$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/692c7242-c4b2-4ece-8520-4fff6db89e7e.roa File: 692c7242-c4b2-4ece-8520-4fff6db89e7e.roa (raw, json) Hash identifier: XUveVJ2V4mX0BE+EypLqlND/bENad4O4DqnNSTyTyzI= Subject key identifier: D3:FF:93:61:9B:D2:31:F5:39:7E:C6:38:4D:41:51:DB:E7:93:B2:AF Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 057A0169C788EB79A1DA25F8FC131797EFE51D17 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/692c7242-c4b2-4ece-8520-4fff6db89e7e.roa Signing time: Mon 06 Oct 2025 17:40:41 +0000 ROA not before: Mon 06 Oct 2025 17:40:41 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6115::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:7a:01:69:c7:88:eb:79:a1:da:25:f8:fc:13:17:97:ef:e5:1d:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 6 17:40:41 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=3d1979d861c2bbd75a9f1475f4c1ea1cf76b40839d06cc31ebed86ec53ef61d8, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a7:1b:6e:3c:8f:0f:42:18:34:c7:80:d0:86: c0:c0:65:bd:85:ea:0e:40:59:17:fc:f2:5b:fb:e0: 6a:91:1d:46:46:d1:9a:a7:47:79:1e:6e:b7:e2:c6: c4:28:3f:3c:de:c5:79:28:e7:30:81:09:65:66:98: 35:2c:41:4c:b7:2c:a7:18:32:53:60:8b:67:57:7a: 1d:00:8d:8a:e0:03:c8:bd:99:d4:5e:99:3d:e6:24: 36:a0:a6:95:46:19:b2:a6:e3:69:2c:f5:7f:7d:48: bc:48:a2:4f:c9:ee:9e:8a:78:e1:e7:8f:76:ba:5f: 74:44:a9:8d:9b:08:40:e0:84:b7:97:15:35:20:b8: bf:aa:ad:28:a8:4f:91:96:1c:9f:fb:c3:c8:d6:b1: 37:ad:df:e2:00:a9:f0:5c:e7:3d:f6:56:1e:e4:27: 5c:79:26:a9:e3:77:e8:7f:0f:e4:65:a0:69:a5:cf: 83:7d:ff:69:3e:92:0c:e7:51:7b:fb:5f:ac:4d:b2: 78:56:df:2e:e5:1e:1c:7a:76:5e:e6:94:f5:ec:2a: e1:5f:21:4a:ef:c7:d3:49:18:e2:bd:89:3a:a8:d3: bf:fe:ef:8d:64:b3:d2:da:48:91:d2:4e:3f:bc:90: 01:ed:4d:43:fb:2c:1c:4a:ae:b3:39:f4:51:96:bb: 87:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:FF:93:61:9B:D2:31:F5:39:7E:C6:38:4D:41:51:DB:E7:93:B2:AF X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/692c7242-c4b2-4ece-8520-4fff6db89e7e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6115::/48 Signature Algorithm: sha256WithRSAEncryption a7:27:6b:f4:f4:cd:0a:d3:4a:1d:55:85:ae:8f:6e:e6:0a:b1: 4c:e0:2c:10:5f:cc:54:30:3e:3d:c5:07:29:28:8b:3e:29:e4: 59:45:ae:22:98:f7:38:ac:71:6d:c3:b7:1a:76:c6:2f:76:86: 68:68:94:07:4d:55:47:ca:20:65:08:32:b0:03:bb:c1:09:1c: ae:a8:57:8c:ba:6c:3d:f4:ee:01:c8:63:eb:6e:b3:98:41:b0: 98:85:aa:1e:4b:73:ab:63:86:47:d1:cf:f8:7d:df:57:39:38: a6:1c:c5:a3:77:6c:63:26:91:d3:20:9b:49:69:69:07:cd:11: 1a:0a:3b:4c:a7:ff:b5:69:a3:69:45:ad:ca:27:cd:cc:ac:c5: 9f:f2:1e:f7:6d:7c:0e:90:d6:b8:2e:07:5b:7c:5a:01:db:6b: 35:ac:a1:43:59:0f:95:fe:69:22:09:0e:66:74:5a:c5:24:f0: d6:d6:70:e1:b5:1c:04:f6:37:71:2a:81:93:d5:79:ca:8c:17: ee:37:66:54:e3:6d:78:e1:44:b3:c9:91:99:27:81:7a:ba:76: d5:39:32:51:1e:10:1a:02:9c:fc:f3:98:ac:e8:7c:d8:16:8b: 27:de:96:16:cc:d0:fc:f7:15:1a:3c:65:be:f9:8c:29:9d:28: f1:a9:59:f8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBXoBaceI63mh2iX4/BMXl+/lHRcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDA2MTc0MDQxWhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZDE5NzlkODYxYzJiYmQ3NWE5ZjE0NzVmNGMxZWExY2Y3 NmI0MDgzOWQwNmNjMzFlYmVkODZlYzUzZWY2MWQ4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkpxtuPI8PQhg0x4DQhsDAZb2F6g5AWRf88lv74GqRHUZG 0ZqnR3kebrfixsQoPzzexXko5zCBCWVmmDUsQUy3LKcYMlNgi2dXeh0AjYrgA8i9 mdRemT3mJDagppVGGbKm42ks9X99SLxIok/J7p6KeOHnj3a6X3REqY2bCEDghLeX FTUguL+qrSioT5GWHJ/7w8jWsTet3+IAqfBc5z32Vh7kJ1x5Jqnjd+h/D+RloGml z4N9/2k+kgznUXv7X6xNsnhW3y7lHhx6dl7mlPXsKuFfIUrvx9NJGOK9iTqo07/+ 741ks9LaSJHSTj+8kAHtTUP7LBxKrrM59FGWu4d/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU0/+TYZvSMfU5fsY4TUFR2+eTsq8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzY5MmM3MjQyLWM0YjItNGVjZS04NTIwLTRmZmY2ZGI4OWU3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRUwDQYJKoZIhvcNAQELBQADggEBAKcna/T0zQrTSh1Vha6PbuYK sUzgLBBfzFQwPj3FBykoiz4p5FlFriKY9ziscW3Dtxp2xi92hmholAdNVUfKIGUI MrADu8EJHK6oV4y6bD307gHIY+tus5hBsJiFqh5Lc6tjhkfRz/h931c5OKYcxaN3 bGMmkdMgm0lpaQfNERoKO0yn/7Vpo2lFrconzcysxZ/yHvdtfA6Q1rguB1t8WgHb azWsoUNZD5X+aSIJDmZ0WsUk8NbWcOG1HAT2N3EqgZPVecqMF+43ZlTjbXjhRLPJ kZkngXq6dtU5MlEeEBoCnPzzmKzofNgWiyfelhbM0Pz3FRo8Zb75jCmdKPGpWfg= -----END CERTIFICATE-----Generated at Mon Oct 20 13:52:27 2025 by rpki-client