$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/abbb9ed9-cd59-4312-980b-26a09589f144.roa File: abbb9ed9-cd59-4312-980b-26a09589f144.roa (raw, json) Hash identifier: 9I05btudz/3n/2f7r5Jei/zHpGHZ/vDVtQGC/T454bQ= Subject key identifier: 14:4C:66:AF:3B:AE:F0:A0:81:59:AE:CA:B9:4D:60:3A:A1:5E:39:60 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2BD14BF972C957DACE560D770BC7BFBD822E1F5F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/abbb9ed9-cd59-4312-980b-26a09589f144.roa Signing time: Sat 27 Sep 2025 00:53:34 +0000 ROA not before: Sat 27 Sep 2025 00:53:34 +0000 ROA not after: Sat 01 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f110::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:d1:4b:f9:72:c9:57:da:ce:56:0d:77:0b:c7:bf:bd:82:2e:1f:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 27 00:53:34 2025 GMT Not After : Nov 1 23:59:59 2025 GMT Subject: serialNumber=eb57b35d04a7e7f46ab4914ca8ffb26d4c66bfc9c036f19635ad26fc71092369, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1c:05:09:8e:58:01:52:ef:e0:d7:c3:30:51: e7:0b:e6:fb:ad:0d:f3:98:b5:07:e6:96:e4:23:e4: 71:51:d1:fe:67:a0:99:55:c7:c2:20:f9:6f:da:a4: 4a:a3:3c:1b:43:63:de:48:9c:19:3f:b0:99:f7:bf: 1f:a4:33:3e:80:38:22:39:ef:a6:02:71:f7:a3:2c: 69:2f:1c:c6:51:3d:9d:be:db:f1:2a:c6:8f:f0:50: 67:90:83:37:3a:73:85:67:41:96:8c:53:f3:e2:d4: 8c:6e:9a:1b:be:68:b9:0b:60:b0:9c:7f:86:55:3c: d1:c1:2e:9d:d6:43:ba:f7:6b:55:63:e1:9d:4b:64: 4c:e0:78:ba:c4:f7:0b:17:19:b6:00:c4:c4:94:27: 1e:df:61:1f:96:38:b0:08:b5:d2:f6:df:23:b7:12: 8a:b5:ed:55:d1:a5:8c:6e:92:3f:6a:41:38:21:49: 77:9a:41:ff:af:cf:bf:f2:a9:7a:a6:06:46:33:18: fd:15:9d:ad:b4:12:cb:18:da:ee:7d:5a:fa:7a:93: fb:6d:4c:e3:f0:7b:f7:fa:3f:e4:fe:ce:ad:6d:8b: 3a:14:db:ca:dc:c9:6f:39:48:2d:f9:e0:70:ba:f2: 96:f0:60:2f:7a:dc:c5:f2:24:7c:db:76:60:d1:d3: 80:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:4C:66:AF:3B:AE:F0:A0:81:59:AE:CA:B9:4D:60:3A:A1:5E:39:60 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/abbb9ed9-cd59-4312-980b-26a09589f144.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f110::/48 Signature Algorithm: sha256WithRSAEncryption 0d:5f:5e:58:75:0e:9e:d1:e3:c6:14:40:d2:cf:c0:1b:73:57: c1:56:60:dd:04:f1:5c:5a:d3:e9:fd:b5:6c:3f:3a:51:cd:61: 06:5f:59:a6:1a:6d:db:b9:e4:e4:d7:8f:d0:4f:87:df:1c:e1: cd:ca:4b:ea:7c:9e:c2:a0:5a:e3:96:d7:cb:ce:81:67:ed:b0: 4f:3a:0d:20:77:12:15:21:d7:43:47:00:3b:79:b3:c1:45:43: 61:fd:dd:ee:15:0b:98:ad:63:76:3f:27:a6:c0:4c:98:df:bb: 86:a8:09:f0:36:22:e3:3f:4b:67:19:57:7b:e3:16:54:06:97: 57:92:85:4d:1d:a9:27:be:6a:42:15:75:63:66:16:12:dd:b8: 85:79:fd:4f:12:b9:7e:ab:7f:9f:d1:37:68:92:3f:b1:f2:1b: 9a:fe:ef:67:df:0a:b9:31:95:38:96:9f:6b:76:6f:42:9d:c9: 5b:0e:ee:2a:76:d2:c8:ae:1b:62:1e:5c:6f:cd:06:dc:35:4b: 86:35:75:fb:65:6f:9c:e5:59:b9:db:3c:ac:6a:6c:dd:2e:30: 7e:78:7a:5b:48:d7:92:41:f0:0e:ab:9a:3f:cc:33:60:c7:40: cd:f7:0b:d5:4e:62:63:52:91:62:8c:d4:f9:e2:d7:72:98:a2: 5b:39:51:a2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUK9FL+XLJV9rOVg13C8e/vYIuH18wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI3MDA1MzM0WhcNMjUxMTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYjU3YjM1ZDA0YTdlN2Y0NmFiNDkxNGNhOGZmYjI2ZDRj NjZiZmM5YzAzNmYxOTYzNWFkMjZmYzcxMDkyMzY5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxHAUJjlgBUu/g18MwUecL5vutDfOYtQfmluQj5HFR0f5n oJlVx8Ig+W/apEqjPBtDY95InBk/sJn3vx+kMz6AOCI576YCcfejLGkvHMZRPZ2+ 2/Eqxo/wUGeQgzc6c4VnQZaMU/Pi1Ixumhu+aLkLYLCcf4ZVPNHBLp3WQ7r3a1Vj 4Z1LZEzgeLrE9wsXGbYAxMSUJx7fYR+WOLAItdL23yO3Eoq17VXRpYxukj9qQTgh SXeaQf+vz7/yqXqmBkYzGP0Vna20EssY2u59Wvp6k/ttTOPwe/f6P+T+zq1tizoU 28rcyW85SC354HC68pbwYC963MXyJHzbdmDR04BbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUFExmrzuu8KCBWa7KuU1gOqFeOWAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FiYmI5ZWQ5LWNkNTktNDMxMi05ODBiLTI2YTA5NTg5ZjE0NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78RAwDQYJKoZIhvcNAQELBQADggEBAA1fXlh1Dp7R48YUQNLPwBtz V8FWYN0E8Vxa0+n9tWw/OlHNYQZfWaYabdu55OTXj9BPh98c4c3KS+p8nsKgWuOW 18vOgWftsE86DSB3EhUh10NHADt5s8FFQ2H93e4VC5itY3Y/J6bATJjfu4aoCfA2 IuM/S2cZV3vjFlQGl1eShU0dqSe+akIVdWNmFhLduIV5/U8SuX6rf5/RN2iSP7Hy G5r+72ffCrkxlTiWn2t2b0KdyVsO7ip20siuG2IeXG/NBtw1S4Y1dftlb5zlWbnb PKxqbN0uMH54eltI15JB8A6rmj/MM2DHQM33C9VOYmNSkWKM1Pni13KYols5UaI= -----END CERTIFICATE-----Generated at Mon Oct 20 13:01:28 2025 by rpki-client