$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8472ecf5-5d3d-4e46-b699-e29644b42fa4.roa File: 8472ecf5-5d3d-4e46-b699-e29644b42fa4.roa (raw, json) Hash identifier: dO2GxRZinDiZ+vDtVqT5Gik2qJOiu/TO0+OJgJNODp4= Subject key identifier: 2E:FD:4E:D2:11:CB:E6:89:81:6A:D6:07:BF:1B:29:FE:BE:C9:E9:21 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 720D41E392ED409E495C7A90A952C4C510429F20 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8472ecf5-5d3d-4e46-b699-e29644b42fa4.roa Signing time: Fri 26 Sep 2025 18:00:50 +0000 ROA not before: Fri 26 Sep 2025 18:00:50 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:0d:41:e3:92:ed:40:9e:49:5c:7a:90:a9:52:c4:c5:10:42:9f:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:00:50 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=492905821b8f922107869a94ed9e3cb6c198d3a30260f00038dce624a551a04c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ad:59:d4:80:98:a6:c5:64:9f:c9:c4:36:75: 49:99:4a:d5:e3:12:00:bd:3b:54:69:fc:d3:0f:51: ee:04:11:69:49:8c:37:a9:aa:b9:d1:c0:ff:ed:b5: 86:93:ec:84:da:14:5e:e6:4d:0d:bd:a7:d4:e4:46: 0e:16:a3:7e:5e:8b:59:22:19:b0:a8:82:db:23:91: d1:e4:d4:58:e3:1a:19:7a:e3:d0:ba:b8:9d:17:3e: 79:b6:56:50:98:e0:18:90:03:08:29:9f:d2:a9:e8: fd:34:b3:32:e6:e8:7b:5f:c8:78:5e:91:86:dd:7f: dd:17:64:8c:f2:e5:2e:6f:35:ad:dd:d9:a3:38:a3: 44:1f:d1:d7:4d:af:98:cc:d3:2e:96:f5:82:60:8f: ed:b2:6d:bc:1a:f8:e6:e4:a9:29:7f:f8:3c:e0:4f: 9d:ce:6c:ef:f9:89:f8:4f:47:d7:0f:28:d5:76:94: f8:a3:7a:65:b8:78:d9:bf:e9:bb:36:50:78:ca:3a: 01:ef:7f:b3:5b:ef:17:27:b0:3f:ac:80:98:32:cc: 91:ce:7e:c7:a2:d5:0b:bc:f4:ce:0f:1e:f4:c8:cb: d7:b1:6f:8f:2a:7f:bf:87:4a:ec:0e:c8:5e:f7:ae: e7:bf:f4:a0:4d:45:63:32:57:47:58:09:1e:ba:f5: 85:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:FD:4E:D2:11:CB:E6:89:81:6A:D6:07:BF:1B:29:FE:BE:C9:E9:21 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8472ecf5-5d3d-4e46-b699-e29644b42fa4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6::/48 Signature Algorithm: sha256WithRSAEncryption 60:ac:2d:c0:5b:20:65:e9:52:3d:10:ec:6a:46:2d:4b:75:5a: 63:1a:ba:5f:84:9b:6b:dd:a5:8f:c4:30:35:d9:0b:6d:80:9e: d9:c9:c7:5c:6f:2d:84:6f:4b:e5:0d:1a:e6:33:4c:fe:4c:62: 3f:92:8a:8b:d7:bc:01:6a:29:f3:74:47:73:18:52:5e:3c:7a: 2b:eb:fd:82:da:55:e0:74:ee:93:ab:bc:8e:e7:5e:72:92:da: 20:96:a2:85:7c:d4:37:fc:1b:55:36:9a:63:91:83:cd:77:24: 2a:8a:3b:9c:a7:27:2a:8b:82:4c:e6:88:b8:0f:63:9a:83:1c: a4:7c:de:da:21:01:26:84:99:74:1c:87:a6:20:71:87:57:fe: 0b:35:a6:a9:04:7a:47:22:02:57:2a:1c:60:fb:cc:ef:50:96: a7:40:ac:2d:b4:d0:23:8b:2a:05:10:13:40:7c:c9:91:56:b1: 93:b6:19:79:56:7b:4f:c7:ac:fa:c3:f1:13:45:38:54:58:f4: 46:cd:82:00:de:7c:3f:d7:51:35:43:8b:10:fd:7a:01:ea:5c: ec:2e:df:6b:ce:10:f2:e8:f4:70:b9:5d:4c:b3:c0:ca:8f:8e: 95:76:dc:41:94:f0:05:f8:32:b9:07:35:1c:66:39:01:ee:d6: 17:ae:a8:31 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcg1B45LtQJ5JXHqQqVLExRBCnyAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgwMDUwWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0OTI5MDU4MjFiOGY5MjIxMDc4NjlhOTRlZDllM2NiNmMx OThkM2EzMDI2MGYwMDAzOGRjZTYyNGE1NTFhMDRjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRrVnUgJimxWSfycQ2dUmZStXjEgC9O1Rp/NMPUe4EEWlJ jDepqrnRwP/ttYaT7ITaFF7mTQ29p9TkRg4Wo35ei1kiGbCogtsjkdHk1FjjGhl6 49C6uJ0XPnm2VlCY4BiQAwgpn9Kp6P00szLm6HtfyHhekYbdf90XZIzy5S5vNa3d 2aM4o0Qf0ddNr5jM0y6W9YJgj+2ybbwa+ObkqSl/+DzgT53ObO/5ifhPR9cPKNV2 lPijemW4eNm/6bs2UHjKOgHvf7Nb7xcnsD+sgJgyzJHOfsei1Qu89M4PHvTIy9ex b48qf7+HSuwOyF73rue/9KBNRWMyV0dYCR669YWBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQULv1O0hHL5omBatYHvxsp/r7J6SEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzg0NzJlY2Y1LTVkM2QtNGU0Ni1iNjk5LWUyOTY0NGI0MmZhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAYwDQYJKoZIhvcNAQELBQADggEBAGCsLcBbIGXpUj0Q7GpGLUt1 WmMaul+Em2vdpY/EMDXZC22AntnJx1xvLYRvS+UNGuYzTP5MYj+SiovXvAFqKfN0 R3MYUl48eivr/YLaVeB07pOrvI7nXnKS2iCWooV81Df8G1U2mmORg813JCqKO5yn JyqLgkzmiLgPY5qDHKR83tohASaEmXQch6YgcYdX/gs1pqkEekciAlcqHGD7zO9Q lqdArC200COLKgUQE0B8yZFWsZO2GXlWe0/HrPrD8RNFOFRY9EbNggDefD/XUTVD ixD9egHqXOwu32vOEPLo9HC5XUyzwMqPjpV23EGU8AX4MrkHNRxmOQHu1heuqDE= -----END CERTIFICATE-----Generated at Mon Oct 20 13:53:10 2025 by rpki-client