$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/28dabfe2-3770-4fc6-a7a9-5b0a8edaf11b.roa File: 28dabfe2-3770-4fc6-a7a9-5b0a8edaf11b.roa (raw, json) Hash identifier: wsO65fprQXwVgMOUavZWiIW0ApFHz0/iAR8rmjbqzJQ= Subject key identifier: BF:8D:70:02:25:01:2C:42:B8:4D:F9:FA:5C:6E:8E:92:0C:0C:82:8F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 21D3BCED5C45CAB8FA487F95983000AB93FCB4C4 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/28dabfe2-3770-4fc6-a7a9-5b0a8edaf11b.roa Signing time: Fri 03 Oct 2025 15:18:19 +0000 ROA not before: Fri 03 Oct 2025 15:18:19 +0000 ROA not after: Fri 07 Nov 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f2:7100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:d3:bc:ed:5c:45:ca:b8:fa:48:7f:95:98:30:00:ab:93:fc:b4:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 3 15:18:19 2025 GMT Not After : Nov 7 23:59:59 2025 GMT Subject: serialNumber=1c85f54dacb0ffb6f0e1c5f5a9bd52b9627c543832feb9c9101eb6315aa7015c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:f7:ad:fd:84:67:c5:07:fd:57:46:94:7c:90: 4a:cc:61:df:8b:f3:01:f7:9c:90:05:60:ee:65:9b: 55:f0:31:96:f9:95:8e:3d:06:96:df:59:86:af:62: d3:47:fc:15:cb:f8:93:d4:27:0e:51:a6:0e:f8:a9: c8:ce:7d:64:c7:20:02:98:fa:3d:d7:9a:05:42:a5: 3b:38:a3:7d:b5:c9:80:41:be:34:1c:87:bd:b8:54: 18:f4:04:70:9e:2d:02:1a:2e:c9:ac:74:57:d4:67: a1:7c:f1:5f:30:58:a5:02:70:0d:fc:f3:a0:7d:55: 4e:f0:9d:ed:38:f7:f2:8e:22:f3:8b:5f:84:9f:2c: 23:5d:71:f1:f6:1c:8d:56:46:a2:fa:93:65:4c:c3: db:9b:4f:22:e6:67:dc:5a:c2:2a:08:c7:9d:78:0c: 85:d6:a4:7c:8b:96:66:f9:04:9c:ef:65:2a:55:60: cd:a4:c0:bb:5b:39:4c:6e:7c:46:b1:70:db:52:af: 75:35:40:2d:cb:07:45:22:fc:0d:f4:90:ae:1d:77: c6:11:11:11:77:18:5e:23:0d:af:df:b3:d2:75:b5: 56:fc:40:67:8d:e8:09:79:ce:5c:47:99:39:9d:73: 61:40:10:33:e4:f8:02:34:32:6d:ed:49:4b:17:ae: f4:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:8D:70:02:25:01:2C:42:B8:4D:F9:FA:5C:6E:8E:92:0C:0C:82:8F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/28dabfe2-3770-4fc6-a7a9-5b0a8edaf11b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7100::/40 Signature Algorithm: sha256WithRSAEncryption 1a:03:e1:1d:2f:07:11:90:f7:3e:e1:4b:c8:16:1b:38:30:44: 9d:b8:0d:07:3f:49:bb:a0:81:6f:89:a9:24:a0:f3:72:26:33: 8a:f4:ae:f5:e6:2a:e7:11:ff:1c:2b:b3:85:c8:b2:b7:a0:cd: bf:48:b1:a0:f0:77:03:22:a4:fa:88:61:fe:ba:01:26:d6:df: d7:98:e1:6b:e4:f6:1d:db:8c:19:9f:57:3b:77:6b:61:ca:63: 39:dd:1c:41:d5:d3:36:ce:ab:85:9a:59:86:4a:19:b2:87:d0: 2b:c8:77:a8:d6:1b:25:eb:42:e3:6e:36:e9:96:88:05:7c:cf: 3a:ce:7e:58:eb:b4:70:8c:08:f0:f4:6f:a5:1a:a2:5d:79:5d: fb:e3:0a:a4:32:38:76:ce:9c:a7:8b:00:a8:63:bf:8a:14:8b: 48:39:a6:0a:81:bd:17:a5:a6:2c:0b:df:7d:17:ff:c9:f9:25: 7c:ab:ae:f9:30:69:3c:a9:37:85:f1:91:d0:b9:79:2a:b4:76: d1:04:37:36:95:aa:ec:38:57:06:4d:19:93:b7:95:c6:18:41: 69:22:e4:71:08:5d:be:98:27:66:00:c8:97:56:2c:ea:c3:d4: ba:f1:de:33:4b:f1:6c:fe:01:b5:b0:b9:f0:6f:fb:9f:1e:d4: ca:5d:b1:64 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUIdO87VxFyrj6SH+VmDAAq5P8tMQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDAzMTUxODE5WhcNMjUxMTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYzg1ZjU0ZGFjYjBmZmI2ZjBlMWM1ZjVhOWJkNTJiOTYy N2M1NDM4MzJmZWI5YzkxMDFlYjYzMTVhYTcwMTVjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDn9639hGfFB/1XRpR8kErMYd+L8wH3nJAFYO5lm1XwMZb5 lY49BpbfWYavYtNH/BXL+JPUJw5Rpg74qcjOfWTHIAKY+j3XmgVCpTs4o321yYBB vjQch724VBj0BHCeLQIaLsmsdFfUZ6F88V8wWKUCcA3886B9VU7wne049/KOIvOL X4SfLCNdcfH2HI1WRqL6k2VMw9ubTyLmZ9xawioIx514DIXWpHyLlmb5BJzvZSpV YM2kwLtbOUxufEaxcNtSr3U1QC3LB0Ui/A30kK4dd8YRERF3GF4jDa/fs9J1tVb8 QGeN6Al5zlxHmTmdc2FAEDPk+AI0Mm3tSUsXrvT3AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUv41wAiUBLEK4Tfn6XG6OkgwMgo8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzI4ZGFiZmUyLTM3NzAtNGZjNi1hN2E5LTViMGE4ZWRhZjExYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDycTANBgkqhkiG9w0BAQsFAAOCAQEAGgPhHS8HEZD3PuFLyBYbODBE nbgNBz9Ju6CBb4mpJKDzciYzivSu9eYq5xH/HCuzhciyt6DNv0ixoPB3AyKk+ohh /roBJtbf15jha+T2HduMGZ9XO3drYcpjOd0cQdXTNs6rhZpZhkoZsofQK8h3qNYb JetC42426ZaIBXzPOs5+WOu0cIwI8PRvpRqiXXld++MKpDI4ds6cp4sAqGO/ihSL SDmmCoG9F6WmLAvffRf/yfklfKuu+TBpPKk3hfGR0Ll5KrR20QQ3NpWq7DhXBk0Z k7eVxhhBaSLkcQhdvpgnZgDIl1Ys6sPUuvHeM0vxbP4BtbC58G/7nx7Uyl2xZA== -----END CERTIFICATE-----Generated at Mon Oct 20 22:40:38 2025 by rpki-client