$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73712e14-51d5-41db-bcf2-73aa504e6eab.roa File: 73712e14-51d5-41db-bcf2-73aa504e6eab.roa (raw, json) Hash identifier: qZBdG4rx4eL3xOtUd6ncFpxBJpxsvmAIh8Hisf6H6QA= Subject key identifier: EB:1B:44:88:26:31:3B:8E:35:F6:F2:6A:27:A4:45:50:2A:3B:31:40 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 677EE7818B96E3D6EF816C6A9592C8E3A2499BF1 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73712e14-51d5-41db-bcf2-73aa504e6eab.roa Signing time: Fri 26 Sep 2025 18:00:09 +0000 ROA not before: Fri 26 Sep 2025 18:00:09 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 20 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:7e:e7:81:8b:96:e3:d6:ef:81:6c:6a:95:92:c8:e3:a2:49:9b:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:00:09 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=caeb72a75c1e27f268ee42d74f48e121d9d51b68d14ff39ac84496588b040712, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:93:9e:24:52:97:53:68:47:98:55:16:1e:36: 85:e7:92:90:e6:96:b3:fb:91:fd:23:b3:e1:ba:bf: 7f:5e:b4:40:d9:1d:6b:2b:0a:40:c6:bc:33:b1:2a: d9:cc:1f:93:6d:5a:e6:24:ed:36:28:bb:93:20:3a: ab:08:4e:63:1e:73:66:41:a8:a7:c6:e6:41:18:ae: a3:1e:29:ce:dc:a2:4a:a5:09:3e:df:36:5d:cf:e3: 01:87:e7:2b:07:5f:e3:b8:df:60:85:aa:09:23:46: 55:54:d0:7b:f9:f4:ae:bf:2e:ca:8d:5d:26:76:dc: bc:13:36:ef:33:90:6f:9f:56:88:d9:eb:81:88:8a: 92:59:7d:ae:8d:80:92:75:53:d3:88:d5:ea:2f:c9: fb:af:1c:bd:51:21:67:90:b3:8e:c1:7b:ba:2a:f8: 7a:d9:a4:de:6f:fe:23:24:dc:56:dc:1a:88:cb:db: 88:2e:c5:78:19:85:71:4b:58:47:3e:86:5b:6a:0e: 04:16:41:ed:76:53:10:b4:89:b2:46:f2:63:33:76: 60:56:86:ea:43:79:e6:2f:d8:2c:d0:83:c5:5d:7e: 90:44:90:dc:f9:7a:56:94:1a:20:c7:44:1a:0b:5c: ec:83:52:4a:08:3f:5f:8f:cb:9d:a3:58:c9:2c:42: de:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:1B:44:88:26:31:3B:8E:35:F6:F2:6A:27:A4:45:50:2A:3B:31:40 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73712e14-51d5-41db-bcf2-73aa504e6eab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:80::/48 Signature Algorithm: sha256WithRSAEncryption 0e:50:07:81:e3:96:1f:3a:29:d2:a1:b0:00:4a:38:85:e6:5a: 00:4f:f7:3c:9b:ff:d3:7f:ff:b2:42:97:02:24:6e:e4:61:4d: 8a:45:6e:c8:f7:9c:13:e7:a1:66:4f:30:a9:c5:65:94:9f:44: f9:00:4a:1f:a4:4e:78:6e:8d:df:48:c1:9e:6e:b1:f2:78:3b: 91:59:a7:31:19:1c:a5:2b:30:0b:31:9d:15:f9:cd:89:8c:69: a8:8f:8a:77:d0:23:de:ad:9d:ff:b3:cc:35:c0:50:18:87:4c: 03:38:56:16:59:f9:40:a8:a0:de:72:22:45:68:9a:78:53:4e: c4:15:6b:da:16:6a:dc:c2:83:ee:d8:fe:37:e0:cf:ba:37:e5: 61:3c:d6:66:17:a1:32:be:f6:6b:7e:99:62:b5:fd:a1:a0:99: ef:de:cb:33:a6:f5:f0:23:aa:72:a6:a6:80:98:67:64:ba:31: ae:95:b1:99:28:fb:af:46:59:bc:99:2a:6a:68:93:74:a4:06: f6:c6:a8:ed:24:63:61:b8:bc:9f:83:17:59:41:aa:c3:2c:0d: c7:73:41:19:77:5a:29:2c:e6:5b:c9:c8:40:67:09:05:16:29: 32:54:86:fc:8f:83:46:ac:ee:8c:ed:39:c5:d0:a2:1c:62:c5: 25:aa:cb:4a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZ37ngYuW49bvgWxqlZLI46JJm/EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgwMDA5WhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYWViNzJhNzVjMWUyN2YyNjhlZTQyZDc0ZjQ4ZTEyMWQ5 ZDUxYjY4ZDE0ZmYzOWFjODQ0OTY1ODhiMDQwNzEyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOk54kUpdTaEeYVRYeNoXnkpDmlrP7kf0js+G6v39etEDZ HWsrCkDGvDOxKtnMH5NtWuYk7TYou5MgOqsITmMec2ZBqKfG5kEYrqMeKc7cokql CT7fNl3P4wGH5ysHX+O432CFqgkjRlVU0Hv59K6/LsqNXSZ23LwTNu8zkG+fVojZ 64GIipJZfa6NgJJ1U9OI1eovyfuvHL1RIWeQs47Be7oq+HrZpN5v/iMk3FbcGojL 24guxXgZhXFLWEc+hltqDgQWQe12UxC0ibJG8mMzdmBWhupDeeYv2CzQg8VdfpBE kNz5elaUGiDHRBoLXOyDUkoIP1+Py52jWMksQt7lAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU6xtEiCYxO4419vJqJ6RFUCo7MUAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzczNzEyZTE0LTUxZDUtNDFkYi1iY2YyLTczYWE1MDRlNmVhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAIAwDQYJKoZIhvcNAQELBQADggEBAA5QB4Hjlh86KdKhsABKOIXm WgBP9zyb/9N//7JClwIkbuRhTYpFbsj3nBPnoWZPMKnFZZSfRPkASh+kTnhujd9I wZ5usfJ4O5FZpzEZHKUrMAsxnRX5zYmMaaiPinfQI96tnf+zzDXAUBiHTAM4VhZZ +UCooN5yIkVomnhTTsQVa9oWatzCg+7Y/jfgz7o35WE81mYXoTK+9mt+mWK1/aGg me/eyzOm9fAjqnKmpoCYZ2S6Ma6VsZko+69GWbyZKmpok3SkBvbGqO0kY2G4vJ+D F1lBqsMsDcdzQRl3Wiks5lvJyEBnCQUWKTJUhvyPg0as7oztOcXQohxixSWqy0o= -----END CERTIFICATE-----Generated at Sun Oct 19 23:06:59 2025 by rpki-client