$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/18a81d27-7f1e-4a83-80cc-8b089f18a344.roa File: 18a81d27-7f1e-4a83-80cc-8b089f18a344.roa (raw, json) Hash identifier: lTcYT1iFxwtVx3ufP69efKLZQ+V5q54ziQDBb3bYzlQ= Subject key identifier: CE:FD:67:96:3F:F9:9B:E5:3E:F9:04:FE:71:18:6F:46:E0:57:D0:15 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7E1366FBAC9B45C5127DF1B3044A73C7E069186A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/18a81d27-7f1e-4a83-80cc-8b089f18a344.roa Signing time: Sat 27 Sep 2025 00:52:41 +0000 ROA not before: Sat 27 Sep 2025 00:52:41 +0000 ROA not after: Sat 01 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f107::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 20 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:13:66:fb:ac:9b:45:c5:12:7d:f1:b3:04:4a:73:c7:e0:69:18:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 27 00:52:41 2025 GMT Not After : Nov 1 23:59:59 2025 GMT Subject: serialNumber=e323af41134e21ab06be0ee1605210e3d4446ff875744437539230519fee8893, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:22:35:fa:4a:ab:74:cd:2f:49:7d:66:83:69: ca:c9:b9:ed:97:ea:50:25:cf:0f:e4:38:94:13:01: 58:25:67:0d:45:05:17:9d:8c:79:20:dd:ad:ea:de: e6:a2:58:62:52:9f:1f:07:89:5f:ee:18:1f:a5:39: 9c:a2:5a:f1:92:04:77:f4:75:fb:ad:00:27:37:28: 56:42:b9:4a:ed:ce:53:b2:0b:29:ec:43:ec:0d:4a: 4a:f4:01:d3:99:f4:50:21:c6:6b:8b:65:a8:58:76: 06:b5:01:e7:41:66:8f:6a:7c:91:7c:2d:ab:bb:8d: b6:1c:d1:dc:8f:9e:03:ac:02:69:27:5b:bb:84:7b: a6:25:fa:e2:cc:ab:35:7e:f8:0d:ed:53:14:59:a4: 6a:2e:49:8f:53:e7:e0:76:e5:3f:9b:4a:5e:00:eb: 64:85:cf:4a:32:fb:60:90:f7:df:11:51:d4:9a:48: f1:2e:c5:f7:b6:08:34:1c:96:fa:59:48:8e:00:00: a7:2c:d6:32:4e:a0:87:ce:52:5a:ce:27:40:52:4e: 23:79:8c:66:8c:67:a4:78:70:93:5f:72:07:ba:8f: 96:03:75:70:16:9d:fb:3e:5d:9e:0e:b1:1f:77:76: 51:37:a4:b2:b5:e1:b1:38:53:cc:ac:7c:57:77:4a: 05:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:FD:67:96:3F:F9:9B:E5:3E:F9:04:FE:71:18:6F:46:E0:57:D0:15 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/18a81d27-7f1e-4a83-80cc-8b089f18a344.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f107::/48 Signature Algorithm: sha256WithRSAEncryption 55:9c:51:21:44:1d:9e:fd:29:23:63:41:da:10:34:e9:d4:2b: 91:0e:69:16:09:ae:0b:53:45:1d:cb:3d:9b:d0:49:78:11:35: 58:5a:f0:eb:e3:c0:7d:06:c3:64:02:0c:96:b1:40:e9:65:d8: 44:2a:1f:5c:43:05:d2:e5:43:05:69:f0:1e:1f:68:24:4b:49: 2b:25:c0:60:d7:59:0f:2f:72:b2:f2:f8:c3:53:2c:9f:f3:99: 52:03:bf:d3:a5:47:e1:fc:e2:60:c7:59:d8:5a:7d:fc:f3:64: 52:33:32:6c:53:63:41:f8:67:7d:64:9e:f2:b9:ca:3f:55:18: 6d:79:95:3a:5e:1f:8c:12:37:e1:1f:35:a0:3a:8c:9a:62:ad: a4:9c:79:7d:b1:e2:d1:ff:79:0e:2b:d1:db:7f:d8:d8:0b:84: 18:e0:13:bf:d5:89:25:49:e1:74:83:99:9c:57:28:5e:49:4e: b1:03:cc:90:c8:cd:ae:ba:1b:bd:c0:f2:0e:fd:c0:b7:a7:01: b3:33:6f:19:d9:83:0d:93:33:00:16:80:81:9e:71:3a:93:68: d7:e2:aa:89:12:d3:50:0e:cc:df:eb:a0:a1:07:cb:30:79:62: 53:c1:a8:67:07:f9:5e:a3:9a:01:ea:9a:5c:c2:d5:9b:cf:51: 6e:09:b7:fd -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfhNm+6ybRcUSffGzBEpzx+BpGGowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI3MDA1MjQxWhcNMjUxMTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMzIzYWY0MTEzNGUyMWFiMDZiZTBlZTE2MDUyMTBlM2Q0 NDQ2ZmY4NzU3NDQ0Mzc1MzkyMzA1MTlmZWU4ODkzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD6IjX6Sqt0zS9JfWaDacrJue2X6lAlzw/kOJQTAVglZw1F BRedjHkg3a3q3uaiWGJSnx8HiV/uGB+lOZyiWvGSBHf0dfutACc3KFZCuUrtzlOy CynsQ+wNSkr0AdOZ9FAhxmuLZahYdga1AedBZo9qfJF8Lau7jbYc0dyPngOsAmkn W7uEe6Yl+uLMqzV++A3tUxRZpGouSY9T5+B25T+bSl4A62SFz0oy+2CQ998RUdSa SPEuxfe2CDQclvpZSI4AAKcs1jJOoIfOUlrOJ0BSTiN5jGaMZ6R4cJNfcge6j5YD dXAWnfs+XZ4OsR93dlE3pLK14bE4U8ysfFd3SgXTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUzv1nlj/5m+U++QT+cRhvRuBX0BUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzE4YTgxZDI3LTdmMWUtNGE4My04MGNjLThiMDg5ZjE4YTM0NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QcwDQYJKoZIhvcNAQELBQADggEBAFWcUSFEHZ79KSNjQdoQNOnU K5EOaRYJrgtTRR3LPZvQSXgRNVha8OvjwH0Gw2QCDJaxQOll2EQqH1xDBdLlQwVp 8B4faCRLSSslwGDXWQ8vcrLy+MNTLJ/zmVIDv9OlR+H84mDHWdhaffzzZFIzMmxT Y0H4Z31knvK5yj9VGG15lTpeH4wSN+EfNaA6jJpiraSceX2x4tH/eQ4r0dt/2NgL hBjgE7/ViSVJ4XSDmZxXKF5JTrEDzJDIza66G73A8g79wLenAbMzbxnZgw2TMwAW gIGecTqTaNfiqokS01AOzN/roKEHyzB5YlPBqGcH+V6jmgHqmlzC1ZvPUW4Jt/0= -----END CERTIFICATE-----Generated at Sun Oct 19 22:55:59 2025 by rpki-client