$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bd7d2b15-718f-43fb-b91d-c0bc7f75e8dc.roa File: bd7d2b15-718f-43fb-b91d-c0bc7f75e8dc.roa (raw, json) Hash identifier: +zVHr6/N+Sm+nFEHX5BNH6o10/XgiwXuOG/ilaXpIpg= Subject key identifier: 71:03:2F:FB:63:59:77:EA:E6:A7:91:88:C4:C5:6E:9B:3C:71:50:33 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3F19305D23517421B306B750668C79BA5DD1E07E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bd7d2b15-718f-43fb-b91d-c0bc7f75e8dc.roa Signing time: Wed 22 Oct 2025 00:50:05 +0000 ROA not before: Wed 22 Oct 2025 00:50:05 +0000 ROA not after: Wed 26 Nov 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f2:7000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 05 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:19:30:5d:23:51:74:21:b3:06:b7:50:66:8c:79:ba:5d:d1:e0:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 22 00:50:05 2025 GMT Not After : Nov 26 23:59:59 2025 GMT Subject: serialNumber=597762241f681c3e9e8062ba901fb04a4086a0bb0c2001ea579999b5fdd5ec1f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:81:20:e9:92:2a:3f:fd:4e:63:04:c0:d2:ce: 8c:bb:6d:e7:27:3a:32:ec:9d:ef:a7:11:17:59:d4: ca:76:5a:67:57:9b:ea:1e:d1:5e:fc:08:48:d9:27: 42:81:18:c3:52:0e:2f:82:72:d6:fc:0f:f3:b9:57: 01:66:45:fd:c1:e6:63:d2:82:3d:d9:65:4b:43:ce: 80:60:be:0e:f3:03:c4:24:62:88:c7:34:f8:55:d5: 98:e6:0d:40:a5:d6:7b:51:b7:21:8d:46:ba:85:2d: 76:2e:1f:8b:4a:d6:b0:7a:23:9d:62:cd:71:db:1d: 13:a4:31:b9:f9:a3:f4:68:c8:68:ab:1a:d8:d1:61: 58:b4:e5:85:fc:1f:62:03:a0:e8:54:b3:f4:d2:d0: 7a:98:3e:e1:c2:71:4c:1c:6d:f6:cf:cc:d1:7b:7c: 34:62:e5:a7:98:c6:dc:f9:d3:17:b6:1d:45:cc:bf: 23:27:6d:3e:58:f7:5c:c3:2a:20:70:19:b9:b2:18: 70:a5:c1:77:f7:97:ae:ea:43:23:44:a0:82:9c:11: cb:ef:85:db:fb:a4:28:87:2a:57:e3:17:5e:4e:e6: 69:48:a6:46:b3:9d:e2:cf:6b:16:08:80:4e:7e:68: 70:89:56:fc:0a:bc:15:8f:dc:da:15:c4:21:bd:75: ec:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:03:2F:FB:63:59:77:EA:E6:A7:91:88:C4:C5:6E:9B:3C:71:50:33 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bd7d2b15-718f-43fb-b91d-c0bc7f75e8dc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7000::/44 Signature Algorithm: sha256WithRSAEncryption 8e:d4:3f:82:06:62:a5:98:78:d8:f4:8e:44:ce:d2:49:58:61: 29:45:f6:28:bb:62:e1:7b:ea:0d:a0:7c:32:10:d9:56:4a:df: 5a:a4:ab:6e:47:bf:6a:d7:32:5f:fe:57:27:3c:73:c1:4c:01: fd:ed:c2:70:be:1a:15:b4:17:09:b7:51:1d:35:3b:a7:6b:ca: 74:15:d9:59:6f:bf:7f:ee:8f:af:99:7a:1b:7c:3d:f6:f0:19: 2c:33:3c:c2:4c:36:ae:13:14:2e:9d:6b:a3:f9:e1:3b:9d:38: 33:4a:55:6e:f6:ef:38:cc:50:ea:25:d2:00:a8:60:b1:0d:64: 8c:3c:bb:9f:a0:3a:4f:84:9f:35:d6:41:04:72:3e:38:bd:21: 2c:a9:76:a3:ae:1d:54:f1:64:fa:5b:49:ca:2b:27:b4:63:eb: 21:96:40:09:58:4b:55:54:3f:f7:c4:14:5a:37:5d:9e:13:80: 71:76:76:fd:6e:8b:9c:02:c6:18:c9:ed:93:27:96:ad:e0:60: e6:c4:bd:e8:1e:dd:ef:07:fa:ea:35:a1:1c:71:cb:cb:65:18: 2b:b8:01:2e:9b:6c:14:0f:2b:25:ba:fb:9f:af:eb:64:b1:d3: 94:43:6c:de:e7:f9:ce:06:63:c3:56:44:a3:b4:80:bc:29:87: c8:f6:e7:28 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPxkwXSNRdCGzBrdQZox5ul3R4H4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIyMDA1MDA1WhcNMjUxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OTc3NjIyNDFmNjgxYzNlOWU4MDYyYmE5MDFmYjA0YTQw ODZhMGJiMGMyMDAxZWE1Nzk5OTliNWZkZDVlYzFmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKgSDpkio//U5jBMDSzoy7becnOjLsne+nERdZ1Mp2WmdX m+oe0V78CEjZJ0KBGMNSDi+Cctb8D/O5VwFmRf3B5mPSgj3ZZUtDzoBgvg7zA8Qk YojHNPhV1ZjmDUCl1ntRtyGNRrqFLXYuH4tK1rB6I51izXHbHROkMbn5o/RoyGir GtjRYVi05YX8H2IDoOhUs/TS0HqYPuHCcUwcbfbPzNF7fDRi5aeYxtz50xe2HUXM vyMnbT5Y91zDKiBwGbmyGHClwXf3l67qQyNEoIKcEcvvhdv7pCiHKlfjF15O5mlI pkazneLPaxYIgE5+aHCJVvwKvBWP3NoVxCG9dexHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcQMv+2NZd+rmp5GIxMVumzxxUDMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2JkN2QyYjE1LTcxOGYtNDNmYi1iOTFkLWMwYmM3Zjc1ZThkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDycAAwDQYJKoZIhvcNAQELBQADggEBAI7UP4IGYqWYeNj0jkTO0klY YSlF9ii7YuF76g2gfDIQ2VZK31qkq25Hv2rXMl/+Vyc8c8FMAf3twnC+GhW0Fwm3 UR01O6drynQV2Vlvv3/uj6+Zeht8PfbwGSwzPMJMNq4TFC6da6P54TudODNKVW72 7zjMUOol0gCoYLENZIw8u5+gOk+EnzXWQQRyPji9ISypdqOuHVTxZPpbScorJ7Rj 6yGWQAlYS1VUP/fEFFo3XZ4TgHF2dv1ui5wCxhjJ7ZMnlq3gYObEvege3e8H+uo1 oRxxy8tlGCu4AS6bbBQPKyW6+5+v62Sx05RDbN7n+c4GY8NWRKO0gLwph8j25yg= -----END CERTIFICATE-----Generated at Tue Nov 4 04:39:55 2025 by rpki-client