$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5ae357e1-ef95-4f5f-a6c3-8ad4f4fa3014.roa File: 5ae357e1-ef95-4f5f-a6c3-8ad4f4fa3014.roa (raw, json) Hash identifier: 9ESwYjYAeN3uQURTxlluK8OVtVXoo8Wc+0Dcf9oIE+Q= Subject key identifier: 60:F5:0C:A1:76:B8:8C:80:74:B7:EC:3A:65:98:4F:B7:AD:EF:E1:2B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0DDF27D4930F9876CFF7BE263584C7F78630885C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5ae357e1-ef95-4f5f-a6c3-8ad4f4fa3014.roa Signing time: Fri 26 Sep 2025 18:00:13 +0000 ROA not before: Fri 26 Sep 2025 18:00:13 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:551a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:df:27:d4:93:0f:98:76:cf:f7:be:26:35:84:c7:f7:86:30:88:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:00:13 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=e55bc1a46b8daf6a4a4a76f1fae2105ac6fe4639896d8167b2a52e977ff1d06b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:42:c0:0b:62:6e:7f:2a:46:5f:04:a9:b2:23: 3d:28:9e:80:a2:00:d7:4c:f6:79:70:fe:98:df:8b: 14:d1:09:bf:e5:83:c0:4d:77:64:ac:02:f9:21:6a: d1:89:53:bd:53:8a:4d:e8:08:30:8e:09:4e:d6:52: 7a:80:c9:8e:05:a8:74:1a:72:2f:5d:9a:6c:ae:f2: a6:fa:f8:3c:0c:22:4f:de:d7:93:94:ca:5f:ee:6d: 79:d8:f7:a5:db:23:c4:f1:60:90:28:e6:33:26:3e: 4b:a7:82:d5:f0:d1:20:c6:9b:51:fb:30:80:81:ad: 09:9a:0e:8e:a2:cb:54:84:7f:f6:5c:9f:10:9b:5f: 2b:11:ac:6f:a2:30:2e:b2:91:3f:c4:b4:fd:87:2c: 61:27:c7:94:1e:30:f2:d8:79:ea:0a:fb:0f:ff:99: 1d:b3:c9:7c:7f:e2:72:65:36:43:c0:58:c8:e2:bc: 08:9f:37:4e:ae:f7:4a:37:e5:9e:f1:95:db:2c:96: 6e:88:aa:6e:ac:ba:18:b0:2b:18:8b:48:e1:61:71: 96:d3:8c:a6:03:46:98:05:c1:f1:f7:7d:a0:c2:c8: 54:02:67:54:ca:fe:e4:07:10:76:39:4e:87:e3:c4: c7:ea:ca:7a:52:92:49:e8:64:85:ff:c5:03:7d:c5: 0d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:F5:0C:A1:76:B8:8C:80:74:B7:EC:3A:65:98:4F:B7:AD:EF:E1:2B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5ae357e1-ef95-4f5f-a6c3-8ad4f4fa3014.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551a::/48 Signature Algorithm: sha256WithRSAEncryption 75:91:ee:dd:a5:05:75:89:d9:8f:50:4d:ba:80:25:a7:82:2e: c9:f9:d1:32:60:95:1f:d5:2e:de:83:6c:a7:ad:bd:9a:31:2b: 98:e9:18:5c:54:2e:f5:42:82:f3:e2:db:c8:f5:6a:56:2f:96: cc:d5:12:2c:bd:07:5d:2b:dd:17:95:fd:c3:ad:91:ae:dc:12: 48:52:c2:4d:47:74:c5:dd:b6:44:52:7d:bd:cd:40:f6:bc:0b: 27:ef:3d:b0:fc:60:99:9e:f6:6d:9b:4e:00:e4:cd:d6:1b:05: 2c:4f:5f:70:51:93:ac:f8:7b:7b:b7:8a:4f:d9:04:48:2d:8b: d4:a4:32:f3:26:1d:f8:89:be:5f:1d:9a:9d:97:9d:c9:ed:87: 0c:ab:81:6c:ee:ec:4b:8c:ec:99:da:77:51:e3:43:ab:32:92: 93:c6:72:c3:1d:5f:90:f4:33:ea:f0:ef:0d:77:0a:df:0b:b4: 6d:f7:4c:fe:5e:af:72:74:ba:58:8e:5d:47:c5:da:f3:96:b0: 32:77:3c:e2:c9:47:55:1f:bc:ce:c7:9a:40:3a:4d:63:38:32: 33:3b:7e:31:9e:5f:a2:b9:c1:aa:cd:3c:db:a4:83:ed:17:4b: 5a:06:e1:c5:f0:d0:04:54:69:b5:84:85:bb:a6:21:52:c5:2b: 65:d9:32:d6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDd8n1JMPmHbP974mNYTH94YwiFwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgwMDEzWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNTViYzFhNDZiOGRhZjZhNGE0YTc2ZjFmYWUyMTA1YWM2 ZmU0NjM5ODk2ZDgxNjdiMmE1MmU5NzdmZjFkMDZiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgQsALYm5/KkZfBKmyIz0onoCiANdM9nlw/pjfixTRCb/l g8BNd2SsAvkhatGJU71Tik3oCDCOCU7WUnqAyY4FqHQaci9dmmyu8qb6+DwMIk/e 15OUyl/ubXnY96XbI8TxYJAo5jMmPkungtXw0SDGm1H7MICBrQmaDo6iy1SEf/Zc nxCbXysRrG+iMC6ykT/EtP2HLGEnx5QeMPLYeeoK+w//mR2zyXx/4nJlNkPAWMji vAifN06u90o35Z7xldsslm6Iqm6suhiwKxiLSOFhcZbTjKYDRpgFwfH3faDCyFQC Z1TK/uQHEHY5TofjxMfqynpSkknoZIX/xQN9xQ2bAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUYPUMoXa4jIB0t+w6ZZhPt63v4SswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzVhZTM1N2UxLWVmOTUtNGY1Zi1hNmMzLThhZDRmNGZhMzAxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRowDQYJKoZIhvcNAQELBQADggEBAHWR7t2lBXWJ2Y9QTbqAJaeC Lsn50TJglR/VLt6DbKetvZoxK5jpGFxULvVCgvPi28j1alYvlszVEiy9B10r3ReV /cOtka7cEkhSwk1HdMXdtkRSfb3NQPa8CyfvPbD8YJme9m2bTgDkzdYbBSxPX3BR k6z4e3u3ik/ZBEgti9SkMvMmHfiJvl8dmp2XncnthwyrgWzu7EuM7Jnad1HjQ6sy kpPGcsMdX5D0M+rw7w13Ct8LtG33TP5er3J0uliOXUfF2vOWsDJ3POLJR1UfvM7H mkA6TWM4MjM7fjGeX6K5warNPNukg+0XS1oG4cXw0ARUabWEhbumIVLFK2XZMtY= -----END CERTIFICATE-----Generated at Mon Oct 20 14:02:46 2025 by rpki-client