$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/710c8ea0-f6b4-4fbe-9653-22174e063099.roa File: 710c8ea0-f6b4-4fbe-9653-22174e063099.roa (raw, json) Hash identifier: bhecZ5mFUyX/C9vL6IAdm96HmfgQkmqtr9tBg3ZTRY0= Subject key identifier: DC:44:D4:94:D8:5C:8B:75:27:6D:1C:EE:F9:3D:C6:16:76:45:35:05 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 257E1732018724F2927D5B1078EE3A23683A3E0C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/710c8ea0-f6b4-4fbe-9653-22174e063099.roa Signing time: Tue 30 Sep 2025 00:46:02 +0000 ROA not before: Tue 30 Sep 2025 00:46:02 +0000 ROA not after: Tue 04 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:90::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:7e:17:32:01:87:24:f2:92:7d:5b:10:78:ee:3a:23:68:3a:3e:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 30 00:46:02 2025 GMT Not After : Nov 4 23:59:59 2025 GMT Subject: serialNumber=0c39ce8a732506ebb4ad4a1d711c035bc6b65ff3ff5f598cb13eaebb7947ea51, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c3:b3:18:70:42:3a:9d:6a:c7:9d:d4:b9:2b: 65:c2:50:9f:1f:32:da:f8:51:18:65:21:08:f0:69: a1:1c:62:73:17:36:28:63:ff:6c:0d:ee:b6:13:f1: 30:66:b3:26:a3:53:25:e3:e7:26:5d:5e:df:b2:7e: db:a7:b4:26:13:eb:35:09:f5:a0:61:e8:21:cf:bd: 56:24:b0:5f:88:b8:79:97:20:76:09:d8:0b:f1:3b: 9f:94:66:a4:2e:7d:78:c1:f9:5b:73:e4:81:04:b5: 54:ac:af:9c:b9:7e:65:61:b5:40:92:04:1e:ef:43: 43:8b:09:e3:66:7f:cd:6b:25:84:a9:b8:bf:4b:da: f5:67:0a:83:5f:a0:fc:95:50:bf:e1:e9:fe:b2:6b: 20:7e:5f:c4:5f:ae:05:94:25:c4:a3:de:e6:d3:a6: ca:52:ae:2d:03:ed:6b:a4:60:3e:ba:04:78:75:3f: 55:65:fe:b5:50:f2:5e:86:c7:88:77:3e:33:77:7b: 70:04:39:4c:ff:6a:9b:b9:1a:ef:4a:5a:58:2a:6d: 44:79:8c:aa:98:14:15:10:29:e1:45:b1:06:84:0e: 02:87:f3:c4:ce:5e:fa:61:74:da:58:14:10:a9:99: 47:f7:ea:6b:c2:ea:84:f9:b6:cf:3a:a2:8a:6f:52: 61:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:44:D4:94:D8:5C:8B:75:27:6D:1C:EE:F9:3D:C6:16:76:45:35:05 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/710c8ea0-f6b4-4fbe-9653-22174e063099.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:90::/44 Signature Algorithm: sha256WithRSAEncryption 53:c8:a4:d9:e9:8d:01:70:8a:0b:ee:eb:99:c9:0a:88:79:a2: 8b:82:ef:52:18:2f:18:5c:84:3c:1c:47:f1:ca:63:1e:da:8a: dd:f1:58:e4:44:5c:a2:0b:10:a9:50:1b:4b:12:03:67:21:88: 95:a3:05:47:ae:a9:53:04:7d:f1:d4:31:73:f0:0d:f4:3d:9d: db:d0:74:ba:4e:75:e1:a1:63:0c:a7:6e:e2:93:41:aa:35:50: a0:f7:63:98:5d:f4:ce:01:12:41:39:0f:1d:a9:ae:67:47:a3: 96:b1:e7:9f:0e:43:0a:0e:d3:55:f7:6b:f8:b2:4e:17:67:be: a5:18:36:9e:34:15:e4:42:b9:ee:21:3d:21:bc:41:cd:52:f5: 99:68:c8:24:7e:db:b7:37:d8:94:49:1c:70:23:ed:89:73:dc: 83:85:d2:72:1e:76:21:06:0f:ee:3f:4d:c9:33:08:a5:3c:46: 16:76:b1:e9:68:24:2e:05:db:ad:3a:d4:cb:dc:18:c2:01:a4: 1b:c7:22:ca:d7:a5:cb:62:35:91:38:49:ad:6f:38:7d:41:62: 35:04:1d:ea:85:2f:09:b3:af:12:8f:f2:22:7e:7c:14:66:b3: e3:f0:aa:20:74:1a:f0:aa:aa:31:a2:56:51:d5:47:ef:fa:7f: 5d:e1:b5:03 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJX4XMgGHJPKSfVsQeO46I2g6PgwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTMwMDA0NjAyWhcNMjUxMTA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYzM5Y2U4YTczMjUwNmViYjRhZDRhMWQ3MTFjMDM1YmM2 YjY1ZmYzZmY1ZjU5OGNiMTNlYWViYjc5NDdlYTUxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkw7MYcEI6nWrHndS5K2XCUJ8fMtr4URhlIQjwaaEcYnMX Nihj/2wN7rYT8TBmsyajUyXj5yZdXt+yftuntCYT6zUJ9aBh6CHPvVYksF+IuHmX IHYJ2AvxO5+UZqQufXjB+Vtz5IEEtVSsr5y5fmVhtUCSBB7vQ0OLCeNmf81rJYSp uL9L2vVnCoNfoPyVUL/h6f6yayB+X8RfrgWUJcSj3ubTpspSri0D7WukYD66BHh1 P1Vl/rVQ8l6Gx4h3PjN3e3AEOUz/apu5Gu9KWlgqbUR5jKqYFBUQKeFFsQaEDgKH 88TOXvphdNpYFBCpmUf36mvC6oT5ts86oopvUmHTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3ETUlNhci3UnbRzu+T3GFnZFNQUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcxMGM4ZWEwLWY2YjQtNGZiZS05NjUzLTIyMTc0ZTA2MzA5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAJAwDQYJKoZIhvcNAQELBQADggEBAFPIpNnpjQFwigvu65nJCoh5 oouC71IYLxhchDwcR/HKYx7ait3xWOREXKILEKlQG0sSA2chiJWjBUeuqVMEffHU MXPwDfQ9ndvQdLpOdeGhYwynbuKTQao1UKD3Y5hd9M4BEkE5Dx2prmdHo5ax558O QwoO01X3a/iyThdnvqUYNp40FeRCue4hPSG8Qc1S9ZloyCR+27c32JRJHHAj7Ylz 3IOF0nIediEGD+4/TckzCKU8RhZ2seloJC4F26061MvcGMIBpBvHIsrXpctiNZE4 Sa1vOH1BYjUEHeqFLwmzrxKP8iJ+fBRms+PwqiB0GvCqqjGiVlHVR+/6f13htQM= -----END CERTIFICATE-----Generated at Mon Oct 20 14:02:43 2025 by rpki-client