$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa File: 9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa (raw, json) Hash identifier: eS5phqPOuUM/RR5gLgrFbjTuyKchwv3TjyzGNjda62g= Subject key identifier: EC:7D:06:39:D7:69:22:35:63:8B:29:FE:48:8A:E9:72:5A:56:89:0E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 04E5BA8E4F1F6EA2332A932CCDC17A24E9B59311 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa Signing time: Mon 06 Oct 2025 17:38:14 +0000 ROA not before: Mon 06 Oct 2025 17:38:14 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5503::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 18 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:e5:ba:8e:4f:1f:6e:a2:33:2a:93:2c:cd:c1:7a:24:e9:b5:93:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 6 17:38:14 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=459e27f5260d2920e25442c88fd9c21161a34372124f4eefa84d496e195a3a88, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:38:e1:4c:04:98:9c:19:b3:79:9c:8b:65:4b: c9:5e:22:3b:34:9b:13:b9:b8:be:36:b3:3e:27:ce: da:31:12:fc:41:0d:a0:e9:ea:95:8c:05:90:33:7f: ae:03:e5:fe:8b:2f:cb:d4:91:af:0e:2f:7b:b1:96: 51:8b:09:58:7a:22:5a:ff:65:c8:a4:df:db:be:b4: d2:a4:43:fc:0e:be:82:c6:84:bf:ca:93:a3:83:3f: 55:7a:d3:56:4f:48:e0:6c:8d:d4:e3:0e:86:c6:b2: 25:c6:fd:58:d0:ee:a9:09:24:dc:23:75:cb:69:05: ee:ed:10:cd:76:95:54:91:c8:eb:11:2a:13:e0:3f: ec:f4:cc:07:71:6b:1c:57:57:b2:2e:e5:11:e2:0e: de:ae:2d:8c:99:a9:50:b8:04:51:36:b5:17:6e:42: a6:33:84:75:86:d0:7b:b7:4a:c6:1f:8f:0a:ca:c0: 16:cc:a3:c4:c6:75:a0:a2:90:cd:9b:61:a0:a9:a3: 69:f1:5b:f6:4c:4c:6d:a5:2c:ba:31:f5:09:6f:b1: ea:86:81:07:d9:d8:8f:a4:64:55:ad:69:31:d4:a2: ad:18:31:7d:c1:41:37:6e:84:53:ae:f9:58:cc:e6: 7f:67:ed:0c:3a:88:84:7e:e1:9d:04:b5:2b:64:5c: a4:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:7D:06:39:D7:69:22:35:63:8B:29:FE:48:8A:E9:72:5A:56:89:0E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5503::/48 Signature Algorithm: sha256WithRSAEncryption 28:b3:8b:88:a5:e4:fc:00:65:ec:90:2f:10:f1:a2:8e:68:87: 5a:e1:5a:6f:2f:28:59:8f:be:38:4f:13:af:80:95:a1:8d:d0: b5:52:20:17:17:c9:25:b3:9a:79:51:4c:66:d5:03:66:57:4e: b5:b9:ae:96:e9:0d:5b:17:84:af:5f:24:67:9a:b8:1f:db:e2: 47:8d:ca:93:0e:3d:24:81:d0:0c:8a:a7:2c:f0:23:1a:ff:86: 07:4b:fa:37:08:4b:ec:1f:5c:5a:93:24:55:75:ff:3d:f2:7c: 42:c8:6d:e0:6b:9b:c3:89:b0:ec:0c:c0:d1:6b:42:a1:48:3d: 8f:74:1f:1a:af:e9:0a:99:df:0a:ec:20:77:f3:03:cc:a4:29: 62:0e:b1:65:7f:2f:16:f4:64:f6:e9:e2:5c:42:fd:2a:b2:be: 4b:a6:ef:6f:ae:44:53:35:ef:11:ca:15:4b:34:a4:10:2c:cb: 62:46:a5:97:b2:ef:74:b9:9f:8a:d8:3d:f5:02:6a:35:5f:7f: 86:52:3e:f8:d4:05:89:90:78:49:b8:f2:3b:b9:17:a0:45:53: 71:d7:44:4d:d6:5f:76:6a:83:12:c4:c3:c7:b3:75:68:12:6e: da:5e:1d:b4:1d:60:19:4f:88:7e:46:e5:97:a3:02:56:a1:ce: c0:17:ce:25 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBOW6jk8fbqIzKpMszcF6JOm1kxEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDA2MTczODE0WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NTllMjdmNTI2MGQyOTIwZTI1NDQyYzg4ZmQ5YzIxMTYx YTM0MzcyMTI0ZjRlZWZhODRkNDk2ZTE5NWEzYTg4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfOOFMBJicGbN5nItlS8leIjs0mxO5uL42sz4nztoxEvxB DaDp6pWMBZAzf64D5f6LL8vUka8OL3uxllGLCVh6Ilr/Zcik39u+tNKkQ/wOvoLG hL/Kk6ODP1V601ZPSOBsjdTjDobGsiXG/VjQ7qkJJNwjdctpBe7tEM12lVSRyOsR KhPgP+z0zAdxaxxXV7Iu5RHiDt6uLYyZqVC4BFE2tRduQqYzhHWG0Hu3SsYfjwrK wBbMo8TGdaCikM2bYaCpo2nxW/ZMTG2lLLox9QlvseqGgQfZ2I+kZFWtaTHUoq0Y MX3BQTduhFOu+VjM5n9n7Qw6iIR+4Z0EtStkXKRJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU7H0GOddpIjVjiyn+SIrpclpWiQ4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzk3MzhiYjBkLTFhODQtNDYwMS1iYzZiLTI1YmE3ZjQ5YzcyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQMwDQYJKoZIhvcNAQELBQADggEBACizi4il5PwAZeyQLxDxoo5o h1rhWm8vKFmPvjhPE6+AlaGN0LVSIBcXySWzmnlRTGbVA2ZXTrW5rpbpDVsXhK9f JGeauB/b4keNypMOPSSB0AyKpyzwIxr/hgdL+jcIS+wfXFqTJFV1/z3yfELIbeBr m8OJsOwMwNFrQqFIPY90Hxqv6QqZ3wrsIHfzA8ykKWIOsWV/Lxb0ZPbp4lxC/Sqy vkum72+uRFM17xHKFUs0pBAsy2JGpZey73S5n4rYPfUCajVff4ZSPvjUBYmQeEm4 8ju5F6BFU3HXRE3WX3ZqgxLEw8ezdWgSbtpeHbQdYBlPiH5G5ZejAlahzsAXziU= -----END CERTIFICATE-----Generated at Fri Oct 17 04:40:11 2025 by rpki-client