$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4a8623c4-10a0-46b6-a5f5-c94e84c56867.roa File: 4a8623c4-10a0-46b6-a5f5-c94e84c56867.roa (raw, json) Hash identifier: dDIyVHv8zbQEv8w5T6UnEfdFGAbP5VUocqd1XsyXg+s= Subject key identifier: 6F:94:B8:CC:F8:53:50:80:62:42:03:21:E7:D9:F2:35:FE:B4:BB:95 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1C13E4F8C49045565700683A94717701BF2AB4FF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4a8623c4-10a0-46b6-a5f5-c94e84c56867.roa Signing time: Fri 26 Sep 2025 18:10:48 +0000 ROA not before: Fri 26 Sep 2025 18:10:48 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:13:e4:f8:c4:90:45:56:57:00:68:3a:94:71:77:01:bf:2a:b4:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:10:48 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=a4eb7dd01746bb20fad519ec4f12e5d21d5ecb5e2b9e846398ca5c78ac664ec9, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:a9:ad:31:b0:f2:a4:af:c9:cb:4f:4e:cb:f2: e3:96:fd:ed:aa:9d:52:5e:86:19:cb:0c:a6:41:c4: 7e:48:ca:67:d8:db:9a:9d:6c:01:ab:a9:47:15:67: ad:07:66:db:4b:6f:9d:03:11:06:37:23:b1:48:ed: bc:a1:7c:ab:fe:97:a9:fc:ab:a6:fd:ca:22:15:87: 9a:67:d2:39:6a:7a:1e:e6:72:ac:9d:ff:9c:24:72: a2:67:1a:3e:f1:90:8d:13:06:46:13:6e:ea:b7:e1: 58:f6:ff:cc:d3:24:0c:71:50:c1:a8:bb:28:7b:1e: 47:55:73:97:0e:83:32:cb:16:7b:68:1d:78:cb:e5: 6d:72:18:e5:88:1b:57:4e:3b:31:eb:82:cd:ec:a3: ea:48:64:d8:79:55:0e:3d:1b:95:dd:ca:e5:22:5e: de:32:9f:6c:67:f6:ad:bc:a1:bb:a1:d0:10:59:c3: 3f:b9:8e:4b:fc:84:9a:a5:1d:ad:6a:d5:d9:5d:1a: de:e6:4d:af:2c:48:3e:ce:ae:36:70:35:88:da:49: 57:a4:f8:8c:19:2f:01:b2:13:95:82:ca:d2:20:d6: 45:19:8a:58:97:00:52:50:08:fd:37:24:3d:fe:9d: e5:e9:a5:91:bf:e2:67:86:7a:3e:3c:06:a8:4d:25: e8:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:94:B8:CC:F8:53:50:80:62:42:03:21:E7:D9:F2:35:FE:B4:BB:95 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4a8623c4-10a0-46b6-a5f5-c94e84c56867.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:a0::/48 Signature Algorithm: sha256WithRSAEncryption 34:ee:71:bb:79:12:70:dd:60:3a:32:a5:2f:ff:90:76:e5:7f: 96:ba:ff:b8:91:59:ec:2d:0e:c6:c3:53:97:95:28:73:75:db: c1:c8:ec:75:ef:65:37:c1:f7:59:0d:4b:69:2f:f5:f8:82:af: 13:05:5a:7f:86:db:20:9f:2b:1d:0b:d6:5d:f8:e8:98:97:7b: c3:bd:0f:b2:ab:00:91:f9:63:7d:8a:7d:da:a2:59:0b:54:06: 7a:66:59:e2:23:6b:c8:e0:b3:24:84:12:49:97:a3:2f:06:05: 15:f5:ba:4e:0b:19:5b:85:18:58:d2:51:2e:7c:68:99:51:57: 1e:52:b5:41:0d:56:77:37:49:ac:bd:6c:a9:f6:f7:df:84:19: e9:a7:4c:45:a8:7b:f6:2d:a9:82:e9:6d:bd:e7:2b:26:6f:78: a5:0f:45:82:53:54:ec:da:ce:3e:76:6f:f2:11:0e:9f:ac:5c: 64:ae:31:01:98:54:30:20:36:be:13:76:3a:f5:30:d3:81:cd: 45:55:5c:12:f5:11:7d:8b:31:e5:cd:e1:90:7b:34:07:87:29: bc:d7:52:a4:1e:44:7a:46:bc:00:fe:01:bb:84:ac:9f:f8:7f: 92:fb:cf:c1:15:de:b7:ee:e1:68:2d:3a:ed:4d:c2:72:eb:d0: fc:4d:98:29 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHBPk+MSQRVZXAGg6lHF3Ab8qtP8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgxMDQ4WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNGViN2RkMDE3NDZiYjIwZmFkNTE5ZWM0ZjEyZTVkMjFk NWVjYjVlMmI5ZTg0NjM5OGNhNWM3OGFjNjY0ZWM5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDnqa0xsPKkr8nLT07L8uOW/e2qnVJehhnLDKZBxH5IymfY 25qdbAGrqUcVZ60HZttLb50DEQY3I7FI7byhfKv+l6n8q6b9yiIVh5pn0jlqeh7m cqyd/5wkcqJnGj7xkI0TBkYTbuq34Vj2/8zTJAxxUMGouyh7HkdVc5cOgzLLFnto HXjL5W1yGOWIG1dOOzHrgs3so+pIZNh5VQ49G5XdyuUiXt4yn2xn9q28obuh0BBZ wz+5jkv8hJqlHa1q1dldGt7mTa8sSD7OrjZwNYjaSVek+IwZLwGyE5WCytIg1kUZ iliXAFJQCP03JD3+neXppZG/4meGej48BqhNJeiJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUb5S4zPhTUIBiQgMh59nyNf60u5UwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzRhODYyM2M0LTEwYTAtNDZiNi1hNWY1LWM5NGU4NGM1Njg2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAKAwDQYJKoZIhvcNAQELBQADggEBADTucbt5EnDdYDoypS//kHbl f5a6/7iRWewtDsbDU5eVKHN128HI7HXvZTfB91kNS2kv9fiCrxMFWn+G2yCfKx0L 1l346JiXe8O9D7KrAJH5Y32KfdqiWQtUBnpmWeIja8jgsySEEkmXoy8GBRX1uk4L GVuFGFjSUS58aJlRVx5StUENVnc3Say9bKn299+EGemnTEWoe/YtqYLpbb3nKyZv eKUPRYJTVOzazj52b/IRDp+sXGSuMQGYVDAgNr4Tdjr1MNOBzUVVXBL1EX2LMeXN 4ZB7NAeHKbzXUqQeRHpGvAD+AbuErJ/4f5L7z8EV3rfu4WgtOu1NwnLr0PxNmCk= -----END CERTIFICATE-----Generated at Mon Oct 20 04:38:43 2025 by rpki-client