$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa File: 7fef00dc-1a9a-497c-b857-792da38e532f.roa (raw, json) Hash identifier: fV9l0p7fdOpO8ClI+90AioO5aVH86e/vz8u4d+hMJU4= Subject key identifier: AC:73:04:EB:F4:3D:22:1F:D9:7A:F1:E5:F4:F5:C7:4E:2D:EB:62:74 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 36CF51480A5427EC731A5388FE8F8DA16A88613E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa Signing time: Sat 27 Sep 2025 00:52:39 +0000 ROA not before: Sat 27 Sep 2025 00:52:39 +0000 ROA not after: Sat 01 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:cf:51:48:0a:54:27:ec:73:1a:53:88:fe:8f:8d:a1:6a:88:61:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 27 00:52:39 2025 GMT Not After : Nov 1 23:59:59 2025 GMT Subject: serialNumber=61d5022d719c52ac6dcd5b285c6ac301ba7de37c6873bb64fa932a2f2b30cdd9, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:bb:a7:08:a4:78:b1:4c:77:08:8f:7f:dd:6e: ac:c9:ba:f5:e4:b1:08:b6:af:f2:a1:fd:08:66:7b: f4:5f:a2:41:dc:f0:4e:5e:b6:e9:13:f6:ed:af:26: f0:51:ba:99:86:34:fd:6d:d5:1d:34:2a:c5:8f:4c: 7e:a1:5f:dc:f0:cf:54:0b:7f:ed:2d:60:9a:2d:90: fe:c8:98:7a:b6:ed:73:ca:3d:17:ad:c8:e0:89:b1: bd:d6:d8:42:d4:ed:63:b0:ad:4a:ed:5e:56:7e:a6: d8:21:de:19:ab:ac:13:75:cc:1e:3d:ed:ed:9e:00: ab:bc:cb:75:eb:02:02:8a:4e:16:b4:18:ec:20:13: 26:f0:8c:c2:c1:c1:cd:9a:17:a5:dc:01:4d:ac:5c: 06:01:97:6b:e1:f7:e1:95:76:79:21:7a:e0:30:92: a8:b9:1f:d7:94:36:ec:1a:10:76:f2:8b:8f:bd:7a: 0d:b6:a2:55:37:fc:c7:0e:82:00:ae:25:4c:95:eb: 47:46:d7:4b:16:69:42:a2:31:30:ca:2e:17:8d:10: 26:e3:33:bc:52:10:f8:83:12:d0:51:92:5b:f8:10: 0e:51:03:41:6d:9b:5c:a2:23:2b:2d:b8:12:b6:8c: f9:42:12:d6:52:40:39:b6:36:6e:a7:41:e5:aa:fa: 6e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:73:04:EB:F4:3D:22:1F:D9:7A:F1:E5:F4:F5:C7:4E:2D:EB:62:74 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5500::/48 Signature Algorithm: sha256WithRSAEncryption 6d:e1:24:b4:d1:6b:20:7a:3e:01:42:f0:75:87:ec:3a:09:82: e8:4d:ae:54:09:cc:d7:ca:38:46:d5:72:d3:56:25:2d:4e:32: b5:f3:2a:ae:6f:a3:fe:cd:c5:e9:c8:0b:62:0a:87:2a:04:a5: e1:7b:ca:8b:7c:16:2a:ca:0b:ee:44:84:2c:ea:48:4b:a7:04: 7a:38:76:e9:c5:3e:59:c5:0d:9c:71:cd:2f:9f:91:2d:cd:bd: 2e:98:e8:46:37:d5:00:66:f1:1d:5d:b3:00:be:2d:f7:73:42: 1f:55:2a:3c:eb:be:cd:8d:ea:5f:26:43:cb:a6:9a:95:72:89: 1b:11:bd:87:56:3e:6d:b4:39:83:76:34:a4:e6:5f:9e:ea:c1: 8f:62:f6:2f:6a:5e:7a:09:36:0f:8a:4d:37:47:ab:c6:41:f0: 82:86:89:97:34:23:b1:53:c7:5c:a0:4b:2d:11:f8:75:a4:46: db:3e:46:7f:fd:fc:5a:38:88:7d:0f:19:c5:03:2c:27:53:e1: bf:41:74:87:dd:1d:f6:2c:eb:81:5a:de:dc:c3:c9:f7:f7:3e: 4b:37:ef:fb:1c:b2:26:ae:4c:a8:88:f0:f3:40:77:f1:0c:06: 8e:a2:74:f2:7f:74:1f:c6:c9:6f:d3:9e:25:44:7e:e4:b0:6f: e6:00:63:68 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNs9RSApUJ+xzGlOI/o+NoWqIYT4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI3MDA1MjM5WhcNMjUxMTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MWQ1MDIyZDcxOWM1MmFjNmRjZDViMjg1YzZhYzMwMWJh N2RlMzdjNjg3M2JiNjRmYTkzMmEyZjJiMzBjZGQ5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbu6cIpHixTHcIj3/dbqzJuvXksQi2r/Kh/Qhme/RfokHc 8E5etukT9u2vJvBRupmGNP1t1R00KsWPTH6hX9zwz1QLf+0tYJotkP7ImHq27XPK PRetyOCJsb3W2ELU7WOwrUrtXlZ+ptgh3hmrrBN1zB497e2eAKu8y3XrAgKKTha0 GOwgEybwjMLBwc2aF6XcAU2sXAYBl2vh9+GVdnkheuAwkqi5H9eUNuwaEHbyi4+9 eg22olU3/McOggCuJUyV60dG10sWaUKiMTDKLheNECbjM7xSEPiDEtBRklv4EA5R A0Ftm1yiIystuBK2jPlCEtZSQDm2Nm6nQeWq+m5tAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUrHME6/Q9Ih/ZevHl9PXHTi3rYnQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzdmZWYwMGRjLTFhOWEtNDk3Yy1iODU3LTc5MmRhMzhlNTMyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQAwDQYJKoZIhvcNAQELBQADggEBAG3hJLTRayB6PgFC8HWH7DoJ guhNrlQJzNfKOEbVctNWJS1OMrXzKq5vo/7NxenIC2IKhyoEpeF7yot8FirKC+5E hCzqSEunBHo4dunFPlnFDZxxzS+fkS3NvS6Y6EY31QBm8R1dswC+LfdzQh9VKjzr vs2N6l8mQ8ummpVyiRsRvYdWPm20OYN2NKTmX57qwY9i9i9qXnoJNg+KTTdHq8ZB 8IKGiZc0I7FTx1ygSy0R+HWkRts+Rn/9/Fo4iH0PGcUDLCdT4b9BdIfdHfYs64Fa 3tzDyff3Pks37/scsiauTKiI8PNAd/EMBo6idPJ/dB/GyW/TniVEfuSwb+YAY2g= -----END CERTIFICATE-----Generated at Mon Oct 20 13:52:29 2025 by rpki-client