$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c91dc110-e4d6-4a78-90dc-94e4d2083c89.roa File: c91dc110-e4d6-4a78-90dc-94e4d2083c89.roa (raw, json) Hash identifier: lWkAS2CkYno3nPOUT5Ql/ovFwF19xw9Uut77tRe346A= Subject key identifier: F6:CC:BC:EC:1F:95:1C:99:DE:13:DE:A1:04:AF:CA:93:0F:95:2A:DB Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3B3EB207B910F15A32A83E2AAD0B09E4C0D40FCE Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c91dc110-e4d6-4a78-90dc-94e4d2083c89.roa Signing time: Mon 06 Oct 2025 17:40:49 +0000 ROA not before: Mon 06 Oct 2025 17:40:49 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:3e:b2:07:b9:10:f1:5a:32:a8:3e:2a:ad:0b:09:e4:c0:d4:0f:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 6 17:40:49 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=9d0331305e4bba1cc46dfc1e8f683caa572483929826572b6ee3856bf97e6a7e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ae:7a:f1:09:25:c9:2f:c4:21:b3:4c:33:52: 6f:cd:98:5f:39:0b:27:af:13:54:d1:82:20:13:24: 0d:d3:6f:8e:e6:53:28:84:eb:66:9e:7a:b4:61:1f: 91:1b:4e:82:40:82:3c:29:1d:8f:15:c0:10:1e:5a: 62:a3:5f:1f:69:28:0c:12:da:1e:d1:f1:7b:4b:bb: 0e:3b:94:62:66:df:ce:da:e5:e8:40:8f:0f:0a:fb: e9:54:b1:fe:dd:10:56:97:33:09:ad:dd:66:03:b8: 53:24:06:0d:49:75:68:b8:16:6e:db:20:fe:12:87: 01:d2:7c:58:55:7c:90:98:58:21:49:53:a5:71:a4: e4:e9:d1:3f:9b:a3:de:48:d2:ba:1e:2d:e8:4c:fe: aa:17:e1:26:2c:06:79:4d:4d:2b:b6:36:2f:10:13: 95:17:75:1f:59:75:40:1d:48:07:45:7e:df:16:93: 42:34:3f:2c:ea:92:1f:29:2d:ab:cc:ed:6c:63:fb: 99:ed:38:80:c2:f5:d8:63:13:4d:45:77:26:38:9d: e5:a0:3a:a0:03:c7:2c:48:a9:52:3c:1f:c2:cd:0c: 5b:3e:b4:c5:94:8c:66:83:90:f9:3e:99:9d:a0:75: 98:35:94:e5:58:45:3a:37:ae:bf:1c:01:45:75:e6: e7:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:CC:BC:EC:1F:95:1C:99:DE:13:DE:A1:04:AF:CA:93:0F:95:2A:DB X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c91dc110-e4d6-4a78-90dc-94e4d2083c89.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:100::/40 Signature Algorithm: sha256WithRSAEncryption 19:b4:a3:e7:77:a8:9c:96:0c:32:db:1a:63:64:55:06:63:ea: 0b:39:a5:30:3b:02:29:75:43:57:01:8f:c8:58:07:9a:9b:8f: 31:a6:98:bd:01:4c:34:d0:b8:13:75:65:b2:ef:1c:e2:be:2d: 79:fe:04:8a:bf:77:4b:c8:22:38:34:9f:94:7e:29:6f:d4:52: 86:46:18:56:75:71:77:5f:bf:60:2a:b8:74:0f:da:ed:a3:a7: 28:3f:b1:68:12:c9:94:89:3d:04:30:f4:50:15:9b:f1:9a:e2: fa:22:3c:26:a8:5e:28:71:6b:27:23:5e:5a:ac:21:91:ea:51: 5a:f9:e8:89:5b:81:8e:a9:da:9a:55:e8:a6:c6:36:5e:dc:37: 3d:89:16:4b:6f:cd:bc:c9:e2:90:d6:38:22:01:d5:84:19:b8: b9:85:cf:c7:95:db:14:ac:2b:3e:2a:f4:c3:5a:a0:4c:0b:87: 53:23:37:38:62:d0:bd:e0:63:1a:b5:f6:7a:61:cc:00:6b:b1: 3b:28:cd:da:0b:c2:00:9f:2f:d6:4e:cb:93:49:23:b7:38:46: 14:19:e0:1b:a8:fe:55:3c:6d:e5:a0:52:18:36:10:4a:19:ab: db:fd:5d:a7:a7:94:ad:c5:7f:e3:52:72:18:39:d2:62:a8:10: 95:20:b9:df -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUOz6yB7kQ8VoyqD4qrQsJ5MDUD84wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDA2MTc0MDQ5WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZDAzMzEzMDVlNGJiYTFjYzQ2ZGZjMWU4ZjY4M2NhYTU3 MjQ4MzkyOTgyNjU3MmI2ZWUzODU2YmY5N2U2YTdlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCirnrxCSXJL8Qhs0wzUm/NmF85CyevE1TRgiATJA3Tb47m UyiE62aeerRhH5EbToJAgjwpHY8VwBAeWmKjXx9pKAwS2h7R8XtLuw47lGJm387a 5ehAjw8K++lUsf7dEFaXMwmt3WYDuFMkBg1JdWi4Fm7bIP4ShwHSfFhVfJCYWCFJ U6VxpOTp0T+bo95I0roeLehM/qoX4SYsBnlNTSu2Ni8QE5UXdR9ZdUAdSAdFft8W k0I0Pyzqkh8pLavM7Wxj+5ntOIDC9dhjE01FdyY4neWgOqADxyxIqVI8H8LNDFs+ tMWUjGaDkPk+mZ2gdZg1lOVYRTo3rr8cAUV15uffAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU9sy87B+VHJneE96hBK/Kkw+VKtswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M5MWRjMTEwLWU0ZDYtNGE3OC05MGRjLTk0ZTRkMjA4M2M4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwATANBgkqhkiG9w0BAQsFAAOCAQEAGbSj53eonJYMMtsaY2RVBmPq CzmlMDsCKXVDVwGPyFgHmpuPMaaYvQFMNNC4E3Vlsu8c4r4tef4Eir93S8giODSf lH4pb9RShkYYVnVxd1+/YCq4dA/a7aOnKD+xaBLJlIk9BDD0UBWb8Zri+iI8Jqhe KHFrJyNeWqwhkepRWvnoiVuBjqnamlXopsY2Xtw3PYkWS2/NvMnikNY4IgHVhBm4 uYXPx5XbFKwrPir0w1qgTAuHUyM3OGLQveBjGrX2emHMAGuxOyjN2gvCAJ8v1k7L k0kjtzhGFBngG6j+VTxt5aBSGDYQShmr2/1dp6eUrcV/41JyGDnSYqgQlSC53w== -----END CERTIFICATE-----Generated at Mon Oct 20 21:18:57 2025 by rpki-client