$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/038bfc14-70d0-4845-80d9-ef20d84714c7.roa File: 038bfc14-70d0-4845-80d9-ef20d84714c7.roa (raw, json) Hash identifier: kG6LKic3DqKbds+cBKD0hv+GXC3ANo4rxth/hTXTSeM= Subject key identifier: BA:D6:DD:A3:75:B1:51:92:4C:88:AB:69:9E:99:15:5E:2A:30:DF:04 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7470681C4E780AF0B51CD4D1B07278EC6156E24E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/038bfc14-70d0-4845-80d9-ef20d84714c7.roa Signing time: Sat 27 Sep 2025 00:52:13 +0000 ROA not before: Sat 27 Sep 2025 00:52:13 +0000 ROA not after: Sat 01 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f10f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:70:68:1c:4e:78:0a:f0:b5:1c:d4:d1:b0:72:78:ec:61:56:e2:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 27 00:52:13 2025 GMT Not After : Nov 1 23:59:59 2025 GMT Subject: serialNumber=f29d59ecfa54feab7c52f07e2b126da5172fa9161511a88123a9ae7cec78cefe, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:7a:b6:af:84:00:4e:80:7d:07:e6:40:75:62: 07:ea:1e:ff:db:4b:d0:94:cc:9b:9f:f8:2c:5e:99: 68:99:96:f3:ca:59:b4:21:2b:df:76:da:f9:3e:3e: 1d:02:73:2c:e0:ca:c3:34:c9:59:8d:8d:33:f9:bc: 5d:6f:bd:5e:6b:3d:64:5a:1f:2b:1e:b8:36:c1:bb: 1d:e5:0e:3f:c0:9f:25:ab:5c:b7:04:ae:50:9e:66: 78:01:eb:21:7f:a8:09:22:2b:6a:32:fa:07:d7:28: b5:56:5f:11:40:70:45:b9:e4:be:90:74:8d:ab:d7: a0:52:72:c5:17:e1:ab:7b:d7:b4:a5:65:0a:fb:ba: 52:db:e5:f3:e4:45:76:d5:2a:5c:09:d2:12:29:92: b0:99:d4:19:bf:cd:a8:66:f2:f2:89:48:4b:f0:8c: 59:b6:cd:c5:78:06:a5:ab:02:94:5e:ba:d9:c5:ac: cc:dd:c2:fb:14:5d:c3:1e:ed:30:00:23:d2:be:b1: e5:9c:0a:59:f3:27:ff:74:b6:10:7b:4c:14:3c:57: 83:df:a0:4f:e9:5c:19:25:3d:31:72:47:82:08:6c: a7:19:c1:2a:22:96:da:f4:54:ab:fc:16:86:93:c3: 68:d3:17:3b:c0:3c:74:c4:16:d0:89:55:6e:d4:9d: ed:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:D6:DD:A3:75:B1:51:92:4C:88:AB:69:9E:99:15:5E:2A:30:DF:04 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/038bfc14-70d0-4845-80d9-ef20d84714c7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f10f::/48 Signature Algorithm: sha256WithRSAEncryption 8d:ea:00:a9:b2:6d:35:70:03:d9:eb:24:5e:53:56:8c:3f:d6: 6e:6c:ff:00:c8:a1:6b:cc:92:c6:20:c6:2a:44:59:19:17:08: 7a:4d:af:74:aa:9d:01:41:ed:72:ff:41:bc:d2:48:25:88:39: 29:cf:dd:be:82:7e:2c:fe:11:75:8f:51:c1:1d:dd:a2:7d:97: b1:97:6f:1a:75:a3:f7:03:51:3b:55:56:73:b9:0e:90:92:0b: d3:b0:37:77:4c:1f:6c:39:0c:ee:09:81:f1:59:65:08:f4:9a: e0:e8:e7:d3:9a:c6:7e:ae:bd:87:f5:4b:d3:c6:96:ee:57:5c: 6e:d7:a7:28:4c:ef:81:c7:6a:10:90:c5:bf:e4:76:25:e1:3e: 85:38:80:24:7a:b9:dc:03:a0:33:ae:b5:98:6a:6d:f2:ac:1c: 43:5f:a3:7f:c1:bb:98:4a:05:27:a0:75:14:23:a3:67:47:b2: b4:a0:61:2e:4e:1e:56:99:fa:0b:06:b9:68:ac:5b:42:b6:c6: ae:32:c5:0b:d3:82:b7:74:5a:64:f3:bb:86:0f:25:03:d0:24: a5:86:eb:f9:0b:30:ae:5e:68:57:e2:6d:d3:30:e2:49:e7:09: db:16:bd:87:2f:13:0e:e2:40:9e:6e:0f:f6:fa:a5:17:f3:d9: cf:62:5e:d7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdHBoHE54CvC1HNTRsHJ47GFW4k4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI3MDA1MjEzWhcNMjUxMTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMjlkNTllY2ZhNTRmZWFiN2M1MmYwN2UyYjEyNmRhNTE3 MmZhOTE2MTUxMWE4ODEyM2E5YWU3Y2VjNzhjZWZlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAeravhABOgH0H5kB1YgfqHv/bS9CUzJuf+CxemWiZlvPK WbQhK9922vk+Ph0CcyzgysM0yVmNjTP5vF1vvV5rPWRaHyseuDbBux3lDj/AnyWr XLcErlCeZngB6yF/qAkiK2oy+gfXKLVWXxFAcEW55L6QdI2r16BScsUX4at717Sl ZQr7ulLb5fPkRXbVKlwJ0hIpkrCZ1Bm/zahm8vKJSEvwjFm2zcV4BqWrApReutnF rMzdwvsUXcMe7TAAI9K+seWcClnzJ/90thB7TBQ8V4PfoE/pXBklPTFyR4IIbKcZ wSoiltr0VKv8FoaTw2jTFzvAPHTEFtCJVW7Une0ZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUutbdo3WxUZJMiKtpnpkVXiow3wQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzAzOGJmYzE0LTcwZDAtNDg0NS04MGQ5LWVmMjBkODQ3MTRjNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78Q8wDQYJKoZIhvcNAQELBQADggEBAI3qAKmybTVwA9nrJF5TVow/ 1m5s/wDIoWvMksYgxipEWRkXCHpNr3SqnQFB7XL/QbzSSCWIOSnP3b6Cfiz+EXWP UcEd3aJ9l7GXbxp1o/cDUTtVVnO5DpCSC9OwN3dMH2w5DO4JgfFZZQj0muDo59Oa xn6uvYf1S9PGlu5XXG7XpyhM74HHahCQxb/kdiXhPoU4gCR6udwDoDOutZhqbfKs HENfo3/Bu5hKBSegdRQjo2dHsrSgYS5OHlaZ+gsGuWisW0K2xq4yxQvTgrd0WmTz u4YPJQPQJKWG6/kLMK5eaFfibdMw4knnCdsWvYcvEw7iQJ5uD/b6pRfz2c9iXtc= -----END CERTIFICATE-----Generated at Mon Oct 20 12:22:45 2025 by rpki-client