$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a188fe83-6643-4c1d-a083-434d151a0315.roa File: a188fe83-6643-4c1d-a083-434d151a0315.roa (raw, json) Hash identifier: rAhDu4CdXYPDsRWoUfbNLJbbIw27uT2xwEPrI0hAWWU= Subject key identifier: 73:F9:CB:00:EA:F3:43:09:E9:48:BF:B2:73:BC:22:DF:3D:95:3F:AB Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 19F26B961A00EFB7D1284EA8E4E725ADFCA836ED Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a188fe83-6643-4c1d-a083-434d151a0315.roa Signing time: Mon 06 Oct 2025 17:37:45 +0000 ROA not before: Mon 06 Oct 2025 17:37:45 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6121::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:f2:6b:96:1a:00:ef:b7:d1:28:4e:a8:e4:e7:25:ad:fc:a8:36:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 6 17:37:45 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=7a8d26fdc3490f41c4a32c7f5450a663c3ec34c09135a74c6fa518e4eb6fc727, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ca:ef:23:0b:8a:66:d8:49:72:5e:1f:c4:07: ea:1c:50:c0:73:47:96:9e:61:e0:c1:af:bd:79:37: 86:93:bb:78:fe:b8:15:79:58:f6:67:b8:55:74:4d: 1b:99:aa:e0:6b:60:ba:4c:43:d2:07:ab:41:24:9f: da:d5:2e:9d:d5:93:5b:bd:bd:b8:42:10:77:80:c5: 7a:6e:50:61:24:f0:ea:61:a0:0f:8b:9d:09:aa:bd: 92:91:66:ca:d1:35:65:74:91:da:92:4d:be:c1:28: c3:bf:cc:9e:ad:e1:91:09:bc:36:71:bc:0a:24:14: 0d:81:50:c9:aa:53:4a:ce:c9:8d:1d:13:c2:21:9c: 58:48:2d:e2:2d:79:01:00:3d:ed:9a:03:ac:08:67: af:03:bd:ba:a8:fa:67:84:6f:48:23:a5:d3:b1:42: c6:a0:2a:79:09:24:40:5c:ca:b6:07:34:23:d6:86: 0b:db:af:c0:3b:5e:60:bf:5a:bb:43:1e:a6:dd:b7: c6:4b:5f:c2:28:d5:a2:e3:50:99:3f:9e:4d:00:52: 38:31:c0:11:df:26:f7:e6:10:83:43:28:6f:d2:f0: 3e:d0:12:e7:62:04:79:b7:2c:fe:1f:45:0d:bf:fc: df:dd:ba:e6:b2:81:30:1b:5a:20:ad:34:9b:6c:7f: af:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:F9:CB:00:EA:F3:43:09:E9:48:BF:B2:73:BC:22:DF:3D:95:3F:AB X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a188fe83-6643-4c1d-a083-434d151a0315.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6121::/48 Signature Algorithm: sha256WithRSAEncryption 04:a6:d6:d8:64:c2:cb:01:92:21:45:89:8a:bd:94:2a:2f:40: c8:c6:fe:d0:98:8d:8b:c6:8e:12:45:8e:b5:bd:8f:2b:9c:cf: 47:81:92:13:06:1d:81:4b:dc:89:87:9c:34:4f:f0:5f:94:e3: 75:fc:5f:f4:94:12:f9:55:52:f6:85:df:58:f7:bf:26:52:39: 93:f8:53:ab:f5:32:64:d3:c8:14:1e:53:c1:6f:d6:e3:1b:43: 46:2d:0b:34:63:ec:c8:b1:58:c9:28:d9:6a:ab:8c:52:64:20: 44:5d:cf:45:cd:25:84:94:06:ee:2c:a9:00:4c:63:84:17:ce: e7:96:c7:6c:8e:72:47:b8:42:d0:bc:95:10:e6:df:1a:1a:94: 23:46:4b:79:fc:61:a1:20:ce:97:b8:fc:fe:04:ab:50:8e:49: ce:63:5f:60:8d:0e:e5:d2:b2:c1:b8:55:8a:46:67:78:bb:d3: 8b:6e:74:92:10:45:4d:22:49:d5:d7:ee:66:70:8e:aa:6d:ed: d3:e7:bc:b9:4b:cc:97:9f:c9:14:67:6a:ea:fd:16:44:cb:43: de:79:ef:11:6d:33:30:8b:59:b4:c2:97:76:4e:09:cd:7d:99: c3:e1:65:27:6e:35:b4:03:78:de:2c:a8:a3:b1:a3:ad:6c:ee: 62:5a:88:54 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGfJrlhoA77fRKE6o5OclrfyoNu0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDA2MTczNzQ1WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YThkMjZmZGMzNDkwZjQxYzRhMzJjN2Y1NDUwYTY2M2Mz ZWMzNGMwOTEzNWE3NGM2ZmE1MThlNGViNmZjNzI3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQyu8jC4pm2ElyXh/EB+ocUMBzR5aeYeDBr715N4aTu3j+ uBV5WPZnuFV0TRuZquBrYLpMQ9IHq0Ekn9rVLp3Vk1u9vbhCEHeAxXpuUGEk8Oph oA+LnQmqvZKRZsrRNWV0kdqSTb7BKMO/zJ6t4ZEJvDZxvAokFA2BUMmqU0rOyY0d E8IhnFhILeIteQEAPe2aA6wIZ68Dvbqo+meEb0gjpdOxQsagKnkJJEBcyrYHNCPW hgvbr8A7XmC/WrtDHqbdt8ZLX8Io1aLjUJk/nk0AUjgxwBHfJvfmEINDKG/S8D7Q EudiBHm3LP4fRQ2//N/duuaygTAbWiCtNJtsf6/nAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUc/nLAOrzQwnpSL+yc7wi3z2VP6swHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ExODhmZTgzLTY2NDMtNGMxZC1hMDgzLTQzNGQxNTFhMDMxNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYSEwDQYJKoZIhvcNAQELBQADggEBAASm1thkwssBkiFFiYq9lCov QMjG/tCYjYvGjhJFjrW9jyucz0eBkhMGHYFL3ImHnDRP8F+U43X8X/SUEvlVUvaF 31j3vyZSOZP4U6v1MmTTyBQeU8Fv1uMbQ0YtCzRj7MixWMko2WqrjFJkIERdz0XN JYSUBu4sqQBMY4QXzueWx2yOcke4QtC8lRDm3xoalCNGS3n8YaEgzpe4/P4Eq1CO Sc5jX2CNDuXSssG4VYpGZ3i704tudJIQRU0iSdXX7mZwjqpt7dPnvLlLzJefyRRn aur9FkTLQ9557xFtMzCLWbTCl3ZOCc19mcPhZSduNbQDeN4sqKOxo61s7mJaiFQ= -----END CERTIFICATE-----Generated at Mon Oct 20 07:46:08 2025 by rpki-client