$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7dddd7bf-5dfc-4a20-9b8d-dffc023c9850.roa File: 7dddd7bf-5dfc-4a20-9b8d-dffc023c9850.roa (raw, json) Hash identifier: tOyPLn2EOPHUmniZKpnsBjuU4qwaKpH8voNCLJ2Vt6g= Subject key identifier: 6F:3F:54:29:41:83:E7:9B:53:40:55:15:66:0E:80:24:27:6B:D7:9A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4240A81B5B96A6A6E6CA2502056801696EAD580B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7dddd7bf-5dfc-4a20-9b8d-dffc023c9850.roa Signing time: Fri 10 Oct 2025 17:04:21 +0000 ROA not before: Fri 10 Oct 2025 17:04:21 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f010::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:40:a8:1b:5b:96:a6:a6:e6:ca:25:02:05:68:01:69:6e:ad:58:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 10 17:04:21 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=a701d3d8417cf2ef3abc3d06bd8b167e82f07bec0004e8b1708c21186d87fcb8, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e3:c2:de:e6:9e:ee:4a:a5:5b:94:52:9d:aa: 67:e8:4c:77:21:da:03:5a:6d:a1:f3:ed:ec:93:98: 53:1c:fa:89:c7:32:6e:22:6f:f4:8c:b6:94:d5:05: f2:a1:37:34:60:36:1c:33:b1:7d:26:fa:90:79:36: db:e9:3b:19:b3:a7:76:d9:84:94:82:38:06:f6:4b: 15:cb:a8:9d:fa:e0:21:54:b4:f3:62:9b:57:3d:b9: 6d:43:1d:b2:62:53:b3:27:51:31:f3:e6:6a:17:f3: 86:2b:9e:7f:21:0f:6c:d3:e3:d8:b5:6b:ae:f4:2d: a1:e0:ff:4e:0d:da:8b:ca:19:3f:ce:c0:c3:3e:7e: 21:50:b8:ab:4b:93:85:c8:c7:16:85:af:39:50:cd: bf:b3:c1:f5:3f:0f:c3:e7:95:95:d1:5a:95:88:4d: d6:dd:b6:e0:02:a9:61:5b:45:a2:f1:09:24:8a:e7: 14:45:8e:be:97:8e:5e:8c:c3:3d:bd:bb:50:c0:a4: 73:bf:54:b5:7f:df:7b:bb:0e:f9:e4:fc:ec:59:2b: 74:1e:f6:c2:73:58:72:58:d8:f1:b7:92:54:55:ef: e1:14:67:26:fa:b0:5a:67:39:c3:9d:03:b5:24:1e: a7:e7:ad:29:10:9c:dc:24:ce:5a:7d:2a:9f:3f:79: b2:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:3F:54:29:41:83:E7:9B:53:40:55:15:66:0E:80:24:27:6B:D7:9A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7dddd7bf-5dfc-4a20-9b8d-dffc023c9850.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f010::/44 Signature Algorithm: sha256WithRSAEncryption 90:b6:66:96:41:76:c0:75:29:52:9b:78:4b:12:bd:53:e4:f3: df:36:47:88:e9:f0:b3:46:65:06:3a:2e:66:6d:f5:58:1e:07: 67:da:a5:0a:9b:3e:f9:a6:73:d6:52:86:ed:64:b8:25:a3:0c: 29:27:68:05:bd:9a:ba:42:01:38:98:d5:8f:f5:3b:1c:b6:3a: 90:e4:2b:2a:f6:28:7d:f8:20:dc:2a:4d:7c:df:8f:33:58:cd: b9:a7:d8:9b:b2:1c:7a:e2:5e:43:2e:29:f7:53:0c:1b:2f:a9: ef:3b:3b:aa:82:ef:03:92:5b:a6:7f:1c:64:22:c7:de:f7:6a: db:5d:1f:4c:c8:95:7c:ce:72:66:77:cd:49:b4:45:7a:8e:7a: c1:46:9d:59:25:67:63:d3:25:de:3e:7e:ab:b8:5a:be:5b:23: 4c:50:7f:44:b9:3e:c5:f7:5f:e0:7c:a2:7e:02:20:27:9b:47: aa:0c:d3:1f:98:5f:63:f2:94:d4:e6:ad:43:bf:f6:10:35:22: ec:c6:32:ae:61:fb:ec:e1:da:cf:0b:fb:d9:e1:39:52:c5:d7: ec:8a:3d:42:11:32:db:f0:c7:18:ac:2f:6f:34:19:78:49:aa: 9c:dc:e6:a5:97:63:6e:1b:de:af:ec:01:6a:86:02:53:d2:3f: a9:3e:51:ab -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQkCoG1uWpqbmyiUCBWgBaW6tWAswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDEwMTcwNDIxWhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNzAxZDNkODQxN2NmMmVmM2FiYzNkMDZiZDhiMTY3ZTgy ZjA3YmVjMDAwNGU4YjE3MDhjMjExODZkODdmY2I4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC448Le5p7uSqVblFKdqmfoTHch2gNabaHz7eyTmFMc+onH Mm4ib/SMtpTVBfKhNzRgNhwzsX0m+pB5NtvpOxmzp3bZhJSCOAb2SxXLqJ364CFU tPNim1c9uW1DHbJiU7MnUTHz5moX84Yrnn8hD2zT49i1a670LaHg/04N2ovKGT/O wMM+fiFQuKtLk4XIxxaFrzlQzb+zwfU/D8PnlZXRWpWITdbdtuACqWFbRaLxCSSK 5xRFjr6Xjl6Mwz29u1DApHO/VLV/33u7Dvnk/OxZK3Qe9sJzWHJY2PG3klRV7+EU Zyb6sFpnOcOdA7UkHqfnrSkQnNwkzlp9Kp8/ebIDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbz9UKUGD55tTQFUVZg6AJCdr15owHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzdkZGRkN2JmLTVkZmMtNGEyMC05YjhkLWRmZmMwMjNjOTg1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78BAwDQYJKoZIhvcNAQELBQADggEBAJC2ZpZBdsB1KVKbeEsSvVPk 8982R4jp8LNGZQY6LmZt9VgeB2fapQqbPvmmc9ZShu1kuCWjDCknaAW9mrpCATiY 1Y/1Oxy2OpDkKyr2KH34INwqTXzfjzNYzbmn2JuyHHriXkMuKfdTDBsvqe87O6qC 7wOSW6Z/HGQix973attdH0zIlXzOcmZ3zUm0RXqOesFGnVklZ2PTJd4+fqu4Wr5b I0xQf0S5PsX3X+B8on4CICebR6oM0x+YX2PylNTmrUO/9hA1IuzGMq5h++zh2s8L +9nhOVLF1+yKPUIRMtvwxxisL280GXhJqpzc5qWXY24b3q/sAWqGAlPSP6k+Uas= -----END CERTIFICATE-----Generated at Mon Oct 20 13:53:13 2025 by rpki-client