$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2d641cc-0376-4d82-897a-3d5596d61679.roa File: b2d641cc-0376-4d82-897a-3d5596d61679.roa (raw, json) Hash identifier: FKFJzdhVKeoVcSVNiyEYZG0n3v31doCV11tC4jeQQ+w= Subject key identifier: 1A:19:C9:B8:60:89:2D:71:8C:A7:2A:5E:16:29:0D:EA:DF:BF:FD:F8 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1D307AFB911547BDB5A8F2CFE513319CAC5B7319 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2d641cc-0376-4d82-897a-3d5596d61679.roa Signing time: Fri 03 Oct 2025 15:18:17 +0000 ROA not before: Fri 03 Oct 2025 15:18:17 +0000 ROA not after: Fri 07 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f2:7101::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:30:7a:fb:91:15:47:bd:b5:a8:f2:cf:e5:13:31:9c:ac:5b:73:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 3 15:18:17 2025 GMT Not After : Nov 7 23:59:59 2025 GMT Subject: serialNumber=a5c6b69333fc57d4a7289304fc67f58f20d92d27ef21025083ade165112629da, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d9:3d:d0:a9:d5:32:c7:9f:0e:f7:ed:c0:4f: 75:b7:f1:72:3a:80:56:73:0b:4a:f9:ff:24:6c:0f: 6d:af:a5:6b:e3:ca:77:ac:db:3a:18:6c:54:77:a7: c5:95:bf:a1:16:18:f3:77:7f:dc:54:2c:40:c9:d6: 77:9a:8f:82:1f:36:8b:62:3c:68:cd:01:fd:fc:77: fa:74:ca:7b:e3:9f:04:d6:bc:20:37:b0:70:f2:99: 95:aa:74:8b:93:36:54:8f:67:ea:60:07:f8:cd:43: 21:7b:3c:70:a5:e3:39:59:bc:c0:a7:8a:a1:5f:9f: 8d:95:4d:9e:25:1e:dd:37:63:67:2c:69:9c:a6:84: c6:8b:00:b9:ff:49:57:74:63:21:e5:a3:ca:d7:a8: f2:88:91:d9:a0:30:c0:a9:07:e5:1e:53:b6:f4:1e: 13:1c:de:80:62:d1:03:dc:3f:92:7f:e4:d2:79:71: 68:9b:bf:d3:d2:95:a5:a8:c8:8f:8c:65:69:fb:f8: 05:b7:6d:b1:9a:4a:f9:b6:3f:41:9e:d7:0f:1c:30: 12:b4:e8:0c:03:0a:f1:29:dd:f8:f1:52:74:a7:d3: 87:57:6a:5a:3e:4d:19:60:fb:6d:43:9a:b1:c9:6f: 73:9f:1a:66:57:6e:65:b9:71:9b:e2:9e:3e:08:f0: 24:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:19:C9:B8:60:89:2D:71:8C:A7:2A:5E:16:29:0D:EA:DF:BF:FD:F8 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2d641cc-0376-4d82-897a-3d5596d61679.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7101::/48 Signature Algorithm: sha256WithRSAEncryption 0e:a6:00:63:76:71:ec:6b:c9:d1:62:b6:7d:3a:ba:54:c5:37: 46:04:b3:31:aa:5f:87:6a:1c:1c:9a:c7:40:b7:ef:a6:59:4a: 3b:5d:c4:f5:72:f9:67:53:0f:d5:18:ad:49:73:7f:6a:ea:1d: fc:3d:c1:49:b3:65:fe:a5:2f:c9:9a:82:dc:a5:8c:b7:3b:82: 39:3e:eb:12:14:40:45:37:a0:2f:38:24:3a:ec:b9:0c:fe:af: 1b:b6:bc:5f:f9:a8:7d:ca:58:be:9f:c5:8b:97:f8:45:27:7d: 7a:fe:5b:d6:5e:40:02:89:fb:8a:d2:c8:c8:31:41:03:37:0f: 43:58:b1:f6:af:1d:a5:7b:94:ac:45:71:00:86:05:b4:ec:53: ba:72:d2:da:05:93:fa:af:bf:14:c1:6e:e6:54:b8:93:90:92: 3a:ec:43:88:75:26:27:cd:5c:e0:ec:2c:fc:c6:50:79:d6:58: a4:fc:44:7b:86:16:c1:c1:36:6a:19:cb:91:4c:27:31:dd:cb: 43:94:dd:6e:01:60:ec:cb:53:fd:1b:22:5e:31:f2:b7:0f:f3: c8:4f:20:2a:65:17:63:7b:e8:2c:ff:b1:8b:c8:3c:e9:86:53: 4b:e4:c7:0d:92:05:0b:51:eb:49:9b:cc:fa:2a:bb:38:67:07: c3:77:fb:40 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHTB6+5EVR721qPLP5RMxnKxbcxkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDAzMTUxODE3WhcNMjUxMTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNWM2YjY5MzMzZmM1N2Q0YTcyODkzMDRmYzY3ZjU4ZjIw ZDkyZDI3ZWYyMTAyNTA4M2FkZTE2NTExMjYyOWRhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCq2T3QqdUyx58O9+3AT3W38XI6gFZzC0r5/yRsD22vpWvj ynes2zoYbFR3p8WVv6EWGPN3f9xULEDJ1neaj4IfNotiPGjNAf38d/p0ynvjnwTW vCA3sHDymZWqdIuTNlSPZ+pgB/jNQyF7PHCl4zlZvMCniqFfn42VTZ4lHt03Y2cs aZymhMaLALn/SVd0YyHlo8rXqPKIkdmgMMCpB+UeU7b0HhMc3oBi0QPcP5J/5NJ5 cWibv9PSlaWoyI+MZWn7+AW3bbGaSvm2P0Ge1w8cMBK06AwDCvEp3fjxUnSn04dX alo+TRlg+21DmrHJb3OfGmZXbmW5cZvinj4I8CQlAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUGhnJuGCJLXGMpypeFikN6t+//fgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2IyZDY0MWNjLTAzNzYtNGQ4Mi04OTdhLTNkNTU5NmQ2MTY3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDycQEwDQYJKoZIhvcNAQELBQADggEBAA6mAGN2cexrydFitn06ulTF N0YEszGqX4dqHByax0C376ZZSjtdxPVy+WdTD9UYrUlzf2rqHfw9wUmzZf6lL8ma gtyljLc7gjk+6xIUQEU3oC84JDrsuQz+rxu2vF/5qH3KWL6fxYuX+EUnfXr+W9Ze QAKJ+4rSyMgxQQM3D0NYsfavHaV7lKxFcQCGBbTsU7py0toFk/qvvxTBbuZUuJOQ kjrsQ4h1JifNXODsLPzGUHnWWKT8RHuGFsHBNmoZy5FMJzHdy0OU3W4BYOzLU/0b Il4x8rcP88hPICplF2N76Cz/sYvIPOmGU0vkxw2SBQtR60mbzPoquzhnB8N3+0A= -----END CERTIFICATE-----Generated at Mon Oct 20 13:53:17 2025 by rpki-client