$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a3e10b40-ca3b-4631-9c39-e3dee6a31d8e.roa File: a3e10b40-ca3b-4631-9c39-e3dee6a31d8e.roa (raw, json) Hash identifier: A3vx3ZQ1cRCWJMv+o+yUYfn5Fp4nJZcNnrnNhBFHydM= Subject key identifier: 87:0C:31:88:FB:D0:5E:2A:3C:E0:8B:65:3C:30:69:10:F7:A3:C2:B3 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 52B6398B0123E8BBE167C86B3AF05B558970D768 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a3e10b40-ca3b-4631-9c39-e3dee6a31d8e.roa Signing time: Sat 27 Sep 2025 00:53:17 +0000 ROA not before: Sat 27 Sep 2025 00:53:17 +0000 ROA not after: Sat 01 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f10b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 20 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:b6:39:8b:01:23:e8:bb:e1:67:c8:6b:3a:f0:5b:55:89:70:d7:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 27 00:53:17 2025 GMT Not After : Nov 1 23:59:59 2025 GMT Subject: serialNumber=31f7b1b15ba19ef66345248d8479850983e4cd825618b8b5eb1c4fe20459752c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f3:4e:a5:52:f0:a9:c4:ca:dd:60:55:04:82: 5e:71:e4:83:f7:69:d1:b3:6e:bc:07:56:2f:77:98: b5:04:c1:41:58:9d:a6:38:90:c2:c4:b7:db:3d:86: b5:f3:ea:4c:56:c7:14:8f:8c:a8:27:74:63:34:e3: 0e:3d:82:f8:ab:ad:fe:ef:34:bd:c8:29:12:73:10: aa:b5:4b:4d:d2:df:b0:43:0b:e9:0d:b6:d1:9d:8c: 71:9a:f4:d1:48:db:91:a7:d3:88:b8:5b:4e:58:a0: 25:79:aa:b6:80:3e:7c:88:dc:25:1b:ed:f7:74:3b: a8:d6:fd:d9:ea:42:6c:c0:09:0a:dc:aa:b3:a1:e5: ec:75:65:fe:99:d6:0b:39:51:42:3b:bb:b3:9a:90: 76:a1:d9:b2:1d:89:6d:28:c3:da:c5:a6:fc:6a:a4: 99:ff:62:4c:df:a9:97:59:cf:15:fa:fe:2e:5e:f3: 91:ef:a8:46:83:17:5d:e1:92:05:a8:0e:9e:96:6b: b6:07:3c:b2:94:5e:77:0e:82:d6:c0:e6:f2:06:04: 5f:78:e5:13:4a:02:9d:24:a0:86:4e:e6:88:b0:44: c4:23:26:92:38:08:2e:49:75:24:6b:8b:36:93:cd: ba:5b:7c:40:c5:2f:95:bb:7c:8a:d6:ff:ca:14:21: ec:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:0C:31:88:FB:D0:5E:2A:3C:E0:8B:65:3C:30:69:10:F7:A3:C2:B3 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a3e10b40-ca3b-4631-9c39-e3dee6a31d8e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f10b::/48 Signature Algorithm: sha256WithRSAEncryption 1c:e9:8f:45:b9:97:1f:77:18:67:b7:bc:72:be:73:ae:17:aa: f3:9d:ff:3f:63:f6:2e:ff:18:bf:fb:41:ae:bc:15:5f:53:d1: d3:07:a8:75:c8:d5:dd:8d:c1:b8:c6:bc:bb:d2:ce:5a:2f:aa: 8e:52:4f:3e:89:ae:c3:a0:ea:e4:76:de:fc:2a:2d:6d:5e:c9: f0:79:13:ff:05:b6:cc:9f:fb:68:57:ec:c8:ae:6b:02:78:ff: 87:b8:0a:e9:f4:21:b0:54:43:24:5c:e0:5c:a1:b7:45:3b:c7: 0b:e9:32:30:e3:e5:da:37:14:27:11:3a:a8:06:7c:fb:f8:e9: e2:08:28:56:ab:db:0d:a6:31:8a:85:ae:65:76:f3:36:72:a8: c3:e6:88:b0:a2:95:5b:be:b7:8a:30:e5:5f:33:90:f9:39:4f: e1:a4:36:c6:95:4e:dc:8f:65:13:7e:d2:6b:37:7d:33:95:5e: f3:b9:ae:3e:4f:7d:5b:08:3b:61:c6:3b:a4:8b:e3:36:58:90: 69:d9:e1:8e:cf:4a:0a:34:42:bb:23:f6:a9:12:75:28:0f:9e: 23:9f:51:a0:02:f9:78:00:d3:87:83:86:28:62:df:42:1d:f4: e7:33:ed:08:aa:91:86:13:da:5a:ce:e1:88:b1:e1:78:0b:05: 90:b4:32:20 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUrY5iwEj6LvhZ8hrOvBbVYlw12gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI3MDA1MzE3WhcNMjUxMTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMWY3YjFiMTViYTE5ZWY2NjM0NTI0OGQ4NDc5ODUwOTgz ZTRjZDgyNTYxOGI4YjVlYjFjNGZlMjA0NTk3NTJjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDN806lUvCpxMrdYFUEgl5x5IP3adGzbrwHVi93mLUEwUFY naY4kMLEt9s9hrXz6kxWxxSPjKgndGM04w49gvirrf7vNL3IKRJzEKq1S03S37BD C+kNttGdjHGa9NFI25Gn04i4W05YoCV5qraAPnyI3CUb7fd0O6jW/dnqQmzACQrc qrOh5ex1Zf6Z1gs5UUI7u7OakHah2bIdiW0ow9rFpvxqpJn/YkzfqZdZzxX6/i5e 85HvqEaDF13hkgWoDp6Wa7YHPLKUXncOgtbA5vIGBF945RNKAp0koIZO5oiwRMQj JpI4CC5JdSRrizaTzbpbfEDFL5W7fIrW/8oUIeyvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUhwwxiPvQXio84ItlPDBpEPejwrMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2EzZTEwYjQwLWNhM2ItNDYzMS05YzM5LWUzZGVlNmEzMWQ4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QswDQYJKoZIhvcNAQELBQADggEBABzpj0W5lx93GGe3vHK+c64X qvOd/z9j9i7/GL/7Qa68FV9T0dMHqHXI1d2NwbjGvLvSzlovqo5STz6JrsOg6uR2 3vwqLW1eyfB5E/8Ftsyf+2hX7MiuawJ4/4e4Cun0IbBUQyRc4Fyht0U7xwvpMjDj 5do3FCcROqgGfPv46eIIKFar2w2mMYqFrmV28zZyqMPmiLCilVu+t4ow5V8zkPk5 T+GkNsaVTtyPZRN+0ms3fTOVXvO5rj5PfVsIO2HGO6SL4zZYkGnZ4Y7PSgo0Qrsj 9qkSdSgPniOfUaAC+XgA04eDhihi30Id9Ocz7QiqkYYT2lrO4Yix4XgLBZC0MiA= -----END CERTIFICATE-----Generated at Sun Oct 19 22:55:22 2025 by rpki-client