$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c02ee773-2479-4a68-a9fa-4a6dd18d6083.roa File: c02ee773-2479-4a68-a9fa-4a6dd18d6083.roa (raw, json) Hash identifier: khhuSu+rswLlHrYxyLBDHh1Cw9qO+gd2w6lYsgHBF5o= Subject key identifier: 75:DA:40:4E:81:02:8D:E9:03:22:62:DB:EA:43:EA:CD:37:66:ED:0A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 65261DEAE0E4B4292E119F7B722B25299DC69BAA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c02ee773-2479-4a68-a9fa-4a6dd18d6083.roa Signing time: Mon 13 Oct 2025 17:55:16 +0000 ROA not before: Mon 13 Oct 2025 17:55:16 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f2:7012::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:26:1d:ea:e0:e4:b4:29:2e:11:9f:7b:72:2b:25:29:9d:c6:9b:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 13 17:55:16 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=594962def124e7d9dfa32ae516ed7a5eb897dd29c8b443297b77ab02a060c39e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:96:6f:83:5e:75:4c:6d:33:b3:97:b1:ea:9a: de:ba:da:ba:be:cf:22:57:bb:07:34:ab:a1:83:68: d9:31:90:02:a5:4f:48:99:04:ba:69:6a:d4:36:db: 6d:d6:9b:23:e8:e5:7f:76:22:84:2b:87:a6:3c:88: 9b:99:bb:32:21:bc:96:73:3c:92:1c:dc:01:80:15: c6:69:0c:42:69:d9:d4:35:f0:a2:32:ee:a8:32:df: 92:21:3c:71:64:6a:3a:16:ce:a3:bf:1b:10:b0:94: e9:d4:26:c5:fa:10:9e:2e:fb:9c:13:3c:2a:68:72: f5:79:da:66:4f:c1:9c:4a:b3:4f:77:d6:b1:46:31: 5a:06:48:c6:f8:78:bd:07:2e:17:2a:2f:90:53:18: c2:99:c6:56:24:36:1d:b4:bd:7e:f7:a2:66:e6:2b: 8e:71:99:23:f9:d0:57:3a:7b:f2:29:79:9d:ca:01: fd:ac:a6:b7:2e:b4:61:a8:fb:24:d3:63:27:ea:11: 88:bc:74:24:41:e1:42:da:5c:b0:1b:b6:65:64:1a: 34:0a:a8:f6:c0:40:7e:f6:32:b6:c8:fb:0b:e6:59: 87:00:23:47:d5:c3:11:56:b7:28:34:2c:14:55:02: 41:37:f4:c3:a4:03:10:d3:36:d6:3b:bc:ab:4c:68: c6:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:DA:40:4E:81:02:8D:E9:03:22:62:DB:EA:43:EA:CD:37:66:ED:0A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c02ee773-2479-4a68-a9fa-4a6dd18d6083.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7012::/48 Signature Algorithm: sha256WithRSAEncryption 8c:9f:6b:bf:ea:10:fb:47:7b:8a:b3:1a:14:f0:db:97:26:2c: df:09:c6:43:f6:c4:7d:4e:48:89:17:74:ff:21:16:6a:08:ee: 21:31:69:a5:f6:79:f9:7e:f1:24:00:9a:c8:f0:24:36:6b:57: b0:54:d2:b7:4d:ce:28:04:97:75:e2:05:c0:35:cc:01:bb:be: f6:00:dd:75:80:2d:af:d3:60:e1:4c:ed:41:1b:a0:76:fc:79: ed:76:a6:3f:55:16:0f:a9:33:24:bd:0a:19:c0:51:c8:31:13: ae:8f:d7:fb:61:9a:8c:66:38:ee:04:33:b5:6d:e3:8a:ee:05: bc:27:29:e0:5f:ef:04:2a:dd:d8:b4:25:82:13:33:bf:b5:92: 02:19:db:47:cd:68:5f:2a:84:50:ed:94:e6:f9:d3:b0:05:ab: e8:a1:d6:bb:b5:e7:0b:97:6d:5c:11:42:99:49:7c:4d:f9:11: e5:34:17:c0:1a:d5:9a:2b:f7:d0:2c:0e:f1:b8:cf:e4:2a:5b: 5d:f7:36:86:1d:3a:b6:7e:31:57:e6:83:5a:2d:66:ad:da:36: 53:83:83:84:eb:cd:56:7f:92:e6:b2:ff:58:79:fe:55:c9:20: 0c:1b:ac:aa:bd:21:81:82:a5:19:b4:c7:c8:cf:c4:d8:4d:db: fa:c8:fe:f8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZSYd6uDktCkuEZ97cislKZ3Gm6owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDEzMTc1NTE2WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OTQ5NjJkZWYxMjRlN2Q5ZGZhMzJhZTUxNmVkN2E1ZWI4 OTdkZDI5YzhiNDQzMjk3Yjc3YWIwMmEwNjBjMzllMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTlm+DXnVMbTOzl7Hqmt662rq+zyJXuwc0q6GDaNkxkAKl T0iZBLppatQ2223WmyPo5X92IoQrh6Y8iJuZuzIhvJZzPJIc3AGAFcZpDEJp2dQ1 8KIy7qgy35IhPHFkajoWzqO/GxCwlOnUJsX6EJ4u+5wTPCpocvV52mZPwZxKs093 1rFGMVoGSMb4eL0HLhcqL5BTGMKZxlYkNh20vX73ombmK45xmSP50Fc6e/IpeZ3K Af2sprcutGGo+yTTYyfqEYi8dCRB4ULaXLAbtmVkGjQKqPbAQH72MrbI+wvmWYcA I0fVwxFWtyg0LBRVAkE39MOkAxDTNtY7vKtMaMazAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUddpAToECjekDImLb6kPqzTdm7QowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2MwMmVlNzczLTI0NzktNGE2OC1hOWZhLTRhNmRkMThkNjA4My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDycBIwDQYJKoZIhvcNAQELBQADggEBAIyfa7/qEPtHe4qzGhTw25cm LN8JxkP2xH1OSIkXdP8hFmoI7iExaaX2efl+8SQAmsjwJDZrV7BU0rdNzigEl3Xi BcA1zAG7vvYA3XWALa/TYOFM7UEboHb8ee12pj9VFg+pMyS9ChnAUcgxE66P1/th moxmOO4EM7Vt44ruBbwnKeBf7wQq3di0JYITM7+1kgIZ20fNaF8qhFDtlOb507AF q+ih1ru15wuXbVwRQplJfE35EeU0F8Aa1Zor99AsDvG4z+QqW133NoYdOrZ+MVfm g1otZq3aNlODg4TrzVZ/kuay/1h5/lXJIAwbrKq9IYGCpRm0x8jPxNhN2/rI/vg= -----END CERTIFICATE-----Generated at Mon Oct 20 02:17:04 2025 by rpki-client