$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8979840e-82a9-441b-924a-93b9c7ea006b.roa File: 8979840e-82a9-441b-924a-93b9c7ea006b.roa (raw, json) Hash identifier: BepbT8tt7RALQ09WUEC8W9ziCX5WIr5exsni0FoJLj0= Subject key identifier: A1:5A:49:9E:59:C5:D0:80:67:4A:DE:30:0B:67:90:C5:76:69:A7:A5 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3B862CC6E35AE759AE639218E640A08498084B52 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8979840e-82a9-441b-924a-93b9c7ea006b.roa Signing time: Fri 26 Sep 2025 18:00:15 +0000 ROA not before: Fri 26 Sep 2025 18:00:15 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:86:2c:c6:e3:5a:e7:59:ae:63:92:18:e6:40:a0:84:98:08:4b:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:00:15 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=347f99f06801f4d5f4cd281d7eae25388dac82385732519ff57b6698afa77de8, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:6d:2b:e2:47:c3:48:c7:ab:a7:b7:b6:c9:50: 05:3e:07:7e:e3:7f:da:c1:39:93:b0:40:c2:89:00: 50:b0:ef:99:fa:ea:ba:b0:32:c6:d8:3d:4f:39:6b: ad:7b:cc:64:b0:f6:c3:04:c3:75:ef:f3:fb:f9:c9: 99:24:42:b5:44:17:6e:89:e7:73:b0:ca:a4:e0:33: 6c:1c:6c:b5:6f:1e:86:17:dd:d6:3e:6d:ec:58:f6: 4f:9d:5b:e7:8f:69:f4:c3:bc:3d:35:db:cf:0b:c5: b2:4f:8a:42:1a:bd:c3:3c:02:94:2c:ca:40:a9:2a: 3d:51:37:0e:82:aa:89:ab:23:b8:be:82:31:be:d7: e7:f2:32:50:0e:25:ba:62:c4:8b:c7:87:38:a9:8b: 70:d4:e7:05:54:55:87:64:c6:bf:3e:dd:c8:d5:a2: 8d:65:00:a6:53:3a:74:24:19:d9:87:81:6b:b1:3f: 9e:c3:30:10:66:d3:49:5b:c2:cf:7d:a7:b9:7b:ec: 57:57:1e:d3:e3:18:65:70:42:18:5e:f8:bd:e1:6d: b8:a2:93:69:7e:8f:69:5d:11:03:5e:35:04:a8:26: 3f:e5:a1:38:20:1e:e6:da:f1:4b:d7:7a:e9:4a:c6: 1d:c1:51:85:47:76:8a:a1:8a:82:d3:b6:5d:7d:07: d6:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:5A:49:9E:59:C5:D0:80:67:4A:DE:30:0B:67:90:C5:76:69:A7:A5 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8979840e-82a9-441b-924a-93b9c7ea006b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:2::/48 Signature Algorithm: sha256WithRSAEncryption 1c:f4:04:cb:e0:53:e1:92:9a:ef:c3:f6:71:f8:37:37:5c:31: e3:5a:25:b2:40:c8:b0:92:a4:4f:06:0e:93:43:8e:ee:48:44: 89:98:d7:bc:4d:dd:7b:fc:1b:18:61:e7:49:1c:17:64:eb:44: 84:5f:74:c3:d4:83:c4:94:02:fd:94:66:81:15:04:79:e4:1b: 8b:a6:9c:2f:c6:2f:f9:01:ba:cb:c5:32:aa:a4:c0:09:c7:de: f9:8c:32:3c:95:7a:61:14:d9:13:90:6e:cf:96:91:3c:2e:8c: 92:ba:76:4f:50:d1:ce:9d:53:ae:00:6e:4f:68:fd:62:cd:f5: 29:cb:ed:29:1f:ac:e1:a7:6f:81:20:6c:ff:b1:94:ee:cf:e5: a1:b8:25:80:a8:c8:e3:7b:f4:ee:16:43:5f:4c:36:59:1d:23: f0:3c:09:13:c3:87:90:71:3c:10:1f:c6:1d:18:b8:f9:04:67: 3c:30:42:1c:85:8e:2b:64:ee:4b:47:3c:89:6f:d4:21:31:6e: ad:82:77:ec:48:48:76:3d:8b:27:d0:09:65:b0:ef:4c:e3:e2: 66:55:7a:d6:0c:2e:84:89:b3:c0:c7:f9:e9:46:92:a5:90:aa: 3c:6d:0f:b8:71:37:e9:06:67:a0:fd:fa:09:9a:7e:4e:39:ff: e2:64:fe:54 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUO4YsxuNa51muY5IY5kCghJgIS1IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgwMDE1WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNDdmOTlmMDY4MDFmNGQ1ZjRjZDI4MWQ3ZWFlMjUzODhk YWM4MjM4NTczMjUxOWZmNTdiNjY5OGFmYTc3ZGU4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdbSviR8NIx6unt7bJUAU+B37jf9rBOZOwQMKJAFCw75n6 6rqwMsbYPU85a617zGSw9sMEw3Xv8/v5yZkkQrVEF26J53OwyqTgM2wcbLVvHoYX 3dY+bexY9k+dW+ePafTDvD01288LxbJPikIavcM8ApQsykCpKj1RNw6CqomrI7i+ gjG+1+fyMlAOJbpixIvHhzipi3DU5wVUVYdkxr8+3cjVoo1lAKZTOnQkGdmHgWux P57DMBBm00lbws99p7l77FdXHtPjGGVwQhhe+L3hbbiik2l+j2ldEQNeNQSoJj/l oTggHuba8UvXeulKxh3BUYVHdoqhioLTtl19B9a5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUoVpJnlnF0IBnSt4wC2eQxXZpp6UwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzg5Nzk4NDBlLTgyYTktNDQxYi05MjRhLTkzYjljN2VhMDA2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAIwDQYJKoZIhvcNAQELBQADggEBABz0BMvgU+GSmu/D9nH4Nzdc MeNaJbJAyLCSpE8GDpNDju5IRImY17xN3Xv8Gxhh50kcF2TrRIRfdMPUg8SUAv2U ZoEVBHnkG4umnC/GL/kBusvFMqqkwAnH3vmMMjyVemEU2ROQbs+WkTwujJK6dk9Q 0c6dU64Abk9o/WLN9SnL7SkfrOGnb4EgbP+xlO7P5aG4JYCoyON79O4WQ19MNlkd I/A8CRPDh5BxPBAfxh0YuPkEZzwwQhyFjitk7ktHPIlv1CExbq2Cd+xISHY9iyfQ CWWw70zj4mZVetYMLoSJs8DH+elGkqWQqjxtD7hxN+kGZ6D9+gmafk45/+Jk/lQ= -----END CERTIFICATE-----Generated at Mon Oct 20 13:53:09 2025 by rpki-client