$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa File: ec42dc47-0cc9-474a-9470-19700f756d36.roa (raw, json) Hash identifier: g/PlEwgho3cprvS+RHWV+ZDlu8Tm0q1Y9HfSRUTkB/0= Subject key identifier: 9D:CE:25:0C:8C:11:77:51:5C:2C:C8:05:C5:66:59:07:5F:33:01:11 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7B6F158E7CD9F55A9D6DDFCE70E751E8D3B03B36 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa Signing time: Fri 26 Sep 2025 18:00:07 +0000 ROA not before: Fri 26 Sep 2025 18:00:07 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:551c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 17 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:6f:15:8e:7c:d9:f5:5a:9d:6d:df:ce:70:e7:51:e8:d3:b0:3b:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:00:07 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=fb2355271e3de1ab4c714b2f7fa754d2c23e8adba94cafce77df3230bb877fa5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:b4:5c:dd:cd:4f:49:c0:8f:46:33:65:11:5d: 08:2a:58:b6:11:ad:f7:a8:f5:c3:2a:fc:d0:41:fb: 63:a1:a5:1f:d1:25:52:3e:48:6d:fc:46:a2:7e:ef: a3:2d:61:45:3b:1d:15:fc:c3:50:e2:27:d3:ba:39: 49:af:f2:c6:22:5e:55:67:53:21:9d:fc:71:26:cf: 31:18:03:ae:c4:38:f9:52:87:de:90:42:0e:df:a4: 44:99:65:77:30:4a:ee:c5:bc:c2:4e:48:de:6c:65: 57:dd:12:c4:10:3a:e7:87:c7:b6:ca:cd:26:7f:ee: 46:62:98:02:bd:f9:b1:e5:41:9d:f1:26:0e:b1:a1: 11:0a:5d:fa:97:3e:89:55:8c:fb:f7:91:9e:c1:49: ad:52:2e:fc:aa:19:f5:40:a6:4c:10:34:c6:6a:d9: 02:88:fe:8c:08:13:35:96:6a:74:c0:e4:c7:9c:6b: b8:b1:02:d5:2b:70:26:3e:66:ce:e4:59:84:f6:e5: b1:ca:7e:b7:35:25:dd:8e:f8:64:d6:0a:34:8f:8a: 2a:5a:d7:9a:4e:f8:b8:ff:1c:17:e7:2a:99:2a:6f: 7f:2c:d4:ac:bf:d3:85:ee:f7:b6:42:cd:79:e2:50: 13:41:05:0a:d6:6d:58:df:d5:80:c4:10:3b:14:31: c4:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:CE:25:0C:8C:11:77:51:5C:2C:C8:05:C5:66:59:07:5F:33:01:11 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551c::/48 Signature Algorithm: sha256WithRSAEncryption 06:12:2f:89:b6:6d:67:89:dd:b9:79:e4:37:de:9a:bb:38:c4: 54:b8:cb:c6:f5:17:3f:d2:ca:d8:ae:24:f7:97:8a:7d:54:be: 6e:c8:49:2d:70:a5:cf:59:b7:3d:d8:69:39:66:6f:e1:86:6d: 0b:a7:1e:63:3c:d7:db:d9:e2:4e:e3:bb:6d:51:54:19:eb:f9: 6e:9d:3c:7f:d5:d2:2c:52:24:29:b5:85:11:9a:ba:a3:ba:95: 91:a5:6f:ad:1e:3d:36:7a:fe:68:88:35:52:bf:8e:53:33:b1: d2:05:6d:a8:19:ee:3e:5e:6f:60:72:17:bc:cd:13:ba:fb:dd: 33:2d:1f:c4:76:58:f6:90:22:e0:e1:eb:4c:ee:c2:b5:7a:23: 75:1b:6a:6c:a7:d8:89:84:99:df:43:61:ca:9b:38:6d:ed:1e: 54:71:82:d7:9b:77:07:3d:7a:3c:dc:86:ec:fa:5a:ef:43:c2: c1:05:79:9f:10:d0:f0:c2:5c:05:c0:86:a2:87:95:e2:a1:27: c3:a0:3f:ab:53:25:53:36:26:1a:d3:51:79:75:c1:bb:65:88: 62:d5:56:7d:9a:aa:54:64:17:5a:d5:c2:52:37:ca:0d:7d:1d: 95:25:9b:92:65:36:ef:7a:23:1f:08:15:cf:ce:32:d2:d1:fa: 93:e4:59:d5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUe28VjnzZ9Vqdbd/OcOdR6NOwOzYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgwMDA3WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmYjIzNTUyNzFlM2RlMWFiNGM3MTRiMmY3ZmE3NTRkMmMy M2U4YWRiYTk0Y2FmY2U3N2RmMzIzMGJiODc3ZmE1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD3tFzdzU9JwI9GM2URXQgqWLYRrfeo9cMq/NBB+2OhpR/R JVI+SG38RqJ+76MtYUU7HRX8w1DiJ9O6OUmv8sYiXlVnUyGd/HEmzzEYA67EOPlS h96QQg7fpESZZXcwSu7FvMJOSN5sZVfdEsQQOueHx7bKzSZ/7kZimAK9+bHlQZ3x Jg6xoREKXfqXPolVjPv3kZ7BSa1SLvyqGfVApkwQNMZq2QKI/owIEzWWanTA5Mec a7ixAtUrcCY+Zs7kWYT25bHKfrc1Jd2O+GTWCjSPiipa15pO+Lj/HBfnKpkqb38s 1Ky/04Xu97ZCzXniUBNBBQrWbVjf1YDEEDsUMcRjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUnc4lDIwRd1FcLMgFxWZZB18zAREwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VjNDJkYzQ3LTBjYzktNDc0YS05NDcwLTE5NzAwZjc1NmQzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRwwDQYJKoZIhvcNAQELBQADggEBAAYSL4m2bWeJ3bl55Dfemrs4 xFS4y8b1Fz/SytiuJPeXin1Uvm7ISS1wpc9Ztz3YaTlmb+GGbQunHmM819vZ4k7j u21RVBnr+W6dPH/V0ixSJCm1hRGauqO6lZGlb60ePTZ6/miINVK/jlMzsdIFbagZ 7j5eb2ByF7zNE7r73TMtH8R2WPaQIuDh60zuwrV6I3Ubamyn2ImEmd9DYcqbOG3t HlRxgtebdwc9ejzchuz6Wu9DwsEFeZ8Q0PDCXAXAhqKHleKhJ8OgP6tTJVM2JhrT UXl1wbtliGLVVn2aqlRkF1rVwlI3yg19HZUlm5JlNu96Ix8IFc/OMtLR+pPkWdU= -----END CERTIFICATE-----Generated at Thu Oct 16 04:50:46 2025 by rpki-client