$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1f114b0-d940-4fa0-8376-bac93d2868fc.roa File: e1f114b0-d940-4fa0-8376-bac93d2868fc.roa (raw, json) Hash identifier: qYpuExyTRVW0+i1BmMAc6P2CqqiD30Ox8Ck1m/qqLqo= Subject key identifier: 60:A1:64:0F:4B:19:C4:1D:44:0B:A3:6D:CB:05:01:AF:9F:9E:45:3B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5B5D29E1FAB6C2169C2DF5F6488E44843BB4472D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1f114b0-d940-4fa0-8376-bac93d2868fc.roa Signing time: Mon 29 Sep 2025 15:23:38 +0000 ROA not before: Mon 29 Sep 2025 15:23:38 +0000 ROA not after: Mon 03 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:5d:29:e1:fa:b6:c2:16:9c:2d:f5:f6:48:8e:44:84:3b:b4:47:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 29 15:23:38 2025 GMT Not After : Nov 3 23:59:59 2025 GMT Subject: serialNumber=2e4b87ddac7e378c3ea22db809a40e3733857604a1073a3448fb4a96adc6c122, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:f9:31:e6:83:4a:0e:16:e3:26:6d:9e:26:4f: 47:83:f0:33:2a:2e:59:ea:ca:73:01:60:05:9d:a4: 70:84:7a:17:be:82:32:d9:08:17:57:39:fb:18:db: 95:f3:fb:57:25:4f:83:50:f7:d3:ea:2f:68:4b:5c: ba:ce:45:5a:33:1e:45:c1:e2:ad:02:98:0a:f6:2b: 76:5a:97:14:fd:80:5e:74:ae:d4:d4:b4:51:5c:5b: 83:ef:23:aa:ab:ff:98:7b:be:13:85:e2:b2:f2:48: 93:07:19:ee:37:86:95:40:27:39:7d:a3:b0:65:ae: 11:72:d3:e0:af:ec:3c:80:44:f5:c4:2d:c8:d3:ff: 2a:41:71:ba:49:14:28:89:89:85:a0:07:a3:8f:8d: f4:84:6d:67:22:ca:93:7c:3d:c9:25:0f:55:ea:d3: 2b:4c:a4:bb:eb:3d:a3:44:a1:a8:fc:93:29:58:d1: ea:a3:b6:81:eb:cf:cc:03:cc:b5:57:33:cf:75:7b: be:bb:c2:2a:13:a5:4d:a5:84:b1:70:d4:6f:6b:42: 6f:59:9a:06:64:1f:e7:be:02:f2:91:eb:ce:a0:e8: d5:3e:cc:e6:93:5a:ca:3b:d5:1e:3d:72:ad:2d:48: a7:3d:18:fb:50:a1:33:1b:63:03:b9:72:ea:8c:f9: 41:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:A1:64:0F:4B:19:C4:1D:44:0B:A3:6D:CB:05:01:AF:9F:9E:45:3B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1f114b0-d940-4fa0-8376-bac93d2868fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4100::/40 Signature Algorithm: sha256WithRSAEncryption 63:3b:f0:e2:26:98:3b:38:92:a3:c4:33:85:04:f1:19:3e:f8: 83:ad:71:68:15:08:d1:a6:d3:88:b1:57:39:1a:0f:ee:34:fe: 63:0d:2c:eb:cd:96:e4:42:25:8b:44:e9:7c:09:d7:58:13:60: 84:dc:da:56:5c:fe:67:4c:26:c8:ac:c6:af:b0:5a:83:6a:86: 4a:c8:c7:1e:07:01:90:28:12:38:87:47:41:0e:c9:1f:d1:f3: df:35:f6:3d:70:d6:27:9e:61:0f:61:91:db:09:da:98:73:13: 9b:18:c6:db:55:97:8d:f6:38:d8:e7:e3:72:77:8f:b3:b4:bd: 0a:9a:e4:a8:21:03:90:9e:38:ea:97:1b:fb:57:a9:1b:17:54: ba:8e:ff:eb:be:7c:42:d0:ac:f7:48:c0:d7:ad:f2:6b:32:34: 84:1c:e9:6d:66:25:8b:0d:0e:44:26:97:7e:11:99:b6:ca:9f: 72:3f:76:20:0b:4d:c2:b7:73:4c:ca:28:e2:97:fd:92:26:b7: 02:45:f3:c4:a0:32:c6:a1:cd:a3:05:a3:4c:3d:a4:20:3b:84: a5:78:8e:b4:7d:ae:2b:3e:3c:11:72:0a:1f:f7:77:ad:73:0d: 5e:18:0f:83:84:09:c0:48:e8:c8:82:c3:7d:b8:6d:7a:11:28: f4:13:90:21 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUW10p4fq2whacLfX2SI5EhDu0Ry0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI5MTUyMzM4WhcNMjUxMTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZTRiODdkZGFjN2UzNzhjM2VhMjJkYjgwOWE0MGUzNzMz ODU3NjA0YTEwNzNhMzQ0OGZiNGE5NmFkYzZjMTIyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCG+THmg0oOFuMmbZ4mT0eD8DMqLlnqynMBYAWdpHCEehe+ gjLZCBdXOfsY25Xz+1clT4NQ99PqL2hLXLrORVozHkXB4q0CmAr2K3ZalxT9gF50 rtTUtFFcW4PvI6qr/5h7vhOF4rLySJMHGe43hpVAJzl9o7BlrhFy0+Cv7DyARPXE LcjT/ypBcbpJFCiJiYWgB6OPjfSEbWciypN8PcklD1Xq0ytMpLvrPaNEoaj8kylY 0eqjtoHrz8wDzLVXM891e767wioTpU2lhLFw1G9rQm9ZmgZkH+e+AvKR686g6NU+ zOaTWso71R49cq0tSKc9GPtQoTMbYwO5cuqM+UGbAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUYKFkD0sZxB1EC6NtywUBr5+eRTswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2UxZjExNGIwLWQ5NDAtNGZhMC04Mzc2LWJhYzkzZDI4NjhmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwQTANBgkqhkiG9w0BAQsFAAOCAQEAYzvw4iaYOziSo8QzhQTxGT74 g61xaBUI0abTiLFXORoP7jT+Yw0s682W5EIli0TpfAnXWBNghNzaVlz+Z0wmyKzG r7Bag2qGSsjHHgcBkCgSOIdHQQ7JH9Hz3zX2PXDWJ55hD2GR2wnamHMTmxjG21WX jfY42OfjcnePs7S9CprkqCEDkJ446pcb+1epGxdUuo7/6758QtCs90jA163yazI0 hBzpbWYliw0ORCaXfhGZtsqfcj92IAtNwrdzTMoo4pf9kia3AkXzxKAyxqHNowWj TD2kIDuEpXiOtH2uKz48EXIKH/d3rXMNXhgPg4QJwEjoyILDfbhtehEo9BOQIQ== -----END CERTIFICATE-----Generated at Mon Oct 20 14:02:46 2025 by rpki-client