$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b6f8c745-8807-42bd-924e-8afc5f67cb0c.roa File: b6f8c745-8807-42bd-924e-8afc5f67cb0c.roa (raw, json) Hash identifier: dADt23KF+PKRHgpQg4U6B7u/KmgxyIP8MUrTpmMYOes= Subject key identifier: 3D:36:E2:AF:0D:A0:C8:89:99:21:0D:5E:F8:18:8B:CC:0F:57:DC:3C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3F51616CC59876667F0A5D90BF90339643F74FBB Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b6f8c745-8807-42bd-924e-8afc5f67cb0c.roa Signing time: Sat 27 Sep 2025 00:53:10 +0000 ROA not before: Sat 27 Sep 2025 00:53:10 +0000 ROA not after: Sat 01 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:e00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:51:61:6c:c5:98:76:66:7f:0a:5d:90:bf:90:33:96:43:f7:4f:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 27 00:53:10 2025 GMT Not After : Nov 1 23:59:59 2025 GMT Subject: serialNumber=898083b37c3e5a49abc521ba606bdce447eca024200d7df3d94017672098f81e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ce:f0:76:a7:34:9b:0b:87:ca:52:b4:22:5b: 00:d1:ca:0b:d3:c1:98:9e:29:65:e4:75:19:35:b2: a3:2e:2f:e2:f2:a7:81:6e:c0:06:e0:52:6c:13:d2: c4:dd:f0:25:f6:df:09:bf:11:b3:f1:16:38:b6:65: 5a:17:0f:a3:91:de:de:15:64:f9:a1:04:ef:03:3d: 99:70:4a:22:d1:b1:b8:3b:5f:cb:aa:0d:5b:d2:57: 24:7f:fc:7d:05:f5:c9:e0:ec:2e:30:54:73:f9:46: b8:48:71:43:b1:15:1b:77:3b:d4:a4:25:64:7b:8b: 4f:57:b6:05:16:e2:4f:26:1a:8b:ed:ef:53:15:6e: 64:cf:17:11:ee:ee:29:31:01:3b:76:1f:0c:44:22: 0a:0c:71:54:c1:2d:55:4a:39:5a:1f:10:d5:ca:72: 63:1b:e6:87:48:71:a6:12:cb:70:fb:e2:99:0e:37: 9f:f6:0f:2d:d0:38:e4:34:98:5e:b2:10:e7:77:80: c9:02:98:cb:80:ba:a0:d8:65:3e:97:8a:af:35:05: a0:16:6d:c7:09:b0:ab:16:1b:3f:b6:1f:ab:33:12: f5:d2:8b:50:5f:27:f7:fa:09:37:fb:72:a5:88:50: d8:91:d1:38:a0:f8:cc:d6:55:da:df:1b:4c:a5:c4: 2c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:36:E2:AF:0D:A0:C8:89:99:21:0D:5E:F8:18:8B:CC:0F:57:DC:3C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b6f8c745-8807-42bd-924e-8afc5f67cb0c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:e00::/40 Signature Algorithm: sha256WithRSAEncryption 41:26:a6:04:4f:2b:66:a2:ff:72:17:ff:b6:02:87:49:f0:12: a0:8f:bd:e7:be:1a:0b:53:f4:76:e1:e6:0a:87:38:03:57:cc: e2:68:ec:0b:1f:e4:2e:51:e5:1c:4e:38:1c:36:49:f5:19:6e: 01:1a:3e:a9:4d:33:15:2c:d5:46:48:f4:d2:c7:bb:18:1a:09: 26:0e:2f:46:bc:4f:06:e3:c2:38:78:f7:ac:dc:7e:40:cf:e0: 84:5b:03:f7:1e:b1:53:2b:53:3e:06:54:37:dd:3f:0e:61:aa: b0:ac:87:58:e5:45:e4:a3:48:51:63:ab:c1:dd:94:e3:17:3e: 2b:cd:01:13:8f:dd:d7:05:be:58:16:bd:2b:a0:33:04:85:ad: 87:02:e9:59:72:e1:50:ae:13:0c:88:5b:3c:ac:83:ac:bc:7c: 0f:d5:e8:85:5d:24:3d:b4:07:c7:5c:cb:76:44:5b:48:ca:06: 23:35:fb:cd:15:b1:18:58:53:14:f2:3f:3b:fa:04:3e:f6:80: 94:57:c5:7b:15:04:49:80:91:b2:c0:fd:80:d7:86:f9:cb:20: a8:f5:fd:af:50:19:02:bf:24:4b:ad:61:51:71:54:0f:63:b0: 49:89:76:40:3e:ea:64:df:53:31:de:1c:82:14:cf:09:6d:ef: 71:10:cd:7f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUP1FhbMWYdmZ/Cl2Qv5AzlkP3T7swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI3MDA1MzEwWhcNMjUxMTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4OTgwODNiMzdjM2U1YTQ5YWJjNTIxYmE2MDZiZGNlNDQ3 ZWNhMDI0MjAwZDdkZjNkOTQwMTc2NzIwOThmODFlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtzvB2pzSbC4fKUrQiWwDRygvTwZieKWXkdRk1sqMuL+Ly p4FuwAbgUmwT0sTd8CX23wm/EbPxFji2ZVoXD6OR3t4VZPmhBO8DPZlwSiLRsbg7 X8uqDVvSVyR//H0F9cng7C4wVHP5RrhIcUOxFRt3O9SkJWR7i09XtgUW4k8mGovt 71MVbmTPFxHu7ikxATt2HwxEIgoMcVTBLVVKOVofENXKcmMb5odIcaYSy3D74pkO N5/2Dy3QOOQ0mF6yEOd3gMkCmMuAuqDYZT6Xiq81BaAWbccJsKsWGz+2H6szEvXS i1BfJ/f6CTf7cqWIUNiR0Tig+MzWVdrfG0ylxCzZAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUPTbirw2gyImZIQ1e+BiLzA9X3DwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2I2ZjhjNzQ1LTg4MDctNDJiZC05MjRlLThhZmM1ZjY3Y2IwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwDjANBgkqhkiG9w0BAQsFAAOCAQEAQSamBE8rZqL/chf/tgKHSfAS oI+9574aC1P0duHmCoc4A1fM4mjsCx/kLlHlHE44HDZJ9RluARo+qU0zFSzVRkj0 0se7GBoJJg4vRrxPBuPCOHj3rNx+QM/ghFsD9x6xUytTPgZUN90/DmGqsKyHWOVF 5KNIUWOrwd2U4xc+K80BE4/d1wW+WBa9K6AzBIWthwLpWXLhUK4TDIhbPKyDrLx8 D9XohV0kPbQHx1zLdkRbSMoGIzX7zRWxGFhTFPI/O/oEPvaAlFfFexUESYCRssD9 gNeG+csgqPX9r1AZAr8kS61hUXFUD2OwSYl2QD7qZN9TMd4cghTPCW3vcRDNfw== -----END CERTIFICATE-----Generated at Mon Oct 20 13:52:37 2025 by rpki-client