$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/35e17b2d-e386-449d-8b46-4deb40b06ad8.roa File: 35e17b2d-e386-449d-8b46-4deb40b06ad8.roa (raw, json) Hash identifier: lsHafOxPrHiT4fOqVsb98/1bVg4OiJc+hRevhXUbiNQ= Subject key identifier: F0:91:7E:5C:1A:BF:95:68:D0:57:2F:2E:87:46:DB:06:30:50:2E:BA Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 06AD2C89D2B2F9D84FD1B1331B4601BBF637C771 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/35e17b2d-e386-449d-8b46-4deb40b06ad8.roa Signing time: Fri 10 Oct 2025 17:04:21 +0000 ROA not before: Fri 10 Oct 2025 17:04:21 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:60::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:ad:2c:89:d2:b2:f9:d8:4f:d1:b1:33:1b:46:01:bb:f6:37:c7:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 10 17:04:21 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=6bd51fa8dd66db66d4f76198ff8d3c67b314e5bc6268d9c859e5f1233f8dd5d2, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:9e:aa:1e:ba:02:70:40:dc:73:32:47:a1:8d: b2:52:c5:59:69:04:d2:29:e0:0f:ff:57:20:0d:fb: f5:a4:21:0e:51:ac:cd:5d:8c:08:4f:08:28:20:73: b1:02:ed:65:c5:60:e0:a7:29:29:b1:80:7c:4a:31: 7d:75:18:1b:ce:c1:4a:c5:ad:0c:c3:3c:34:43:9a: 5d:57:f5:49:50:46:34:dc:45:24:85:0d:6d:10:01: bd:1a:6e:fd:f2:4b:24:0c:16:31:cc:a6:31:47:00: 83:8d:e0:98:ab:35:9c:c6:0b:3f:17:a1:3f:99:d5: 84:77:df:df:e2:0f:89:92:42:f4:2d:f3:6d:54:11: db:e0:b1:1d:08:26:f4:51:7e:7a:b7:26:c0:bf:6c: f4:f8:64:ae:82:78:8b:ed:d8:8e:c3:05:5a:e0:d4: f5:8a:47:1b:d5:1f:47:59:e5:4a:b9:c8:4a:16:0f: 29:c9:7d:e8:e9:56:f6:af:90:9f:6e:f6:df:a3:d5: 29:9e:3a:e3:d2:1b:2a:97:d0:b5:65:97:68:24:0a: e2:cc:6f:ee:53:d6:87:c2:41:7d:dd:6c:58:86:90: fc:46:93:21:15:b3:46:b8:c8:29:3d:e5:18:f7:6b: 0f:90:f5:7c:74:19:76:a9:e7:be:81:80:6b:9a:4d: fe:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:91:7E:5C:1A:BF:95:68:D0:57:2F:2E:87:46:DB:06:30:50:2E:BA X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/35e17b2d-e386-449d-8b46-4deb40b06ad8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:60::/44 Signature Algorithm: sha256WithRSAEncryption 4d:70:62:1d:86:b1:92:a2:56:70:ff:5e:fc:87:f8:53:3f:02: c6:8b:d7:51:d8:cc:f7:f5:f2:91:17:49:da:78:07:fb:b0:d6: 46:78:1e:d2:b5:b4:e2:a0:36:67:e1:a6:38:b9:78:f4:75:b0: de:96:7a:8a:6c:a0:3c:da:3d:66:82:7e:18:fc:38:fc:42:63: 96:86:92:f2:1c:e1:ec:92:fe:74:36:b8:f6:b5:c0:51:b0:8f: 7d:46:c6:c5:99:64:f7:1c:e7:f5:f2:88:23:1a:0c:f5:5c:0a: e2:11:e3:70:25:10:cf:b9:82:ac:e4:46:2d:7f:2f:17:ad:af: 52:73:56:37:c1:88:4a:71:b9:b2:2a:84:70:9e:d6:10:f9:2d: 91:01:cb:58:fc:9e:dd:8c:43:0c:97:3b:69:c4:e3:b4:5a:0c: 62:77:47:1d:96:48:01:f8:ca:12:5a:64:6e:ca:0a:03:ff:7b: 6a:84:2e:87:42:81:69:50:54:8d:cf:b7:41:24:f3:29:55:0e: c6:62:ce:4a:b5:ff:89:a8:75:08:db:43:34:e0:74:b9:81:57: 17:80:c6:0d:dc:14:d0:cd:6e:11:58:f9:05:1f:fe:41:ab:b8: c7:cc:f1:d5:34:8d:68:46:b6:c2:40:cc:51:0e:27:bc:0d:fa: 2d:59:37:2c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBq0sidKy+dhP0bEzG0YBu/Y3x3EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDEwMTcwNDIxWhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YmQ1MWZhOGRkNjZkYjY2ZDRmNzYxOThmZjhkM2M2N2Iz MTRlNWJjNjI2OGQ5Yzg1OWU1ZjEyMzNmOGRkNWQyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDwnqoeugJwQNxzMkehjbJSxVlpBNIp4A//VyAN+/WkIQ5R rM1djAhPCCggc7EC7WXFYOCnKSmxgHxKMX11GBvOwUrFrQzDPDRDml1X9UlQRjTc RSSFDW0QAb0abv3ySyQMFjHMpjFHAION4JirNZzGCz8XoT+Z1YR339/iD4mSQvQt 821UEdvgsR0IJvRRfnq3JsC/bPT4ZK6CeIvt2I7DBVrg1PWKRxvVH0dZ5Uq5yEoW DynJfejpVvavkJ9u9t+j1SmeOuPSGyqX0LVll2gkCuLMb+5T1ofCQX3dbFiGkPxG kyEVs0a4yCk95Rj3aw+Q9Xx0GXap576BgGuaTf4XAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8JF+XBq/lWjQVy8uh0bbBjBQLrowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM1ZTE3YjJkLWUzODYtNDQ5ZC04YjQ2LTRkZWI0MGIwNmFkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAGAwDQYJKoZIhvcNAQELBQADggEBAE1wYh2GsZKiVnD/XvyH+FM/ AsaL11HYzPf18pEXSdp4B/uw1kZ4HtK1tOKgNmfhpji5ePR1sN6WeopsoDzaPWaC fhj8OPxCY5aGkvIc4eyS/nQ2uPa1wFGwj31GxsWZZPcc5/XyiCMaDPVcCuIR43Al EM+5gqzkRi1/Lxetr1JzVjfBiEpxubIqhHCe1hD5LZEBy1j8nt2MQwyXO2nE47Ra DGJ3Rx2WSAH4yhJaZG7KCgP/e2qELodCgWlQVI3Pt0Ek8ylVDsZizkq1/4modQjb QzTgdLmBVxeAxg3cFNDNbhFY+QUf/kGruMfM8dU0jWhGtsJAzFEOJ7wN+i1ZNyw= -----END CERTIFICATE-----Generated at Mon Oct 20 09:59:56 2025 by rpki-client