$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6ac404eb-6a32-4ac1-b9d5-391986a6379c.roa File: 6ac404eb-6a32-4ac1-b9d5-391986a6379c.roa (raw, json) Hash identifier: TzXbuMimPrNkxiY50yhsvkivx/gNMdppzFvki2uMp30= Subject key identifier: BA:D9:AD:5C:8B:1C:7D:46:6B:91:A9:91:7A:00:7A:4F:BB:67:0C:2F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1CB3D72CD05FAEDDF261DD6C9AC6B42E978D4748 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6ac404eb-6a32-4ac1-b9d5-391986a6379c.roa Signing time: Tue 30 Sep 2025 00:46:01 +0000 ROA not before: Tue 30 Sep 2025 00:46:01 +0000 ROA not after: Tue 04 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8b01::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:b3:d7:2c:d0:5f:ae:dd:f2:61:dd:6c:9a:c6:b4:2e:97:8d:47:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 30 00:46:01 2025 GMT Not After : Nov 4 23:59:59 2025 GMT Subject: serialNumber=13a1f9022e348c46c785523f4da5299b27da600d9651582f0e32227fd2f34c42, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:8c:6e:c9:01:91:9e:08:b3:3e:f9:7c:73:a1: b0:3d:7b:83:66:8c:cc:51:d2:d8:34:bb:f3:70:06: b2:69:2f:10:10:12:b3:ae:6b:e0:fe:15:6f:ad:a1: a6:db:c3:d3:1e:52:54:22:74:a5:72:a0:a2:3a:22: 27:c3:bf:e4:9e:83:59:e5:4b:ea:56:d6:23:82:70: 23:5d:96:d4:0a:63:a5:77:dc:c9:43:6b:f2:7d:66: 8d:ab:d2:f9:dc:b8:30:1d:e8:50:54:00:ff:ab:0c: d7:77:d6:9d:54:b9:c2:49:e4:a3:03:b4:33:e4:b2: 15:2b:59:36:32:9f:7c:96:11:5a:32:8f:26:cf:3a: cf:62:83:cc:9e:8c:ac:71:47:21:01:ed:19:ef:87: 37:f5:a2:b4:e6:22:86:7b:dc:74:ad:e1:3b:42:af: 7d:1a:76:0f:90:83:24:e7:b4:51:8b:d9:e3:5a:b6: bc:b8:67:d5:53:6b:2d:c9:cd:9e:78:2b:19:b1:2a: 74:83:95:6b:5e:8a:05:e7:1c:3e:44:88:4d:ae:2b: 13:49:f1:74:87:9b:07:51:cd:eb:d9:7d:21:c3:6a: 4e:12:43:a4:bc:b5:af:a8:8f:5f:6e:7f:01:cc:91: c2:8a:3c:20:e6:8d:10:19:58:22:5e:98:f7:68:c4: da:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:D9:AD:5C:8B:1C:7D:46:6B:91:A9:91:7A:00:7A:4F:BB:67:0C:2F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6ac404eb-6a32-4ac1-b9d5-391986a6379c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8b01::/48 Signature Algorithm: sha256WithRSAEncryption 0d:9d:33:26:18:42:82:98:98:2d:4c:23:dd:d6:12:ca:f6:f5: 72:fa:c8:7e:46:fa:f0:80:86:4f:52:17:f3:1a:2f:1a:98:26: 8e:87:45:e5:7b:80:fc:23:a6:e0:45:cd:97:a0:f1:8a:90:9c: 5f:55:77:a6:a6:c4:d9:22:d1:6f:c1:44:57:af:84:40:4d:c1: 99:e1:03:6e:08:d3:6f:8d:09:4c:b7:33:1e:93:fc:5c:42:d8: 38:3a:99:8b:6d:8c:05:99:39:b1:1d:df:75:0a:ab:c7:75:94: a3:5b:ba:a7:1d:7d:2d:20:51:f7:31:c1:ac:81:63:aa:98:45: d5:e3:83:46:00:35:43:79:f9:de:88:29:62:69:ef:5f:e0:db: d6:1b:79:a2:13:3a:52:9d:1a:81:49:be:1a:50:4f:4a:28:c3: 35:1d:78:3e:84:42:00:8b:ad:84:4e:63:9d:61:10:e0:f2:b6: a8:b7:35:43:83:31:d1:76:17:d7:aa:47:96:5d:5c:29:6d:5d: 0d:85:80:12:af:3d:10:d6:2f:39:60:2a:06:c0:1d:7a:ca:ec: 21:09:0c:cf:73:a3:2f:aa:4d:33:c1:1a:4b:49:a1:5f:4f:96: aa:b3:36:20:36:5b:bb:66:32:67:3d:c3:c5:4e:41:cc:a7:7c: 52:ed:8a:87 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHLPXLNBfrt3yYd1smsa0LpeNR0gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTMwMDA0NjAxWhcNMjUxMTA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxM2ExZjkwMjJlMzQ4YzQ2Yzc4NTUyM2Y0ZGE1Mjk5YjI3 ZGE2MDBkOTY1MTU4MmYwZTMyMjI3ZmQyZjM0YzQyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCHjG7JAZGeCLM++XxzobA9e4NmjMxR0tg0u/NwBrJpLxAQ ErOua+D+FW+toabbw9MeUlQidKVyoKI6IifDv+Seg1nlS+pW1iOCcCNdltQKY6V3 3MlDa/J9Zo2r0vncuDAd6FBUAP+rDNd31p1UucJJ5KMDtDPkshUrWTYyn3yWEVoy jybPOs9ig8yejKxxRyEB7Rnvhzf1orTmIoZ73HSt4TtCr30adg+QgyTntFGL2eNa try4Z9VTay3JzZ54KxmxKnSDlWteigXnHD5EiE2uKxNJ8XSHmwdRzevZfSHDak4S Q6S8ta+oj19ufwHMkcKKPCDmjRAZWCJemPdoxNrvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUutmtXIscfUZrkamRegB6T7tnDC8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzZhYzQwNGViLTZhMzItNGFjMS1iOWQ1LTM5MTk4NmE2Mzc5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDxiwEwDQYJKoZIhvcNAQELBQADggEBAA2dMyYYQoKYmC1MI93WEsr2 9XL6yH5G+vCAhk9SF/MaLxqYJo6HReV7gPwjpuBFzZeg8YqQnF9Vd6amxNki0W/B RFevhEBNwZnhA24I02+NCUy3Mx6T/FxC2Dg6mYttjAWZObEd33UKq8d1lKNbuqcd fS0gUfcxwayBY6qYRdXjg0YANUN5+d6IKWJp71/g29YbeaITOlKdGoFJvhpQT0oo wzUdeD6EQgCLrYROY51hEODytqi3NUODMdF2F9eqR5ZdXCltXQ2FgBKvPRDWLzlg KgbAHXrK7CEJDM9zoy+qTTPBGktJoV9PlqqzNiA2W7tmMmc9w8VOQcynfFLtioc= -----END CERTIFICATE-----Generated at Mon Oct 20 13:52:19 2025 by rpki-client