$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf3aefd7-144a-4210-8532-a7b6e0533dd6.roa File: bf3aefd7-144a-4210-8532-a7b6e0533dd6.roa (raw, json) Hash identifier: k2aTtDHahT1p3GvndHuRgO0ILdWicNhKp3QNl6n9yVc= Subject key identifier: 0F:EB:9C:09:A5:81:DE:92:29:A6:55:3E:2F:9D:E4:6B:28:16:A8:19 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 191A7007BEF7976FD481A9E6F9FCE4B75FE9E640 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf3aefd7-144a-4210-8532-a7b6e0533dd6.roa Signing time: Fri 26 Sep 2025 18:10:18 +0000 ROA not before: Fri 26 Sep 2025 18:10:18 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e700::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:1a:70:07:be:f7:97:6f:d4:81:a9:e6:f9:fc:e4:b7:5f:e9:e6:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:10:18 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=00e6ab80bb7a8d41e9d211fe6c43f1a7c3ac846d1ab3b8a6a417b8a70dbb3462, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:85:04:62:44:75:c3:ea:78:43:76:42:ca:ef: 18:d2:09:10:40:fe:ea:00:1e:d2:6a:27:a3:c9:4d: 67:0e:01:0a:47:45:93:4c:ab:d4:89:dc:77:05:73: 90:9e:f0:85:a7:7d:14:2d:6a:39:b4:67:c8:0b:d6: 84:ec:d8:61:04:c9:b9:b3:86:e5:d2:d3:ea:f5:0e: 2d:31:60:9e:95:3a:c6:93:8b:fd:ef:95:5f:f6:2e: 01:f9:ae:65:89:8d:81:6e:5c:2e:00:b5:20:54:94: 7d:c2:9f:36:6f:a3:2f:bc:fc:7c:f1:69:d7:96:47: 77:27:5c:aa:d6:dd:40:99:e4:07:b9:4c:72:34:dd: ba:58:f2:8a:1f:a3:8c:bc:8c:2f:7c:e7:51:f2:c1: f0:89:7e:6c:e2:ce:c3:9d:03:87:98:9f:13:11:3e: f8:9f:d7:6e:a3:84:9a:70:55:85:23:40:49:53:fe: c7:4b:95:53:ba:ef:be:31:1a:53:dd:65:d9:c4:84: 1e:4c:26:84:8a:e5:df:3d:7d:c7:c0:7f:bc:14:0f: d7:22:c8:01:76:a7:d1:54:5a:39:3f:9a:1f:a9:58: c0:19:8f:04:47:58:f6:39:b1:de:13:5c:40:8e:5a: 09:34:cc:73:e3:47:aa:51:b0:d4:19:bd:41:01:e5: e5:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:EB:9C:09:A5:81:DE:92:29:A6:55:3E:2F:9D:E4:6B:28:16:A8:19 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf3aefd7-144a-4210-8532-a7b6e0533dd6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e700::/42 Signature Algorithm: sha256WithRSAEncryption 45:dd:c3:a5:f2:ab:88:92:61:85:11:0d:5f:b1:79:e7:2b:a0: 78:59:91:45:1b:45:9d:61:a0:3e:e4:e1:e9:1f:58:82:8e:44: a6:e0:23:92:c8:b2:93:3c:82:1a:a9:dd:08:bd:5a:32:f9:48: 85:67:17:8c:a6:b3:a9:b2:7a:24:98:3a:ea:61:82:3e:ae:e5: 49:7b:52:88:5b:87:67:6a:f8:82:f1:9f:67:57:99:cd:22:99: 6d:71:c5:bc:2f:11:e3:a3:11:7c:fa:20:41:1b:3c:6f:05:d7: 97:20:b0:b0:02:f7:11:a3:82:8b:b9:dc:0e:a7:b0:57:d1:f8: a1:cb:c1:9f:3c:1e:4a:23:a9:e5:30:37:a4:36:2a:8f:45:cc: 49:40:ce:3a:31:77:81:eb:cc:10:be:ef:8a:22:96:4d:21:c0: 13:a5:42:f3:30:2b:78:36:5e:e8:90:53:4b:ec:d6:1a:e3:39: c0:e0:48:ca:d8:23:27:9e:2c:a7:54:21:b7:d4:b2:f8:a3:82: 2c:e4:73:59:2f:f6:c7:37:16:04:c6:7b:b1:66:a0:5b:f2:ce: ea:46:e0:e4:c7:11:21:40:85:fc:4b:1c:5b:f1:02:5a:50:39: dd:c6:55:e3:db:e8:03:db:29:b1:7c:4b:55:1b:ae:80:8b:5d: ca:f8:46:14 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGRpwB773l2/Uganm+fzkt1/p5kAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgxMDE4WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMGU2YWI4MGJiN2E4ZDQxZTlkMjExZmU2YzQzZjFhN2Mz YWM4NDZkMWFiM2I4YTZhNDE3YjhhNzBkYmIzNDYyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7hQRiRHXD6nhDdkLK7xjSCRBA/uoAHtJqJ6PJTWcOAQpH RZNMq9SJ3HcFc5Ce8IWnfRQtajm0Z8gL1oTs2GEEybmzhuXS0+r1Di0xYJ6VOsaT i/3vlV/2LgH5rmWJjYFuXC4AtSBUlH3CnzZvoy+8/HzxadeWR3cnXKrW3UCZ5Ae5 THI03bpY8oofo4y8jC9851HywfCJfmzizsOdA4eYnxMRPvif126jhJpwVYUjQElT /sdLlVO6774xGlPdZdnEhB5MJoSK5d89fcfAf7wUD9ciyAF2p9FUWjk/mh+pWMAZ jwRHWPY5sd4TXECOWgk0zHPjR6pRsNQZvUEB5eUNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUD+ucCaWB3pIpplU+L53kaygWqBkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2JmM2FlZmQ3LTE0NGEtNDIxMC04NTMyLWE3YjZlMDUzM2RkNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD75wAwDQYJKoZIhvcNAQELBQADggEBAEXdw6Xyq4iSYYURDV+xeecr oHhZkUUbRZ1hoD7k4ekfWIKORKbgI5LIspM8ghqp3Qi9WjL5SIVnF4yms6myeiSY Ouphgj6u5Ul7Uohbh2dq+ILxn2dXmc0imW1xxbwvEeOjEXz6IEEbPG8F15cgsLAC 9xGjgou53A6nsFfR+KHLwZ88HkojqeUwN6Q2Ko9FzElAzjoxd4HrzBC+74oilk0h wBOlQvMwK3g2XuiQU0vs1hrjOcDgSMrYIyeeLKdUIbfUsvijgizkc1kv9sc3FgTG e7FmoFvyzupG4OTHESFAhfxLHFvxAlpQOd3GVePb6APbKbF8S1UbroCLXcr4RhQ= -----END CERTIFICATE-----Generated at Mon Oct 20 13:53:12 2025 by rpki-client