$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ffd2c3e2-4d89-41a3-b450-b53f95a9dcd3.roa File: ffd2c3e2-4d89-41a3-b450-b53f95a9dcd3.roa (raw, json) Hash identifier: p/DBeRLd4JWRz4LVC5rdCEvM6afdR/7VJTZvGBbObVU= Subject key identifier: 2D:AD:09:C1:03:85:06:94:E7:45:34:2A:74:34:95:61:90:64:27:59 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0B3964CCC1E4215BCB614A890587597433D743A0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ffd2c3e2-4d89-41a3-b450-b53f95a9dcd3.roa Signing time: Fri 26 Sep 2025 18:10:12 +0000 ROA not before: Fri 26 Sep 2025 18:10:12 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:39:64:cc:c1:e4:21:5b:cb:61:4a:89:05:87:59:74:33:d7:43:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:10:12 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=cef4c00e869eae74449f94d32d40ac46db375299afd891e6f58cd65abd265734, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f6:c3:97:4b:1f:d9:cd:a1:c7:39:cc:f4:af: 10:be:74:7b:d1:d8:92:08:45:d6:c0:cb:72:f0:a4: f7:1c:0e:db:0c:d6:a5:9d:07:6e:7a:15:5e:31:60: 2b:9e:d0:6e:31:cc:e6:80:a7:b1:16:2e:32:21:23: e3:00:11:0f:b9:7b:43:13:51:7a:c6:f9:30:6a:94: 47:53:38:20:18:f9:89:0f:33:f0:01:d9:30:c4:ee: fa:3b:13:f5:08:26:98:f5:40:89:db:52:05:f2:60: 5b:d9:50:db:9e:e0:0a:c9:03:17:45:fc:9d:10:c8: 48:29:8a:70:ec:ba:09:63:92:d0:a4:50:97:a7:cb: 0a:e2:a3:cc:9a:52:ba:a2:64:e8:74:0b:f6:ce:d6: 68:df:fa:33:06:7b:a8:a2:5e:1c:2a:71:ca:b9:6e: db:55:8d:e3:01:8e:8e:3b:79:7b:11:7f:03:1d:47: ac:2f:92:f1:16:59:cb:b3:83:7c:11:34:c6:d5:be: 90:da:14:53:e6:9b:7a:95:e0:ff:7c:52:d4:c6:1c: 12:cc:e5:89:7c:c7:8b:14:3d:0c:4b:b6:6a:a0:be: 82:77:71:7c:b7:b1:d6:34:6c:62:1e:d0:26:9c:35: 88:79:a9:f0:70:20:40:1f:b1:fb:1d:b9:81:d2:61: cd:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:AD:09:C1:03:85:06:94:E7:45:34:2A:74:34:95:61:90:64:27:59 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ffd2c3e2-4d89-41a3-b450-b53f95a9dcd3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e200::/40 Signature Algorithm: sha256WithRSAEncryption 46:7d:88:00:53:a0:41:62:30:13:a1:24:36:07:d9:0c:35:73: 06:ae:df:25:7c:4e:b2:0b:e6:3a:93:e5:63:a6:d9:30:79:6f: 84:f1:7b:da:93:94:a5:af:42:52:ce:69:59:3d:35:33:36:29: 5c:af:5f:b8:00:8f:55:52:f2:15:4d:9b:ae:e3:dc:38:3a:d1: 94:05:bd:bf:81:12:47:06:92:53:bc:be:0d:d9:64:8e:7d:10: 5a:a2:bf:8f:2e:4e:2f:99:7d:59:83:bb:5c:0b:33:17:64:c0: 6d:97:7b:fb:ea:d9:85:e9:8c:82:1d:76:61:65:8a:ad:ac:75: 9e:e9:f2:d6:c9:aa:1f:0f:78:b3:02:64:25:63:f5:df:de:90: b4:82:90:c0:e1:f6:56:90:3f:9c:f6:a9:2a:4a:c3:9f:3b:84: f6:74:bf:1f:7b:74:d5:39:56:35:4a:80:6d:9c:d6:4b:aa:db: aa:b9:80:c4:25:9d:fe:b6:76:92:4e:4d:de:e1:8f:15:d9:59: c4:a7:85:84:0e:f6:9a:08:9b:16:ba:35:03:b8:53:0b:c3:59: d0:5f:dc:18:e1:12:17:51:e4:36:b5:be:c7:7d:b1:40:d8:37: ed:61:34:c1:08:0c:d5:34:4b:f9:cb:5b:56:2a:c5:f1:b5:98: 50:81:b6:16 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUCzlkzMHkIVvLYUqJBYdZdDPXQ6AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgxMDEyWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZWY0YzAwZTg2OWVhZTc0NDQ5Zjk0ZDMyZDQwYWM0NmRi Mzc1Mjk5YWZkODkxZTZmNThjZDY1YWJkMjY1NzM0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCd9sOXSx/ZzaHHOcz0rxC+dHvR2JIIRdbAy3LwpPccDtsM 1qWdB256FV4xYCue0G4xzOaAp7EWLjIhI+MAEQ+5e0MTUXrG+TBqlEdTOCAY+YkP M/AB2TDE7vo7E/UIJpj1QInbUgXyYFvZUNue4ArJAxdF/J0QyEgpinDsugljktCk UJenywrio8yaUrqiZOh0C/bO1mjf+jMGe6iiXhwqccq5bttVjeMBjo47eXsRfwMd R6wvkvEWWcuzg3wRNMbVvpDaFFPmm3qV4P98UtTGHBLM5Yl8x4sUPQxLtmqgvoJ3 cXy3sdY0bGIe0CacNYh5qfBwIEAfsfsduYHSYc1ZAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQULa0JwQOFBpTnRTQqdDSVYZBkJ1kwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ZmZDJjM2UyLTRkODktNDFhMy1iNDUwLWI1M2Y5NWE5ZGNkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74jANBgkqhkiG9w0BAQsFAAOCAQEARn2IAFOgQWIwE6EkNgfZDDVz Bq7fJXxOsgvmOpPlY6bZMHlvhPF72pOUpa9CUs5pWT01MzYpXK9fuACPVVLyFU2b ruPcODrRlAW9v4ESRwaSU7y+Ddlkjn0QWqK/jy5OL5l9WYO7XAszF2TAbZd7++rZ hemMgh12YWWKrax1nuny1smqHw94swJkJWP1396QtIKQwOH2VpA/nPapKkrDnzuE 9nS/H3t01TlWNUqAbZzWS6rbqrmAxCWd/rZ2kk5N3uGPFdlZxKeFhA72mgibFro1 A7hTC8NZ0F/cGOESF1HkNrW+x32xQNg37WE0wQgM1TRL+ctbVirF8bWYUIG2Fg== -----END CERTIFICATE-----Generated at Mon Oct 20 13:53:19 2025 by rpki-client