$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f504ccce-2eee-4202-842d-dad59cabe141.roa File: f504ccce-2eee-4202-842d-dad59cabe141.roa (raw, json) Hash identifier: XOZ/NE9W+iv53tkYSUH1nBDjwHywm9jPrgxFXVobg6E= Subject key identifier: FF:58:B4:0A:69:E0:F0:68:CA:E2:BA:57:42:4C:E7:33:AD:F1:85:81 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2BD4CAFEBB3324338827C047B22C8A7F53C9EC6C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f504ccce-2eee-4202-842d-dad59cabe141.roa Signing time: Fri 26 Sep 2025 18:11:02 +0000 ROA not before: Fri 26 Sep 2025 18:11:02 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:8000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:d4:ca:fe:bb:33:24:33:88:27:c0:47:b2:2c:8a:7f:53:c9:ec:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:11:02 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=87e3dfab1103d2e5f6281c73e2beee0127cea7ced06c73ee737b2cd3221f3b33, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6d:2f:b8:db:90:bf:d0:83:14:c4:39:b7:87: 4d:04:f3:9a:a8:a6:d1:48:d1:ee:91:0b:10:62:32: f1:54:97:64:eb:76:f5:de:39:83:a2:96:35:6a:61: 4e:64:83:b6:75:df:3d:1c:db:20:c0:9a:2d:af:ed: ba:ef:ba:08:f2:1b:9d:d1:5e:06:d7:fc:44:7d:a7: f1:41:97:75:2b:f3:c8:75:d9:e0:de:88:4f:8a:6c: 91:a7:d5:16:62:88:ec:e4:d8:57:cd:e4:99:a5:61: c8:60:a3:94:99:47:51:4f:9e:da:49:09:81:2b:01: 0b:a7:6d:f8:2e:5e:b4:2a:51:06:60:2a:14:4c:36: 8f:65:bd:1f:23:62:a9:c0:41:42:c9:ab:16:c2:3c: e7:fe:42:c1:ac:09:35:86:c1:9f:bf:db:ae:17:88: 81:94:1c:7b:6b:13:94:5e:7b:47:17:c5:68:e5:45: f9:ea:1b:f9:57:80:a3:46:8e:f5:c2:b0:51:5b:95: 29:54:31:66:0b:01:93:51:eb:7f:60:48:25:db:00: f3:b9:d0:21:b1:7f:e4:21:5f:57:28:6c:a9:de:f9: 0d:23:11:f3:35:fb:4f:e2:04:ae:dc:83:83:d7:57: 9b:ba:9a:25:71:75:f1:89:66:d7:2c:4c:fd:4e:bb: 2e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:58:B4:0A:69:E0:F0:68:CA:E2:BA:57:42:4C:E7:33:AD:F1:85:81 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f504ccce-2eee-4202-842d-dad59cabe141.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:8000::/40 Signature Algorithm: sha256WithRSAEncryption 1d:ef:e0:1c:ce:33:e0:a8:49:ce:ed:d9:5d:5c:c4:c6:80:54: 65:32:9f:1d:39:a1:b5:e3:23:25:c5:1d:53:13:dc:df:43:98: 43:7a:95:17:14:b5:8c:59:ac:e0:84:d4:98:fc:71:20:80:12: 91:bc:21:18:78:55:8e:84:90:47:72:cb:11:39:a5:67:26:ed: 23:3e:80:81:78:42:b0:74:ea:64:af:2e:c2:60:c7:91:db:30: 4e:52:54:d2:09:b5:d3:41:57:71:d1:16:0d:89:f9:20:74:87: 4c:99:2d:58:98:a6:ce:dd:0f:41:55:70:ec:15:b8:c7:d3:0f: 5a:85:ae:aa:22:23:4c:9f:bf:c3:08:29:ce:1e:34:b8:c9:d4: b0:d6:cd:52:b8:8e:70:4e:35:49:2f:c8:8c:77:32:97:6d:fd: b7:15:5a:14:f2:90:66:34:6c:e5:e8:5c:e1:9f:fb:35:81:d4: 7b:14:ec:59:48:af:97:4b:71:dc:37:90:3b:47:61:6e:ca:97: 74:30:e4:7e:63:b8:e3:4f:d7:74:00:91:20:63:92:59:3b:04: 4d:fb:c1:ac:ed:2c:45:7b:ce:02:e3:67:3a:60:0d:c7:e1:6f: 41:30:8c:52:01:b1:90:43:1f:49:68:b0:86:71:65:df:0b:1a: 8c:7a:e6:8a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUK9TK/rszJDOIJ8BHsiyKf1PJ7GwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgxMTAyWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4N2UzZGZhYjExMDNkMmU1ZjYyODFjNzNlMmJlZWUwMTI3 Y2VhN2NlZDA2YzczZWU3MzdiMmNkMzIyMWYzYjMzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxbS+425C/0IMUxDm3h00E85qoptFI0e6RCxBiMvFUl2Tr dvXeOYOiljVqYU5kg7Z13z0c2yDAmi2v7brvugjyG53RXgbX/ER9p/FBl3Ur88h1 2eDeiE+KbJGn1RZiiOzk2FfN5JmlYchgo5SZR1FPntpJCYErAQunbfguXrQqUQZg KhRMNo9lvR8jYqnAQULJqxbCPOf+QsGsCTWGwZ+/264XiIGUHHtrE5Ree0cXxWjl RfnqG/lXgKNGjvXCsFFblSlUMWYLAZNR639gSCXbAPO50CGxf+QhX1cobKne+Q0j EfM1+0/iBK7cg4PXV5u6miVxdfGJZtcsTP1Ouy4XAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU/1i0Cmng8GjK4rpXQkznM63xhYEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y1MDRjY2NlLTJlZWUtNDIwMi04NDJkLWRhZDU5Y2FiZTE0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD7gDANBgkqhkiG9w0BAQsFAAOCAQEAHe/gHM4z4KhJzu3ZXVzExoBU ZTKfHTmhteMjJcUdUxPc30OYQ3qVFxS1jFms4ITUmPxxIIASkbwhGHhVjoSQR3LL ETmlZybtIz6AgXhCsHTqZK8uwmDHkdswTlJU0gm100FXcdEWDYn5IHSHTJktWJim zt0PQVVw7BW4x9MPWoWuqiIjTJ+/wwgpzh40uMnUsNbNUriOcE41SS/IjHcyl239 txVaFPKQZjRs5ehc4Z/7NYHUexTsWUivl0tx3DeQO0dhbsqXdDDkfmO440/XdACR IGOSWTsETfvBrO0sRXvOAuNnOmANx+FvQTCMUgGxkEMfSWiwhnFl3wsajHrmig== -----END CERTIFICATE-----Generated at Mon Oct 20 13:53:13 2025 by rpki-client