$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa File: da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa (raw, json) Hash identifier: gOt7HFD5AOSQLl0M1fneHvCxF2bFrVdhM5VpEmHJYIs= Subject key identifier: 90:97:58:25:15:2C:CD:B3:A5:51:18:54:7D:20:B4:1A:A2:3C:54:00 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 225B3A00E5FB1491D43A6D8C2397F9A4E5266EFC Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa Signing time: Fri 26 Sep 2025 18:00:34 +0000 ROA not before: Fri 26 Sep 2025 18:00:34 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:5b:3a:00:e5:fb:14:91:d4:3a:6d:8c:23:97:f9:a4:e5:26:6e:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:00:34 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=807de210476c92e2ac16bc7fd0d6a2ee5da0f62ed67b8bf64b3f5a8dd290624f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:79:f4:f2:ab:c9:2f:ac:4e:9f:7a:32:79:3d: e3:16:bd:28:79:60:c9:b3:5c:97:51:01:71:b9:1f: a0:f6:8a:f1:4b:8a:39:09:d8:fb:de:15:c8:c8:67: 11:f7:3d:f5:cb:a4:39:6b:bb:3a:cc:87:c1:12:42: a8:9d:3d:51:50:8a:13:79:eb:8b:22:ae:f0:f5:d6: 05:7a:d5:7f:f8:bc:ae:8c:e0:f0:8c:99:cc:2c:68: f1:06:44:fd:b9:de:2d:26:3a:e5:65:b1:f6:35:33: af:55:70:84:cd:e3:4a:17:5e:63:ce:eb:06:5a:a0: 56:87:33:1a:10:bf:d6:da:ac:f2:43:1a:50:6d:f2: 5b:f3:5c:1c:51:d4:68:f4:d7:cf:2d:68:88:e3:89: f5:e5:4f:28:7e:f4:05:cd:9a:1b:ac:d3:4b:8c:93: 35:6b:1f:26:af:43:32:7e:a2:fa:dc:2e:1e:b9:91: 24:b3:76:2a:41:21:29:7f:97:cb:fe:4d:c8:12:a3: 1a:fa:dd:4d:05:48:30:4c:55:6a:89:39:eb:40:69: 79:08:d6:11:ac:fd:90:a4:b6:9d:a8:fd:f5:6f:4b: c9:d9:e8:b1:25:a4:fe:5c:72:bf:a5:ef:f6:5f:e4: 11:73:5b:a9:f4:5d:65:72:f1:c9:23:fe:9a:c7:5f: b1:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:97:58:25:15:2C:CD:B3:A5:51:18:54:7D:20:B4:1A:A2:3C:54:00 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:500::/48 Signature Algorithm: sha256WithRSAEncryption 0a:b1:bb:fd:e2:db:0f:2c:58:d7:2c:a6:19:e8:7e:50:96:ce: ea:b3:aa:c9:c1:b3:ac:e3:b8:6f:ac:18:9e:78:26:1d:48:13: ed:14:dd:00:dc:54:22:67:e2:36:44:33:de:30:bd:25:a3:ec: 62:1e:70:d2:e2:55:cf:4c:c1:d3:b8:b1:cb:2a:b0:35:82:05: fd:d4:76:cb:bc:dc:5b:e3:64:1d:2c:ff:b3:66:9c:58:85:a3: 37:eb:59:87:98:a3:a8:b2:1a:2c:2c:25:ec:a8:51:f1:46:ac: c8:4d:82:d0:e0:65:b7:48:54:68:f7:d8:8f:f9:aa:43:f1:6c: 34:8f:06:df:e5:d1:eb:1f:1d:13:d0:d3:e4:66:26:9d:79:94: a2:07:ef:76:ad:24:24:75:21:03:8f:0d:f6:b1:c5:ff:16:ad: b0:34:0f:94:71:8f:a0:e0:7b:f1:5c:9e:08:6b:80:08:10:f6: 36:26:8c:f8:8b:4c:30:98:cb:ff:63:fe:94:c4:03:99:39:9a: 6a:05:b3:22:67:dd:c4:66:bd:59:38:0c:96:ab:3a:03:a4:72: 2c:1d:58:85:a6:c9:45:69:4d:d2:dc:aa:a3:3d:23:25:dc:f0: 9f:15:de:e0:f8:8e:bf:a2:ef:87:6a:89:e3:fc:a1:30:85:a7: d9:2a:5e:c8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIls6AOX7FJHUOm2MI5f5pOUmbvwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgwMDM0WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDdkZTIxMDQ3NmM5MmUyYWMxNmJjN2ZkMGQ2YTJlZTVk YTBmNjJlZDY3YjhiZjY0YjNmNWE4ZGQyOTA2MjRmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDhefTyq8kvrE6fejJ5PeMWvSh5YMmzXJdRAXG5H6D2ivFL ijkJ2PveFcjIZxH3PfXLpDlruzrMh8ESQqidPVFQihN564sirvD11gV61X/4vK6M 4PCMmcwsaPEGRP253i0mOuVlsfY1M69VcITN40oXXmPO6wZaoFaHMxoQv9barPJD GlBt8lvzXBxR1Gj0188taIjjifXlTyh+9AXNmhus00uMkzVrHyavQzJ+ovrcLh65 kSSzdipBISl/l8v+TcgSoxr63U0FSDBMVWqJOetAaXkI1hGs/ZCktp2o/fVvS8nZ 6LElpP5ccr+l7/Zf5BFzW6n0XWVy8ckj/prHX7GXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUkJdYJRUszbOlURhUfSC0GqI8VAAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RhMGQwZjFmLWY4MmQtNDdiYi05YWM3LWVlMDlhNTFiM2YyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwBQAwDQYJKoZIhvcNAQELBQADggEBAAqxu/3i2w8sWNcsphnoflCW zuqzqsnBs6zjuG+sGJ54Jh1IE+0U3QDcVCJn4jZEM94wvSWj7GIecNLiVc9MwdO4 scsqsDWCBf3Udsu83FvjZB0s/7NmnFiFozfrWYeYo6iyGiwsJeyoUfFGrMhNgtDg ZbdIVGj32I/5qkPxbDSPBt/l0esfHRPQ0+RmJp15lKIH73atJCR1IQOPDfaxxf8W rbA0D5Rxj6Dge/FcnghrgAgQ9jYmjPiLTDCYy/9j/pTEA5k5mmoFsyJn3cRmvVk4 DJarOgOkciwdWIWmyUVpTdLcqqM9IyXc8J8V3uD4jr+i74dqieP8oTCFp9kqXsg= -----END CERTIFICATE-----Generated at Mon Oct 20 13:52:30 2025 by rpki-client