$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2b11e0f-0112-4c4e-8aa4-168788fd6aa7.roa File: d2b11e0f-0112-4c4e-8aa4-168788fd6aa7.roa (raw, json) Hash identifier: Ei/HHjOHr2u6mCg8CjyWcMGMVr0GYbCjOgVnhu7DFsc= Subject key identifier: FE:EE:7A:AA:F1:72:9D:08:4A:E0:A4:1B:F1:C2:A3:37:D4:2D:A6:91 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2488CCD68AFB33E7FE5C34755B760AA06F7F3D07 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2b11e0f-0112-4c4e-8aa4-168788fd6aa7.roa Signing time: Fri 26 Sep 2025 18:20:15 +0000 ROA not before: Fri 26 Sep 2025 18:20:15 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ea00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:88:cc:d6:8a:fb:33:e7:fe:5c:34:75:5b:76:0a:a0:6f:7f:3d:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:20:15 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=de992be9ce8c95261c82d54ac57584810b5f175b3098bf53c3dde613439fa0f6, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:3a:b1:b3:c3:0e:71:da:54:d9:aa:eb:1b:04: e3:38:99:c1:d4:94:21:79:8a:04:55:bf:d7:e0:68: e5:d2:57:c0:b0:cc:82:94:99:df:4a:a7:87:b3:99: c7:17:32:30:ce:47:04:91:00:28:f2:c5:8a:1d:a2: e8:4b:aa:74:cc:94:56:b2:e8:7f:07:af:e7:52:4a: b1:89:76:f7:36:f0:1d:94:3f:c9:a1:16:e4:19:a2: 9d:c4:dd:a0:1f:d4:32:3b:fc:56:2c:ca:40:86:a8: af:84:20:a9:2b:26:62:19:95:45:1f:36:27:c7:51: be:8f:f8:37:31:5b:1a:56:28:f2:71:b0:d8:77:d1: 75:03:b3:f2:0c:03:db:c7:b0:19:3b:ae:9f:13:80: f4:59:d5:91:08:30:71:10:35:a1:72:b6:f7:50:47: 1a:53:14:21:28:ba:fb:30:99:2b:df:ea:78:a2:e3: 9a:cb:71:df:21:d5:07:e9:a9:53:ac:0f:5c:c6:ac: 72:01:4a:27:42:fd:f9:65:0d:1c:e1:42:db:b5:f9: 26:3b:ee:26:80:ea:af:f4:ac:32:e2:82:91:89:81: 64:eb:a2:f2:31:e6:9b:e1:bb:d3:88:3a:61:ee:6d: 39:9f:83:6d:23:b3:45:a1:d0:43:e1:dd:f7:59:d5: 5f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:EE:7A:AA:F1:72:9D:08:4A:E0:A4:1B:F1:C2:A3:37:D4:2D:A6:91 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2b11e0f-0112-4c4e-8aa4-168788fd6aa7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ea00::/40 Signature Algorithm: sha256WithRSAEncryption 02:6e:83:b1:aa:25:23:c2:73:13:77:22:1d:8e:f1:f7:68:0b: aa:6b:74:5f:03:82:37:f8:b5:79:d9:a9:c2:f0:d4:fb:c5:23: 1e:fe:bb:02:d1:41:c7:ae:90:3a:9b:90:07:9e:0f:cc:7b:cb: f3:47:89:f2:97:82:f0:35:52:c7:02:05:f7:7a:11:48:6d:b1: 75:f4:0f:d3:9d:3f:ae:66:ad:fd:25:45:2a:cc:26:f4:23:25: 59:74:10:c5:4b:22:cd:68:76:b6:75:15:dd:2b:19:ff:75:e6: 91:ab:ba:58:4b:47:be:a2:40:b0:f7:a7:5a:9e:50:bc:f2:72: b7:56:e0:6c:34:07:97:c8:23:47:82:59:45:66:83:58:fc:d0: 2d:7b:65:1c:56:86:08:dd:9f:b8:71:24:28:ab:ff:33:ab:5b: 19:15:b0:c9:4c:cc:ba:1b:2c:f6:c8:ed:fe:a8:b7:0b:ce:5a: 56:cb:a9:36:f5:7f:a5:d4:cf:05:67:ae:08:9f:44:9c:7c:44: 01:19:68:31:1a:59:2f:b3:01:3a:74:38:64:b1:72:cb:12:46: e7:cb:88:49:54:50:f4:af:39:e1:36:62:9d:03:4e:b7:7a:a8: 3c:ee:e4:48:a9:d9:db:0c:e2:3e:df:72:da:0c:c5:b5:03:19: cd:9d:df:0c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUJIjM1or7M+f+XDR1W3YKoG9/PQcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgyMDE1WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZTk5MmJlOWNlOGM5NTI2MWM4MmQ1NGFjNTc1ODQ4MTBi NWYxNzViMzA5OGJmNTNjM2RkZTYxMzQzOWZhMGY2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxOrGzww5x2lTZqusbBOM4mcHUlCF5igRVv9fgaOXSV8Cw zIKUmd9Kp4ezmccXMjDORwSRACjyxYodouhLqnTMlFay6H8Hr+dSSrGJdvc28B2U P8mhFuQZop3E3aAf1DI7/FYsykCGqK+EIKkrJmIZlUUfNifHUb6P+DcxWxpWKPJx sNh30XUDs/IMA9vHsBk7rp8TgPRZ1ZEIMHEQNaFytvdQRxpTFCEouvswmSvf6nii 45rLcd8h1QfpqVOsD1zGrHIBSidC/fllDRzhQtu1+SY77iaA6q/0rDLigpGJgWTr ovIx5pvhu9OIOmHubTmfg20js0Wh0EPh3fdZ1V+XAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU/u56qvFynQhK4KQb8cKjN9QtppEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2QyYjExZTBmLTAxMTItNGM0ZS04YWE0LTE2ODc4OGZkNmFhNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD76jANBgkqhkiG9w0BAQsFAAOCAQEAAm6DsaolI8JzE3ciHY7x92gL qmt0XwOCN/i1edmpwvDU+8UjHv67AtFBx66QOpuQB54PzHvL80eJ8peC8DVSxwIF 93oRSG2xdfQP050/rmat/SVFKswm9CMlWXQQxUsizWh2tnUV3SsZ/3Xmkau6WEtH vqJAsPenWp5QvPJyt1bgbDQHl8gjR4JZRWaDWPzQLXtlHFaGCN2fuHEkKKv/M6tb GRWwyUzMuhss9sjt/qi3C85aVsupNvV/pdTPBWeuCJ9EnHxEARloMRpZL7MBOnQ4 ZLFyyxJG58uISVRQ9K854TZinQNOt3qoPO7kSKnZ2wziPt9y2gzFtQMZzZ3fDA== -----END CERTIFICATE-----Generated at Mon Oct 20 13:52:40 2025 by rpki-client