$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4cdb43dd-1b49-4f22-93e8-b2153c2cac83.roa File: 4cdb43dd-1b49-4f22-93e8-b2153c2cac83.roa (raw, json) Hash identifier: nDUXcbotwo9IylTmKS2e3CsmlWvJoqvDeDleiM8AuvM= Subject key identifier: E7:13:7A:E7:6C:FB:BB:0D:BE:F3:33:D0:82:77:F3:FC:C8:15:7F:33 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 772D6502B880A28E0CD3B4FBFEE57F11D0184A5A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4cdb43dd-1b49-4f22-93e8-b2153c2cac83.roa Signing time: Fri 26 Sep 2025 18:10:58 +0000 ROA not before: Fri 26 Sep 2025 18:10:58 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5520::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:2d:65:02:b8:80:a2:8e:0c:d3:b4:fb:fe:e5:7f:11:d0:18:4a:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:10:58 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=16124029dfb42d1a439db3c4905750af14c82b9150fef5e7066ad987f1755010, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:f6:d0:c3:ad:bd:63:92:00:de:5d:48:a1:ba: 5b:4b:ce:b7:ce:3d:99:95:ec:c9:ac:19:6f:b0:d9: fc:3a:ca:83:2e:d8:5a:dc:2d:d6:0b:82:ff:34:59: fc:d3:09:36:31:7c:ee:6d:c2:c8:c6:ab:4c:24:56: cf:6d:e5:c6:74:3b:f4:3f:03:9b:43:c5:e9:8f:d6: f9:b1:ac:f4:59:ec:76:9f:aa:57:89:37:2e:5b:3f: 58:41:a6:be:99:60:27:d7:83:64:8d:2f:ad:f9:34: da:08:3d:75:6a:a1:9d:99:e5:ed:1b:6d:96:fa:75: 9a:47:56:e3:6a:d0:99:a6:33:47:37:74:50:b4:55: 2b:1a:8c:5b:85:41:b7:80:3a:32:c8:6e:63:01:68: d5:48:f2:a3:b7:d5:69:fc:49:a9:d6:91:53:be:bf: 2a:3e:af:90:91:3f:dc:07:e1:3b:bd:ca:a1:f2:88: 4d:64:38:37:19:e4:ff:db:2d:8b:78:4d:f3:77:54: ae:d4:4d:c2:10:e9:31:da:23:65:9f:f8:e8:66:3b: d5:e5:29:b0:43:ad:0a:d8:e6:69:16:eb:a9:ac:9b: 03:21:37:1e:38:e9:33:ba:21:3a:83:2e:52:c1:35: af:54:5a:0f:a0:f0:d0:70:fd:59:92:04:4a:a0:7a: 82:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:13:7A:E7:6C:FB:BB:0D:BE:F3:33:D0:82:77:F3:FC:C8:15:7F:33 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4cdb43dd-1b49-4f22-93e8-b2153c2cac83.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5520::/44 Signature Algorithm: sha256WithRSAEncryption 50:d9:0c:62:40:c6:76:7c:e7:cf:e3:d6:44:ff:fe:67:26:1f: 1e:6a:81:26:dd:a4:5a:f4:ac:2f:3b:58:e0:e5:5c:09:2c:da: ff:9c:fe:14:44:7c:13:62:91:e5:03:9f:3e:9d:b7:10:15:f5: 20:4a:03:cf:49:d3:6a:00:6a:c2:24:10:93:fe:e8:a4:b4:9d: fd:63:04:f6:9c:e8:c7:b9:fb:0a:e1:5b:3a:b6:ca:0e:61:0f: e6:59:11:28:06:da:e3:7f:b6:36:b4:1b:89:2e:85:e4:32:39: f8:2a:5e:82:20:15:e6:3c:a3:04:de:11:87:ec:c3:bd:54:3d: 3c:29:88:81:da:c3:65:79:ed:7d:26:c4:69:ff:0b:0a:fa:11: 41:be:37:7c:10:b7:a0:33:12:a3:77:a4:3a:20:81:db:c9:bc: 51:39:76:dd:d4:a8:c3:ae:7c:0d:3c:f5:21:f5:c1:59:86:c0: cd:1b:0d:3d:13:bf:49:05:b9:60:c6:68:71:96:27:4b:74:03: 66:d1:ed:0e:bf:d4:62:39:b3:40:08:a3:92:1a:4b:b2:3a:05: 22:87:e3:b6:6c:5f:b7:82:c5:05:40:86:f1:f3:b9:ab:4b:2d: 24:b3:c7:f5:0f:b6:17:c7:57:70:df:6a:14:ab:bb:74:b7:aa: 4a:b6:bd:79 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdy1lAriAoo4M07T7/uV/EdAYSlowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgxMDU4WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNjEyNDAyOWRmYjQyZDFhNDM5ZGIzYzQ5MDU3NTBhZjE0 YzgyYjkxNTBmZWY1ZTcwNjZhZDk4N2YxNzU1MDEwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDm9tDDrb1jkgDeXUihultLzrfOPZmV7MmsGW+w2fw6yoMu 2FrcLdYLgv80WfzTCTYxfO5twsjGq0wkVs9t5cZ0O/Q/A5tDxemP1vmxrPRZ7Haf qleJNy5bP1hBpr6ZYCfXg2SNL635NNoIPXVqoZ2Z5e0bbZb6dZpHVuNq0JmmM0c3 dFC0VSsajFuFQbeAOjLIbmMBaNVI8qO31Wn8SanWkVO+vyo+r5CRP9wH4Tu9yqHy iE1kODcZ5P/bLYt4TfN3VK7UTcIQ6THaI2Wf+OhmO9XlKbBDrQrY5mkW66msmwMh Nx446TO6ITqDLlLBNa9UWg+g8NBw/VmSBEqgeoJ7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5xN652z7uw2+8zPQgnfz/MgVfzMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzRjZGI0M2RkLTFiNDktNGYyMi05M2U4LWIyMTUzYzJjYWM4My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwVSAwDQYJKoZIhvcNAQELBQADggEBAFDZDGJAxnZ858/j1kT//mcm Hx5qgSbdpFr0rC87WODlXAks2v+c/hREfBNikeUDnz6dtxAV9SBKA89J02oAasIk EJP+6KS0nf1jBPac6Me5+wrhWzq2yg5hD+ZZESgG2uN/tja0G4kuheQyOfgqXoIg FeY8owTeEYfsw71UPTwpiIHaw2V57X0mxGn/Cwr6EUG+N3wQt6AzEqN3pDoggdvJ vFE5dt3UqMOufA089SH1wVmGwM0bDT0Tv0kFuWDGaHGWJ0t0A2bR7Q6/1GI5s0AI o5IaS7I6BSKH47ZsX7eCxQVAhvHzuatLLSSzx/UPthfHV3DfahSru3S3qkq2vXk= -----END CERTIFICATE-----Generated at Mon Oct 20 13:53:16 2025 by rpki-client