$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa File: aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa (raw, json) Hash identifier: YJKCCaWPi/rVCqZvRKRV9Ltz49SNXO/YRPTCQBKjRCQ= Subject key identifier: 63:04:AE:73:37:FB:97:66:21:FF:97:E7:A6:01:04:47:7A:65:E2:60 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 134C1A6538FAA99FAEBD8601C8579CF7132EB460 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa Signing time: Fri 26 Sep 2025 18:10:10 +0000 ROA not before: Fri 26 Sep 2025 18:10:10 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e200::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:4c:1a:65:38:fa:a9:9f:ae:bd:86:01:c8:57:9c:f7:13:2e:b4:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:10:10 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=0640a7fd88474c14b3ab1e8b862da585717d703167484511caa45afc2a03058c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:31:25:d1:b8:47:77:c3:ff:46:fe:29:13:b7: e8:41:79:29:67:6f:e3:85:55:af:6a:fa:11:eb:00: 3a:1f:be:b6:b4:c6:56:42:80:11:7e:ce:12:b7:2d: 51:52:4b:dd:d0:7f:79:ba:30:08:75:85:87:fc:cc: d2:3f:e1:05:cf:47:3a:b2:27:65:27:97:52:87:e2: a1:97:ef:61:a8:98:f3:88:98:d7:a1:10:52:15:77: 70:a5:c0:1f:5a:29:f5:6b:b1:b8:cc:4a:cc:1c:31: e8:b3:fb:09:e0:5c:75:28:48:39:23:c2:57:e6:2a: f1:35:f8:e0:74:84:b3:43:18:1d:b7:96:00:53:b8: 15:b4:3e:3f:dd:70:d6:19:af:43:91:10:cb:53:47: c7:ae:e6:b3:45:b8:31:03:32:e4:d4:ce:5d:33:92: 79:d2:36:51:9c:e5:70:a2:80:f4:8b:9d:7b:9a:e8: f4:5e:16:a4:bd:16:6f:60:82:66:c6:79:eb:5a:e8: 7f:5a:7a:8a:38:94:80:ff:63:a0:d4:c1:39:a5:78: 94:e8:c3:59:57:cf:f8:f1:ec:09:60:e9:7a:db:5e: 2c:de:72:ec:9c:ff:fb:44:d2:23:e7:82:6b:4f:50: 47:01:17:ce:95:42:3c:69:9d:0f:87:21:ee:fc:b7: 38:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:04:AE:73:37:FB:97:66:21:FF:97:E7:A6:01:04:47:7A:65:E2:60 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e200::/42 Signature Algorithm: sha256WithRSAEncryption 6a:65:de:7c:0d:a1:d3:28:55:b5:7c:fa:57:25:a3:59:1c:3f: 54:f6:69:df:5b:6c:31:c1:00:62:44:05:4f:70:bb:ad:9e:6c: 79:56:4e:db:e2:fe:4e:9c:33:31:d4:39:2b:cc:db:2a:3e:93: 3a:50:89:c9:04:ef:15:35:98:f9:10:6f:75:43:43:8a:6c:6f: 4f:c3:69:86:3b:59:31:05:5c:42:70:4b:37:a8:de:c4:41:21: 11:16:4f:26:06:eb:1f:1a:33:df:eb:7f:33:fb:6f:74:28:f6: 3a:9b:f1:a1:e7:77:b3:a1:0d:ac:ad:1c:88:d1:3a:80:ed:48: 4d:55:a6:45:db:6b:60:b7:48:01:38:e7:f2:8d:7c:11:01:e6: fa:65:f4:6a:eb:bf:fe:06:fb:26:20:9d:fd:35:83:e7:4f:22: f8:0a:76:70:1f:13:56:a0:9b:82:87:71:18:11:ff:5a:5b:f3: 78:f5:50:e8:c1:3d:68:20:c4:84:9d:7d:63:84:77:c3:5f:ed: ee:8b:f4:16:2d:cb:13:7c:f8:86:77:a3:d8:e8:5e:ca:70:b4: 5d:3c:68:9f:c8:d7:21:38:28:b0:d5:b2:31:ed:ec:fe:23:c3: f6:03:ce:d8:c1:ed:06:00:ee:b4:88:48:54:a3:0c:b6:74:93: b9:fc:a3:19 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUE0waZTj6qZ+uvYYByFec9xMutGAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgxMDEwWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNjQwYTdmZDg4NDc0YzE0YjNhYjFlOGI4NjJkYTU4NTcx N2Q3MDMxNjc0ODQ1MTFjYWE0NWFmYzJhMDMwNThjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVMSXRuEd3w/9G/ikTt+hBeSlnb+OFVa9q+hHrADofvra0 xlZCgBF+zhK3LVFSS93Qf3m6MAh1hYf8zNI/4QXPRzqyJ2Unl1KH4qGX72GomPOI mNehEFIVd3ClwB9aKfVrsbjMSswcMeiz+wngXHUoSDkjwlfmKvE1+OB0hLNDGB23 lgBTuBW0Pj/dcNYZr0OREMtTR8eu5rNFuDEDMuTUzl0zknnSNlGc5XCigPSLnXua 6PReFqS9Fm9ggmbGeeta6H9aeoo4lID/Y6DUwTmleJTow1lXz/jx7Alg6XrbXize cuyc//tE0iPngmtPUEcBF86VQjxpnQ+HIe78tzg/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUYwSuczf7l2Yh/5fnpgEER3pl4mAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FhZjUxNDAyLWYxYmYtNGU3Yi1iN2MzLTY1ZDkzZGVmNmJkNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD74gAwDQYJKoZIhvcNAQELBQADggEBAGpl3nwNodMoVbV8+lclo1kc P1T2ad9bbDHBAGJEBU9wu62ebHlWTtvi/k6cMzHUOSvM2yo+kzpQickE7xU1mPkQ b3VDQ4psb0/DaYY7WTEFXEJwSzeo3sRBIREWTyYG6x8aM9/rfzP7b3Qo9jqb8aHn d7OhDaytHIjROoDtSE1VpkXba2C3SAE45/KNfBEB5vpl9Grrv/4G+yYgnf01g+dP IvgKdnAfE1agm4KHcRgR/1pb83j1UOjBPWggxISdfWOEd8Nf7e6L9BYtyxN8+IZ3 o9joXspwtF08aJ/I1yE4KLDVsjHt7P4jw/YDztjB7QYA7rSISFSjDLZ0k7n8oxk= -----END CERTIFICATE-----Generated at Mon Oct 20 13:53:17 2025 by rpki-client