$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab860450-a818-47f3-a42f-5570594471c3.roa File: ab860450-a818-47f3-a42f-5570594471c3.roa (raw, json) Hash identifier: eTfSxOpd3dIlgsV8f2NncNpKB1kOIs2/ZlPjW09LgoI= Subject key identifier: 5B:BD:3E:1F:77:55:B6:38:CB:DE:D8:53:04:AB:B1:85:AF:59:D0:B9 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5E9B2C39C5ED6891F84B33167EC4C5066995F090 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab860450-a818-47f3-a42f-5570594471c3.roa Signing time: Fri 26 Sep 2025 18:11:21 +0000 ROA not before: Fri 26 Sep 2025 18:11:21 +0000 ROA not after: Fri 31 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e900::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:9b:2c:39:c5:ed:68:91:f8:4b:33:16:7e:c4:c5:06:69:95:f0:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 26 18:11:21 2025 GMT Not After : Oct 31 23:59:59 2025 GMT Subject: serialNumber=10f7aa5cd8aca355de91b75ba82a1f2ebbfabb67f972484e4f2031eadbb3823f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:24:87:3b:23:aa:71:46:e3:62:4c:21:82:54: f6:d6:f7:fa:8c:e9:0b:b2:a0:63:74:24:19:00:70: e2:82:b8:29:f7:6a:b1:a0:81:e8:02:ca:5e:ba:e7: 30:14:50:d4:f2:99:c7:5d:cf:37:41:b1:7e:63:a5: f4:e3:98:8c:aa:2e:0b:cd:cb:f8:05:7d:e4:7a:b2: f2:2b:a3:37:a7:4b:0a:6b:00:33:96:e6:84:36:80: 57:72:bb:42:b5:fc:a3:c4:53:e6:02:4f:93:69:f7: 82:99:68:2b:63:85:9e:86:9a:72:3b:61:24:11:00: 57:c1:57:0a:08:60:fb:cf:28:54:3d:0c:97:57:17: 8e:3c:60:fb:8a:7c:7f:8a:e0:fb:d6:fb:0a:1c:da: ad:3c:66:e0:63:ac:01:cb:e8:da:04:b3:1d:a4:21: 54:d3:c7:b2:53:33:f7:40:99:9a:f1:37:32:70:77: 2a:40:b5:e0:05:d6:0b:53:8e:46:a4:83:a4:4c:2a: f6:d2:ef:55:0b:ec:34:7f:07:f7:36:48:87:7f:55: 87:0f:dd:54:b2:cb:1a:1c:48:2e:3c:28:08:2a:70: 2d:fc:13:7e:da:1a:b1:12:6d:81:2d:2d:ff:73:3f: 3b:43:95:f9:6e:4f:a0:19:66:1c:f2:e6:5c:b9:6b: 44:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:BD:3E:1F:77:55:B6:38:CB:DE:D8:53:04:AB:B1:85:AF:59:D0:B9 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab860450-a818-47f3-a42f-5570594471c3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e900::/42 Signature Algorithm: sha256WithRSAEncryption 04:bf:8d:9d:2b:e4:57:10:90:ec:e7:85:b4:ab:d7:5f:36:5b: ec:b8:d0:11:14:f8:e0:10:62:c4:fa:53:fb:b1:cb:33:67:b8: 71:65:67:c0:dc:3e:d4:a8:18:84:21:76:3c:10:f4:53:e7:15: 44:1a:17:16:bc:b1:61:c0:dd:ef:7a:63:f5:0b:e1:03:90:49: 8c:1b:90:28:ad:d5:34:85:f4:4a:94:06:b3:a8:01:8a:07:0a: d8:1e:98:95:f0:8d:4f:5a:e1:77:8d:2e:9d:93:85:83:64:0d: 9a:97:46:cc:82:7b:c9:20:94:4f:00:58:37:ee:bb:50:21:e0: b8:bc:3d:7a:62:f8:9e:5d:9c:f6:d0:2a:e3:57:01:5f:bf:27: 88:9a:9b:14:2d:b3:a0:dc:38:09:f8:cf:e8:06:39:dd:29:d3: 4f:5a:c5:d2:a1:ba:f8:26:1a:f8:34:5d:23:35:08:f5:0a:54: 72:3b:33:9a:77:fd:f9:ae:30:1c:73:05:52:5c:ab:8f:57:99: 4d:5e:e6:ae:b8:6c:18:45:7b:ae:4b:a6:ef:d4:76:f0:77:2c: d8:0a:86:7d:cd:4a:59:c1:46:8d:36:1b:0e:1e:75:c6:7b:9a: ca:a7:65:b0:6d:81:cb:6d:e4:ed:e0:e5:48:74:93:4d:58:38: e3:ed:bd:05 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXpssOcXtaJH4SzMWfsTFBmmV8JAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI2MTgxMTIxWhcNMjUxMDMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMGY3YWE1Y2Q4YWNhMzU1ZGU5MWI3NWJhODJhMWYyZWJi ZmFiYjY3Zjk3MjQ4NGU0ZjIwMzFlYWRiYjM4MjNmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD1JIc7I6pxRuNiTCGCVPbW9/qM6QuyoGN0JBkAcOKCuCn3 arGggegCyl665zAUUNTymcddzzdBsX5jpfTjmIyqLgvNy/gFfeR6svIrozenSwpr ADOW5oQ2gFdyu0K1/KPEU+YCT5Np94KZaCtjhZ6GmnI7YSQRAFfBVwoIYPvPKFQ9 DJdXF448YPuKfH+K4PvW+woc2q08ZuBjrAHL6NoEsx2kIVTTx7JTM/dAmZrxNzJw dypAteAF1gtTjkakg6RMKvbS71UL7DR/B/c2SId/VYcP3VSyyxocSC48KAgqcC38 E37aGrESbYEtLf9zPztDlfluT6AZZhzy5ly5a0R3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUW70+H3dVtjjL3thTBKuxha9Z0LkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FiODYwNDUwLWE4MTgtNDdmMy1hNDJmLTU1NzA1OTQ0NzFjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76QAwDQYJKoZIhvcNAQELBQADggEBAAS/jZ0r5FcQkOznhbSr1182 W+y40BEU+OAQYsT6U/uxyzNnuHFlZ8DcPtSoGIQhdjwQ9FPnFUQaFxa8sWHA3e96 Y/UL4QOQSYwbkCit1TSF9EqUBrOoAYoHCtgemJXwjU9a4XeNLp2ThYNkDZqXRsyC e8kglE8AWDfuu1Ah4Li8PXpi+J5dnPbQKuNXAV+/J4iamxQts6DcOAn4z+gGOd0p 009axdKhuvgmGvg0XSM1CPUKVHI7M5p3/fmuMBxzBVJcq49XmU1e5q64bBhFe65L pu/UdvB3LNgKhn3NSlnBRo02Gw4edcZ7msqnZbBtgctt5O3g5Uh0k01YOOPtvQU= -----END CERTIFICATE-----Generated at Mon Oct 20 07:47:03 2025 by rpki-client