$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af6d0ca1-dd77-4249-a5cf-dd7574db34fb.roa File: af6d0ca1-dd77-4249-a5cf-dd7574db34fb.roa (raw, json) Hash identifier: +c7W90WrNbKRNxL7DsNp2pUXwQTtvI6QQK2UIta8+CA= Subject key identifier: 79:39:6E:6C:FE:F3:96:D1:64:95:B8:13:05:4D:CA:02:F1:71:94:A8 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5671395D094D42725AF757F2E7DFD1767246FE4D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af6d0ca1-dd77-4249-a5cf-dd7574db34fb.roa Signing time: Fri 10 Oct 2025 17:04:17 +0000 ROA not before: Fri 10 Oct 2025 17:04:17 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6122::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:71:39:5d:09:4d:42:72:5a:f7:57:f2:e7:df:d1:76:72:46:fe:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 10 17:04:17 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=9574a871f96fbdddbd65acdc52fc849a8cb4a4e1a377d999966434fc5b4b7b84, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:94:cd:cf:ba:78:68:3e:16:33:c1:dc:b8:1d: 62:0c:f6:bb:d9:6d:56:32:9d:7c:2b:88:b1:33:4a: 6f:a4:13:81:01:a7:8a:24:7e:00:96:5f:2d:82:0b: 70:85:ef:c2:cd:4f:92:ac:99:b5:6d:03:9f:f5:fd: 27:8e:51:0c:e8:ed:67:e7:8f:83:2b:76:01:0d:2f: 76:b2:f3:1a:6d:55:97:df:80:54:44:12:e9:d5:79: f0:42:89:ef:41:9b:d8:59:bc:95:4d:4d:23:29:91: 59:23:4c:af:d7:37:29:74:d7:cf:d3:42:1e:65:f4: f1:73:5d:fa:a7:8e:29:27:d4:ea:66:6d:b2:2e:db: 17:80:96:fb:2b:57:09:40:47:bc:e6:5d:f4:ab:4a: 57:3d:1a:d4:98:5f:01:7c:c1:f8:a1:d0:f3:57:a9: 85:99:82:91:c0:7b:6f:1c:b5:78:21:6d:8b:0a:6d: 7e:55:68:0d:1f:d3:78:03:6a:32:d8:9b:9a:a7:7a: 0e:fc:c9:21:95:69:86:16:57:d8:a8:69:69:90:fb: 33:53:eb:94:39:f7:d3:e9:44:e0:2f:46:9c:5e:81: 32:b0:13:e3:51:80:2f:fc:7e:34:ad:0e:22:ca:67: 0a:dd:af:65:ba:46:a2:a9:be:cc:34:0e:17:51:52: d7:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:39:6E:6C:FE:F3:96:D1:64:95:B8:13:05:4D:CA:02:F1:71:94:A8 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af6d0ca1-dd77-4249-a5cf-dd7574db34fb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6122::/48 Signature Algorithm: sha256WithRSAEncryption 7d:35:56:75:ed:c2:5e:bf:c0:25:01:c8:81:d2:1c:7e:57:b9: da:29:32:c9:d2:1a:72:da:03:68:ac:4e:d0:0a:02:5f:b4:39: 6f:69:0a:ee:8b:5a:61:27:b5:c9:78:13:ba:88:bd:50:84:55: 37:ce:3c:8a:90:79:6a:fe:83:7d:7c:47:31:2e:a0:70:39:be: f6:f8:71:7a:58:3c:b5:ce:4f:37:9e:f1:c0:d8:63:0f:66:1a: b3:08:54:0d:15:59:ab:ee:d3:3e:64:7d:83:3b:bd:b3:07:dd: ed:ea:fa:94:a7:85:fb:6a:1d:f5:cb:54:fc:ee:de:b7:49:14: 15:4d:9a:7e:eb:40:85:a8:ed:81:58:d9:91:3b:34:38:f7:5a: b9:3b:62:ce:44:ac:49:0e:a5:98:13:88:df:03:0c:0a:95:ac: 2f:ed:57:1b:76:24:fc:b9:98:d3:a9:c4:d8:84:9f:ef:d7:89: 62:e8:2f:db:74:c6:3f:a9:ac:a1:e8:ea:87:26:bf:30:4b:b0: 42:6d:65:d9:b2:b0:8f:a4:d8:51:1f:a3:54:a1:c6:da:b1:2b: 35:bd:81:15:db:a9:46:82:28:5a:fc:aa:68:85:4f:78:ee:e8: 73:ff:5c:4d:ba:48:a2:d8:7f:63:e0:db:ba:86:37:6a:ee:b5: 12:d2:83:92 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVnE5XQlNQnJa91fy59/RdnJG/k0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDEwMTcwNDE3WhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NTc0YTg3MWY5NmZiZGRkYmQ2NWFjZGM1MmZjODQ5YThj YjRhNGUxYTM3N2Q5OTk5NjY0MzRmYzViNGI3Yjg0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCylM3PunhoPhYzwdy4HWIM9rvZbVYynXwriLEzSm+kE4EB p4okfgCWXy2CC3CF78LNT5KsmbVtA5/1/SeOUQzo7Wfnj4MrdgENL3ay8xptVZff gFREEunVefBCie9Bm9hZvJVNTSMpkVkjTK/XNyl018/TQh5l9PFzXfqnjikn1Opm bbIu2xeAlvsrVwlAR7zmXfSrSlc9GtSYXwF8wfih0PNXqYWZgpHAe28ctXghbYsK bX5VaA0f03gDajLYm5qneg78ySGVaYYWV9ioaWmQ+zNT65Q599PpROAvRpxegTKw E+NRgC/8fjStDiLKZwrdr2W6RqKpvsw0DhdRUtdvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUeTlubP7zltFklbgTBU3KAvFxlKgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FmNmQwY2ExLWRkNzctNDI0OS1hNWNmLWRkNzU3NGRiMzRmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYSIwDQYJKoZIhvcNAQELBQADggEBAH01VnXtwl6/wCUByIHSHH5X udopMsnSGnLaA2isTtAKAl+0OW9pCu6LWmEntcl4E7qIvVCEVTfOPIqQeWr+g318 RzEuoHA5vvb4cXpYPLXOTzee8cDYYw9mGrMIVA0VWavu0z5kfYM7vbMH3e3q+pSn hftqHfXLVPzu3rdJFBVNmn7rQIWo7YFY2ZE7NDj3Wrk7Ys5ErEkOpZgTiN8DDAqV rC/tVxt2JPy5mNOpxNiEn+/XiWLoL9t0xj+prKHo6ocmvzBLsEJtZdmysI+k2FEf o1ShxtqxKzW9gRXbqUaCKFr8qmiFT3ju6HP/XE26SKLYf2Pg27qGN2rutRLSg5I= -----END CERTIFICATE-----Generated at Mon Oct 20 07:32:40 2025 by rpki-client