$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8c0e65e5-4314-4c25-95ea-bd728ba417ff.roa File: 8c0e65e5-4314-4c25-95ea-bd728ba417ff.roa (raw, json) Hash identifier: ZXBiGr56AHAJsWtXcUR79677gJuQY/8lSmHYkcy8WOw= Subject key identifier: 3C:7E:77:26:00:BB:7D:46:FC:EC:6D:1B:9C:E0:C4:09:58:3E:61:60 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 75E8109DD3DBC45B9D830B0EFC635500B87A3EAC Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8c0e65e5-4314-4c25-95ea-bd728ba417ff.roa Signing time: Mon 06 Oct 2025 17:40:10 +0000 ROA not before: Mon 06 Oct 2025 17:40:10 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f020::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:e8:10:9d:d3:db:c4:5b:9d:83:0b:0e:fc:63:55:00:b8:7a:3e:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 6 17:40:10 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=8ab66ed91c7175ca92414568269be5200017ccb1e1d26a2c455e15e561f1ad52, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d1:3a:3f:2c:d0:76:77:4a:f9:db:8a:80:0d: 4e:b1:a7:7a:69:93:4c:28:4f:56:c7:76:98:17:25: 0c:d6:58:8f:13:6d:31:34:ef:25:aa:90:44:2f:81: c1:dc:d4:d4:c7:29:11:39:60:a7:7d:b7:d0:8a:91: a6:27:fa:1f:d4:fe:42:10:10:da:ee:f1:74:fc:7c: 99:b8:06:00:34:23:f5:40:a9:7f:07:a0:98:b8:b5: 4e:1f:30:ac:f5:5e:6d:34:f8:2a:46:7b:cb:6d:10: c2:81:f2:d9:e2:e9:da:f2:63:39:0c:d4:a5:7a:d8: 06:1c:26:09:17:84:6a:24:14:53:57:02:0d:d4:76: c5:9c:f8:2b:9a:be:f4:94:d9:0e:c8:e8:35:55:57: 7e:c8:70:83:04:9d:08:3f:e3:43:d1:fe:fb:8b:70: 8b:7d:44:12:06:13:19:9f:9d:31:79:34:b8:1a:1e: e6:5e:91:81:66:db:26:62:6c:aa:7a:ca:09:38:e5: 8d:e7:7a:d1:dc:45:66:65:18:7a:52:45:74:ad:71: 15:92:1a:9e:f5:20:45:e5:a4:d0:28:a9:5f:cd:68: dc:b0:c8:be:7e:7f:1a:d6:46:1a:08:2c:e4:29:95: 6c:88:61:82:ee:e1:d0:fa:51:92:c3:84:55:c9:f7: 0a:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:7E:77:26:00:BB:7D:46:FC:EC:6D:1B:9C:E0:C4:09:58:3E:61:60 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8c0e65e5-4314-4c25-95ea-bd728ba417ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f020::/44 Signature Algorithm: sha256WithRSAEncryption 1b:46:01:69:98:fd:63:44:8d:4e:f7:b4:fc:2f:e4:3c:b2:dc: 5f:1a:7c:85:28:61:f4:9e:3d:68:eb:6f:7c:3d:09:5b:e5:9c: 29:d9:a6:64:c2:36:ff:6b:97:f6:f3:24:f1:e1:33:80:ff:59: a4:21:ae:5e:2f:c1:f2:88:99:be:4d:57:c3:83:07:43:5c:19: 85:76:83:55:97:d3:b8:33:eb:7b:0c:0e:8a:00:d7:76:ac:b4: b5:2e:d3:6e:82:22:4f:8a:f6:da:c6:ca:22:0b:bb:c6:e5:78: a3:59:29:e2:78:43:68:1f:ff:a7:2c:db:b2:d2:8e:d3:4b:32: 50:bc:50:a3:7b:97:5c:bf:f6:a9:7d:02:2e:f6:76:eb:51:83: f5:ec:45:95:3d:77:14:a9:55:93:b7:d4:cf:54:56:e4:ce:33: f2:2b:4a:bb:c6:9c:e9:ad:ea:f4:2d:bd:31:71:98:4d:54:79: a3:b4:fe:f8:b1:52:c2:25:b5:fd:82:f5:13:36:03:f4:00:bd: 70:56:46:a8:b5:db:08:53:07:07:da:79:fb:f0:04:de:f3:20: b8:14:c1:59:e8:a4:01:39:c2:57:55:5d:c5:5b:56:1b:3a:c3: 74:96:79:5b:ac:fe:6d:8d:a7:1e:59:f1:0f:8e:28:d1:43:bc: 8d:06:3b:43 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdegQndPbxFudgwsO/GNVALh6PqwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDA2MTc0MDEwWhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4YWI2NmVkOTFjNzE3NWNhOTI0MTQ1NjgyNjliZTUyMDAw MTdjY2IxZTFkMjZhMmM0NTVlMTVlNTYxZjFhZDUyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCi0To/LNB2d0r524qADU6xp3ppk0woT1bHdpgXJQzWWI8T bTE07yWqkEQvgcHc1NTHKRE5YKd9t9CKkaYn+h/U/kIQENru8XT8fJm4BgA0I/VA qX8HoJi4tU4fMKz1Xm00+CpGe8ttEMKB8tni6dryYzkM1KV62AYcJgkXhGokFFNX Ag3UdsWc+CuavvSU2Q7I6DVVV37IcIMEnQg/40PR/vuLcIt9RBIGExmfnTF5NLga HuZekYFm2yZibKp6ygk45Y3netHcRWZlGHpSRXStcRWSGp71IEXlpNAoqV/NaNyw yL5+fxrWRhoILOQplWyIYYLu4dD6UZLDhFXJ9wrdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUPH53JgC7fUb87G0bnODECVg+YWAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzhjMGU2NWU1LTQzMTQtNGMyNS05NWVhLWJkNzI4YmE0MTdmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78CAwDQYJKoZIhvcNAQELBQADggEBABtGAWmY/WNEjU73tPwv5Dyy 3F8afIUoYfSePWjrb3w9CVvlnCnZpmTCNv9rl/bzJPHhM4D/WaQhrl4vwfKImb5N V8ODB0NcGYV2g1WX07gz63sMDooA13astLUu026CIk+K9trGyiILu8bleKNZKeJ4 Q2gf/6cs27LSjtNLMlC8UKN7l1y/9ql9Ai72dutRg/XsRZU9dxSpVZO31M9UVuTO M/IrSrvGnOmt6vQtvTFxmE1UeaO0/vixUsIltf2C9RM2A/QAvXBWRqi12whTBwfa efvwBN7zILgUwVnopAE5wldVXcVbVhs6w3SWeVus/m2Npx5Z8Q+OKNFDvI0GO0M= -----END CERTIFICATE-----Generated at Mon Oct 20 13:53:22 2025 by rpki-client