$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af93e150-9469-47eb-8185-3ff03d87db06.roa File: af93e150-9469-47eb-8185-3ff03d87db06.roa (raw, json) Hash identifier: S2Z6zVdMPblgPkTtg0ObcS71v9p3cI3viRh18tuotXs= Subject key identifier: 33:9C:81:17:55:EA:E2:85:76:69:81:4C:FF:90:8A:FA:71:41:59:57 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6680C92D6A5112EDB61F991B153BA04BF79B80B4 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af93e150-9469-47eb-8185-3ff03d87db06.roa Signing time: Mon 29 Sep 2025 15:23:43 +0000 ROA not before: Mon 29 Sep 2025 15:23:43 +0000 ROA not after: Mon 03 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:80:c9:2d:6a:51:12:ed:b6:1f:99:1b:15:3b:a0:4b:f7:9b:80:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 29 15:23:43 2025 GMT Not After : Nov 3 23:59:59 2025 GMT Subject: serialNumber=b1b39974e527824c6724e03001b248079e00c94a196f529d426910a58eda69fb, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:3d:15:8d:e0:6a:80:5e:b7:a7:a1:f1:9d:a7: 56:d9:39:3a:5c:ab:df:5b:35:d1:e7:3f:86:31:3c: a8:90:89:c4:e4:e2:21:19:d8:da:de:e6:ea:42:62: e7:73:6e:e0:e3:23:a1:eb:16:c0:33:ee:72:e4:e8: 95:51:3b:c1:4e:44:eb:bd:dd:8b:27:84:49:25:ac: 1a:b7:fe:cb:5a:8b:35:be:ca:e4:c0:bd:73:cb:7a: c3:04:96:e1:42:ea:c6:93:3b:94:d1:09:43:6c:bc: 57:1a:0f:74:14:8c:99:f9:e7:b1:6a:bd:e6:a6:0c: 16:aa:30:5e:3c:e1:7c:02:4f:7b:82:f5:f6:2b:c4: 1c:b4:d2:44:4d:e8:dc:06:0a:b9:b4:c4:56:14:c2: 66:b3:41:f8:86:71:e3:5b:e0:75:1f:04:7b:0d:36: d9:c9:3c:5b:23:55:94:1a:c0:f9:1d:12:13:83:47: a2:ef:d3:a6:4d:10:02:50:c1:85:ee:81:1e:c7:df: 6b:97:08:f7:74:64:2f:29:70:d8:a0:99:f5:67:d3: d2:24:50:fe:88:fc:48:92:d4:81:20:73:60:f6:0c: 20:8d:db:59:37:57:be:7a:b0:72:f9:46:04:d7:12: fe:7e:b9:c6:e1:15:78:cd:72:5b:87:7a:79:6d:0f: fc:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:9C:81:17:55:EA:E2:85:76:69:81:4C:FF:90:8A:FA:71:41:59:57 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af93e150-9469-47eb-8185-3ff03d87db06.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f000::/44 Signature Algorithm: sha256WithRSAEncryption 25:95:98:45:7b:0f:dc:c8:18:af:ab:7d:62:f2:88:50:d6:8c: 1c:f2:45:4e:da:dc:38:7d:d6:e5:e9:95:8c:2b:40:4b:c4:1a: 4e:d6:e9:d1:5f:34:a9:32:06:cb:11:29:a2:f5:af:35:12:25: ed:80:ab:d3:8c:67:f6:4a:96:07:04:4c:77:1f:41:f8:a8:75: 33:14:b6:c6:33:9f:08:15:62:bf:ad:89:54:e1:7a:00:73:3e: 8a:6f:e6:24:6f:8f:4a:86:67:42:14:8b:76:ba:7b:e5:f7:b1: 75:55:f8:a8:ca:7d:05:9c:d6:bc:ed:3c:b3:9f:1c:44:c5:93: 59:3b:d9:74:00:b2:33:69:d9:f3:2c:d7:82:c2:df:53:2e:f1: 77:87:aa:fa:23:79:33:37:f5:f7:4a:e7:3a:4b:dc:29:97:66: ce:68:80:9f:42:81:c3:49:56:c4:59:a0:06:2d:75:06:24:ba: ce:e1:d5:5d:f5:61:d0:47:de:50:4e:bd:0b:d8:4c:68:cc:f4: 87:d8:4c:c0:bd:6e:1f:3e:82:91:7d:81:e4:4c:24:a9:24:11: 6c:4f:51:8d:56:5f:43:d9:53:3e:d2:bb:ee:71:43:77:89:7c: 21:3c:ee:96:9f:cf:34:d5:a4:38:f7:d3:88:cd:0f:8f:64:da: 42:53:d0:7d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZoDJLWpREu22H5kbFTugS/ebgLQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI5MTUyMzQzWhcNMjUxMTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMWIzOTk3NGU1Mjc4MjRjNjcyNGUwMzAwMWIyNDgwNzll MDBjOTRhMTk2ZjUyOWQ0MjY5MTBhNThlZGE2OWZiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDxPRWN4GqAXrenofGdp1bZOTpcq99bNdHnP4YxPKiQicTk 4iEZ2Nre5upCYudzbuDjI6HrFsAz7nLk6JVRO8FOROu93YsnhEklrBq3/staizW+ yuTAvXPLesMEluFC6saTO5TRCUNsvFcaD3QUjJn557FqveamDBaqMF484XwCT3uC 9fYrxBy00kRN6NwGCrm0xFYUwmazQfiGceNb4HUfBHsNNtnJPFsjVZQawPkdEhOD R6Lv06ZNEAJQwYXugR7H32uXCPd0ZC8pcNigmfVn09IkUP6I/EiS1IEgc2D2DCCN 21k3V756sHL5RgTXEv5+ucbhFXjNcluHenltD/yZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUM5yBF1Xq4oV2aYFM/5CK+nFBWVcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FmOTNlMTUwLTk0NjktNDdlYi04MTg1LTNmZjAzZDg3ZGIwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78AAwDQYJKoZIhvcNAQELBQADggEBACWVmEV7D9zIGK+rfWLyiFDW jBzyRU7a3Dh91uXplYwrQEvEGk7W6dFfNKkyBssRKaL1rzUSJe2Aq9OMZ/ZKlgcE THcfQfiodTMUtsYznwgVYr+tiVThegBzPopv5iRvj0qGZ0IUi3a6e+X3sXVV+KjK fQWc1rztPLOfHETFk1k72XQAsjNp2fMs14LC31Mu8XeHqvojeTM39fdK5zpL3CmX Zs5ogJ9CgcNJVsRZoAYtdQYkus7h1V31YdBH3lBOvQvYTGjM9IfYTMC9bh8+gpF9 geRMJKkkEWxPUY1WX0PZUz7Su+5xQ3eJfCE87pafzzTVpDj304jND49k2kJT0H0= -----END CERTIFICATE-----Generated at Mon Oct 20 15:55:14 2025 by rpki-client