$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5362b40e-d987-4a9d-8f30-59c3b7075db1.roa File: 5362b40e-d987-4a9d-8f30-59c3b7075db1.roa (raw, json) Hash identifier: 2rlzPxAbd+iCNzdoBcc5Rpg7jYME+pij+cErJMnkbKY= Subject key identifier: 6D:2D:8E:69:BF:E8:A8:BF:B0:03:C5:D0:F5:74:9B:82:6E:5F:F5:DE Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3B479AA47EE989AAE16590F9E7FD394E46418049 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5362b40e-d987-4a9d-8f30-59c3b7075db1.roa Signing time: Fri 26 Sep 2025 18:10:56 +0000 ROA not before: Fri 26 Sep 2025 18:10:56 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5530::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:47:9a:a4:7e:e9:89:aa:e1:65:90:f9:e7:fd:39:4e:46:41:80:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:10:56 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=44941d79336c117c360294e90fcfc606ee3c9fddd64309a57d0d8834d3ee2d4a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:3c:8d:64:9e:7e:3e:85:d5:fc:67:22:82:53: fc:51:3a:00:a8:52:aa:2f:57:f1:68:74:31:72:4b: b8:b0:32:cb:e6:43:cc:d9:f9:e8:be:29:ee:41:e8: 58:11:8c:3a:e4:e3:16:27:9a:bf:2e:3c:e9:36:e0: 7d:ad:2e:d3:6d:eb:44:b0:4b:d5:a1:62:d4:de:c8: df:a3:1b:0c:5d:4a:c2:98:43:06:d2:ec:4e:ae:bb: 76:7e:83:2d:cd:68:93:cb:c5:90:81:83:3d:41:44: 22:17:6f:88:c4:d5:f5:a9:ae:04:16:4d:cc:be:ee: 90:cb:3c:81:9e:a4:2c:9b:8e:15:e6:de:75:5d:80: a4:66:20:ef:63:ab:35:ef:ff:c0:73:37:e4:6c:84: 91:df:0f:f6:87:92:3d:c6:f4:7a:ab:91:63:48:a0: 8a:ef:dc:a9:6d:08:4a:cb:e3:ca:5e:e5:c0:e3:22: 3a:53:34:ca:9e:09:36:cf:66:ff:fb:3f:06:c3:c1: f2:c9:03:6a:97:8d:00:29:7a:9b:19:a6:ab:e2:19: 7b:93:6e:34:85:d3:20:e5:20:d0:51:66:ea:c8:82: 77:f8:da:9e:bd:58:13:0e:58:79:19:12:ba:a6:ef: 29:71:5a:66:a7:7c:73:3c:c9:19:22:2c:e7:4e:f9: 94:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:2D:8E:69:BF:E8:A8:BF:B0:03:C5:D0:F5:74:9B:82:6E:5F:F5:DE X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5362b40e-d987-4a9d-8f30-59c3b7075db1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5530::/44 Signature Algorithm: sha256WithRSAEncryption 26:ee:94:28:af:97:d0:07:9a:de:34:b8:87:81:30:74:6e:67: 8f:67:02:e3:ae:14:72:2b:68:ce:3d:44:32:c9:4a:e8:f9:0d: 3a:bf:72:3b:37:b8:0d:85:76:cc:98:0b:ee:80:34:87:b4:30: ef:9a:e1:7a:f7:3a:73:27:24:e6:be:da:1f:24:44:27:e7:50: 2f:ad:4e:83:50:b6:32:ff:fa:1c:47:a4:bf:47:84:35:bf:e4: d8:b0:7e:e0:3a:25:bb:5f:6b:67:7f:89:65:e6:39:04:02:04: 61:5f:08:b7:b1:c0:5b:1c:64:98:19:89:da:3e:19:ab:f2:15: b5:78:d9:00:26:87:b1:40:27:7a:1c:5a:6f:b1:a8:83:41:b3: 30:65:18:ae:8c:bf:c2:73:4c:53:a5:3b:f9:04:97:7d:15:cf: 81:0f:ed:d4:7a:c6:42:3a:58:49:61:78:3e:d8:a9:b5:cb:bb: 96:b3:1d:19:da:94:87:4e:27:b8:b1:b9:c7:fe:49:4d:34:06: 43:2d:3b:6c:48:d0:45:5f:41:66:5c:ec:0f:35:55:2a:2e:15: 5c:cd:00:37:ff:e7:1b:d6:92:b6:6f:d1:a1:41:83:c3:c4:36: a8:e5:d9:13:2a:a7:ce:c6:af:60:59:40:50:94:79:df:fe:c6: 09:06:57:b9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUO0eapH7piarhZZD55/05TkZBgEkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgxMDU2WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NDk0MWQ3OTMzNmMxMTdjMzYwMjk0ZTkwZmNmYzYwNmVl M2M5ZmRkZDY0MzA5YTU3ZDBkODgzNGQzZWUyZDRhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRPI1knn4+hdX8ZyKCU/xROgCoUqovV/FodDFyS7iwMsvm Q8zZ+ei+Ke5B6FgRjDrk4xYnmr8uPOk24H2tLtNt60SwS9WhYtTeyN+jGwxdSsKY QwbS7E6uu3Z+gy3NaJPLxZCBgz1BRCIXb4jE1fWprgQWTcy+7pDLPIGepCybjhXm 3nVdgKRmIO9jqzXv/8BzN+RshJHfD/aHkj3G9HqrkWNIoIrv3KltCErL48pe5cDj IjpTNMqeCTbPZv/7PwbDwfLJA2qXjQApepsZpqviGXuTbjSF0yDlINBRZurIgnf4 2p69WBMOWHkZErqm7ylxWmanfHM8yRkiLOdO+ZR3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbS2Oab/oqL+wA8XQ9XSbgm5f9d4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzUzNjJiNDBlLWQ5ODctNGE5ZC04ZjMwLTU5YzNiNzA3NWRiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwVTAwDQYJKoZIhvcNAQELBQADggEBACbulCivl9AHmt40uIeBMHRu Z49nAuOuFHIraM49RDLJSuj5DTq/cjs3uA2FdsyYC+6ANIe0MO+a4Xr3OnMnJOa+ 2h8kRCfnUC+tToNQtjL/+hxHpL9HhDW/5NiwfuA6Jbtfa2d/iWXmOQQCBGFfCLex wFscZJgZido+GavyFbV42QAmh7FAJ3ocWm+xqINBszBlGK6Mv8JzTFOlO/kEl30V z4EP7dR6xkI6WElheD7YqbXLu5azHRnalIdOJ7ixucf+SU00BkMtO2xI0EVfQWZc 7A81VSouFVzNADf/5xvWkrZv0aFBg8PENqjl2RMqp87Gr2BZQFCUed/+xgkGV7k= -----END CERTIFICATE-----Generated at Mon Oct 20 13:53:17 2025 by rpki-client