$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b11f31cd-336e-4434-8174-6a90ba67bb58.roa File: b11f31cd-336e-4434-8174-6a90ba67bb58.roa (raw, json) Hash identifier: VkuShVVEKsGtLa8hHvVB4wha38AjfE2f/EsixHEd+Tg= Subject key identifier: 0B:AF:AE:34:11:C4:5D:AA:CE:26:A1:46:7F:D7:A1:4F:94:95:6F:E0 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0BD6E5F9B3F0D786CCDBF5FF3965089AB1C9C53D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b11f31cd-336e-4434-8174-6a90ba67bb58.roa Signing time: Fri 26 Sep 2025 18:00:56 +0000 ROA not before: Fri 26 Sep 2025 18:00:56 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5519::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:d6:e5:f9:b3:f0:d7:86:cc:db:f5:ff:39:65:08:9a:b1:c9:c5:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:00:56 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=176d4c5dff0a5366580ffd9d401daea7d1b0d391161f1f8738a92f45b56219e4, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e3:ce:01:42:4c:92:00:c4:59:da:cb:38:5d: ff:41:a6:61:ee:23:24:dd:3b:60:e6:30:d3:64:da: 8e:ac:20:d9:70:6e:b9:7d:db:bb:1e:68:fb:25:43: 78:10:b8:56:ac:c0:ad:10:b5:e3:02:93:5b:d8:e4: cf:2c:d0:2d:67:fd:3f:42:3d:0e:01:af:f0:51:cd: 27:23:28:e2:56:8e:5b:9c:f4:f3:ed:ad:2f:16:64: 24:eb:86:87:0f:97:7c:7d:94:73:cd:4f:ce:d0:55: 2c:c9:c6:30:26:43:74:ab:27:8f:da:62:05:08:72: 9b:48:61:b6:5f:eb:f3:a4:0f:9c:d0:b4:4f:84:07: 8c:6a:81:2a:e6:00:1c:a4:b3:98:52:4e:9b:82:a3: a0:49:3e:8e:c3:36:9c:5c:43:1a:19:b2:69:2e:7e: 96:8e:23:5b:54:13:80:01:ad:70:fe:66:ce:88:8f: c0:2a:42:27:27:21:ea:3f:f7:6d:ba:5b:63:aa:5b: a7:18:43:e3:6f:a3:df:4b:aa:cd:81:00:4d:72:2d: 76:6a:09:29:43:2b:33:e6:dd:03:86:34:2e:ce:74: 19:0a:a5:05:7f:b1:f7:1f:21:f1:2e:f8:b6:40:e3: 10:03:c4:ed:0b:3a:70:87:52:be:94:4a:53:da:9d: 9c:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:AF:AE:34:11:C4:5D:AA:CE:26:A1:46:7F:D7:A1:4F:94:95:6F:E0 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b11f31cd-336e-4434-8174-6a90ba67bb58.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5519::/48 Signature Algorithm: sha256WithRSAEncryption 2f:cb:8a:c8:a3:54:b5:ff:13:00:53:ca:ef:aa:20:15:b6:f7: 17:d8:68:03:a9:ee:a3:3b:86:45:d0:d1:ef:ed:5b:09:41:07: 71:ab:3e:cf:91:2b:1f:0d:d7:71:06:18:96:20:fb:82:b8:7c: 1d:54:6b:3a:77:19:8d:c0:ad:16:aa:8f:b6:45:3f:00:fc:62: 7b:e3:e3:2c:f9:ab:ba:d3:1c:11:2e:82:d2:fe:c7:c2:60:fc: 76:0d:aa:76:13:39:58:15:00:e9:e2:fa:d6:95:b0:fc:6a:eb: a6:74:8e:b1:92:0c:5a:1f:83:cd:04:e5:8b:62:8e:d3:e0:7d: 82:2f:1f:eb:2e:42:d1:06:b7:db:b8:45:7b:f1:37:3b:8d:99: e6:93:db:48:9e:ed:1e:9b:de:1f:76:63:86:89:cd:d3:1d:f6: 10:ec:90:c5:40:a7:8a:10:d0:a3:fb:13:ca:57:a5:32:5a:31: 8a:7c:02:3d:cb:33:0b:eb:26:9f:a7:11:15:bc:80:f2:d0:f3: 4b:56:5b:f5:c2:2f:79:b6:0b:e1:e2:37:01:e0:4b:d6:46:e7: b7:9d:18:c7:fa:54:37:31:18:54:3b:e7:7c:77:35:5d:75:cc: 74:1b:8e:24:ea:43:97:9a:16:f7:4d:04:ff:35:4c:50:2d:ab: c8:f3:79:a6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUC9bl+bPw14bM2/X/OWUImrHJxT0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgwMDU2WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNzZkNGM1ZGZmMGE1MzY2NTgwZmZkOWQ0MDFkYWVhN2Qx YjBkMzkxMTYxZjFmODczOGE5MmY0NWI1NjIxOWU0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCk484BQkySAMRZ2ss4Xf9BpmHuIyTdO2DmMNNk2o6sINlw brl927seaPslQ3gQuFaswK0QteMCk1vY5M8s0C1n/T9CPQ4Br/BRzScjKOJWjluc 9PPtrS8WZCTrhocPl3x9lHPNT87QVSzJxjAmQ3SrJ4/aYgUIcptIYbZf6/OkD5zQ tE+EB4xqgSrmAByks5hSTpuCo6BJPo7DNpxcQxoZsmkufpaOI1tUE4ABrXD+Zs6I j8AqQicnIeo/9226W2OqW6cYQ+Nvo99Lqs2BAE1yLXZqCSlDKzPm3QOGNC7OdBkK pQV/sfcfIfEu+LZA4xADxO0LOnCHUr6USlPanZx7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUC6+uNBHEXarOJqFGf9ehT5SVb+AwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2IxMWYzMWNkLTMzNmUtNDQzNC04MTc0LTZhOTBiYTY3YmI1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRkwDQYJKoZIhvcNAQELBQADggEBAC/LisijVLX/EwBTyu+qIBW2 9xfYaAOp7qM7hkXQ0e/tWwlBB3GrPs+RKx8N13EGGJYg+4K4fB1Uazp3GY3ArRaq j7ZFPwD8Ynvj4yz5q7rTHBEugtL+x8Jg/HYNqnYTOVgVAOni+taVsPxq66Z0jrGS DFofg80E5YtijtPgfYIvH+suQtEGt9u4RXvxNzuNmeaT20ie7R6b3h92Y4aJzdMd 9hDskMVAp4oQ0KP7E8pXpTJaMYp8Aj3LMwvrJp+nERW8gPLQ80tWW/XCL3m2C+Hi NwHgS9ZG57edGMf6VDcxGFQ753x3NV11zHQbjiTqQ5eaFvdNBP81TFAtq8jzeaY= -----END CERTIFICATE-----Generated at Mon Oct 20 16:24:47 2025 by rpki-client