$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a05fd272-e896-4327-ba78-a6cbca5483ef.roa File: a05fd272-e896-4327-ba78-a6cbca5483ef.roa (raw, json) Hash identifier: sarJwCnqq0Jqeep68cQLil2nMfMIMZh7Kig6GdZS6rU= Subject key identifier: A0:3C:BF:F0:29:E2:0D:05:29:F3:79:82:6D:38:91:01:CD:DB:0D:9B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 65CDBE8E34FB322A478829382271168EC412E229 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a05fd272-e896-4327-ba78-a6cbca5483ef.roa Signing time: Sat 27 Sep 2025 00:52:19 +0000 ROA not before: Sat 27 Sep 2025 00:52:19 +0000 ROA not after: Sat 01 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f109::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:cd:be:8e:34:fb:32:2a:47:88:29:38:22:71:16:8e:c4:12:e2:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 27 00:52:19 2025 GMT Not After : Nov 1 23:59:59 2025 GMT Subject: serialNumber=8ef00ab2b48cfdafe1b465b4310defc2e0c58e2e45050d48ad369fbe98361ba5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:13:69:4b:e9:49:d0:0e:13:06:5d:0a:58:52: 4c:cc:26:06:01:32:e7:81:63:7d:49:90:4d:1f:97: ec:62:45:71:b1:10:98:ed:c0:36:5f:d8:60:ee:0f: 89:a6:68:22:66:f8:01:0c:93:d6:f8:49:21:92:68: d5:32:14:b4:ac:4a:9b:5b:7b:8e:7e:fd:e9:16:3d: 57:57:ba:5e:1b:1a:46:27:d2:24:ad:4d:ff:73:3d: f8:3d:59:40:86:50:73:16:d0:68:ab:46:d7:c8:e1: ae:37:14:ba:c2:7f:db:2d:45:f1:70:0e:c7:07:c3: 91:d9:f7:50:01:53:5d:02:4b:83:7a:40:ad:e1:5b: 49:f5:0b:90:19:05:87:f9:35:c9:b8:0d:70:55:e3: 66:e4:77:9d:eb:2d:a1:e6:d5:83:45:16:83:6a:82: 9a:ae:b4:6b:e2:89:83:be:12:3e:c8:a0:6a:4d:04: 53:62:53:31:32:f1:d1:ae:e9:9a:ac:1c:bd:08:73: ec:7c:ab:5d:6c:da:5d:10:b9:c5:2c:a7:59:ff:4d: 40:d4:64:77:d6:a8:b6:af:8c:f7:e7:1d:cc:75:18: c4:33:b9:45:4d:71:29:c0:ce:4f:38:50:9b:18:c9: 0c:b7:5c:b1:f2:c4:aa:ac:9e:a4:60:9b:f1:cb:6f: e7:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:3C:BF:F0:29:E2:0D:05:29:F3:79:82:6D:38:91:01:CD:DB:0D:9B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a05fd272-e896-4327-ba78-a6cbca5483ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f109::/48 Signature Algorithm: sha256WithRSAEncryption 04:53:62:b9:b5:b3:b7:3d:97:06:c3:ec:4a:ee:ba:95:c2:20: 66:a7:69:57:e2:80:29:89:6a:04:1d:87:3f:95:f2:f5:e1:fa: 54:e0:b0:b0:14:49:be:7f:7a:d0:a5:51:db:ec:de:94:33:eb: 4c:18:8f:6a:ba:40:3e:d8:3e:3a:7a:a9:a9:72:9f:85:cb:4f: 8b:e3:69:00:3e:5f:db:43:26:1c:2a:33:b2:8f:3d:64:3b:bc: 45:9a:39:a4:d3:bd:f8:7c:29:f2:4f:1a:a1:66:52:63:be:f4: 0a:30:8a:ff:5d:76:6a:d2:6c:9c:66:57:e3:4c:4e:df:56:24: 50:76:d0:a9:70:55:f5:4b:e7:e6:73:41:7c:55:e3:58:5b:7f: 87:9e:00:a8:dd:f0:89:b4:5f:f8:be:8b:ad:95:b2:f2:d3:68: f1:68:43:e5:f7:bf:57:46:8f:86:62:49:90:22:23:9c:37:79: bd:02:10:17:fe:8b:ea:3e:8c:ab:0a:46:7b:53:cf:9a:89:53: 5e:ae:31:6e:5f:c9:1f:a2:10:e0:4e:90:92:54:b3:d9:7c:a0: f6:a6:48:eb:6e:15:cf:ba:bd:fd:23:0c:8b:86:05:99:0b:d5: f6:2f:e2:c9:f0:d2:13:8e:04:8e:02:84:5c:b2:9f:80:5d:1f: 7b:f1:d0:ab -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZc2+jjT7MipHiCk4InEWjsQS4ikwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI3MDA1MjE5WhcNMjUxMTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZWYwMGFiMmI0OGNmZGFmZTFiNDY1YjQzMTBkZWZjMmUw YzU4ZTJlNDUwNTBkNDhhZDM2OWZiZTk4MzYxYmE1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOE2lL6UnQDhMGXQpYUkzMJgYBMueBY31JkE0fl+xiRXGx EJjtwDZf2GDuD4mmaCJm+AEMk9b4SSGSaNUyFLSsSptbe45+/ekWPVdXul4bGkYn 0iStTf9zPfg9WUCGUHMW0GirRtfI4a43FLrCf9stRfFwDscHw5HZ91ABU10CS4N6 QK3hW0n1C5AZBYf5Ncm4DXBV42bkd53rLaHm1YNFFoNqgpqutGviiYO+Ej7IoGpN BFNiUzEy8dGu6ZqsHL0Ic+x8q11s2l0QucUsp1n/TUDUZHfWqLavjPfnHcx1GMQz uUVNcSnAzk84UJsYyQy3XLHyxKqsnqRgm/HLb+cZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUoDy/8CniDQUp83mCbTiRAc3bDZswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2EwNWZkMjcyLWU4OTYtNDMyNy1iYTc4LWE2Y2JjYTU0ODNlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QkwDQYJKoZIhvcNAQELBQADggEBAARTYrm1s7c9lwbD7EruupXC IGanaVfigCmJagQdhz+V8vXh+lTgsLAUSb5/etClUdvs3pQz60wYj2q6QD7YPjp6 qalyn4XLT4vjaQA+X9tDJhwqM7KPPWQ7vEWaOaTTvfh8KfJPGqFmUmO+9Aowiv9d dmrSbJxmV+NMTt9WJFB20KlwVfVL5+ZzQXxV41hbf4eeAKjd8Im0X/i+i62VsvLT aPFoQ+X3v1dGj4ZiSZAiI5w3eb0CEBf+i+o+jKsKRntTz5qJU16uMW5fyR+iEOBO kJJUs9l8oPamSOtuFc+6vf0jDIuGBZkL1fYv4snw0hOOBI4ChFyyn4BdH3vx0Ks= -----END CERTIFICATE-----Generated at Mon Oct 20 14:54:04 2025 by rpki-client