$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/657ed07e-fe87-4071-8960-e0b18e49fe3c.roa File: 657ed07e-fe87-4071-8960-e0b18e49fe3c.roa (raw, json) Hash identifier: HVaOsG1P6vfIvnbjRIo1ZqBS+9VZthhh3lkrbUIBUTk= Subject key identifier: 32:CA:F2:23:4F:1E:7F:E6:FE:DE:B3:11:07:0B:85:72:98:88:FD:DE Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6014A0361CA3300B34FF4536104B7D036C34E6F2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/657ed07e-fe87-4071-8960-e0b18e49fe3c.roa Signing time: Mon 29 Sep 2025 15:23:39 +0000 ROA not before: Mon 29 Sep 2025 15:23:39 +0000 ROA not after: Mon 03 Nov 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f0:4100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:14:a0:36:1c:a3:30:0b:34:ff:45:36:10:4b:7d:03:6c:34:e6:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 29 15:23:39 2025 GMT Not After : Nov 3 23:59:59 2025 GMT Subject: serialNumber=1713267c553fb9da2ad40b4d509cb04c05805ae347a32254fc66448a3f299047, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2b:f9:b3:26:c4:39:f1:3c:3d:30:7a:6d:53: df:c2:18:5f:48:a8:f4:60:58:bb:a9:c5:1f:6f:66: fb:19:2e:e4:d4:9f:89:df:da:68:0c:80:56:8f:68: ba:ef:85:c2:f8:48:b7:6c:2f:4b:26:93:68:9a:c0: 37:14:20:64:04:10:ff:42:14:98:de:d0:33:aa:b3: 56:a5:71:24:4f:72:d8:4e:38:ef:08:b2:a1:d7:d8: 9a:b1:50:1c:21:f5:c8:23:fe:22:e6:a4:94:fc:d3: 57:cc:b4:2e:b6:24:39:f5:44:4e:12:81:e3:c8:e5: bc:11:e0:c6:19:06:64:e2:be:ce:5b:5b:ff:af:a6: 93:1a:ce:88:4e:66:ef:fc:75:fc:27:c9:90:4a:82: 52:52:e5:a9:51:2c:0b:33:ef:68:5d:11:06:66:55: f2:22:ba:c2:7f:0a:36:99:47:8d:14:a7:1b:33:cc: f1:ed:c8:dd:a1:dd:77:a7:ae:a7:f4:3f:66:5a:84: 31:f6:2f:ea:1c:2c:ad:8c:39:b0:07:a7:13:94:c5: 95:c3:48:ee:38:c5:54:2e:87:dd:4c:cb:49:72:f5: 63:f1:28:4b:39:ac:7e:a0:98:33:e5:f4:f5:1b:83: 17:46:1d:f2:ee:c0:f1:57:38:b8:79:e4:01:96:33: 16:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:CA:F2:23:4F:1E:7F:E6:FE:DE:B3:11:07:0B:85:72:98:88:FD:DE X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/657ed07e-fe87-4071-8960-e0b18e49fe3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4100::/40 Signature Algorithm: sha256WithRSAEncryption 1a:a5:68:48:d6:72:c7:ee:2d:73:28:c8:95:a4:0d:14:48:b0: ce:5a:ec:96:00:d6:71:c7:40:5e:2a:24:fe:9f:7d:21:08:f8: 35:ee:f7:0d:b7:79:10:2c:fc:fd:ab:95:f5:04:2a:b6:6a:e3: 1e:1e:b5:ab:a8:40:f2:da:d0:13:04:b2:5a:51:ad:d1:b5:bd: 05:1b:e9:9a:e1:bf:63:01:23:b3:d0:ae:ef:f8:dd:a3:aa:1a: 21:82:bd:d2:c3:03:3b:90:14:ca:4e:c4:22:e7:96:e6:dd:a5: 75:b9:e3:34:39:ed:e3:cb:f4:cf:69:cb:ec:9d:bf:28:f5:09: 3e:dc:11:d8:03:fe:38:8a:1b:df:55:e0:64:71:a9:ad:db:3e: 11:da:9e:c2:0f:0f:4d:c4:35:f5:7d:2a:fc:01:16:97:0d:00: 7f:d0:56:84:08:e1:21:97:93:53:46:bf:b6:9e:9a:49:ab:b7: 25:39:32:f6:8f:12:aa:13:5c:05:3e:6a:ae:68:84:36:3b:38: 34:ab:57:a9:15:12:6b:f7:ec:d4:7e:20:ad:9e:ab:58:24:c0: a9:04:39:78:fd:b3:e0:28:0e:a3:2b:67:2d:59:7c:1c:19:c3: d7:72:76:d5:7a:1c:b6:60:98:22:63:9c:a3:0a:03:50:70:c4: 71:4e:a8:4a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUYBSgNhyjMAs0/0U2EEt9A2w05vIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI5MTUyMzM5WhcNMjUxMTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNzEzMjY3YzU1M2ZiOWRhMmFkNDBiNGQ1MDljYjA0YzA1 ODA1YWUzNDdhMzIyNTRmYzY2NDQ4YTNmMjk5MDQ3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPK/mzJsQ58Tw9MHptU9/CGF9IqPRgWLupxR9vZvsZLuTU n4nf2mgMgFaPaLrvhcL4SLdsL0smk2iawDcUIGQEEP9CFJje0DOqs1alcSRPcthO OO8IsqHX2JqxUBwh9cgj/iLmpJT801fMtC62JDn1RE4SgePI5bwR4MYZBmTivs5b W/+vppMazohOZu/8dfwnyZBKglJS5alRLAsz72hdEQZmVfIiusJ/CjaZR40Upxsz zPHtyN2h3Xenrqf0P2ZahDH2L+ocLK2MObAHpxOUxZXDSO44xVQuh91My0ly9WPx KEs5rH6gmDPl9PUbgxdGHfLuwPFXOLh55AGWMxYnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUMsryI08ef+b+3rMRBwuFcpiI/d4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzY1N2VkMDdlLWZlODctNDA3MS04OTYwLWUwYjE4ZTQ5ZmUzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwQTANBgkqhkiG9w0BAQsFAAOCAQEAGqVoSNZyx+4tcyjIlaQNFEiw zlrslgDWccdAXiok/p99IQj4Ne73Dbd5ECz8/auV9QQqtmrjHh61q6hA8trQEwSy WlGt0bW9BRvpmuG/YwEjs9Cu7/jdo6oaIYK90sMDO5AUyk7EIueW5t2ldbnjNDnt 48v0z2nL7J2/KPUJPtwR2AP+OIob31XgZHGprds+Edqewg8PTcQ19X0q/AEWlw0A f9BWhAjhIZeTU0a/tp6aSau3JTky9o8SqhNcBT5qrmiENjs4NKtXqRUSa/fs1H4g rZ6rWCTAqQQ5eP2z4CgOoytnLVl8HBnD13J21XoctmCYImOcowoDUHDEcU6oSg== -----END CERTIFICATE-----Generated at Mon Oct 20 08:22:22 2025 by rpki-client