$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5457865c-05cc-496e-9344-9ec7d5266e2c.roa File: 5457865c-05cc-496e-9344-9ec7d5266e2c.roa (raw, json) Hash identifier: wacYOvLz4LK3j1EMaH2m9so+O3rHvW8AdwZfs05AGfM= Subject key identifier: 4A:6B:93:41:D7:12:05:4A:A2:D7:44:FC:44:F3:F6:7F:A1:2F:B8:03 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6F63C5C49D2C9E505AB44A043B447EBD6C4CAC09 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5457865c-05cc-496e-9344-9ec7d5266e2c.roa Signing time: Sat 27 Sep 2025 00:52:24 +0000 ROA not before: Sat 27 Sep 2025 00:52:24 +0000 ROA not after: Sat 01 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:63:c5:c4:9d:2c:9e:50:5a:b4:4a:04:3b:44:7e:bd:6c:4c:ac:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 27 00:52:24 2025 GMT Not After : Nov 1 23:59:59 2025 GMT Subject: serialNumber=a41daa93959c6fd131489aa10e9a3c0b5edf51329a942a50745afae02bde0e29, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c0:1a:c6:b5:b2:65:5d:75:e1:b1:39:5c:ed: b8:a5:4c:15:67:2d:07:0b:d2:11:a2:53:95:fe:71: dd:3f:39:73:f0:fe:ff:3e:0b:53:a1:89:31:0e:8e: 14:8b:05:c9:e7:d6:28:1b:bf:19:40:d7:99:f5:fc: 52:54:d3:43:60:a7:0f:01:fc:98:16:d7:7d:39:c5: 62:46:37:0d:43:2b:42:12:c5:d2:b1:2e:77:f3:cd: fd:9c:94:ac:c0:a7:da:aa:28:a1:53:ed:5d:2d:de: 55:99:d1:a1:4a:cc:1c:5a:d1:70:f1:68:5b:25:f4: 21:35:cd:b7:c6:98:15:55:48:94:5a:64:d4:db:6b: 96:0b:0c:a4:8f:cc:29:56:fa:bf:fd:e2:46:07:13: 07:c7:5a:11:e0:38:eb:c3:42:f3:1b:84:09:3b:b6: da:90:72:e9:f0:b0:ba:86:57:15:36:0b:29:59:36: 3f:cb:2d:bf:6a:33:70:ab:d5:7c:ed:57:b3:49:f8: a1:64:40:e5:bf:a0:a1:9f:97:fc:aa:d5:ae:5b:1a: 57:6b:7a:ad:c9:29:5b:18:fa:e7:3a:7d:77:ac:e2: a2:6b:cc:de:c3:96:9e:ad:d2:35:db:00:19:33:8d: 16:b4:f3:06:2c:df:5c:eb:1c:52:61:dd:4e:a7:3a: 33:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:6B:93:41:D7:12:05:4A:A2:D7:44:FC:44:F3:F6:7F:A1:2F:B8:03 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5457865c-05cc-496e-9344-9ec7d5266e2c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f100::/48 Signature Algorithm: sha256WithRSAEncryption 32:71:f3:e7:9c:00:6e:8a:07:3d:18:5b:bb:5f:5f:00:b8:2b: 88:87:94:bd:39:e9:a3:4b:72:ce:89:3b:37:44:5d:32:5b:c9: 04:8a:f8:b6:92:24:4c:67:b8:b5:6a:00:ff:79:67:7c:5f:31: 19:93:1c:63:56:fb:78:3d:e1:6f:7b:1a:55:8e:bd:1d:30:b2: 95:9b:4f:d8:07:8a:dd:96:33:c9:9f:ea:25:e2:14:a4:e6:3e: 85:1a:b7:3b:49:e0:7d:20:05:e4:f7:f9:e9:c9:d4:0a:ab:61: b6:4c:1a:7d:cb:55:84:42:6c:f9:78:40:d2:67:97:a0:30:9f: 63:be:67:fe:34:80:c8:3f:be:14:32:98:92:e6:e0:7c:43:d2: 8f:db:66:d5:7e:2d:4f:15:c3:06:6d:ec:da:0a:8f:63:42:80: 68:98:9d:f8:66:0c:87:5f:e2:fb:02:bd:12:9c:24:6e:b3:83: 4c:b1:53:49:a0:f1:3f:08:89:0e:7e:6c:aa:d4:7f:ef:ad:fb: 65:6b:58:39:06:db:71:64:0e:c2:1c:21:09:82:18:27:cd:e0: 04:22:26:8c:64:2a:a1:69:de:a7:0d:b8:cc:bf:53:af:5c:8a: 94:86:11:78:a0:5f:52:cb:62:98:44:a2:d4:9b:3d:30:3a:c5: cd:5a:ba:1f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUb2PFxJ0snlBatEoEO0R+vWxMrAkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI3MDA1MjI0WhcNMjUxMTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNDFkYWE5Mzk1OWM2ZmQxMzE0ODlhYTEwZTlhM2MwYjVl ZGY1MTMyOWE5NDJhNTA3NDVhZmFlMDJiZGUwZTI5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwwBrGtbJlXXXhsTlc7bilTBVnLQcL0hGiU5X+cd0/OXPw /v8+C1OhiTEOjhSLBcnn1igbvxlA15n1/FJU00Ngpw8B/JgW1305xWJGNw1DK0IS xdKxLnfzzf2clKzAp9qqKKFT7V0t3lWZ0aFKzBxa0XDxaFsl9CE1zbfGmBVVSJRa ZNTba5YLDKSPzClW+r/94kYHEwfHWhHgOOvDQvMbhAk7ttqQcunwsLqGVxU2CylZ Nj/LLb9qM3Cr1XztV7NJ+KFkQOW/oKGfl/yq1a5bGldreq3JKVsY+uc6fXes4qJr zN7Dlp6t0jXbABkzjRa08wYs31zrHFJh3U6nOjPXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUSmuTQdcSBUqi10T8RPP2f6EvuAMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU0NTc4NjVjLTA1Y2MtNDk2ZS05MzQ0LTllYzdkNTI2NmUyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QAwDQYJKoZIhvcNAQELBQADggEBADJx8+ecAG6KBz0YW7tfXwC4 K4iHlL056aNLcs6JOzdEXTJbyQSK+LaSJExnuLVqAP95Z3xfMRmTHGNW+3g94W97 GlWOvR0wspWbT9gHit2WM8mf6iXiFKTmPoUatztJ4H0gBeT3+enJ1AqrYbZMGn3L VYRCbPl4QNJnl6Awn2O+Z/40gMg/vhQymJLm4HxD0o/bZtV+LU8VwwZt7NoKj2NC gGiYnfhmDIdf4vsCvRKcJG6zg0yxU0mg8T8IiQ5+bKrUf++t+2VrWDkG23FkDsIc IQmCGCfN4AQiJoxkKqFp3qcNuMy/U69cipSGEXigX1LLYphEotSbPTA6xc1auh8= -----END CERTIFICATE-----Generated at Mon Oct 20 09:58:44 2025 by rpki-client