$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/56527727-111d-4d4a-9da3-1e8d68e15a4c.roa File: 56527727-111d-4d4a-9da3-1e8d68e15a4c.roa (raw, json) Hash identifier: 9oUfdd6aeegnkDxvDVPuy38J4U0W7bpqSCFBugBSUD8= Subject key identifier: 12:30:74:78:6D:C7:56:20:C2:53:54:C9:C9:2E:26:DA:3F:E9:39:12 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1007FE420B9561F967DBB8159CB8D62A728BFFF6 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/56527727-111d-4d4a-9da3-1e8d68e15a4c.roa Signing time: Fri 26 Sep 2025 18:00:10 +0000 ROA not before: Fri 26 Sep 2025 18:00:10 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:80::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:07:fe:42:0b:95:61:f9:67:db:b8:15:9c:b8:d6:2a:72:8b:ff:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:00:10 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=74f43094955ba402e053a3e12d4fae9660429825be8b04b34c4a0b89bb643ed2, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:1f:f8:de:37:ce:a0:d9:33:f1:52:c5:62:c8: 63:0e:e9:05:00:25:79:b0:15:fe:74:56:fb:e1:f0: 4a:68:66:fc:f0:11:f0:d3:f3:49:7c:96:05:0b:a0: 49:e6:a0:c6:85:ac:7e:4f:e6:c7:54:ce:09:f8:04: 58:e2:5e:47:ac:52:8c:b2:c4:cf:89:29:df:a0:d8: 7a:df:06:37:46:3e:3e:7a:8b:d6:82:ea:e5:e0:09: 48:f7:c8:62:a3:85:0f:e5:84:68:28:af:92:e0:c6: 5b:8c:5a:20:3e:5d:87:14:54:e3:55:10:a2:8d:8a: 6b:4c:b6:ae:58:f2:c0:63:76:12:9f:f3:b3:3f:db: 8d:46:47:f6:9b:78:58:de:aa:8b:97:0a:34:4a:f4: 3a:c7:ab:a0:0e:4f:22:82:7a:8e:5d:37:4c:a1:ce: 2a:f5:21:d0:7c:48:48:cb:69:1f:f1:c4:7e:52:55: 77:68:56:cb:f0:78:8d:09:3e:9f:4a:72:c3:86:f9: 14:7a:2d:38:7b:ae:24:01:35:62:e1:b3:0c:40:d5: 47:b9:4d:ba:f9:99:2d:50:47:ae:68:b7:70:ce:24: d4:dc:b0:c8:b6:6f:e6:e3:98:01:24:3b:8b:6d:1e: 24:d4:bd:22:21:66:95:93:71:2e:1b:db:58:65:df: 92:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:30:74:78:6D:C7:56:20:C2:53:54:C9:C9:2E:26:DA:3F:E9:39:12 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/56527727-111d-4d4a-9da3-1e8d68e15a4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:80::/44 Signature Algorithm: sha256WithRSAEncryption 82:8a:ca:c2:83:b0:af:fe:4a:3f:5c:d4:50:16:66:f7:4a:2d: 6e:d7:d5:86:ee:47:a9:ad:1d:20:b1:44:6c:34:66:24:99:c0: a8:41:3d:8b:2e:69:b9:19:7f:8c:fb:5f:19:ae:6f:83:d4:cf: b2:17:9c:2b:78:64:57:0e:cf:ff:a9:5d:c5:2d:85:9d:c1:89: 35:33:4f:73:19:14:00:03:e7:6f:97:48:98:43:69:15:f8:96: 91:98:73:52:cd:bf:44:34:fc:ed:23:77:79:ec:b0:ac:56:a2: 6d:a4:a7:b7:eb:22:66:27:9c:e3:16:d1:cf:1e:17:6f:5e:94: 41:9a:62:59:55:00:72:fe:6d:4e:7a:e1:94:c9:d3:fa:ae:73: 33:c8:e6:ff:10:8b:c8:5c:d2:c9:cc:6e:f5:70:6c:30:58:47: 51:0b:ad:0f:5f:58:5b:28:fb:0e:8c:68:a1:57:c8:62:4e:4e: cb:f0:77:e8:75:4a:aa:80:c7:64:6a:15:a9:b6:ee:f0:5e:b7: 37:1d:1f:91:25:8f:90:29:c2:57:11:02:b0:40:0a:28:47:1d: 3f:bf:15:de:38:a7:54:c3:f4:2d:36:cf:9c:62:8e:ba:bf:e5: 7c:46:c3:d9:f1:ca:62:a1:fc:44:2d:04:25:cc:05:f9:f6:d9: 50:c6:fe:b4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEAf+QguVYfln27gVnLjWKnKL//YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgwMDEwWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NGY0MzA5NDk1NWJhNDAyZTA1M2EzZTEyZDRmYWU5NjYw NDI5ODI1YmU4YjA0YjM0YzRhMGI4OWJiNjQzZWQyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRH/jeN86g2TPxUsViyGMO6QUAJXmwFf50Vvvh8EpoZvzw EfDT80l8lgULoEnmoMaFrH5P5sdUzgn4BFjiXkesUoyyxM+JKd+g2HrfBjdGPj56 i9aC6uXgCUj3yGKjhQ/lhGgor5LgxluMWiA+XYcUVONVEKKNimtMtq5Y8sBjdhKf 87M/241GR/abeFjeqouXCjRK9DrHq6AOTyKCeo5dN0yhzir1IdB8SEjLaR/xxH5S VXdoVsvweI0JPp9KcsOG+RR6LTh7riQBNWLhswxA1Ue5Tbr5mS1QR65ot3DOJNTc sMi2b+bjmAEkO4ttHiTUvSIhZpWTcS4b21hl35KdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUEjB0eG3HViDCU1TJyS4m2j/pORIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU2NTI3NzI3LTExMWQtNGQ0YS05ZGEzLTFlOGQ2OGUxNWE0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAIAwDQYJKoZIhvcNAQELBQADggEBAIKKysKDsK/+Sj9c1FAWZvdK LW7X1YbuR6mtHSCxRGw0ZiSZwKhBPYsuabkZf4z7Xxmub4PUz7IXnCt4ZFcOz/+p XcUthZ3BiTUzT3MZFAAD52+XSJhDaRX4lpGYc1LNv0Q0/O0jd3nssKxWom2kp7fr ImYnnOMW0c8eF29elEGaYllVAHL+bU564ZTJ0/quczPI5v8Qi8hc0snMbvVwbDBY R1ELrQ9fWFso+w6MaKFXyGJOTsvwd+h1SqqAx2RqFam27vBetzcdH5Elj5ApwlcR ArBACihHHT+/Fd44p1TD9C02z5xijrq/5XxGw9nxymKh/EQtBCXMBfn22VDG/rQ= -----END CERTIFICATE-----Generated at Mon Oct 20 13:52:25 2025 by rpki-client