b7:0c:53:43:59:66:87:98:e8:b5:2f: e0:1f:c8:a0:5d:e7:46:3b:dc:a0:0e:97:b8:23:fb: 30:81:58:3d:6d:b5:12:e1:e0:a6:aa:f5:c9:93:a6: 53:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:E9:F5:5A:2B:31:69:26:9F:C5:41:5B:99:C4:E7:6B:F4:C3:89:AB X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4c062590-8f7f-4f01-9123-64634a17a4cd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e900::/40 Signature Algorithm: sha256WithRSAEncryption 6e:dd:1e:2d:2d:1a:b5:2d:c7:2e:e7:52:bf:13:02:bb:33:7a: 1b:59:6e:4e:11:fa:56:ab:1f:62:d9:ac:4a:e0:33:b5:78:a7: fa:2f:ab:65:2d:3a:b0:62:ba:6c:fb:10:46:f6:f3:d4:bd:bc: b7:6f:af:22:a7:37:c2:96:3f:ab:a5:43:f7:f5:76:19:01:7f: 3d:e6:e2:cf:d9:59:6b:32:84:e9:f3:19:ae:12:ae:bd:7d:33: c8:e9:0f:75:55:60:88:d3:e7:ce:15:32:2f:53:9d:2a:e5:dc: 79:96:aa:7f:99:3e:77:f9:d5:cb:3d:b7:13:e4:09:d2:08:68: 9c:17:ce:b2:6d:db:4b:07:6a:0d:9a:07:d5:58:eb:a1:4f:e8: e7:e3:14:f0:73:04:3a:27:10:56:f1:c7:ce:17:bf:92:8b:fc: c3:a0:1e:11:db:fd:0b:13:f5:30:3a:45:7b:15:b9:d7:c3:8c: 91:b4:24:bd:e7:80:7c:2d:c0:70:cb:aa:64:8d:a7:ff:05:2b: d4:65:08:d4:35:a0:e1:a8:a2:b6:43:78:80:5d:d0:6e:a7:27: d6:c9:ee:e7:50:a8:99:45:c7:69:40:28:54:2d:c3:6a:ff:e3: e9:0c:4a:f9:47:f2:2e:04:d7:2f:fb:9a:a6:d6:96:ea:3d:66: e3:84:df:46 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUCGemvUski16vaD4uDHvbQt51XiAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgxMTIzWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZTZkM2QxYzEyMGQ0NzFhZWUzMjc4Y2M0MjY3YjI5MmY5 MjViNjg2Nzk1MGU1NmQwYzU2YzA1OTE4MDMwOGIwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMPu85aApuOp7QPzUix08Ab46//O2OiK4FnogyMD+cmd9x d+uGhLSfXT2asxrv6kwBDwjbKIZNFglUES67EOMk5AvDOh35NmVrvvXkUDw2a/ik xJZaWVHbULMHpqBG++omoSQxY8ti74NAdq/AGwBcdsLpEIWjJjAt63jw3P0QsCZk /ssvydkBE7HIgWoqMJ0lDhnxEz3xv1Qs3ACP7qdpOcKq1l+8cAEtIW9OEAgkOmh/ 7NDmPEVPKasTa0gdV9qvnZPaK1jPWJ/QoGNIVi/rU2Q6n063DFNDWWaHmOi1L+Af yKBd50Y73KAOl7gj+zCBWD1ttRLh4Kaq9cmTplNLAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUmen1WisxaSafxUFbmcTna/TDiaswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzRjMDYyNTkwLThmN2YtNGYwMS05MTIzLTY0NjM0YTE3YTRjZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD76TANBgkqhkiG9w0BAQsFAAOCAQEAbt0eLS0atS3HLudSvxMCuzN6 G1luThH6VqsfYtmsSuAztXin+i+rZS06sGK6bPsQRvbz1L28t2+vIqc3wpY/q6VD 9/V2GQF/Pebiz9lZazKE6fMZrhKuvX0zyOkPdVVgiNPnzhUyL1OdKuXceZaqf5k+ d/nVyz23E+QJ0ghonBfOsm3bSwdqDZoH1VjroU/o5+MU8HMEOicQVvHHzhe/kov8 w6AeEdv9CxP1MDpFexW518OMkbQkveeAfC3AcMuqZI2n/wUr1GUI1DWg4aiitkN4 gF3Qbqcn1snu51ComUXHaUAoVC3Dav/j6QxK+UfyLgTXL/uaptaW6j1m44TfRg== -----END CERTIFICATE-----Generated at Mon Oct 20 14:02:48 2025 by rpki-client