$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/701f72a5-fb27-49ca-b3ad-3a60c7c30376.roa File: 701f72a5-fb27-49ca-b3ad-3a60c7c30376.roa (raw, json) Hash identifier: 6FcfYjrJYcc0gQwCMx6ho2+jB7NwACg4X3Jc8Q7GxZ8= Subject key identifier: B1:FB:89:81:71:26:A3:5D:DF:FD:87:B6:47:C8:43:0E:B2:CF:78:7F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 25E4A871552F81C3BE6D3505C352B49918E73492 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/701f72a5-fb27-49ca-b3ad-3a60c7c30376.roa Signing time: Mon 13 Oct 2025 17:55:14 +0000 ROA not before: Mon 13 Oct 2025 17:55:14 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f2:7010::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:e4:a8:71:55:2f:81:c3:be:6d:35:05:c3:52:b4:99:18:e7:34:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 13 17:55:14 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=e8bf5a835999d210c67549ff88b1ff04fcaedb74f1209289167279224e123d97, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:05:b8:01:cc:40:49:49:a4:19:48:0a:3d:b1: b3:d3:82:ba:9c:12:2d:63:97:5a:4f:36:17:59:0b: b9:62:73:59:1d:76:52:81:2d:89:8d:58:4e:12:3b: c7:d7:49:3b:b4:ed:40:37:8c:ff:a5:41:e9:52:d4: 5a:9a:03:8c:57:21:d5:cb:68:3b:e4:4b:0a:2c:5c: cb:81:8a:41:11:ba:54:31:f9:9d:50:98:3d:1a:68: 92:82:4d:d9:b6:64:a9:26:44:b0:32:59:c2:39:2f: 58:1f:a2:24:1f:95:89:d3:b5:e6:d4:4b:de:b9:79: 0f:5e:65:16:63:96:b1:ef:f6:7c:dc:b1:f1:66:20: ff:51:07:84:93:22:a4:e8:f0:74:de:3f:9e:4c:fe: a5:80:5f:53:d6:ee:af:27:a1:87:d5:2b:29:c9:cc: e7:a3:f5:92:39:9c:29:df:a1:d6:a7:20:b8:10:bb: 35:19:6a:57:c4:1a:62:69:da:0d:37:61:2a:03:04: 13:17:10:86:4a:db:2f:95:35:d0:81:66:d5:4b:88: 21:1a:30:7b:75:12:01:0b:89:1a:ac:d5:9d:65:5e: 97:2f:50:ef:9b:28:bd:49:ac:7d:8f:18:98:7c:06: 2e:33:bf:d1:40:f3:2d:a4:a1:9c:fe:26:56:fc:9f: c1:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:FB:89:81:71:26:A3:5D:DF:FD:87:B6:47:C8:43:0E:B2:CF:78:7F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/701f72a5-fb27-49ca-b3ad-3a60c7c30376.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7010::/48 Signature Algorithm: sha256WithRSAEncryption 3d:d0:43:ee:01:a0:5b:75:27:61:c5:93:4c:68:78:27:f0:3d: e4:e8:3a:a5:37:c7:54:01:42:df:12:f9:da:4b:f9:68:ed:41: 63:ad:22:3e:48:ba:01:99:94:7f:82:72:16:82:1f:1c:3f:e5: 71:f1:89:5d:17:b7:a9:e2:c6:7f:73:a1:64:6f:eb:75:ac:23: d3:13:9f:2e:29:39:d6:ea:bc:99:2f:32:ad:d4:4e:55:7e:6a: 1f:6a:f4:f1:ff:d8:a4:ac:2f:44:d7:e1:64:85:55:95:db:7d: d3:15:e5:f7:7d:8a:7b:51:ef:49:4d:ac:07:c9:c7:72:c9:ba: 88:a0:f7:54:bf:2b:1b:e4:f4:2e:20:8b:5b:34:05:20:d0:a1: b9:ca:b1:4a:76:a0:62:f0:5d:28:22:04:09:de:1e:01:27:2d: 9d:2b:72:a8:50:7a:b8:ee:ac:13:13:d2:99:37:38:6e:d6:e7: b9:c5:27:be:b2:bc:fe:f5:7a:1a:f7:9a:64:a5:71:fa:e0:39: 03:da:d9:87:58:56:2b:f4:2e:8e:34:d4:f6:ba:d6:c5:a7:d9: da:ba:f5:53:82:ab:1c:6a:be:b0:a2:6e:9d:49:f2:fe:69:1b: 82:64:2b:d0:8d:3d:2b:f7:c4:48:7c:8a:fa:ab:3a:af:5c:6f: 42:c2:d0:9c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJeSocVUvgcO+bTUFw1K0mRjnNJIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDEzMTc1NTE0WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlOGJmNWE4MzU5OTlkMjEwYzY3NTQ5ZmY4OGIxZmYwNGZj YWVkYjc0ZjEyMDkyODkxNjcyNzkyMjRlMTIzZDk3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6BbgBzEBJSaQZSAo9sbPTgrqcEi1jl1pPNhdZC7lic1kd dlKBLYmNWE4SO8fXSTu07UA3jP+lQelS1FqaA4xXIdXLaDvkSwosXMuBikERulQx +Z1QmD0aaJKCTdm2ZKkmRLAyWcI5L1gfoiQflYnTtebUS965eQ9eZRZjlrHv9nzc sfFmIP9RB4STIqTo8HTeP55M/qWAX1PW7q8noYfVKynJzOej9ZI5nCnfodanILgQ uzUZalfEGmJp2g03YSoDBBMXEIZK2y+VNdCBZtVLiCEaMHt1EgELiRqs1Z1lXpcv UO+bKL1JrH2PGJh8Bi4zv9FA8y2koZz+Jlb8n8H9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUsfuJgXEmo13f/Ye2R8hDDrLPeH8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcwMWY3MmE1LWZiMjctNDljYS1iM2FkLTNhNjBjN2MzMDM3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDycBAwDQYJKoZIhvcNAQELBQADggEBAD3QQ+4BoFt1J2HFk0xoeCfw PeToOqU3x1QBQt8S+dpL+WjtQWOtIj5IugGZlH+CchaCHxw/5XHxiV0Xt6nixn9z oWRv63WsI9MTny4pOdbqvJkvMq3UTlV+ah9q9PH/2KSsL0TX4WSFVZXbfdMV5fd9 intR70lNrAfJx3LJuoig91S/Kxvk9C4gi1s0BSDQobnKsUp2oGLwXSgiBAneHgEn LZ0rcqhQerjurBMT0pk3OG7W57nFJ76yvP71ehr3mmSlcfrgOQPa2YdYViv0Lo40 1Pa61sWn2dq69VOCqxxqvrCibp1J8v5pG4JkK9CNPSv3xEh8ivqrOq9cb0LC0Jw= -----END CERTIFICATE-----Generated at Mon Oct 20 14:02:47 2025 by rpki-client