$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8e5237ea-75ca-4cdd-8c2f-e73681a3af5e.roa File: 8e5237ea-75ca-4cdd-8c2f-e73681a3af5e.roa (raw, json) Hash identifier: QIUVjKhZXqjd/bbCIfkAGQXYF3nFUNaesKXKKdh9n1Y= Subject key identifier: F0:52:12:20:F6:50:70:C0:A9:D1:C6:5B:DC:2E:1E:06:A7:94:6C:09 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4E438B45991FA5A4926F35EFCA6CFD701DB41222 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8e5237ea-75ca-4cdd-8c2f-e73681a3af5e.roa Signing time: Tue 30 Sep 2025 00:45:56 +0000 ROA not before: Tue 30 Sep 2025 00:45:56 +0000 ROA not after: Tue 04 Nov 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f2:7140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:43:8b:45:99:1f:a5:a4:92:6f:35:ef:ca:6c:fd:70:1d:b4:12:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 30 00:45:56 2025 GMT Not After : Nov 4 23:59:59 2025 GMT Subject: serialNumber=f87ae6d2b11c9facafe8b932d20d2bf2b9b42ad9b89db41714d16f8cef6f86eb, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ef:e5:93:67:c3:14:49:c2:cf:4b:b8:e4:1c: f9:75:c6:9b:ea:8f:b8:a6:6c:db:9c:2e:23:cb:b6: c4:45:d6:fe:aa:14:5a:6f:71:1b:f2:e7:47:25:8f: 70:23:55:23:86:01:6b:84:b2:b2:4b:52:c8:04:5b: 2f:ca:53:02:51:3c:dd:df:00:14:21:7a:b4:e0:9b: 8e:56:c1:d3:37:3c:d6:15:f0:84:a9:f6:76:4b:8c: 1c:c4:8b:40:e5:1e:92:c4:2a:e3:2c:60:e7:53:b6: 47:ca:dd:e9:f1:61:02:2f:66:d7:7f:49:66:3e:7d: 5d:76:c3:97:a4:ab:ed:a6:e1:fc:62:48:fe:63:4c: 1c:6c:8e:d5:b6:58:5f:8c:31:a8:c0:d7:04:29:87: f2:ee:ce:9f:e6:3a:d4:b8:9d:8a:47:fb:0f:b8:16: b0:a4:45:2f:47:3e:3b:bf:01:0d:67:86:37:10:09: dc:95:50:54:ee:c0:5c:66:7e:f5:82:84:18:fb:38: 53:a5:3a:f2:51:b9:8b:8f:3c:81:83:b1:2a:da:21: 20:fa:55:13:3e:7a:fa:54:0c:4f:21:0f:71:c7:75: a9:4e:ad:4b:cd:19:1d:a6:ae:3d:03:59:83:e3:e1: 00:6e:08:49:5f:53:9a:c7:8a:16:c3:37:87:39:14: eb:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:52:12:20:F6:50:70:C0:A9:D1:C6:5B:DC:2E:1E:06:A7:94:6C:09 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8e5237ea-75ca-4cdd-8c2f-e73681a3af5e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7140::/48 Signature Algorithm: sha256WithRSAEncryption 42:bf:75:ce:25:c3:f3:3d:eb:71:0f:cc:23:63:11:b7:c5:9f: 92:30:4d:41:a2:35:1a:c3:8a:27:b9:0a:6c:fd:17:6a:a6:63: bf:cd:d4:35:44:f0:bb:2b:71:31:aa:9e:d6:9b:d0:1d:d6:e3: bc:9d:a9:0d:72:b2:47:62:9f:9c:8b:03:00:c1:e4:98:e0:9c: 9c:ef:8d:5a:db:40:6d:da:b7:dc:60:0d:57:1d:64:a8:45:de: a4:a3:20:97:73:af:83:4a:12:d5:85:10:d5:08:80:53:4d:90: e1:34:46:11:36:f6:4b:6d:50:33:a3:1f:9c:a9:fd:a8:b2:98: 13:00:53:61:9c:b9:9d:13:c1:43:55:40:42:e6:0b:0f:22:d1: b1:ce:3d:2d:30:59:74:b1:4b:8e:37:d9:70:9d:da:5c:f8:d2: a1:ac:3b:c6:69:d7:21:e6:be:57:5d:19:78:84:76:23:9e:e0: 94:c4:2e:7e:ec:21:82:74:ee:f5:d3:af:0f:56:e8:82:f0:66: fb:f3:5c:bb:e1:cf:65:52:b7:b7:b9:d2:e4:82:4d:2f:d0:aa: 1d:10:da:63:9b:56:95:ba:d6:ba:e7:37:d2:9d:f7:05:56:9d: 37:d5:bf:0e:f7:b6:99:72:31:19:a2:2c:ea:ad:ae:2c:38:fa: 5c:e2:5a:f0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTkOLRZkfpaSSbzXvymz9cB20EiIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTMwMDA0NTU2WhcNMjUxMTA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmODdhZTZkMmIxMWM5ZmFjYWZlOGI5MzJkMjBkMmJmMmI5 YjQyYWQ5Yjg5ZGI0MTcxNGQxNmY4Y2VmNmY4NmViMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDb7+WTZ8MUScLPS7jkHPl1xpvqj7imbNucLiPLtsRF1v6q FFpvcRvy50clj3AjVSOGAWuEsrJLUsgEWy/KUwJRPN3fABQherTgm45WwdM3PNYV 8ISp9nZLjBzEi0DlHpLEKuMsYOdTtkfK3enxYQIvZtd/SWY+fV12w5ekq+2m4fxi SP5jTBxsjtW2WF+MMajA1wQph/Luzp/mOtS4nYpH+w+4FrCkRS9HPju/AQ1nhjcQ CdyVUFTuwFxmfvWChBj7OFOlOvJRuYuPPIGDsSraISD6VRM+evpUDE8hD3HHdalO rUvNGR2mrj0DWYPj4QBuCElfU5rHihbDN4c5FOu9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8FISIPZQcMCp0cZb3C4eBqeUbAkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzhlNTIzN2VhLTc1Y2EtNGNkZC04YzJmLWU3MzY4MWEzYWY1ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDycUAwDQYJKoZIhvcNAQELBQADggEBAEK/dc4lw/M963EPzCNjEbfF n5IwTUGiNRrDiie5Cmz9F2qmY7/N1DVE8LsrcTGqntab0B3W47ydqQ1yskdin5yL AwDB5JjgnJzvjVrbQG3at9xgDVcdZKhF3qSjIJdzr4NKEtWFENUIgFNNkOE0RhE2 9kttUDOjH5yp/aiymBMAU2GcuZ0TwUNVQELmCw8i0bHOPS0wWXSxS4432XCd2lz4 0qGsO8Zp1yHmvlddGXiEdiOe4JTELn7sIYJ07vXTrw9W6ILwZvvzXLvhz2VSt7e5 0uSCTS/Qqh0Q2mObVpW61rrnN9Kd9wVWnTfVvw73tplyMRmiLOqtriw4+lziWvA= -----END CERTIFICATE-----Generated at Mon Oct 20 08:03:33 2025 by rpki-client