$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1bc377fa-1761-4743-8aa4-75cb00b977af.roa File: 1bc377fa-1761-4743-8aa4-75cb00b977af.roa (raw, json) Hash identifier: 32cMxAXF+Kfl8nRDMzUd5L39E9FOe0UeqHSZ0x6a3Ew= Subject key identifier: F1:A7:36:EF:50:23:93:6F:4D:18:F9:4A:FD:09:50:3A:50:B9:6B:3E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 40B22677400EC558AC5B9AA8A1CFE247938682C3 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1bc377fa-1761-4743-8aa4-75cb00b977af.roa Signing time: Mon 13 Oct 2025 17:55:18 +0000 ROA not before: Mon 13 Oct 2025 17:55:18 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:b2:26:77:40:0e:c5:58:ac:5b:9a:a8:a1:cf:e2:47:93:86:82:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 13 17:55:18 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=b6508e7bcdbd33455bcc630c69b5b9aa83568949ba79cc454a25a086448090a8, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:bd:84:f9:16:36:ad:b0:58:19:22:67:30:f1: 57:34:b7:4e:5f:7c:92:ae:ff:70:f2:f3:6d:e4:ad: dd:5d:c0:02:2b:0b:48:ea:86:9e:74:ea:29:be:d9: 68:44:0f:e3:d0:19:ea:fd:a7:10:ed:05:fb:57:99: 64:98:69:f7:5c:d1:36:b5:73:62:f9:40:83:15:dc: 52:29:63:cf:58:f9:1c:2c:eb:00:4f:c8:b5:e9:8a: e3:61:14:8e:36:9a:ae:62:72:8d:03:d2:bd:71:41: 54:93:10:bb:2a:5b:d9:1a:0f:4b:70:bf:e1:a4:99: 50:08:76:d5:c3:38:e5:27:14:3b:29:22:e1:58:a0: 77:d9:65:6f:2b:56:d5:76:98:54:1f:2c:79:fd:cf: 8d:bc:a7:e3:83:94:a1:b0:57:a2:14:ac:cd:55:01: 15:73:5d:9a:7c:5d:12:54:a5:41:27:0e:8e:f9:21: 71:07:35:22:dd:36:45:7c:20:f5:2b:bd:67:50:06: c7:fc:bf:90:da:d2:93:43:92:2a:8c:7c:76:9f:9e: 25:d0:a4:f5:17:8e:bb:4f:6a:aa:f2:23:3e:e4:33: 6c:89:3b:c0:cb:3c:c3:fd:8b:4d:f1:c1:48:af:d2: eb:29:03:20:e1:f1:20:8a:c0:a2:b7:92:84:ea:42: 28:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:A7:36:EF:50:23:93:6F:4D:18:F9:4A:FD:09:50:3A:50:B9:6B:3E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1bc377fa-1761-4743-8aa4-75cb00b977af.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1::/44 Signature Algorithm: sha256WithRSAEncryption 99:49:7d:43:b0:33:9c:b6:47:3a:fa:ec:44:22:d3:cf:9f:37: 50:e4:8c:5c:0c:c5:aa:09:e1:1f:be:f9:cc:d2:c6:8c:04:f8: bd:c3:49:bf:08:eb:b5:13:4a:fb:12:9c:81:53:5d:13:d2:09: a7:ec:2b:ed:00:23:10:77:1a:4f:0e:e9:e2:55:15:5e:03:6b: 96:20:5f:5e:74:83:d3:80:5d:ff:39:59:9c:d0:a3:ed:bb:da: ad:7a:92:10:fa:22:0f:3f:91:39:74:dd:69:9e:81:50:6a:eb: 42:af:69:6a:50:90:1e:4a:40:20:39:25:97:42:35:36:c7:84: 67:1b:8c:77:3f:47:5a:ef:b7:d9:3b:64:6e:ec:33:9d:f9:23: 53:9c:a9:3f:87:0b:b0:5f:f7:ca:ee:5e:23:b1:e9:5b:bf:4a: ec:2a:34:a5:cd:ee:81:75:bc:93:be:ec:29:c9:8f:2a:7c:84: 8c:4b:ec:eb:63:5f:f3:08:7b:a6:40:68:0a:e6:09:0f:60:1e: e9:8a:b3:99:67:9b:22:1d:30:07:d7:61:d4:c2:2b:e2:68:a8: 57:35:0c:d3:a3:da:b0:ea:58:ab:fa:ce:6f:90:1c:aa:9f:94: 9f:98:c0:19:37:b9:12:52:22:75:be:fd:39:af:f0:58:ab:eb: 75:e3:08:0f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQLImd0AOxVisW5qooc/iR5OGgsMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDEzMTc1NTE4WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNjUwOGU3YmNkYmQzMzQ1NWJjYzYzMGM2OWI1YjlhYTgz NTY4OTQ5YmE3OWNjNDU0YTI1YTA4NjQ0ODA5MGE4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtvYT5FjatsFgZImcw8Vc0t05ffJKu/3Dy823krd1dwAIr C0jqhp506im+2WhED+PQGer9pxDtBftXmWSYafdc0Ta1c2L5QIMV3FIpY89Y+Rws 6wBPyLXpiuNhFI42mq5ico0D0r1xQVSTELsqW9kaD0twv+GkmVAIdtXDOOUnFDsp IuFYoHfZZW8rVtV2mFQfLHn9z428p+ODlKGwV6IUrM1VARVzXZp8XRJUpUEnDo75 IXEHNSLdNkV8IPUrvWdQBsf8v5Da0pNDkiqMfHafniXQpPUXjrtPaqryIz7kM2yJ O8DLPMP9i03xwUiv0uspAyDh8SCKwKK3koTqQiihAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8ac271Ajk29NGPlK/QlQOlC5az4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFiYzM3N2ZhLTE3NjEtNDc0My04YWE0LTc1Y2IwMGI5NzdhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDxAAAwDQYJKoZIhvcNAQELBQADggEBAJlJfUOwM5y2Rzr67EQi08+f N1DkjFwMxaoJ4R+++czSxowE+L3DSb8I67UTSvsSnIFTXRPSCafsK+0AIxB3Gk8O 6eJVFV4Da5YgX150g9OAXf85WZzQo+272q16khD6Ig8/kTl03WmegVBq60KvaWpQ kB5KQCA5JZdCNTbHhGcbjHc/R1rvt9k7ZG7sM535I1OcqT+HC7Bf98ruXiOx6Vu/ SuwqNKXN7oF1vJO+7CnJjyp8hIxL7OtjX/MIe6ZAaArmCQ9gHumKs5lnmyIdMAfX YdTCK+JoqFc1DNOj2rDqWKv6zm+QHKqflJ+YwBk3uRJSInW+/Tmv8Fir63XjCA8= -----END CERTIFICATE-----Generated at Mon Oct 20 20:01:40 2025 by rpki-client