$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6d0592fe-1739-47a3-b178-e4736351b625.roa File: 6d0592fe-1739-47a3-b178-e4736351b625.roa (raw, json) Hash identifier: j5oe9M0/DTB/HU2qPGmsP5BswQPzYLYA8eyzfWOWs38= Subject key identifier: 6E:3D:E1:81:7B:8F:B6:B3:CC:7C:40:D5:D4:33:44:BC:57:DC:F6:2A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 589261F5B136A573B39CE33345F11D52400E44A1 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6d0592fe-1739-47a3-b178-e4736351b625.roa Signing time: Mon 13 Oct 2025 17:55:15 +0000 ROA not before: Mon 13 Oct 2025 17:55:15 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f2:7010::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:92:61:f5:b1:36:a5:73:b3:9c:e3:33:45:f1:1d:52:40:0e:44:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 13 17:55:15 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=67c9fe89b7fbccee2c2b5d79853f939889b41f2a8467001c1d5bdf1783d174ff, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:18:ab:a8:54:f3:56:69:ab:51:da:41:bb:9e: 86:77:91:4c:0d:b5:eb:c8:d7:71:dd:34:0a:dd:d1: f7:8f:e9:43:b6:c2:f3:6f:5d:89:82:d3:c3:77:c6: 47:60:ee:ec:ed:5b:bc:cd:8d:3e:7e:ef:dd:5f:50: a9:23:cb:25:71:c8:8a:b9:5c:84:3e:83:03:61:5c: be:42:85:97:7f:b6:9d:36:0c:3c:f1:f7:f4:e0:3e: 4c:09:ed:63:a5:b7:2f:ec:62:f7:79:ba:d7:44:e3: fb:a8:b2:e1:f1:86:21:ab:b0:1d:d7:11:6e:ed:a7: 05:c7:46:35:b3:1d:4f:67:05:dc:a2:6c:ff:1c:cb: b3:ae:c7:3b:3c:a0:e4:cd:41:1a:83:41:0a:cf:61: 19:78:cc:f1:ad:56:46:e9:eb:f9:68:6d:da:ae:60: 46:e5:21:1d:55:83:8f:9c:52:4b:8a:19:fd:0d:dd: 1c:0d:40:aa:ef:0f:56:59:8b:4f:c2:50:6e:d1:da: 64:d0:18:6a:63:fb:1b:47:4e:c7:2a:db:6e:ee:b9: 6f:b8:ca:8c:6d:e3:c0:ef:be:2d:62:33:8e:96:68: d5:4a:60:98:59:7c:8e:d9:ac:1b:ca:d1:ea:f5:b8: 7e:6e:51:3c:6d:0e:8a:37:c9:6d:05:ea:af:89:ce: ee:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:3D:E1:81:7B:8F:B6:B3:CC:7C:40:D5:D4:33:44:BC:57:DC:F6:2A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6d0592fe-1739-47a3-b178-e4736351b625.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7010::/44 Signature Algorithm: sha256WithRSAEncryption 25:f9:7f:a1:3b:27:9d:d4:06:1a:c0:48:37:4a:a6:f8:a5:c9: ad:58:8b:ac:45:25:8f:af:33:5e:a9:f5:ab:ec:99:fc:cb:be: da:8d:cb:02:1a:aa:1d:11:61:f2:da:24:9b:cc:6a:31:10:d9: 69:59:55:97:6f:c9:8d:ad:65:e2:58:1b:b9:bf:09:a4:65:62: af:af:6b:bc:93:fb:35:2b:5d:ee:7b:c6:48:e0:58:ad:af:34: c8:a7:b5:e2:b9:e9:98:04:8e:b4:f1:35:5f:0a:d8:cd:5e:23: 8d:08:8f:10:06:1a:6a:38:dc:99:69:fb:ab:ac:34:45:3f:92: f2:6f:25:f9:32:61:c3:34:f7:0e:3e:ac:5e:a0:53:5f:58:3e: 78:bd:7f:12:5b:2c:68:74:67:2a:8e:20:b2:71:a0:14:cb:0b: 0a:f5:a7:05:ec:b7:48:c8:cb:8d:be:18:1f:01:41:c2:b2:43: dc:9d:7a:6d:99:85:12:7e:a4:71:0a:70:0c:f5:16:40:d4:53: 8f:50:0e:ad:75:33:1d:5a:43:d5:13:cd:ca:f2:df:11:a5:0f: a2:0e:fc:fb:c1:49:bb:3d:aa:db:b3:cc:28:c8:a5:5c:ed:59: 48:37:85:6f:fe:86:cd:c1:70:8d:6e:58:b2:61:1a:35:e4:94: 49:70:97:0b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWJJh9bE2pXOznOMzRfEdUkAORKEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDEzMTc1NTE1WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2N2M5ZmU4OWI3ZmJjY2VlMmMyYjVkNzk4NTNmOTM5ODg5 YjQxZjJhODQ2NzAwMWMxZDViZGYxNzgzZDE3NGZmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNGKuoVPNWaatR2kG7noZ3kUwNtevI13HdNArd0feP6UO2 wvNvXYmC08N3xkdg7uztW7zNjT5+791fUKkjyyVxyIq5XIQ+gwNhXL5ChZd/tp02 DDzx9/TgPkwJ7WOlty/sYvd5utdE4/uosuHxhiGrsB3XEW7tpwXHRjWzHU9nBdyi bP8cy7Ouxzs8oOTNQRqDQQrPYRl4zPGtVkbp6/lobdquYEblIR1Vg4+cUkuKGf0N 3RwNQKrvD1ZZi0/CUG7R2mTQGGpj+xtHTscq227uuW+4yoxt48Dvvi1iM46WaNVK YJhZfI7ZrBvK0er1uH5uUTxtDoo3yW0F6q+Jzu7lAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbj3hgXuPtrPMfEDV1DNEvFfc9iowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzZkMDU5MmZlLTE3MzktNDdhMy1iMTc4LWU0NzM2MzUxYjYyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDycBAwDQYJKoZIhvcNAQELBQADggEBACX5f6E7J53UBhrASDdKpvil ya1Yi6xFJY+vM16p9avsmfzLvtqNywIaqh0RYfLaJJvMajEQ2WlZVZdvyY2tZeJY G7m/CaRlYq+va7yT+zUrXe57xkjgWK2vNMinteK56ZgEjrTxNV8K2M1eI40IjxAG Gmo43Jlp+6usNEU/kvJvJfkyYcM09w4+rF6gU19YPni9fxJbLGh0ZyqOILJxoBTL Cwr1pwXst0jIy42+GB8BQcKyQ9ydem2ZhRJ+pHEKcAz1FkDUU49QDq11Mx1aQ9UT zcry3xGlD6IO/PvBSbs9qtuzzCjIpVztWUg3hW/+hs3BcI1uWLJhGjXklElwlws= -----END CERTIFICATE-----Generated at Mon Oct 20 08:05:07 2025 by rpki-client