$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa File: 9a96c02c-ad61-40ce-b5aa-def693953ba1.roa (raw, json) Hash identifier: Hm0wOxdZnAgnEDKo0dUk4eaWCebBfRWGciiyIYiABwM= Subject key identifier: DD:E7:07:C2:8F:15:BD:73:BB:26:F1:FF:1A:1E:69:BC:32:33:9C:68 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 497BEFD22A1237B40C10E231AD501A42C4E0B45B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa Signing time: Sat 27 Sep 2025 00:52:43 +0000 ROA not before: Sat 27 Sep 2025 00:52:43 +0000 ROA not after: Sat 01 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f3:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:7b:ef:d2:2a:12:37:b4:0c:10:e2:31:ad:50:1a:42:c4:e0:b4:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 27 00:52:43 2025 GMT Not After : Nov 1 23:59:59 2025 GMT Subject: serialNumber=a7c8ca63d8a493e345f1eec24f286176f00a48da6c351c0bc4a05f9abe9b950f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8f:b9:b8:82:a5:d6:b9:34:b6:e8:2a:e5:0a: fd:18:4e:6e:5f:d4:fc:4c:e2:62:8d:cb:38:37:b4: 87:1d:48:79:e0:e2:49:88:8a:4e:a6:b1:8d:d6:d2: 89:17:5b:67:47:d2:e2:83:09:ea:e9:6c:16:eb:c5: ae:90:9c:e9:ae:fa:2c:98:01:a6:e8:f0:63:69:30: 98:e0:bc:fd:ce:9b:4b:88:20:20:b6:d7:f1:25:43: bc:6d:5f:38:4f:32:b1:c2:90:31:3c:bd:1c:ff:19: 4d:b6:3d:ad:12:79:c3:d1:d2:f1:9d:0c:49:f9:79: d5:70:b4:8a:9a:55:5f:74:87:e0:b0:76:8e:77:85: 6e:f5:c8:cd:b6:81:3c:c3:47:d6:25:89:fc:6c:6e: 0d:2c:e5:4f:16:b7:07:fa:e6:c1:7a:9c:ef:89:88: e2:ed:19:25:36:29:d8:61:10:17:9f:91:84:22:21: 19:75:52:ad:61:9d:90:77:14:0e:61:e1:25:01:ea: e2:81:ed:51:47:59:0c:91:0f:82:1b:a9:b9:79:0f: a9:9d:12:b4:f9:31:58:3b:02:e2:50:37:00:13:c0: fd:e1:b6:53:e5:5b:c7:3e:06:74:7a:ed:c8:fa:b5: 83:ce:40:5f:0b:41:a0:b9:89:d3:dd:32:00:1b:ea: 6e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:E7:07:C2:8F:15:BD:73:BB:26:F1:FF:1A:1E:69:BC:32:33:9C:68 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f3:f000::/44 Signature Algorithm: sha256WithRSAEncryption 9d:97:89:08:ca:5b:9a:cc:d6:b6:b0:46:9e:22:8a:0a:48:aa: e3:c5:c2:24:30:bd:85:72:02:0e:9a:10:19:f0:7b:71:85:18: b0:fb:59:78:92:b9:23:a0:f8:63:65:3a:b1:8b:22:08:55:a4: 64:c7:5d:7b:ff:c9:48:f1:18:97:e6:9b:02:fc:96:f6:a0:7d: 84:8e:e8:85:c3:ef:86:2e:c6:a6:a7:f0:61:5d:37:3e:3f:27: af:d3:97:53:22:e9:cf:53:a4:c4:84:3b:c9:c6:7c:74:80:54: 61:42:37:d9:42:6c:9f:01:8d:c9:50:07:05:6f:a3:5b:74:f1: 65:43:01:b2:e3:dc:ba:2e:9b:47:65:f8:69:2f:a7:e3:8e:10: f4:1f:77:de:f4:6d:6c:be:07:d4:ff:37:ed:4f:53:57:54:ef: ab:68:c3:ce:f6:61:00:fb:f8:95:95:2a:97:3c:89:15:1e:29: 9c:62:fc:59:21:c3:35:8d:3e:5c:aa:8f:85:2a:c7:bb:e7:52: 78:61:91:30:17:c8:56:72:aa:e6:19:c4:76:df:83:bf:ac:8e: 39:da:4c:e1:98:33:c2:50:46:ac:40:f1:33:a3:c7:1f:d1:2f: b9:09:6b:87:71:f9:33:71:53:76:2e:e4:9d:3b:26:24:76:4b: 97:8e:fb:cb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSXvv0ioSN7QMEOIxrVAaQsTgtFswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI3MDA1MjQzWhcNMjUxMTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhN2M4Y2E2M2Q4YTQ5M2UzNDVmMWVlYzI0ZjI4NjE3NmYw MGE0OGRhNmMzNTFjMGJjNGEwNWY5YWJlOWI5NTBmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxj7m4gqXWuTS26CrlCv0YTm5f1PxM4mKNyzg3tIcdSHng 4kmIik6msY3W0okXW2dH0uKDCerpbBbrxa6QnOmu+iyYAabo8GNpMJjgvP3Om0uI ICC21/ElQ7xtXzhPMrHCkDE8vRz/GU22Pa0SecPR0vGdDEn5edVwtIqaVV90h+Cw do53hW71yM22gTzDR9Ylifxsbg0s5U8Wtwf65sF6nO+JiOLtGSU2KdhhEBefkYQi IRl1Uq1hnZB3FA5h4SUB6uKB7VFHWQyRD4Ibqbl5D6mdErT5MVg7AuJQNwATwP3h tlPlW8c+BnR67cj6tYPOQF8LQaC5idPdMgAb6m73AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3ecHwo8VvXO7JvH/Gh5pvDIznGgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzlhOTZjMDJjLWFkNjEtNDBjZS1iNWFhLWRlZjY5Mzk1M2JhMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDz8AAwDQYJKoZIhvcNAQELBQADggEBAJ2XiQjKW5rM1rawRp4iigpI quPFwiQwvYVyAg6aEBnwe3GFGLD7WXiSuSOg+GNlOrGLIghVpGTHXXv/yUjxGJfm mwL8lvagfYSO6IXD74Yuxqan8GFdNz4/J6/Tl1Mi6c9TpMSEO8nGfHSAVGFCN9lC bJ8BjclQBwVvo1t08WVDAbLj3Loum0dl+Gkvp+OOEPQfd970bWy+B9T/N+1PU1dU 76tow872YQD7+JWVKpc8iRUeKZxi/FkhwzWNPlyqj4Uqx7vnUnhhkTAXyFZyquYZ xHbfg7+sjjnaTOGYM8JQRqxA8TOjxx/RL7kJa4dx+TNxU3Yu5J07JiR2S5eO+8s= -----END CERTIFICATE-----Generated at Mon Oct 20 13:07:35 2025 by rpki-client