$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/dac6a5ca-4991-4707-9646-5eeece7b0bc5.roa File: dac6a5ca-4991-4707-9646-5eeece7b0bc5.roa (raw, json) Hash identifier: QkBTa9UDPrYCXxFU36iTfPnKDtC/7nLCcDF9+//6VeA= Subject key identifier: AE:06:F0:48:A1:FE:2A:00:22:42:AA:C9:E0:D0:4B:4F:75:B4:DA:8B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 19112401F4103DF42FA293CF0EFA73F391B40AC4 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/dac6a5ca-4991-4707-9646-5eeece7b0bc5.roa Signing time: Mon 06 Oct 2025 17:38:07 +0000 ROA not before: Mon 06 Oct 2025 17:38:07 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6112::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:11:24:01:f4:10:3d:f4:2f:a2:93:cf:0e:fa:73:f3:91:b4:0a:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 6 17:38:07 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=363d063dde94c6a942d044141f0c9de67e4ac19c361aa240ee0565efbf557efb, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d9:e4:f2:76:c9:3b:81:ab:aa:be:99:6b:f2: 1b:73:33:94:ed:93:b5:c5:f9:0f:12:a2:be:83:f8: 8c:d7:4e:81:6d:04:5c:d9:1c:ef:bb:07:d8:4a:18: a1:b6:6d:5a:fe:6c:53:64:88:a7:0e:70:8e:6c:57: f1:38:9f:44:ec:55:1d:13:0b:40:51:fa:ab:cb:8a: 81:45:da:e4:26:1e:63:8e:28:f2:90:a3:25:af:dc: 4f:6d:3d:7e:d1:dd:ca:29:88:ff:4e:2b:83:6d:e1: 17:a9:e8:50:e5:09:de:59:1c:eb:af:86:70:e2:34: 96:02:18:a8:b6:88:c9:9d:59:5f:51:31:4a:c2:ae: 83:87:12:a5:dc:04:5e:8f:78:b0:76:ff:77:95:1a: da:e2:c2:90:70:32:cd:18:f0:52:4c:5b:3d:b3:6f: 4c:f7:e9:2d:7e:c0:0b:cb:ff:80:6c:e0:0c:b5:ab: b8:0b:e3:90:bb:3a:3b:0e:a8:8f:ca:a5:11:f8:f8: bd:f7:90:e9:6e:0c:ae:ce:68:ad:fb:45:1b:4b:43: 02:02:a0:6a:bd:1d:7c:40:99:4e:50:8d:3b:1d:eb: b7:32:1c:6e:db:98:14:a6:6f:27:01:99:8d:d1:54: 81:db:15:e0:15:8f:f0:6e:3b:67:9f:8d:5a:b8:ee: 0f:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:06:F0:48:A1:FE:2A:00:22:42:AA:C9:E0:D0:4B:4F:75:B4:DA:8B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/dac6a5ca-4991-4707-9646-5eeece7b0bc5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6112::/48 Signature Algorithm: sha256WithRSAEncryption 15:14:cd:db:33:a3:74:ba:71:3b:c5:2d:07:a5:6d:6e:08:01: 08:e7:73:8c:11:ed:c3:85:51:2f:37:50:13:6d:78:36:2f:09: c4:e6:b2:af:a4:a4:13:72:39:fc:18:28:e8:39:3d:17:c9:e0: f8:24:28:b4:99:a5:85:2c:24:a8:be:5f:10:66:dd:28:ea:0f: 0b:c3:49:10:f2:34:d6:9c:ff:b7:e4:97:27:2f:a5:4c:b3:32: e1:f6:79:90:7e:9e:69:4b:11:1d:ff:b9:81:2d:31:d0:48:5f: b5:28:a6:15:86:77:67:6d:8d:65:40:65:da:31:e9:36:ca:02: a0:3a:8f:08:cf:0f:55:61:66:e9:d6:67:28:e7:18:9c:d4:97: bb:a8:42:7f:5c:ba:ba:71:78:97:88:80:3d:ab:de:65:59:bc: 6d:d1:e2:26:c8:86:e9:1c:de:09:45:1d:b9:08:8b:1d:51:36: 8d:c5:e5:67:6b:15:36:76:8e:bd:37:d9:ad:f3:5e:e6:8f:f1: e8:81:df:b0:07:46:03:85:9d:69:24:5f:33:a0:7d:28:57:f0: ea:de:44:13:34:4b:ae:de:69:0b:e0:19:75:64:6b:d9:da:b9: 75:8b:17:98:9c:c8:85:a9:bc:bd:64:a0:a3:51:36:75:e7:e6: d0:c7:26:28 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGREkAfQQPfQvopPPDvpz85G0CsQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDA2MTczODA3WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNjNkMDYzZGRlOTRjNmE5NDJkMDQ0MTQxZjBjOWRlNjdl NGFjMTljMzYxYWEyNDBlZTA1NjVlZmJmNTU3ZWZiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDR2eTydsk7gauqvplr8htzM5Ttk7XF+Q8Sor6D+IzXToFt BFzZHO+7B9hKGKG2bVr+bFNkiKcOcI5sV/E4n0TsVR0TC0BR+qvLioFF2uQmHmOO KPKQoyWv3E9tPX7R3copiP9OK4Nt4Rep6FDlCd5ZHOuvhnDiNJYCGKi2iMmdWV9R MUrCroOHEqXcBF6PeLB2/3eVGtriwpBwMs0Y8FJMWz2zb0z36S1+wAvL/4Bs4Ay1 q7gL45C7OjsOqI/KpRH4+L33kOluDK7OaK37RRtLQwICoGq9HXxAmU5QjTsd67cy HG7bmBSmbycBmY3RVIHbFeAVj/BuO2efjVq47g/JAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUrgbwSKH+KgAiQqrJ4NBLT3W02oswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RhYzZhNWNhLTQ5OTEtNDcwNy05NjQ2LTVlZWVjZTdiMGJjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRIwDQYJKoZIhvcNAQELBQADggEBABUUzdszo3S6cTvFLQelbW4I AQjnc4wR7cOFUS83UBNteDYvCcTmsq+kpBNyOfwYKOg5PRfJ4PgkKLSZpYUsJKi+ XxBm3SjqDwvDSRDyNNac/7fklycvpUyzMuH2eZB+nmlLER3/uYEtMdBIX7UophWG d2dtjWVAZdox6TbKAqA6jwjPD1VhZunWZyjnGJzUl7uoQn9curpxeJeIgD2r3mVZ vG3R4ibIhukc3glFHbkIix1RNo3F5WdrFTZ2jr032a3zXuaP8eiB37AHRgOFnWkk XzOgfShX8OreRBM0S67eaQvgGXVka9nauXWLF5icyIWpvL1koKNRNnXn5tDHJig= -----END CERTIFICATE-----Generated at Mon Oct 20 16:24:49 2025 by rpki-client