$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/613deecc-4241-45f6-938d-6f225ca83bd7.roa File: 613deecc-4241-45f6-938d-6f225ca83bd7.roa (raw, json) Hash identifier: D+F8A/vO2q4DE4I01LlU4UzCAin7hkpAPqE9r2f0UyE= Subject key identifier: 63:CD:30:A5:2A:A2:E3:6A:B3:BE:76:1F:EF:30:C2:7F:DC:A0:46:DF Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 31505EE1C683D517E4373FB52E99BFD8896521B3 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/613deecc-4241-45f6-938d-6f225ca83bd7.roa Signing time: Mon 06 Oct 2025 17:38:12 +0000 ROA not before: Mon 06 Oct 2025 17:38:12 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:610a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:50:5e:e1:c6:83:d5:17:e4:37:3f:b5:2e:99:bf:d8:89:65:21:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 6 17:38:12 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=d9a319fbedc4cb8a87e8ef81d5d14c67c25e1c24512e317cf2147a36aec3b1d1, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:c8:05:a2:f6:0c:94:18:a0:e3:51:09:27:cb: 9a:86:c1:c6:93:09:23:93:20:71:9e:58:b5:71:df: e2:6d:68:fc:c5:b7:6a:a0:e5:af:d7:b6:b8:60:ea: f6:65:3d:0d:90:82:4d:1c:29:4d:c3:68:de:43:be: af:92:6e:7e:a7:05:95:86:a3:4d:86:a6:71:4a:99: 7e:99:3a:dc:61:59:22:40:f9:20:57:b4:1d:be:19: 80:08:d0:38:63:c7:f7:a4:d0:29:79:e3:41:b3:ec: e6:ed:cc:cd:19:94:da:3e:e0:38:85:81:20:2f:62: e9:e3:29:f5:42:f3:b4:50:fc:cc:f4:1d:89:9c:4f: 7a:0b:ad:ef:d2:84:25:e9:5f:a4:14:c5:28:d1:b1: cb:cd:0a:bd:fc:a8:18:61:3a:0d:4f:69:0f:62:17: f2:34:b1:f7:3f:94:0f:64:5f:9d:86:bb:65:df:69: 89:8b:7a:c2:6c:88:59:11:f9:5a:bd:ed:c5:e6:e4: 34:a1:3d:b7:f7:b5:ab:51:9f:74:b9:8e:ad:5b:9a: c8:37:37:0c:ae:28:cc:7b:e6:16:e7:7a:3f:c5:9a: 06:56:62:f3:c8:32:cd:ae:10:05:b4:88:0b:d3:bb: eb:5c:e2:5f:a4:89:72:77:12:d8:d8:58:c2:9c:df: 53:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:CD:30:A5:2A:A2:E3:6A:B3:BE:76:1F:EF:30:C2:7F:DC:A0:46:DF X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/613deecc-4241-45f6-938d-6f225ca83bd7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:610a::/48 Signature Algorithm: sha256WithRSAEncryption 0f:b3:f1:ca:d7:e4:21:f7:bb:9b:26:72:81:15:0e:72:9e:b6: 10:2a:a5:6f:5f:f9:c5:c7:e3:6e:01:19:70:9b:ba:3b:73:cd: 23:28:ae:87:2a:8d:d7:6e:49:f2:f7:aa:11:76:17:5e:d0:f5: be:44:a4:57:e9:2f:ca:00:6c:05:40:52:65:c3:e4:7c:25:77: ed:4c:50:85:71:13:e8:74:13:e5:0b:3c:4a:32:b5:97:d0:98: dc:65:e2:c9:03:ed:2b:24:93:91:ba:fb:af:05:7e:3d:5e:2a: e1:3a:ce:da:91:44:44:0f:ec:32:92:ab:d4:4a:f3:75:62:35: 51:16:00:74:53:3b:4c:24:2d:40:9e:07:a7:41:24:88:b7:7a: 50:ea:a2:d5:ed:6c:ce:15:66:36:ac:93:6d:90:63:63:9a:9e: 7d:a1:e7:7b:c5:36:a6:79:0e:54:93:07:9b:7b:b8:64:03:e4: 31:9d:10:c1:d4:5d:c0:a2:38:fe:89:97:6a:b7:c3:78:ea:ed: 99:ba:6f:46:b7:19:b7:d6:e5:07:53:17:25:8e:6d:5b:8e:53: 4c:47:c0:f5:1d:a5:83:3c:04:42:6b:7b:62:09:5d:cd:70:1d: 16:38:1e:2b:da:e2:d5:77:25:1f:4a:b9:f4:f9:08:92:50:60: 04:c3:3f:af -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMVBe4caD1RfkNz+1Lpm/2IllIbMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDA2MTczODEyWhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkOWEzMTlmYmVkYzRjYjhhODdlOGVmODFkNWQxNGM2N2My NWUxYzI0NTEyZTMxN2NmMjE0N2EzNmFlYzNiMWQxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDsyAWi9gyUGKDjUQkny5qGwcaTCSOTIHGeWLVx3+JtaPzF t2qg5a/Xtrhg6vZlPQ2Qgk0cKU3DaN5Dvq+Sbn6nBZWGo02GpnFKmX6ZOtxhWSJA +SBXtB2+GYAI0Dhjx/ek0Cl540Gz7ObtzM0ZlNo+4DiFgSAvYunjKfVC87RQ/Mz0 HYmcT3oLre/ShCXpX6QUxSjRscvNCr38qBhhOg1PaQ9iF/I0sfc/lA9kX52Gu2Xf aYmLesJsiFkR+Vq97cXm5DShPbf3tatRn3S5jq1bmsg3NwyuKMx75hbnej/FmgZW YvPIMs2uEAW0iAvTu+tc4l+kiXJ3EtjYWMKc31MJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUY80wpSqi42qzvnYf7zDCf9ygRt8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzYxM2RlZWNjLTQyNDEtNDVmNi05MzhkLTZmMjI1Y2E4M2JkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQowDQYJKoZIhvcNAQELBQADggEBAA+z8crX5CH3u5smcoEVDnKe thAqpW9f+cXH424BGXCbujtzzSMorocqjdduSfL3qhF2F17Q9b5EpFfpL8oAbAVA UmXD5Hwld+1MUIVxE+h0E+ULPEoytZfQmNxl4skD7Sskk5G6+68Ffj1eKuE6ztqR REQP7DKSq9RK83ViNVEWAHRTO0wkLUCeB6dBJIi3elDqotXtbM4VZjask22QY2Oa nn2h53vFNqZ5DlSTB5t7uGQD5DGdEMHUXcCiOP6Jl2q3w3jq7Zm6b0a3GbfW5QdT FyWObVuOU0xHwPUdpYM8BEJre2IJXc1wHRY4Hiva4tV3JR9KufT5CJJQYATDP68= -----END CERTIFICATE-----Generated at Mon Oct 20 10:01:54 2025 by rpki-client