$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cd541762-84a0-4063-89f9-de14817d2419.roa File: cd541762-84a0-4063-89f9-de14817d2419.roa (raw, json) Hash identifier: 6hWZWjTks3TC8c1YzUbp61cU2oYkBy7kYrM1qFoNGFY= Subject key identifier: C9:93:DF:B0:D0:4C:7A:56:1C:A5:3B:6A:11:BE:0B:2E:68:CA:0C:BA Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 183959EE00A4F21B99270CF8A5E772591F7CFB9C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cd541762-84a0-4063-89f9-de14817d2419.roa Signing time: Fri 26 Sep 2025 18:00:23 +0000 ROA not before: Fri 26 Sep 2025 18:00:23 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:1000::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:39:59:ee:00:a4:f2:1b:99:27:0c:f8:a5:e7:72:59:1f:7c:fb:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:00:23 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=99643cba447ac4dcf81ce69bdd9cf774c5e55ea41dd9c34ead9d730b8c15e270, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:f9:05:ad:13:50:09:10:e5:6a:67:1a:59:09: 70:2e:92:d8:1e:8d:55:fb:ea:17:b3:45:46:a6:98: 1f:61:97:8a:02:c7:79:e6:91:9c:d4:de:7d:2c:89: 5c:18:c8:5f:f5:9c:79:99:65:2c:4b:01:a9:94:5e: 2e:1c:03:cb:85:98:0e:e0:9a:55:34:8a:8d:fe:98: 25:5e:7c:fb:7c:6c:1b:2b:99:79:fa:22:87:db:27: 4d:f5:2b:cf:7a:dc:a9:4c:e8:dd:8a:82:c2:58:54: 80:55:38:a6:da:f4:dc:c2:1f:07:cf:b8:fc:12:54: 45:e8:73:94:a0:3c:16:50:9f:bb:fd:79:75:5d:ae: 1d:1d:73:e3:12:ad:8f:c4:e8:71:36:40:55:bf:8d: 02:ed:e8:ba:03:67:8c:4c:a3:73:3d:5b:7d:35:cf: c6:e0:aa:24:16:d3:e6:81:82:ae:24:61:46:f8:19: 16:5a:bc:9b:bd:6c:f4:fa:05:f2:8a:26:97:ec:48: ac:c3:cb:ad:ff:32:f9:45:e8:eb:47:d3:3d:7b:5c: c3:01:fb:84:a7:fa:81:fa:f7:7e:9b:1d:d9:cf:42: 44:b2:1b:f2:b2:52:69:ae:a5:5e:ba:04:21:78:61: 8a:f3:6e:ff:01:27:5f:a8:c6:38:d5:59:26:b2:c3: 51:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:93:DF:B0:D0:4C:7A:56:1C:A5:3B:6A:11:BE:0B:2E:68:CA:0C:BA X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cd541762-84a0-4063-89f9-de14817d2419.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1000::/44 Signature Algorithm: sha256WithRSAEncryption 83:1f:27:02:5b:ec:e9:a9:09:f4:8f:d3:58:68:e8:62:ab:a0: 0f:83:00:f9:b6:1b:14:1b:ac:a1:32:bc:22:db:d3:69:13:a4: 6d:87:0f:39:75:7b:de:e1:d2:20:c9:7c:da:a1:d9:d8:01:9b: 86:c0:b1:25:1c:f5:c7:46:0c:5d:4b:07:4f:0a:4b:92:26:0a: 73:db:9b:fd:2e:5b:ec:b8:95:5c:fa:7e:13:d3:34:5d:21:45: ad:8d:57:3c:c9:e3:32:e3:0b:0c:08:84:56:a3:dd:5e:c7:7c: 3f:1d:93:57:94:60:d6:55:c8:c4:0f:1c:95:ea:b9:08:1b:8c: 45:3e:bc:c3:f3:30:c2:6c:a3:e8:56:07:ae:41:f7:08:5e:05: bd:1c:8f:e1:83:ae:d6:8a:f2:c3:4a:d9:d9:2a:2c:b5:65:ff: 25:c9:9b:0e:9f:12:91:8d:15:b4:14:37:f4:3c:ee:d7:fc:2d: 78:b2:08:d4:8b:e6:25:ca:6b:30:20:ce:bd:10:6f:6c:b2:2e: ae:7a:b4:5c:2b:78:43:7a:84:b1:0a:18:27:83:45:c2:2a:ec: bf:79:dc:6e:b8:54:76:a5:1a:dd:0f:30:cb:9b:0b:1a:5d:98: e2:b0:fb:68:08:81:d7:43:3f:a4:19:34:d4:c4:be:7e:03:c4: ba:4a:94:4f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGDlZ7gCk8huZJwz4pedyWR98+5wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgwMDIzWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A5OTY0M2NiYTQ0N2FjNGRjZjgxY2U2OWJkZDljZjc3NGM1 ZTU1ZWE0MWRkOWMzNGVhZDlkNzMwYjhjMTVlMjcwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCS+QWtE1AJEOVqZxpZCXAuktgejVX76hezRUammB9hl4oC x3nmkZzU3n0siVwYyF/1nHmZZSxLAamUXi4cA8uFmA7gmlU0io3+mCVefPt8bBsr mXn6IofbJ031K8963KlM6N2KgsJYVIBVOKba9NzCHwfPuPwSVEXoc5SgPBZQn7v9 eXVdrh0dc+MSrY/E6HE2QFW/jQLt6LoDZ4xMo3M9W301z8bgqiQW0+aBgq4kYUb4 GRZavJu9bPT6BfKKJpfsSKzDy63/MvlF6OtH0z17XMMB+4Sn+oH6936bHdnPQkSy G/KyUmmupV66BCF4YYrzbv8BJ1+oxjjVWSayw1EVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUyZPfsNBMelYcpTtqEb4LLmjKDLowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NkNTQxNzYyLTg0YTAtNDA2My04OWY5LWRlMTQ4MTdkMjQxOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwEAAwDQYJKoZIhvcNAQELBQADggEBAIMfJwJb7OmpCfSP01ho6GKr oA+DAPm2GxQbrKEyvCLb02kTpG2HDzl1e97h0iDJfNqh2dgBm4bAsSUc9cdGDF1L B08KS5ImCnPbm/0uW+y4lVz6fhPTNF0hRa2NVzzJ4zLjCwwIhFaj3V7HfD8dk1eU YNZVyMQPHJXquQgbjEU+vMPzMMJso+hWB65B9wheBb0cj+GDrtaK8sNK2dkqLLVl /yXJmw6fEpGNFbQUN/Q87tf8LXiyCNSL5iXKazAgzr0Qb2yyLq56tFwreEN6hLEK GCeDRcIq7L953G64VHalGt0PMMubCxpdmOKw+2gIgddDP6QZNNTEvn4DxLpKlE8= -----END CERTIFICATE-----Generated at Mon Oct 20 14:02:43 2025 by rpki-client