$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1df4a82a-0875-47b6-9fc0-b67c097bc45c.roa File: 1df4a82a-0875-47b6-9fc0-b67c097bc45c.roa (raw, json) Hash identifier: pcvzDv0HZx0THfrZBekzfEga5SkJT6iEG9GZg2rc0Bo= Subject key identifier: B2:70:82:EB:28:E1:DB:76:00:DF:B2:F4:63:1F:AB:F5:44:C9:86:B6 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4BB36A54A4D7E93B197CCC0BDBDAACA2258C8ACE Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1df4a82a-0875-47b6-9fc0-b67c097bc45c.roa Signing time: Sat 27 Sep 2025 00:52:16 +0000 ROA not before: Sat 27 Sep 2025 00:52:16 +0000 ROA not after: Sat 01 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:b3:6a:54:a4:d7:e9:3b:19:7c:cc:0b:db:da:ac:a2:25:8c:8a:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 27 00:52:16 2025 GMT Not After : Nov 1 23:59:59 2025 GMT Subject: serialNumber=6def8ecf991e8457d6a584d48068b091342d0ee2d51489057b602805734fa1c0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:94:41:b7:ea:12:09:0e:65:79:96:dc:d0:74: cb:d6:a2:d0:d7:34:73:ae:cd:bd:a3:60:de:cb:fd: 27:54:9b:2b:5e:7d:3b:a5:04:3b:c7:0f:8b:c4:c7: 0e:34:c4:12:9b:11:2b:fa:eb:f9:48:c8:7a:b7:49: f6:28:c4:0e:42:ae:7c:7e:c5:c0:5a:c5:25:26:3f: 56:d4:6a:c6:b5:78:ba:41:8c:4b:8d:d5:ee:b0:70: ad:e8:82:1f:fc:ec:c3:54:e9:00:93:73:31:58:f7: 09:e6:24:88:fb:b9:e1:bd:c2:ed:f9:c9:a9:40:25: 15:59:7c:cf:62:b1:cb:e8:6d:42:fc:7b:3e:cb:1c: 4e:50:95:b9:bf:8c:0f:c2:5f:8e:4e:22:cf:fc:50: e1:55:6e:d0:fb:8a:0c:30:be:13:f3:f4:d6:df:b1: 00:ee:77:d6:08:67:e8:5c:a9:52:29:51:d9:12:ed: f3:05:12:20:9f:ca:15:8c:9e:db:12:d1:0d:49:31: f2:eb:e1:14:d7:88:ca:c9:2e:b0:99:fb:02:5c:5e: 6d:7c:d6:a5:7b:9b:d1:ea:11:b8:90:60:bc:cc:4f: 74:93:87:f5:db:e9:96:0e:93:ea:3c:70:10:a3:11: bc:2d:80:f9:03:7a:18:bc:30:86:7b:6e:26:5d:b6: bd:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:70:82:EB:28:E1:DB:76:00:DF:B2:F4:63:1F:AB:F5:44:C9:86:B6 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1df4a82a-0875-47b6-9fc0-b67c097bc45c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8800::/40 Signature Algorithm: sha256WithRSAEncryption 92:ba:f9:3a:27:e7:b5:f7:b3:45:d9:a1:ec:24:4d:0a:f2:0e: 2c:26:91:f5:7b:17:17:ae:7b:d7:1d:8a:6d:33:7b:3a:ed:b2: 0b:3d:06:93:a6:b3:af:ee:2a:d4:af:f4:b9:31:c7:2c:0e:26: d1:70:f7:4a:96:10:1c:ba:b0:fc:67:b3:b0:03:46:61:51:ad: 00:63:44:53:92:d8:41:6e:a6:8c:ee:ea:ec:a3:7a:f1:68:df: 5f:65:2a:9c:f2:3a:19:fb:f6:a9:bf:12:82:a8:61:9d:fd:3e: 68:8d:89:a5:fe:fb:33:18:5a:11:da:94:6f:09:ce:9b:a5:df: 84:ce:26:21:fb:77:ab:66:98:9d:f1:86:84:94:0b:b6:7b:80: d7:ef:75:77:59:ce:3c:e7:68:08:b3:68:5a:17:75:78:62:ab: 1e:65:87:3d:ba:a6:86:ff:54:c0:e8:f7:53:40:82:8c:96:b7: 39:57:5b:f9:09:31:eb:01:c1:a7:14:9b:d7:20:94:14:ae:4f: 86:eb:67:81:af:f4:8f:7c:18:02:59:d8:bb:4e:b0:1d:79:e9: 35:8d:82:eb:33:0d:53:42:53:66:fb:a4:93:86:68:be:67:e9: 19:75:e3:b6:5d:64:33:66:34:57:72:9e:cc:c0:00:54:98:fd: 8a:fc:1c:c6 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUS7NqVKTX6TsZfMwL29qsoiWMis4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI3MDA1MjE2WhcNMjUxMTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZGVmOGVjZjk5MWU4NDU3ZDZhNTg0ZDQ4MDY4YjA5MTM0 MmQwZWUyZDUxNDg5MDU3YjYwMjgwNTczNGZhMWMwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCslEG36hIJDmV5ltzQdMvWotDXNHOuzb2jYN7L/SdUmyte fTulBDvHD4vExw40xBKbESv66/lIyHq3SfYoxA5Crnx+xcBaxSUmP1bUasa1eLpB jEuN1e6wcK3ogh/87MNU6QCTczFY9wnmJIj7ueG9wu35yalAJRVZfM9iscvobUL8 ez7LHE5Qlbm/jA/CX45OIs/8UOFVbtD7igwwvhPz9NbfsQDud9YIZ+hcqVIpUdkS 7fMFEiCfyhWMntsS0Q1JMfLr4RTXiMrJLrCZ+wJcXm181qV7m9HqEbiQYLzMT3ST h/Xb6ZYOk+o8cBCjEbwtgPkDehi8MIZ7biZdtr1pAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUsnCC6yjh23YA37L0Yx+r9UTJhrYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFkZjRhODJhLTA4NzUtNDdiNi05ZmMwLWI2N2MwOTdiYzQ1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDxiDANBgkqhkiG9w0BAQsFAAOCAQEAkrr5OifntfezRdmh7CRNCvIO LCaR9XsXF6571x2KbTN7Ou2yCz0Gk6azr+4q1K/0uTHHLA4m0XD3SpYQHLqw/Gez sANGYVGtAGNEU5LYQW6mjO7q7KN68WjfX2UqnPI6Gfv2qb8Sgqhhnf0+aI2Jpf77 MxhaEdqUbwnOm6XfhM4mIft3q2aYnfGGhJQLtnuA1+91d1nOPOdoCLNoWhd1eGKr HmWHPbqmhv9UwOj3U0CCjJa3OVdb+Qkx6wHBpxSb1yCUFK5Phutnga/0j3wYAlnY u06wHXnpNY2C6zMNU0JTZvukk4ZovmfpGXXjtl1kM2Y0V3KezMAAVJj9ivwcxg== -----END CERTIFICATE-----Generated at Mon Oct 20 15:56:08 2025 by rpki-client