$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a84b381b-bc70-4b19-91a5-fa66fa80011e.roa File: a84b381b-bc70-4b19-91a5-fa66fa80011e.roa (raw, json) Hash identifier: 3+j4BBZgZqmH6yQVnNh5XNu1AFy4yoFIEHCu4B5a+Lo= Subject key identifier: ED:13:9F:03:9E:9C:A3:DE:55:C1:0D:21:25:EE:32:69:BF:49:2B:B0 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3F19AAF22AD15AF0091971493742ABF66AC8E089 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a84b381b-bc70-4b19-91a5-fa66fa80011e.roa Signing time: Sat 27 Sep 2025 00:52:51 +0000 ROA not before: Sat 27 Sep 2025 00:52:51 +0000 ROA not after: Sat 01 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f2:7000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:19:aa:f2:2a:d1:5a:f0:09:19:71:49:37:42:ab:f6:6a:c8:e0:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 27 00:52:51 2025 GMT Not After : Nov 1 23:59:59 2025 GMT Subject: serialNumber=772399d9774f20e9b0a3a3b0fa26c2f2577e7774e59fd62b5665bd7403bcfe23, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c0:bd:5c:5c:a7:cf:71:7f:39:c6:e8:da:58: d9:11:f4:3a:41:1b:f9:ae:0d:13:f1:56:4d:90:e0: 86:73:41:83:8c:10:8b:e7:f4:14:c8:27:fc:a9:93: c9:e3:3c:a6:86:7e:7f:57:5c:7a:5c:48:8c:7f:ce: fb:e3:68:00:de:fc:26:70:3a:ea:7e:a6:35:64:71: 23:08:af:a3:ee:4c:89:7a:bc:ae:b8:92:5c:03:78: 55:e3:24:f9:51:f2:8d:63:e9:ac:eb:3d:13:7a:3b: dd:19:94:a9:f8:a1:09:3c:b2:0c:87:5b:9b:44:75: 40:04:d8:c5:8b:ce:67:13:30:54:6f:e2:7f:9d:7b: 2b:10:0d:73:ff:39:d4:56:29:5f:e9:a4:6e:13:23: bd:c4:9f:b6:e0:2e:03:6d:63:80:1c:3b:bf:77:6e: d7:58:56:03:7b:1b:c0:f8:12:6d:88:dd:a0:2a:79: 80:b2:0c:ca:4d:eb:5c:58:70:a5:ae:41:a3:b7:c6: 67:31:74:ae:ab:e3:20:0b:86:6b:5a:69:f7:d1:91: e9:f3:7d:3b:98:fe:a1:34:72:60:42:45:ed:a3:f5: 25:31:e4:da:9e:05:8d:9d:4f:db:f5:e4:57:b6:50: 50:48:3b:8f:a3:62:de:e5:69:33:74:3c:bc:ba:a8: 47:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:13:9F:03:9E:9C:A3:DE:55:C1:0D:21:25:EE:32:69:BF:49:2B:B0 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a84b381b-bc70-4b19-91a5-fa66fa80011e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7000::/44 Signature Algorithm: sha256WithRSAEncryption 35:e8:df:9f:1e:84:e9:c9:e2:99:ac:75:6c:6d:7c:86:b4:4d: ee:fb:8f:08:e6:8f:e9:e7:92:53:78:f0:0d:c5:4e:86:85:31: 95:13:c0:56:6e:02:5a:b2:70:43:c5:84:66:01:0b:5a:45:41: c7:a7:ac:da:14:c3:7a:c2:8c:cc:b5:4f:ba:8a:b4:ba:3d:f3: 21:a3:bc:18:4a:02:ce:d1:88:97:92:6a:cd:69:07:27:0c:5b: 40:96:03:8e:09:4f:9e:09:d2:dd:2f:73:bf:6d:10:0a:9a:2e: 05:6c:8e:d2:15:c8:12:cc:24:b9:00:2c:b3:8f:61:36:4d:b8: ce:fa:bb:d1:a3:be:0a:c2:d8:72:1f:97:ac:f9:3b:24:d2:53: 04:b4:e0:13:3e:31:64:49:cb:50:56:c3:1d:b5:96:cc:58:f4: e7:23:3c:22:c6:30:e9:30:cc:60:b9:52:76:87:a4:df:ba:f9: 31:bd:86:9e:2e:e4:66:d8:69:03:f4:1e:56:91:2c:4c:71:ad: ef:11:09:ca:41:71:db:d0:f5:b7:3e:ba:87:ca:6e:1c:92:97: 97:80:6f:22:1f:d0:ee:57:7d:97:4b:3f:fa:59:97:23:38:5f: be:63:e7:e4:99:1c:c8:1e:c8:65:4a:cf:9f:fb:3d:6d:79:15: 4d:22:2b:70 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPxmq8irRWvAJGXFJN0Kr9mrI4IkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI3MDA1MjUxWhcNMjUxMTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NzIzOTlkOTc3NGYyMGU5YjBhM2EzYjBmYTI2YzJmMjU3 N2U3Nzc0ZTU5ZmQ2MmI1NjY1YmQ3NDAzYmNmZTIzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfwL1cXKfPcX85xujaWNkR9DpBG/muDRPxVk2Q4IZzQYOM EIvn9BTIJ/ypk8njPKaGfn9XXHpcSIx/zvvjaADe/CZwOup+pjVkcSMIr6PuTIl6 vK64klwDeFXjJPlR8o1j6azrPRN6O90ZlKn4oQk8sgyHW5tEdUAE2MWLzmcTMFRv 4n+deysQDXP/OdRWKV/ppG4TI73En7bgLgNtY4AcO793btdYVgN7G8D4Em2I3aAq eYCyDMpN61xYcKWuQaO3xmcxdK6r4yALhmtaaffRkenzfTuY/qE0cmBCRe2j9SUx 5NqeBY2dT9v15Fe2UFBIO4+jYt7laTN0PLy6qEeJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU7ROfA56co95VwQ0hJe4yab9JK7AwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E4NGIzODFiLWJjNzAtNGIxOS05MWE1LWZhNjZmYTgwMDExZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDycAAwDQYJKoZIhvcNAQELBQADggEBADXo358ehOnJ4pmsdWxtfIa0 Te77jwjmj+nnklN48A3FToaFMZUTwFZuAlqycEPFhGYBC1pFQcenrNoUw3rCjMy1 T7qKtLo98yGjvBhKAs7RiJeSas1pBycMW0CWA44JT54J0t0vc79tEAqaLgVsjtIV yBLMJLkALLOPYTZNuM76u9GjvgrC2HIfl6z5OyTSUwS04BM+MWRJy1BWwx21lsxY 9OcjPCLGMOkwzGC5UnaHpN+6+TG9hp4u5GbYaQP0HlaRLExxre8RCcpBcdvQ9bc+ uofKbhySl5eAbyIf0O5XfZdLP/pZlyM4X75j5+SZHMgeyGVKz5/7PW15FU0iK3A= -----END CERTIFICATE-----Generated at Mon Oct 20 13:52:55 2025 by rpki-client