$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b26bc1e7-1ac6-4102-9377-56212373c3cb.roa File: b26bc1e7-1ac6-4102-9377-56212373c3cb.roa (raw, json) Hash identifier: GOBx4deEEkQQBnDBJn8jA6ya68XfqS0+CIw9jK+/+MY= Subject key identifier: A7:CC:21:CD:46:D6:5A:A9:2A:AB:81:F3:44:7A:74:49:50:CE:50:10 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 72B5A3F82F717AC8D5953E0DC4B9C17A67BBEC5B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b26bc1e7-1ac6-4102-9377-56212373c3cb.roa Signing time: Mon 13 Oct 2025 17:55:19 +0000 ROA not before: Mon 13 Oct 2025 17:55:19 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:80::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:b5:a3:f8:2f:71:7a:c8:d5:95:3e:0d:c4:b9:c1:7a:67:bb:ec:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 13 17:55:19 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=959a4e6d33773e7dc5d80d37cccf0af08e6d401b1eaa12ebc8e3fb59f1d83560, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:15:88:f9:5d:59:6c:03:20:13:c2:69:d0:b5: 5d:cb:a2:ac:df:f7:7c:80:d6:4f:1d:fa:8d:6e:c1: 39:4c:56:7c:33:c9:2e:b0:1c:50:4d:5e:19:e2:c5: 88:ca:1a:a7:2b:ce:b7:93:a6:ec:f9:91:92:1a:47: ca:54:e1:2f:f9:69:fd:33:cc:43:2c:1a:10:47:6d: cf:12:11:39:1a:c4:d4:3e:f3:94:ac:a2:41:41:15: 85:22:22:9b:89:48:b5:a3:5f:15:85:84:51:ce:d6: d9:ac:26:ef:df:2d:0a:9f:7a:e5:0a:ea:92:70:89: 63:6e:f9:cc:59:32:46:de:f4:cb:1b:a1:76:e5:58: 16:38:50:76:92:d6:8d:a8:7b:14:f0:49:71:d1:ca: 97:bf:88:6a:4c:c1:13:0c:74:5e:31:2b:6b:dc:f3: f2:45:4c:4c:f1:53:64:88:1c:2a:cf:29:2a:cd:84: de:73:c7:34:37:94:a1:e1:d3:14:1e:39:52:d2:62: fa:93:64:02:b3:61:1e:65:f8:34:70:c6:35:1e:58: d0:a2:bb:27:2e:8c:e6:c5:62:f2:6f:be:ce:84:9d: 74:6e:8f:26:75:06:09:87:af:b9:9c:8c:d5:29:b6: 56:36:16:ad:64:7d:9c:89:0c:f5:33:a9:33:9c:67: 42:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:CC:21:CD:46:D6:5A:A9:2A:AB:81:F3:44:7A:74:49:50:CE:50:10 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b26bc1e7-1ac6-4102-9377-56212373c3cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:80::/44 Signature Algorithm: sha256WithRSAEncryption 78:e2:75:5e:81:be:25:c5:8c:09:2f:d6:3b:b3:b3:10:49:bd: ce:1c:cb:f0:15:f9:3d:e7:2a:65:46:ef:b0:46:a2:62:0a:12: 72:b6:3d:d6:76:ab:23:6e:81:b2:af:c6:b4:4a:ec:4e:c0:4a: 21:1b:45:91:8c:91:00:ee:f4:be:5a:fb:11:ae:0f:fa:7f:c5: 3b:eb:fa:f5:6b:f0:91:ee:48:d1:f5:26:9a:9f:07:d3:a7:8f: 08:82:4f:d9:2c:83:a2:66:d1:a1:e2:f2:50:c0:af:f1:41:a4: 77:67:f5:d9:da:9c:48:de:7f:80:e1:82:95:b0:9e:12:ca:ed: e2:1c:68:97:d8:0b:17:3d:2b:c5:17:0e:94:8e:50:b4:33:46: 6e:5d:25:1d:38:a1:3a:8f:b0:fa:ac:80:53:84:2c:33:d0:47: 52:0a:9d:a3:99:3c:ca:75:0a:30:4d:54:32:0e:ed:f3:2e:98: 54:0b:69:ca:84:10:88:7b:ed:a0:ee:b1:51:60:45:d5:b8:0f: e2:90:ed:68:5f:20:fc:06:9f:12:b9:09:13:22:12:6f:e5:8a: 3c:65:8c:ee:fd:64:31:47:fb:6b:db:1b:28:65:20:a3:32:12: f1:ef:a8:80:08:c8:82:57:6c:6a:0e:71:a7:d7:f1:47:31:29: 67:cf:78:ec -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcrWj+C9xesjVlT4NxLnBeme77FswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDEzMTc1NTE5WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NTlhNGU2ZDMzNzczZTdkYzVkODBkMzdjY2NmMGFmMDhl NmQ0MDFiMWVhYTEyZWJjOGUzZmI1OWYxZDgzNTYwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7FYj5XVlsAyATwmnQtV3Loqzf93yA1k8d+o1uwTlMVnwz yS6wHFBNXhnixYjKGqcrzreTpuz5kZIaR8pU4S/5af0zzEMsGhBHbc8SETkaxNQ+ 85SsokFBFYUiIpuJSLWjXxWFhFHO1tmsJu/fLQqfeuUK6pJwiWNu+cxZMkbe9Msb oXblWBY4UHaS1o2oexTwSXHRype/iGpMwRMMdF4xK2vc8/JFTEzxU2SIHCrPKSrN hN5zxzQ3lKHh0xQeOVLSYvqTZAKzYR5l+DRwxjUeWNCiuycujObFYvJvvs6EnXRu jyZ1BgmHr7mcjNUptlY2Fq1kfZyJDPUzqTOcZ0ILAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUp8whzUbWWqkqq4HzRHp0SVDOUBAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2IyNmJjMWU3LTFhYzYtNDEwMi05Mzc3LTU2MjEyMzczYzNjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDxAIAwDQYJKoZIhvcNAQELBQADggEBAHjidV6BviXFjAkv1juzsxBJ vc4cy/AV+T3nKmVG77BGomIKEnK2PdZ2qyNugbKvxrRK7E7ASiEbRZGMkQDu9L5a +xGuD/p/xTvr+vVr8JHuSNH1JpqfB9OnjwiCT9ksg6Jm0aHi8lDAr/FBpHdn9dna nEjef4DhgpWwnhLK7eIcaJfYCxc9K8UXDpSOULQzRm5dJR04oTqPsPqsgFOELDPQ R1IKnaOZPMp1CjBNVDIO7fMumFQLacqEEIh77aDusVFgRdW4D+KQ7WhfIPwGnxK5 CRMiEm/lijxljO79ZDFH+2vbGyhlIKMyEvHvqIAIyIJXbGoOcafX8UcxKWfPeOw= -----END CERTIFICATE-----Generated at Mon Oct 20 14:53:38 2025 by rpki-client