$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/df5a5b5e-7d3e-401e-a4e6-4d4a0175d77f.roa File: df5a5b5e-7d3e-401e-a4e6-4d4a0175d77f.roa (raw, json) Hash identifier: mbqJ5V8wgWgMcttGlvngpD338gifd80E2LPKDaLuxKA= Subject key identifier: 59:DD:1E:2B:B5:CF:3B:3F:6C:4C:B9:49:C5:F2:2A:2E:81:8B:51:21 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7B837FA2A7F41F9D07968A9A64AF6670198669EF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/df5a5b5e-7d3e-401e-a4e6-4d4a0175d77f.roa Signing time: Mon 06 Oct 2025 17:40:20 +0000 ROA not before: Mon 06 Oct 2025 17:40:20 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6117::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:83:7f:a2:a7:f4:1f:9d:07:96:8a:9a:64:af:66:70:19:86:69:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 6 17:40:20 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=8dd4740e76c07b19f96e5bb5a9fb818d4a51adbc16cac74d799329b0a7855f9e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:32:75:e8:ea:48:80:31:da:11:a1:f1:c0:3c: 2e:dd:50:d6:60:af:5e:fa:ad:e4:a6:b3:51:46:a5: 31:bf:25:58:68:6b:66:fa:5a:06:71:1a:d9:3a:02: d6:4c:0a:6f:ca:b1:f4:91:bd:ee:d8:a9:d2:73:fb: 8b:1e:ea:d0:13:6a:e6:d2:a0:2b:df:93:77:24:1b: c0:27:0e:62:5c:04:07:15:98:25:0f:c6:e8:eb:95: e2:4a:aa:2e:cb:94:58:cd:61:19:79:07:58:64:a6: b7:12:32:12:37:65:45:4f:05:e6:52:70:63:53:17: 35:d7:7d:1f:a1:8c:fc:cb:7e:64:23:02:5e:49:93: f2:5d:29:b5:89:eb:92:a3:cd:de:00:ea:04:84:66: 9b:e7:3b:45:5b:c0:8c:b4:b9:17:0b:2d:5b:fd:fa: 6e:c7:66:a3:4a:c2:21:63:e9:a4:60:39:a1:5b:08: bc:6a:99:30:21:f8:9c:9f:68:aa:d7:fb:95:53:50: e9:fd:85:7e:8d:62:63:0c:76:b7:a0:85:72:11:3e: f3:f1:87:a8:27:c7:61:fb:e6:19:87:0c:ff:b6:1c: 3d:a7:27:c1:6d:97:9d:58:20:d6:7b:e7:43:74:63: f4:64:48:ea:d8:21:b6:70:1f:76:02:4e:ed:a8:b5: a3:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:DD:1E:2B:B5:CF:3B:3F:6C:4C:B9:49:C5:F2:2A:2E:81:8B:51:21 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/df5a5b5e-7d3e-401e-a4e6-4d4a0175d77f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6117::/48 Signature Algorithm: sha256WithRSAEncryption 04:a0:3e:ba:19:ca:02:3e:1d:9b:13:f4:84:a4:7d:ab:f4:b3: 37:0c:15:8c:2e:b4:f8:df:22:66:ac:54:f7:07:1d:14:1a:ce: 18:4b:1d:69:28:26:5a:f2:36:06:6c:17:d7:22:bf:3c:58:55: 25:1d:3f:f9:8e:c0:d8:6d:09:f3:af:26:21:2e:dd:83:8b:41: f0:89:d7:bb:46:b4:6f:cf:6b:6d:1d:f5:9a:c2:0f:f6:07:41: 88:02:f7:dc:1d:f1:ef:c3:4f:d4:76:44:7e:d9:06:cf:d8:50: 12:3d:37:bd:f8:0d:81:f5:4b:b7:46:bd:4d:26:12:d9:01:d7: 30:b6:1b:9b:8c:37:8f:74:1e:d9:be:6b:bb:80:a9:4c:98:7d: 1a:cd:64:27:9d:9c:50:35:6c:05:78:86:12:5a:c1:83:be:80: 8f:5c:08:a3:96:90:0b:49:dd:fc:f3:83:30:13:b9:a6:9a:c9: b1:e0:7c:d5:84:24:f5:da:88:6c:a3:0a:d2:e6:00:04:14:42: 89:ec:ad:21:41:ed:70:6d:b0:81:a4:4c:02:d0:f6:d1:15:3a: 18:f0:e6:a4:2c:c0:a3:a2:d7:af:c9:97:65:f1:95:6e:71:7f: 63:5e:8c:5a:a1:56:0c:c5:b9:2e:bd:4d:bc:1b:54:dd:97:51: 69:e6:48:ea -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUe4N/oqf0H50HloqaZK9mcBmGae8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDA2MTc0MDIwWhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZGQ0NzQwZTc2YzA3YjE5Zjk2ZTViYjVhOWZiODE4ZDRh NTFhZGJjMTZjYWM3NGQ3OTkzMjliMGE3ODU1ZjllMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+MnXo6kiAMdoRofHAPC7dUNZgr176reSms1FGpTG/JVho a2b6WgZxGtk6AtZMCm/KsfSRve7YqdJz+4se6tATaubSoCvfk3ckG8AnDmJcBAcV mCUPxujrleJKqi7LlFjNYRl5B1hkprcSMhI3ZUVPBeZScGNTFzXXfR+hjPzLfmQj Al5Jk/JdKbWJ65Kjzd4A6gSEZpvnO0VbwIy0uRcLLVv9+m7HZqNKwiFj6aRgOaFb CLxqmTAh+JyfaKrX+5VTUOn9hX6NYmMMdreghXIRPvPxh6gnx2H75hmHDP+2HD2n J8Ftl51YINZ750N0Y/RkSOrYIbZwH3YCTu2otaN3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUWd0eK7XPOz9sTLlJxfIqLoGLUSEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RmNWE1YjVlLTdkM2UtNDAxZS1hNGU2LTRkNGEwMTc1ZDc3Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRcwDQYJKoZIhvcNAQELBQADggEBAASgProZygI+HZsT9ISkfav0 szcMFYwutPjfImasVPcHHRQazhhLHWkoJlryNgZsF9civzxYVSUdP/mOwNhtCfOv JiEu3YOLQfCJ17tGtG/Pa20d9ZrCD/YHQYgC99wd8e/DT9R2RH7ZBs/YUBI9N734 DYH1S7dGvU0mEtkB1zC2G5uMN490Htm+a7uAqUyYfRrNZCednFA1bAV4hhJawYO+ gI9cCKOWkAtJ3fzzgzATuaaaybHgfNWEJPXaiGyjCtLmAAQUQonsrSFB7XBtsIGk TALQ9tEVOhjw5qQswKOi16/Jl2XxlW5xf2NejFqhVgzFuS69TbwbVN2XUWnmSOo= -----END CERTIFICATE-----Generated at Mon Oct 20 13:53:00 2025 by rpki-client