$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a4f9065c-8922-4d3f-b9ac-82a6edd499c9.roa File: a4f9065c-8922-4d3f-b9ac-82a6edd499c9.roa (raw, json) Hash identifier: w0LxmvmYVOWmDQnduNTEKuJd4cBwTtfkDKwa2KaYqUg= Subject key identifier: 21:5E:A0:1E:34:1E:19:6C:03:2E:54:4E:6C:26:8E:53:4B:F1:A0:FB Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6FA21F1639936E0C380E59F2EE757B4E0CC02BC0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a4f9065c-8922-4d3f-b9ac-82a6edd499c9.roa Signing time: Sat 27 Sep 2025 00:52:07 +0000 ROA not before: Sat 27 Sep 2025 00:52:07 +0000 ROA not after: Sat 01 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f101::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 20 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:a2:1f:16:39:93:6e:0c:38:0e:59:f2:ee:75:7b:4e:0c:c0:2b:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 27 00:52:07 2025 GMT Not After : Nov 1 23:59:59 2025 GMT Subject: serialNumber=61324abb017ef8140858a78058f716bd526b09f52839ab2c6a778cb2120db839, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:36:9e:9f:78:6d:93:a7:2b:8e:2e:51:6e:5c: 28:e9:12:3d:5a:cf:03:3c:cf:de:70:2d:c9:e9:eb: ca:a2:75:01:22:be:a2:0d:01:2d:fd:88:9e:6f:44: 86:99:4d:91:cf:1e:82:c3:63:2f:5e:e4:e3:c3:84: 5c:fe:e4:5c:0f:f5:9a:50:d9:c3:05:4c:02:9a:78: 74:93:b4:9e:45:d3:fc:65:b0:c2:14:22:74:ca:79: 66:3d:84:f8:10:17:3d:4b:dc:20:04:ee:56:82:07: 7d:99:40:0f:b9:ef:a0:55:e8:64:c6:44:f6:e1:d1: ac:7c:d1:95:ba:76:ea:e9:46:42:64:d1:09:48:8e: 53:f5:50:f1:2a:01:e9:49:ae:34:c0:28:41:db:bf: d9:9b:99:ef:03:0e:f4:ff:93:9c:cf:90:89:2b:f9: b1:02:50:58:0c:9d:44:55:b5:c0:fb:1d:af:e8:c8: 55:4e:41:c8:f4:d8:68:3b:6d:79:33:3e:1e:db:d3: 1e:a1:98:54:7d:dc:d4:0e:bf:a0:44:08:af:54:8a: 8a:b2:cc:77:4e:15:48:f5:9b:0d:ed:81:96:30:d0: 8b:5c:3b:d7:17:0b:fe:7c:6c:93:39:c9:bd:ae:d4: 9e:4e:25:73:09:6c:cf:a8:94:d3:66:d9:a5:f1:ab: 9b:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:5E:A0:1E:34:1E:19:6C:03:2E:54:4E:6C:26:8E:53:4B:F1:A0:FB X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a4f9065c-8922-4d3f-b9ac-82a6edd499c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f101::/48 Signature Algorithm: sha256WithRSAEncryption 9a:a0:f0:0b:a1:d1:90:91:07:54:23:cc:f8:dd:4f:47:b8:cf: 0f:de:0f:ff:b8:4a:63:be:f1:83:c0:c9:c8:92:1b:44:ff:0c: a5:1e:54:67:37:d9:c6:6f:4a:1a:64:24:2d:f7:15:67:a9:8d: 7d:f5:f3:1d:86:4a:46:4d:23:f5:61:a0:d6:af:d3:94:23:74: a6:50:d5:79:23:b0:96:ad:f9:69:6c:e4:03:0b:33:ab:a8:ac: e1:98:8e:cb:4d:a0:13:e2:95:93:6b:75:fe:74:9a:e6:25:71: e4:01:56:36:5d:73:17:e7:cb:0a:80:1e:6d:1e:ad:16:a4:1b: 1b:23:08:05:66:c6:ec:a1:22:55:87:f1:f2:7c:82:3f:df:ed: 0d:71:8a:5b:eb:1d:fa:d4:05:17:e2:e3:41:0f:bb:bd:ae:74: 32:f7:30:9c:3c:71:68:20:5e:6e:63:77:c4:b7:d2:13:96:4e: 9c:02:46:43:fe:29:e9:24:70:79:89:e9:9a:48:11:8c:9a:57: 38:da:dd:3b:a9:6c:57:4f:c4:80:82:27:b3:06:0d:7a:c9:68: 55:81:b6:a7:70:21:f5:3d:96:39:6c:7e:f1:18:b5:d9:88:72: c9:18:d4:3b:ce:c9:19:2a:89:85:09:fb:27:2e:41:ee:ac:bc: b3:44:b8:8f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUb6IfFjmTbgw4Dlny7nV7TgzAK8AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI3MDA1MjA3WhcNMjUxMTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MTMyNGFiYjAxN2VmODE0MDg1OGE3ODA1OGY3MTZiZDUy NmIwOWY1MjgzOWFiMmM2YTc3OGNiMjEyMGRiODM5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbNp6feG2TpyuOLlFuXCjpEj1azwM8z95wLcnp68qidQEi vqINAS39iJ5vRIaZTZHPHoLDYy9e5OPDhFz+5FwP9ZpQ2cMFTAKaeHSTtJ5F0/xl sMIUInTKeWY9hPgQFz1L3CAE7laCB32ZQA+576BV6GTGRPbh0ax80ZW6durpRkJk 0QlIjlP1UPEqAelJrjTAKEHbv9mbme8DDvT/k5zPkIkr+bECUFgMnURVtcD7Ha/o yFVOQcj02Gg7bXkzPh7b0x6hmFR93NQOv6BECK9UioqyzHdOFUj1mw3tgZYw0Itc O9cXC/58bJM5yb2u1J5OJXMJbM+olNNm2aXxq5tXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUIV6gHjQeGWwDLlRObCaOU0vxoPswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E0ZjkwNjVjLTg5MjItNGQzZi1iOWFjLTgyYTZlZGQ0OTljOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QEwDQYJKoZIhvcNAQELBQADggEBAJqg8Auh0ZCRB1QjzPjdT0e4 zw/eD/+4SmO+8YPAyciSG0T/DKUeVGc32cZvShpkJC33FWepjX318x2GSkZNI/Vh oNav05QjdKZQ1XkjsJat+Wls5AMLM6uorOGYjstNoBPilZNrdf50muYlceQBVjZd cxfnywqAHm0erRakGxsjCAVmxuyhIlWH8fJ8gj/f7Q1xilvrHfrUBRfi40EPu72u dDL3MJw8cWggXm5jd8S30hOWTpwCRkP+KekkcHmJ6ZpIEYyaVzja3TupbFdPxICC J7MGDXrJaFWBtqdwIfU9ljlsfvEYtdmIcskY1DvOyRkqiYUJ+ycuQe6svLNEuI8= -----END CERTIFICATE-----Generated at Sun Oct 19 22:55:51 2025 by rpki-client