$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9dcfab8d-23d5-4ce2-bcc7-d85ec1e40912.roa File: 9dcfab8d-23d5-4ce2-bcc7-d85ec1e40912.roa (raw, json) Hash identifier: 8dUvVmsr+wjIlU2ebYdItyzC4kuW3zMiiuhIaeY6zyw= Subject key identifier: 58:5E:81:71:0A:D5:F1:89:51:C9:59:18:4A:E6:BD:41:36:DB:30:3F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 29CE9AEA97D4C1D23800CBAFD1DD8A6B719EF7B4 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9dcfab8d-23d5-4ce2-bcc7-d85ec1e40912.roa Signing time: Mon 13 Oct 2025 17:55:16 +0000 ROA not before: Mon 13 Oct 2025 17:55:16 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f2:7011::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:ce:9a:ea:97:d4:c1:d2:38:00:cb:af:d1:dd:8a:6b:71:9e:f7:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 13 17:55:16 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=00e6ade031a401ec5bf467d865e69c2f50ed9a2bf77090bc7695d158b0c993da, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a8:98:b1:88:36:e7:b0:9d:8a:df:22:51:44: 68:b5:1f:c6:b4:35:38:cc:61:24:87:91:80:e4:18: 3f:5b:e2:8f:bc:89:e0:a7:7c:a5:7f:f6:a5:a2:a8: 3a:32:90:3c:30:b4:c1:64:0b:19:36:60:e7:3e:6c: 28:67:c9:4b:29:e1:3c:b7:07:41:74:ab:f3:1c:60: 6e:54:9a:a2:4e:de:c2:b1:18:65:92:15:7d:69:4b: 7d:24:fc:d4:e5:90:99:fa:a4:f1:12:27:7d:ec:74: d4:0f:8e:58:e3:e0:e7:a1:00:2c:8d:39:46:40:16: 5e:c5:ac:25:5a:d6:c5:b1:a4:ef:87:0c:40:f7:d1: 63:91:4f:81:39:30:7e:b9:ca:17:53:e0:ea:1c:a6: 95:96:93:65:1d:07:3e:46:7c:c0:6d:35:04:92:68: c8:36:66:ba:98:e3:f8:d0:ae:0d:02:90:e9:47:88: 7d:0f:49:e1:db:e6:3c:2b:50:da:ed:27:69:9e:3d: c9:43:1e:8f:bc:ed:18:17:0a:50:ba:ae:8b:bb:43: df:27:cb:90:81:4b:1a:7a:c4:4e:c7:ec:25:a7:1f: 0a:fa:54:a7:7d:e8:fc:39:32:00:5e:2c:6a:d0:cc: d0:94:48:86:70:23:62:b8:d7:aa:bf:54:4f:44:47: 37:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:5E:81:71:0A:D5:F1:89:51:C9:59:18:4A:E6:BD:41:36:DB:30:3F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9dcfab8d-23d5-4ce2-bcc7-d85ec1e40912.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7011::/48 Signature Algorithm: sha256WithRSAEncryption 65:28:cd:3d:bd:74:7e:50:1c:3a:d6:9a:40:12:69:4b:5e:13: eb:b9:2d:e8:46:0b:69:0d:59:70:49:74:01:32:ca:02:1a:25: ce:64:8e:8a:25:92:32:b6:7c:2c:ec:84:61:8f:ac:8e:6d:31: 69:d1:e0:1b:6b:95:32:24:43:f6:ed:18:b8:fc:28:6b:f7:01: fb:cf:f1:c7:6b:0f:10:b0:16:a1:1c:88:51:0b:83:b2:d0:32: 45:21:1f:1f:13:66:66:d8:ad:18:de:a4:7e:bb:c6:76:62:38: 91:92:06:a2:9a:03:a5:e0:62:fc:dd:39:57:80:e7:f6:b1:cb: 4a:8d:bf:f0:59:8c:36:33:3e:4d:63:77:fc:08:34:2c:7e:0e: 48:8b:a4:3b:50:8d:a0:12:a9:cc:64:15:7a:ba:1c:c9:73:94: e8:32:7d:84:c8:0b:4e:3d:84:a5:5b:37:12:f4:7d:6e:df:12: e5:80:36:fd:a0:d2:4f:2f:60:c0:84:d2:51:ab:29:bb:d0:ff: 25:2e:db:14:6b:04:a7:53:c4:bb:c6:5d:ac:d9:3a:a5:f0:40: 5d:83:8c:7f:32:ef:eb:83:aa:bb:02:53:e8:17:69:04:ad:82: 99:5e:d0:93:18:7e:aa:71:97:02:e4:eb:23:32:42:44:d2:2f: a0:e2:be:e1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKc6a6pfUwdI4AMuv0d2Ka3Ge97QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDEzMTc1NTE2WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMGU2YWRlMDMxYTQwMWVjNWJmNDY3ZDg2NWU2OWMyZjUw ZWQ5YTJiZjc3MDkwYmM3Njk1ZDE1OGIwYzk5M2RhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLqJixiDbnsJ2K3yJRRGi1H8a0NTjMYSSHkYDkGD9b4o+8 ieCnfKV/9qWiqDoykDwwtMFkCxk2YOc+bChnyUsp4Ty3B0F0q/McYG5UmqJO3sKx GGWSFX1pS30k/NTlkJn6pPESJ33sdNQPjljj4OehACyNOUZAFl7FrCVa1sWxpO+H DED30WORT4E5MH65yhdT4OocppWWk2UdBz5GfMBtNQSSaMg2ZrqY4/jQrg0CkOlH iH0PSeHb5jwrUNrtJ2mePclDHo+87RgXClC6rou7Q98ny5CBSxp6xE7H7CWnHwr6 VKd96Pw5MgBeLGrQzNCUSIZwI2K416q/VE9ERze9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUWF6BcQrV8YlRyVkYSua9QTbbMD8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzlkY2ZhYjhkLTIzZDUtNGNlMi1iY2M3LWQ4NWVjMWU0MDkxMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDycBEwDQYJKoZIhvcNAQELBQADggEBAGUozT29dH5QHDrWmkASaUte E+u5LehGC2kNWXBJdAEyygIaJc5kjoolkjK2fCzshGGPrI5tMWnR4BtrlTIkQ/bt GLj8KGv3AfvP8cdrDxCwFqEciFELg7LQMkUhHx8TZmbYrRjepH67xnZiOJGSBqKa A6XgYvzdOVeA5/axy0qNv/BZjDYzPk1jd/wINCx+DkiLpDtQjaASqcxkFXq6HMlz lOgyfYTIC049hKVbNxL0fW7fEuWANv2g0k8vYMCE0lGrKbvQ/yUu2xRrBKdTxLvG XazZOqXwQF2DjH8y7+uDqrsCU+gXaQStgple0JMYfqpxlwLk6yMyQkTSL6DivuE= -----END CERTIFICATE-----Generated at Mon Oct 20 09:51:17 2025 by rpki-client