$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a37af6d7-0b31-4a46-b8d9-08efcf8fef53.roa File: a37af6d7-0b31-4a46-b8d9-08efcf8fef53.roa (raw, json) Hash identifier: LJ6UE9EA536Gu9xXMjLKmqbyJFt9upS6+GDJhr7g8NA= Subject key identifier: B7:22:2B:AF:D9:61:C3:32:E5:16:CB:11:62:66:51:B3:9B:90:D7:7B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1B8019C8F718CEA92EA748D2DC5E3EE85AD56793 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a37af6d7-0b31-4a46-b8d9-08efcf8fef53.roa Signing time: Fri 26 Sep 2025 18:11:30 +0000 ROA not before: Fri 26 Sep 2025 18:11:30 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e600::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:80:19:c8:f7:18:ce:a9:2e:a7:48:d2:dc:5e:3e:e8:5a:d5:67:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:11:30 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=75aeebc3d40c7bb30a589893d627f8d18c50a58f82470525802dbac8bf7caf7b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:05:86:41:66:e6:ab:77:38:db:1b:af:dc:c9: 18:0c:66:77:00:2f:8a:b7:43:19:a0:5c:27:6e:73: 31:26:51:86:d2:8a:21:0a:c0:e3:04:e4:d8:2e:82: f7:1c:d1:73:f7:e8:fe:53:0d:45:e7:36:f8:9f:0d: b1:a8:69:3e:75:e7:c8:ee:2a:8a:59:da:ed:77:e7: 3e:50:1c:81:4b:c4:a2:c5:cd:48:b1:09:83:1d:2f: e6:20:39:6c:2e:a5:47:73:16:36:d4:67:66:b2:70: 69:98:aa:87:df:94:31:cf:7b:cf:f5:32:48:78:d6: ef:8c:35:28:29:b4:a0:cc:04:b6:fc:16:bc:c2:5a: 16:71:f5:94:01:17:c2:c0:06:13:30:c8:f8:d1:03: 58:b8:ab:0c:5d:92:7a:93:ff:e0:92:78:51:41:7e: 4f:fa:3b:e2:01:7c:58:dc:ed:b0:87:c2:11:05:d1: 71:7a:24:1e:3b:e1:92:1e:22:5f:d9:2d:84:e1:d6: 47:bb:a7:d6:7e:68:56:2a:c3:7b:c8:0e:7f:ba:23: cb:a7:da:6d:9c:8c:05:15:c3:96:e1:d3:2e:74:74: 41:1d:5d:3b:71:02:1f:49:10:8e:73:c0:1e:17:42: e8:b5:0d:ba:21:8c:0b:41:a1:80:af:69:52:53:e2: 8c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:22:2B:AF:D9:61:C3:32:E5:16:CB:11:62:66:51:B3:9B:90:D7:7B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a37af6d7-0b31-4a46-b8d9-08efcf8fef53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e600::/42 Signature Algorithm: sha256WithRSAEncryption 75:b7:a7:a2:6d:3f:6d:d2:87:08:1d:a0:bf:89:e2:c7:b8:36: 85:2b:c7:26:4b:b7:ae:d2:97:26:25:73:6f:20:2a:b4:99:4c: 1a:ef:f0:f3:dd:d1:a8:a1:c8:e2:78:80:69:f1:97:61:3c:67: b6:86:04:c2:16:df:e4:3d:6f:d4:9d:36:1a:bb:7c:88:ae:5e: 89:e4:a9:2e:d2:b3:a8:c4:06:a6:5d:8e:59:a5:8a:c1:9f:2b: 45:65:42:37:ce:f4:d4:f0:98:33:6f:7f:d2:33:41:63:b0:6b: 6b:6c:6b:b0:dc:d3:fb:bf:33:3d:f0:fc:80:82:ae:50:cb:d2: 4c:e7:e3:27:cc:46:1f:13:de:ad:89:33:18:29:d8:cc:c2:47: 4e:49:87:89:50:74:0c:21:4b:e5:21:73:d7:1f:1e:9d:23:9c: 76:91:78:bd:89:8c:ac:8e:df:b4:93:2a:32:59:3b:8c:9d:87: d5:84:23:45:30:ba:88:84:7b:b6:b6:b1:65:15:77:dd:18:09: 66:f3:cf:ce:e4:da:fa:83:97:3c:ed:79:0d:d3:69:6a:06:be: 2f:8b:57:ff:81:56:29:16:f9:99:bf:26:03:d2:71:a5:3b:ec: 2f:8e:0e:37:8f:53:83:69:47:ff:35:f3:2f:4b:9c:93:97:8e: 6e:1d:3c:99 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUG4AZyPcYzqkup0jS3F4+6FrVZ5MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgxMTMwWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NWFlZWJjM2Q0MGM3YmIzMGE1ODk4OTNkNjI3ZjhkMThj NTBhNThmODI0NzA1MjU4MDJkYmFjOGJmN2NhZjdiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmBYZBZuardzjbG6/cyRgMZncAL4q3QxmgXCduczEmUYbS iiEKwOME5Ngugvcc0XP36P5TDUXnNvifDbGoaT5158juKopZ2u135z5QHIFLxKLF zUixCYMdL+YgOWwupUdzFjbUZ2aycGmYqofflDHPe8/1Mkh41u+MNSgptKDMBLb8 FrzCWhZx9ZQBF8LABhMwyPjRA1i4qwxdknqT/+CSeFFBfk/6O+IBfFjc7bCHwhEF 0XF6JB474ZIeIl/ZLYTh1ke7p9Z+aFYqw3vIDn+6I8un2m2cjAUVw5bh0y50dEEd XTtxAh9JEI5zwB4XQui1DbohjAtBoYCvaVJT4oxpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUtyIrr9lhwzLlFssRYmZRs5uQ13swHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2EzN2FmNmQ3LTBiMzEtNGE0Ni1iOGQ5LTA4ZWZjZjhmZWY1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD75gAwDQYJKoZIhvcNAQELBQADggEBAHW3p6JtP23ShwgdoL+J4se4 NoUrxyZLt67SlyYlc28gKrSZTBrv8PPd0aihyOJ4gGnxl2E8Z7aGBMIW3+Q9b9Sd Nhq7fIiuXonkqS7Ss6jEBqZdjlmlisGfK0VlQjfO9NTwmDNvf9IzQWOwa2tsa7Dc 0/u/Mz3w/ICCrlDL0kzn4yfMRh8T3q2JMxgp2MzCR05Jh4lQdAwhS+Uhc9cfHp0j nHaReL2JjKyO37STKjJZO4ydh9WEI0UwuoiEe7a2sWUVd90YCWbzz87k2vqDlzzt eQ3TaWoGvi+LV/+BVikW+Zm/JgPScaU77C+ODjePU4NpR/818y9LnJOXjm4dPJk= -----END CERTIFICATE-----Generated at Mon Oct 20 07:30:23 2025 by rpki-client