$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa File: aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa (raw, json) Hash identifier: NZKclK9FJMz2kM36x3snDugI9KzapAo5WNTpVsYbRxQ= Subject key identifier: 67:86:C8:91:3E:99:A3:2D:A3:AD:00:FA:35:B4:7A:F2:ED:2F:E2:1E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7DA3F42E86F760F16CE842B7866224E0918F9E51 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa Signing time: Mon 06 Oct 2025 17:40:47 +0000 ROA not before: Mon 06 Oct 2025 17:40:47 +0000 ROA not after: Mon 10 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5502::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:a3:f4:2e:86:f7:60:f1:6c:e8:42:b7:86:62:24:e0:91:8f:9e:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 6 17:40:47 2025 GMT Not After : Nov 10 23:59:59 2025 GMT Subject: serialNumber=e9df4d504158f9cffa6308b0a2da52475a846b6b10bb38884417b094aaec12f5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:14:8f:a6:b0:91:46:db:99:36:6a:61:d1:58: 05:39:29:91:10:0e:eb:9b:6a:eb:e6:f4:c0:64:b0: 08:70:65:f6:28:ac:37:26:86:62:2f:a6:54:8e:0b: 01:92:52:28:23:28:77:e9:60:8b:9a:33:93:87:11: 3f:d5:38:ca:3d:3c:14:c7:ec:89:87:ca:32:5b:6b: 1f:08:d6:f4:e5:1e:4a:1d:4d:6d:04:99:12:80:e5: e9:c0:d5:04:8a:ec:77:7b:ac:93:7a:35:bb:e7:95: 5f:1e:4c:eb:65:f0:4c:a3:a7:11:1e:6c:06:2a:81: e2:b1:2d:a6:45:47:49:9c:5e:29:15:d9:e1:64:72: e9:ff:30:04:30:2f:1c:29:76:17:e7:3d:cf:fb:7b: 10:65:c2:9c:28:6c:22:d2:ea:5c:a1:b5:fa:c3:6d: 16:b8:e6:b7:78:5d:dd:d7:4e:a0:0e:23:a4:fb:d8: c4:4e:0f:a5:e1:19:41:96:73:2b:ea:9b:63:c9:a8: 97:e1:47:b2:4c:83:ab:66:b1:66:fa:38:64:04:67: 4b:ea:93:3e:40:77:4c:e6:00:73:ba:ac:a8:a6:39: b5:a1:52:9a:cc:ef:c3:3a:2e:26:78:c4:4f:0c:ce: f7:36:4f:ba:b1:5d:7e:03:e5:c2:2e:da:1e:59:4c: bc:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:86:C8:91:3E:99:A3:2D:A3:AD:00:FA:35:B4:7A:F2:ED:2F:E2:1E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5502::/48 Signature Algorithm: sha256WithRSAEncryption 64:74:80:56:d8:9e:2d:ca:e9:4e:ce:a1:ce:3b:96:98:4a:94: e6:84:da:8c:59:05:33:a7:78:8a:72:79:8a:bf:da:30:8e:da: 25:f6:e6:4e:68:06:b3:8c:0a:07:15:13:f0:63:a3:a7:b3:24: 92:44:ec:00:ce:1d:ef:b4:0a:e1:3b:64:e2:d8:36:98:64:06: 1e:31:be:40:9d:fd:82:d4:a5:55:b6:28:85:b5:0d:12:83:0b: 02:96:6c:dd:76:9c:d2:80:8c:69:23:c7:c3:a7:26:19:21:d3: 8f:42:0e:4f:35:1e:0f:2d:8e:d1:4e:99:ee:18:c6:68:b3:9d: 6f:53:5b:0d:06:5e:2b:1e:7e:b4:b9:b2:44:09:e0:e5:01:94: 95:ea:c9:54:d1:bb:41:b5:12:ab:34:a6:e7:bb:db:8c:ca:32: 47:9f:23:23:06:0b:f6:39:47:61:ff:7f:10:3a:18:ec:7f:bc: a7:9e:2a:a9:64:b3:4d:10:62:06:b0:7c:4e:93:fa:91:ed:31: 4b:6d:f0:d5:a9:45:5f:f7:2e:81:02:0f:59:42:b6:e8:00:23: 72:f7:fa:94:b5:81:2d:94:57:87:63:6c:95:cc:36:6d:c7:9a: 29:1b:84:11:74:1f:6b:d0:22:8a:dd:5f:5a:66:09:c9:6c:0b: 20:32:53:1d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfaP0Lob3YPFs6EK3hmIk4JGPnlEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDA2MTc0MDQ3WhcNMjUxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlOWRmNGQ1MDQxNThmOWNmZmE2MzA4YjBhMmRhNTI0NzVh ODQ2YjZiMTBiYjM4ODg0NDE3YjA5NGFhZWMxMmY1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4FI+msJFG25k2amHRWAU5KZEQDuubauvm9MBksAhwZfYo rDcmhmIvplSOCwGSUigjKHfpYIuaM5OHET/VOMo9PBTH7ImHyjJbax8I1vTlHkod TW0EmRKA5enA1QSK7Hd7rJN6NbvnlV8eTOtl8EyjpxEebAYqgeKxLaZFR0mcXikV 2eFkcun/MAQwLxwpdhfnPc/7exBlwpwobCLS6lyhtfrDbRa45rd4Xd3XTqAOI6T7 2MROD6XhGUGWcyvqm2PJqJfhR7JMg6tmsWb6OGQEZ0vqkz5Ad0zmAHO6rKimObWh UprM78M6LiZ4xE8Mzvc2T7qxXX4D5cIu2h5ZTLyFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZ4bIkT6Zoy2jrQD6NbR68u0v4h4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FhZDI0YTJlLWY2MWItNDJiNC05NTA5LTllMDZhMTM2ZWIwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQIwDQYJKoZIhvcNAQELBQADggEBAGR0gFbYni3K6U7Ooc47lphK lOaE2oxZBTOneIpyeYq/2jCO2iX25k5oBrOMCgcVE/Bjo6ezJJJE7ADOHe+0CuE7 ZOLYNphkBh4xvkCd/YLUpVW2KIW1DRKDCwKWbN12nNKAjGkjx8OnJhkh049CDk81 Hg8tjtFOme4YxmiznW9TWw0GXisefrS5skQJ4OUBlJXqyVTRu0G1Eqs0pue724zK MkefIyMGC/Y5R2H/fxA6GOx/vKeeKqlks00QYgawfE6T+pHtMUtt8NWpRV/3LoEC D1lCtugAI3L3+pS1gS2UV4djbJXMNm3HmikbhBF0H2vQIordX1pmCclsCyAyUx0= -----END CERTIFICATE-----Generated at Mon Oct 20 07:22:17 2025 by rpki-client