$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/765dfa6c-35d1-42cf-ba89-eaf88577e4f6.roa File: 765dfa6c-35d1-42cf-ba89-eaf88577e4f6.roa (raw, json) Hash identifier: LBO1rGXApwyYnU4AWksVMhc5XTpOPl+Zs93KyG84viQ= Subject key identifier: B8:59:D5:F5:E2:5D:E4:85:4F:96:68:3E:0D:96:3E:22:92:15:12:91 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2E9A04AEE65BB044D04A1D069D7AF351C314413F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/765dfa6c-35d1-42cf-ba89-eaf88577e4f6.roa Signing time: Fri 26 Sep 2025 18:10:43 +0000 ROA not before: Fri 26 Sep 2025 18:10:43 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:9a:04:ae:e6:5b:b0:44:d0:4a:1d:06:9d:7a:f3:51:c3:14:41:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:10:43 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=f19606ea004377e1502234693a92b8a8cbc7c636e5c505164a1f71603400401b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:64:34:85:f9:e1:28:6e:ed:9e:a2:00:48:db: ea:c8:0f:72:d5:bc:e5:45:1c:d9:1b:52:e7:fb:09: 6a:d9:eb:58:7a:4f:25:ce:a6:a9:f4:dd:66:ec:5e: 7e:88:4c:f1:0b:7f:4e:2a:72:3a:ad:1b:6f:57:1c: df:4d:29:7b:fd:1c:23:c8:fa:54:68:d6:1f:59:3f: 89:22:de:98:38:b6:29:f8:0e:37:31:a2:07:0b:06: d9:29:2e:a5:9c:44:97:ea:0b:57:1a:d1:b2:36:cc: 8e:59:ad:bc:28:cb:97:d0:18:43:5a:a0:15:5e:8a: b0:84:2e:ca:d4:e2:59:1f:a3:33:e1:b8:9d:1b:09: 04:c6:4b:0d:69:aa:51:61:30:ad:e8:0b:6d:0d:b1: fb:e7:17:c1:a8:5e:28:30:ed:12:2c:f9:54:6b:5d: b8:53:c7:53:5d:a9:30:54:78:8a:43:dd:2b:49:b0: 82:8f:f1:ed:76:81:9c:8f:23:b8:ae:5d:89:14:39: 30:34:76:92:38:26:9f:25:b3:23:8a:53:ca:dc:ca: 16:e4:50:9a:05:d8:54:33:81:35:2b:1c:8b:41:54: a8:93:e1:61:5b:c2:f0:a2:53:fa:49:34:af:52:d5: 50:49:86:6f:d1:be:04:e5:4c:be:8c:7e:f9:42:1a: 07:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:59:D5:F5:E2:5D:E4:85:4F:96:68:3E:0D:96:3E:22:92:15:12:91 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/765dfa6c-35d1-42cf-ba89-eaf88577e4f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:8::/48 Signature Algorithm: sha256WithRSAEncryption 52:a3:17:e9:a6:b2:59:62:16:7f:3a:04:05:61:0c:28:2a:8a: 0f:13:bf:6b:35:59:d9:41:bd:a4:0b:63:9a:49:9f:ed:ee:f5: fb:be:8f:44:08:1c:29:1e:9b:88:36:14:d9:22:50:38:6e:cd: b8:f0:39:9f:d3:25:64:dd:ca:b3:77:9c:aa:4d:25:0e:66:4c: 0a:28:79:33:67:ca:f9:88:e4:75:1c:bb:ab:cd:ca:e4:2a:9c: c7:07:6a:20:47:29:69:73:bf:da:b5:95:e6:5b:10:f3:9a:c3: 03:61:a3:0f:50:47:67:68:f0:82:82:fd:92:ff:de:3b:d3:a4: 07:b7:f4:0f:ce:85:1c:51:a5:7c:cb:35:c5:47:c3:3b:da:b3: fa:f1:9d:ea:b3:53:a2:c4:b9:7a:85:66:f1:2c:a8:8c:56:ee: 81:7f:51:77:13:95:83:cd:ce:51:71:8a:30:3a:dc:36:e3:58: cc:44:17:47:28:79:8b:da:91:ae:b0:d7:66:b1:12:f9:a5:2e: f9:5c:37:16:ef:71:96:4d:c3:ac:83:ed:52:45:1d:82:d1:c7: 16:7c:18:c4:47:3c:7e:c7:f1:e2:95:fd:93:7d:91:52:5d:fc: 97:cb:6b:9d:cf:06:22:98:e2:91:5d:a1:06:be:21:b2:91:bb: 95:78:c5:51 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULpoEruZbsETQSh0GnXrzUcMUQT8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgxMDQzWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMTk2MDZlYTAwNDM3N2UxNTAyMjM0NjkzYTkyYjhhOGNi YzdjNjM2ZTVjNTA1MTY0YTFmNzE2MDM0MDA0MDFiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnZDSF+eEobu2eogBI2+rID3LVvOVFHNkbUuf7CWrZ61h6 TyXOpqn03WbsXn6ITPELf04qcjqtG29XHN9NKXv9HCPI+lRo1h9ZP4ki3pg4tin4 DjcxogcLBtkpLqWcRJfqC1ca0bI2zI5Zrbwoy5fQGENaoBVeirCELsrU4lkfozPh uJ0bCQTGSw1pqlFhMK3oC20NsfvnF8GoXigw7RIs+VRrXbhTx1NdqTBUeIpD3StJ sIKP8e12gZyPI7iuXYkUOTA0dpI4Jp8lsyOKU8rcyhbkUJoF2FQzgTUrHItBVKiT 4WFbwvCiU/pJNK9S1VBJhm/RvgTlTL6MfvlCGge3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUuFnV9eJd5IVPlmg+DZY+IpIVEpEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzc2NWRmYTZjLTM1ZDEtNDJjZi1iYTg5LWVhZjg4NTc3ZTRmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAgwDQYJKoZIhvcNAQELBQADggEBAFKjF+mmslliFn86BAVhDCgq ig8Tv2s1WdlBvaQLY5pJn+3u9fu+j0QIHCkem4g2FNkiUDhuzbjwOZ/TJWTdyrN3 nKpNJQ5mTAooeTNnyvmI5HUcu6vNyuQqnMcHaiBHKWlzv9q1leZbEPOawwNhow9Q R2do8IKC/ZL/3jvTpAe39A/OhRxRpXzLNcVHwzvas/rxneqzU6LEuXqFZvEsqIxW 7oF/UXcTlYPNzlFxijA63DbjWMxEF0coeYvaka6w12axEvmlLvlcNxbvcZZNw6yD 7VJFHYLRxxZ8GMRHPH7H8eKV/ZN9kVJd/JfLa53PBiKY4pFdoQa+IbKRu5V4xVE= -----END CERTIFICATE-----Generated at Mon Oct 20 14:02:46 2025 by rpki-client