$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa File: c1547439-2593-48d5-aaf8-70d69e1a8163.roa (raw, json) Hash identifier: /uoTsbu+TkEQUuvqsfbOjc7pSe3ijDmpwOgnAqBQPeQ= Subject key identifier: 0B:58:AF:D5:9C:1C:BC:DE:50:E5:AD:DB:A1:FA:A5:73:28:96:39:8E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 02228419B06D66D1C0574CE1FA72643337899A62 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa Signing time: Fri 10 Oct 2025 17:04:20 +0000 ROA not before: Fri 10 Oct 2025 17:04:20 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:22:84:19:b0:6d:66:d1:c0:57:4c:e1:fa:72:64:33:37:89:9a:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 10 17:04:20 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=492bf9155e2cc1cb9921bfb7df2b6f9b9d6e018a654ac778588b65b83375c221, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:55:ed:3d:c5:8c:c2:83:2d:cf:8b:32:2a:f1: b0:cd:84:fa:2b:30:d6:ba:1e:39:5c:ac:c8:2b:76: 48:13:01:bc:fd:42:d6:3a:d2:75:10:e0:7b:cd:6b: 37:0d:f1:7a:3f:38:37:60:f6:f7:4b:72:74:3b:b7: 2a:91:22:5e:66:1f:95:01:b0:cf:dc:5c:be:6c:11: e1:20:bc:4f:14:ab:86:45:cb:0c:07:33:92:93:61: fb:90:8f:ba:74:42:44:67:13:2e:ac:ef:a2:e9:82: bd:ef:85:42:b4:fd:1a:ab:74:92:78:ab:3d:80:93: 65:3a:0a:bb:0d:ee:70:6f:52:f8:4b:24:23:90:8c: 14:87:20:2c:ec:8d:54:a1:6d:41:ab:00:e4:b2:b9: 6f:18:31:e2:b8:8f:48:1b:6b:26:fc:16:45:a2:d4: 99:f9:3b:ae:d8:b8:d0:b5:53:14:77:c0:e3:c6:37: c0:f0:27:84:d1:9a:88:96:a2:0a:de:d8:a9:97:11: b8:18:24:7c:1d:75:b9:61:ab:16:f3:77:f2:9c:3c: 4b:d8:69:52:9f:10:22:d1:19:a9:e8:bc:11:97:80: dd:44:ea:f9:72:92:c6:1f:4a:fb:a3:07:97:a3:4e: bf:76:3a:ee:76:da:ef:d2:3e:29:09:65:7e:f3:fa: 3d:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:58:AF:D5:9C:1C:BC:DE:50:E5:AD:DB:A1:FA:A5:73:28:96:39:8E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:11::/48 Signature Algorithm: sha256WithRSAEncryption 56:96:bf:fd:76:e9:95:06:a2:40:86:5b:24:79:4c:0a:de:68: 96:62:ac:bb:d6:c8:48:53:ad:b4:be:0d:58:1d:3e:07:d8:3b: 74:6c:18:30:8a:0d:c7:3e:cf:cd:4f:52:3d:cb:ed:22:d7:93: dc:2d:aa:57:b7:77:88:97:e3:de:89:dd:e0:cc:50:26:c8:ac: 09:0c:11:ba:cf:da:44:b0:a3:30:05:b6:80:5a:7c:3f:bc:59: e6:7a:5a:8d:61:1e:e6:2f:e5:6b:b2:6f:d1:c4:11:08:94:97: 10:dc:52:4e:2f:ae:6b:57:b8:ab:60:40:88:13:ee:2b:9a:9b: d6:81:b9:95:18:16:95:17:b7:23:1a:be:0e:6d:4f:b0:71:55: b6:f0:a5:0e:ac:c0:dd:39:19:ba:fd:72:72:bc:f6:08:d4:43: 24:2c:8b:11:9a:76:26:2f:65:33:38:0a:af:74:f2:d6:e3:4b: f5:cc:f4:c4:56:be:ce:d4:a1:66:ae:36:13:9a:42:dd:e3:19: 7a:ba:d7:a1:9b:68:d7:e4:39:57:3d:08:66:81:c1:38:a3:dc: 8a:9c:2f:0c:05:e4:8e:14:ea:aa:9d:ae:d2:90:42:8a:b2:cc: 7d:13:a4:96:94:15:c2:c2:95:15:02:ab:5b:95:27:63:48:21: 5a:f7:91:f9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUAiKEGbBtZtHAV0zh+nJkMzeJmmIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDEwMTcwNDIwWhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0OTJiZjkxNTVlMmNjMWNiOTkyMWJmYjdkZjJiNmY5Yjlk NmUwMThhNjU0YWM3Nzg1ODhiNjViODMzNzVjMjIxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/Ve09xYzCgy3PizIq8bDNhPorMNa6HjlcrMgrdkgTAbz9 QtY60nUQ4HvNazcN8Xo/ODdg9vdLcnQ7tyqRIl5mH5UBsM/cXL5sEeEgvE8Uq4ZF ywwHM5KTYfuQj7p0QkRnEy6s76Lpgr3vhUK0/RqrdJJ4qz2Ak2U6CrsN7nBvUvhL JCOQjBSHICzsjVShbUGrAOSyuW8YMeK4j0gbayb8FkWi1Jn5O67YuNC1UxR3wOPG N8DwJ4TRmoiWogre2KmXEbgYJHwddblhqxbzd/KcPEvYaVKfECLRGanovBGXgN1E 6vlyksYfSvujB5ejTr92Ou522u/SPikJZX7z+j1FAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUC1iv1ZwcvN5Q5a3bofqlcyiWOY4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2MxNTQ3NDM5LTI1OTMtNDhkNS1hYWY4LTcwZDY5ZTFhODE2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwABEwDQYJKoZIhvcNAQELBQADggEBAFaWv/126ZUGokCGWyR5TAre aJZirLvWyEhTrbS+DVgdPgfYO3RsGDCKDcc+z81PUj3L7SLXk9wtqle3d4iX496J 3eDMUCbIrAkMEbrP2kSwozAFtoBafD+8WeZ6Wo1hHuYv5Wuyb9HEEQiUlxDcUk4v rmtXuKtgQIgT7iuam9aBuZUYFpUXtyMavg5tT7BxVbbwpQ6swN05Gbr9cnK89gjU QyQsixGadiYvZTM4Cq908tbjS/XM9MRWvs7UoWauNhOaQt3jGXq616GbaNfkOVc9 CGaBwTij3IqcLwwF5I4U6qqdrtKQQoqyzH0TpJaUFcLClRUCq1uVJ2NIIVr3kfk= -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:09 2025 by rpki-client