$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73712e14-51d5-41db-bcf2-73aa504e6eab.roa File: 73712e14-51d5-41db-bcf2-73aa504e6eab.roa (raw, json) Hash identifier: V9RkZ2OB6udFdANeZt12Dve1zJmJ+ishToNba9FfkZM= Subject key identifier: 40:93:7D:C5:58:4C:A9:65:52:E0:43:EF:18:27:DB:15:A3:06:FA:99 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 67E56928E9BE3E0614A20B818A4ABBE04950E62B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73712e14-51d5-41db-bcf2-73aa504e6eab.roa Signing time: Tue 21 Oct 2025 12:50:09 +0000 ROA not before: Tue 21 Oct 2025 12:50:09 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 01 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:e5:69:28:e9:be:3e:06:14:a2:0b:81:8a:4a:bb:e0:49:50:e6:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:09 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=aae187d18579269245dabf7f327c218458a2fd5c40bbe61f6a321de6de996cba, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:09:28:40:86:aa:f4:58:bc:6b:0b:c6:84:f0: 61:f1:fa:7c:05:70:2f:2e:2c:e7:33:00:a2:2a:82: b5:2a:09:dd:6b:24:b9:28:cf:a5:35:02:38:f7:03: 20:7e:8f:29:b3:69:cd:14:c9:31:af:f2:df:4c:33: f1:bd:5d:2e:12:b9:9b:6b:c8:69:92:24:34:bd:5d: 16:16:86:f9:c7:36:1a:ee:67:66:29:0e:db:98:df: 58:99:e8:39:de:a7:67:2b:5a:0b:ec:f0:45:cb:20: c0:3e:07:7b:4d:96:da:fe:45:00:6b:2b:bb:35:d1: 9f:28:89:ec:3b:01:d6:cc:38:6e:f6:c8:20:62:0a: 3a:e6:e1:a5:a9:78:86:bb:e6:53:5e:f4:f9:b9:56: de:89:b1:4d:68:ae:90:19:de:e6:5c:c7:a6:42:3f: 06:e5:bb:ae:00:d4:a3:49:14:e7:10:42:05:fb:c0: f3:20:c0:ce:90:69:1d:6e:6f:9b:10:8b:50:c9:ad: 8a:fb:59:6b:33:34:e4:13:a6:e1:fa:83:3c:39:ee: e5:84:95:72:ad:ed:ae:50:b5:3b:fe:6e:67:8d:db: a3:a8:21:c7:da:a6:ee:bc:ba:88:ee:9a:0f:d0:68: f8:aa:0e:58:3e:93:d9:80:f4:59:72:d8:8b:54:ae: c0:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:93:7D:C5:58:4C:A9:65:52:E0:43:EF:18:27:DB:15:A3:06:FA:99 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73712e14-51d5-41db-bcf2-73aa504e6eab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:80::/48 Signature Algorithm: sha256WithRSAEncryption 5d:88:5c:0f:e1:de:56:e5:2b:c1:6b:ec:ef:0e:dd:e4:7a:ee: 96:55:56:cc:a6:50:ee:b0:78:dc:f4:bb:3a:6e:63:1e:20:11: d7:a7:10:33:10:eb:03:93:20:75:41:cc:07:20:41:c9:d1:7f: a5:a4:50:26:f8:3b:98:f2:f7:a8:af:86:c7:5f:7f:1a:ed:3e: cf:87:3b:7c:92:e3:f0:d9:be:0c:0a:19:81:ad:a1:92:3f:27: c0:d0:d5:29:5f:4d:6e:0d:09:67:f0:35:8a:6e:65:e3:1f:7e: ac:b9:e9:44:a9:be:6c:5f:f4:09:4d:3b:91:54:38:f6:8b:b3: 70:42:17:0d:2f:d3:b6:13:d9:43:b8:37:34:e0:59:38:e6:24: e3:77:42:b4:e9:01:12:34:6d:94:8c:4a:0f:49:91:74:75:66: 8e:cb:86:74:cc:14:ec:fd:d2:33:e6:56:5e:5f:ce:72:64:67: eb:01:fd:0e:17:1a:d2:af:b4:ef:c7:de:24:34:a9:c3:16:0f: 40:0f:19:c8:5b:33:7e:42:72:06:23:c6:c5:67:78:cc:41:1f: 81:b3:88:db:2d:17:fa:cc:2d:6f:b8:a2:a1:46:40:20:8a:01: 54:1d:70:95:48:d6:01:d9:f8:5e:df:7a:ff:c2:ce:34:a6:61: 9b:6f:ab:63 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZ+VpKOm+PgYUoguBikq74ElQ5iswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDA5WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYWUxODdkMTg1NzkyNjkyNDVkYWJmN2YzMjdjMjE4NDU4 YTJmZDVjNDBiYmU2MWY2YTMyMWRlNmRlOTk2Y2JhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjCShAhqr0WLxrC8aE8GHx+nwFcC8uLOczAKIqgrUqCd1r JLkoz6U1Ajj3AyB+jymzac0UyTGv8t9MM/G9XS4SuZtryGmSJDS9XRYWhvnHNhru Z2YpDtuY31iZ6Dnep2crWgvs8EXLIMA+B3tNltr+RQBrK7s10Z8oiew7AdbMOG72 yCBiCjrm4aWpeIa75lNe9Pm5Vt6JsU1orpAZ3uZcx6ZCPwblu64A1KNJFOcQQgX7 wPMgwM6QaR1ub5sQi1DJrYr7WWszNOQTpuH6gzw57uWElXKt7a5QtTv+bmeN26Oo Icfapu68uojumg/QaPiqDlg+k9mA9Fly2ItUrsBJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQJN9xVhMqWVS4EPvGCfbFaMG+pkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzczNzEyZTE0LTUxZDUtNDFkYi1iY2YyLTczYWE1MDRlNmVhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAIAwDQYJKoZIhvcNAQELBQADggEBAF2IXA/h3lblK8Fr7O8O3eR6 7pZVVsymUO6weNz0uzpuYx4gEdenEDMQ6wOTIHVBzAcgQcnRf6WkUCb4O5jy96iv hsdffxrtPs+HO3yS4/DZvgwKGYGtoZI/J8DQ1SlfTW4NCWfwNYpuZeMffqy56USp vmxf9AlNO5FUOPaLs3BCFw0v07YT2UO4NzTgWTjmJON3QrTpARI0bZSMSg9JkXR1 Zo7LhnTMFOz90jPmVl5fznJkZ+sB/Q4XGtKvtO/H3iQ0qcMWD0APGchbM35CcgYj xsVneMxBH4GziNstF/rMLW+4oqFGQCCKAVQdcJVI1gHZ+F7fev/CzjSmYZtvq2M= -----END CERTIFICATE-----Generated at Fri Oct 31 18:03:36 2025 by rpki-client