$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1a47a69-1d53-4fa8-bab2-1b1f60e74655.roa File: c1a47a69-1d53-4fa8-bab2-1b1f60e74655.roa (raw, json) Hash identifier: rlEot2YUSMqFok0ACad8JOWq+nlsTun0I9cqxz/zzZA= Subject key identifier: 6C:FF:F6:22:91:B6:F2:3C:DB:62:D5:F4:43:40:9C:44:87:46:85:7D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 05F0F0CE327B46621BFC7249AC8BE9527AF60DD1 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1a47a69-1d53-4fa8-bab2-1b1f60e74655.roa Signing time: Sat 27 Sep 2025 00:53:38 +0000 ROA not before: Sat 27 Sep 2025 00:53:38 +0000 ROA not after: Sat 01 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f102::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:f0:f0:ce:32:7b:46:62:1b:fc:72:49:ac:8b:e9:52:7a:f6:0d:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 27 00:53:38 2025 GMT Not After : Nov 1 23:59:59 2025 GMT Subject: serialNumber=4414e1ac3a36bc3fb5c5bc752650ac15b82a4f0e114c3942a6912642ab43320e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:3b:e8:44:64:8f:fd:8c:e0:d0:b1:04:84:db: 64:ad:56:33:e6:a2:d9:bf:4a:75:6e:c9:d2:22:8b: 74:4b:f2:e3:a2:c4:02:5c:34:65:7b:d2:11:10:0f: ae:eb:45:8c:85:a9:b0:e2:32:b1:2e:29:2c:4a:6f: 04:5e:48:51:90:71:17:ff:43:69:db:3c:b8:29:af: 84:ee:4b:f6:d1:5b:29:51:87:af:da:f7:16:17:c7: a4:6c:bd:e8:65:6f:42:dd:d5:78:63:57:5d:cc:15: fb:ff:2c:7f:ea:92:5d:ea:05:d5:10:07:d5:2e:74: 68:3e:59:32:0e:98:f2:da:bd:bf:86:44:8f:ea:99: 8b:ae:ad:10:db:1d:5e:79:fb:e8:45:80:af:e3:65: 52:55:4f:d9:4f:cf:d9:65:68:b9:f4:f4:ba:cd:d9: 44:7f:53:de:ac:ea:94:49:e2:63:15:31:da:ed:6f: f6:91:9d:e2:15:d1:08:13:1f:23:0a:35:b9:f8:6e: a0:66:99:c0:ef:b2:e8:b2:a3:28:0f:53:1c:37:ec: d9:59:0c:ee:f2:54:47:38:2c:a1:85:cd:97:54:d5: ba:cc:cf:ef:99:75:99:10:c6:9b:40:f8:cf:d7:54: 21:77:09:3d:8d:49:d4:bc:bf:bb:de:19:1d:f7:45: 13:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:FF:F6:22:91:B6:F2:3C:DB:62:D5:F4:43:40:9C:44:87:46:85:7D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1a47a69-1d53-4fa8-bab2-1b1f60e74655.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f102::/48 Signature Algorithm: sha256WithRSAEncryption 05:f3:a1:8e:e1:88:e3:90:19:ce:bb:1f:d1:d5:8d:69:a2:db: be:fe:70:e5:c4:14:69:86:ae:1e:34:ff:97:5b:d9:34:da:f1: de:ca:db:e6:36:7f:05:fb:39:6c:c1:ec:80:38:db:27:56:d2: b7:53:33:db:7a:1e:d8:e1:e2:91:8d:a0:d3:dc:4d:1c:79:ad: 37:5a:65:5a:3b:da:62:51:92:14:6d:68:f2:26:74:dc:1f:87: 90:75:cd:5e:bc:25:55:6c:f0:5c:34:c4:5f:68:cf:8e:31:ee: f5:4b:96:79:80:29:89:e9:b1:fa:55:a8:6d:69:63:b6:ca:d7: 83:6d:e4:f5:54:eb:b4:f6:7b:e7:04:b5:c7:8c:ad:ea:24:02: 80:f0:5f:b7:01:15:51:88:1c:68:44:f9:39:fc:b6:c4:e6:e5: c3:73:51:e9:8b:b8:26:34:6c:df:09:d0:44:72:9b:32:33:78: e9:87:c7:b5:bb:6d:e7:0d:15:16:9d:bf:8e:e2:31:7c:20:7e: 7b:d2:17:81:ef:1e:7c:7a:da:f4:73:23:41:59:02:f3:c4:a1: d7:5f:03:46:e1:38:72:91:52:05:00:f6:bd:47:c6:62:01:f8: c4:38:c2:bb:ad:4a:ea:8a:ee:16:eb:00:d6:e0:6a:f6:c9:46: ee:46:c3:91 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBfDwzjJ7RmIb/HJJrIvpUnr2DdEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI3MDA1MzM4WhcNMjUxMTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NDE0ZTFhYzNhMzZiYzNmYjVjNWJjNzUyNjUwYWMxNWI4 MmE0ZjBlMTE0YzM5NDJhNjkxMjY0MmFiNDMzMjBlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWO+hEZI/9jODQsQSE22StVjPmotm/SnVuydIii3RL8uOi xAJcNGV70hEQD67rRYyFqbDiMrEuKSxKbwReSFGQcRf/Q2nbPLgpr4TuS/bRWylR h6/a9xYXx6Rsvehlb0Ld1XhjV13MFfv/LH/qkl3qBdUQB9UudGg+WTIOmPLavb+G RI/qmYuurRDbHV55++hFgK/jZVJVT9lPz9llaLn09LrN2UR/U96s6pRJ4mMVMdrt b/aRneIV0QgTHyMKNbn4bqBmmcDvsuiyoygPUxw37NlZDO7yVEc4LKGFzZdU1brM z++ZdZkQxptA+M/XVCF3CT2NSdS8v7veGR33RRP1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbP/2IpG28jzbYtX0Q0CcRIdGhX0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2MxYTQ3YTY5LTFkNTMtNGZhOC1iYWIyLTFiMWY2MGU3NDY1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QIwDQYJKoZIhvcNAQELBQADggEBAAXzoY7hiOOQGc67H9HVjWmi 277+cOXEFGmGrh40/5db2TTa8d7K2+Y2fwX7OWzB7IA42ydW0rdTM9t6Htjh4pGN oNPcTRx5rTdaZVo72mJRkhRtaPImdNwfh5B1zV68JVVs8Fw0xF9oz44x7vVLlnmA KYnpsfpVqG1pY7bK14Nt5PVU67T2e+cEtceMreokAoDwX7cBFVGIHGhE+Tn8tsTm 5cNzUemLuCY0bN8J0ERymzIzeOmHx7W7becNFRadv47iMXwgfnvSF4HvHnx62vRz I0FZAvPEoddfA0bhOHKRUgUA9r1HxmIB+MQ4wrutSuqK7hbrANbgavbJRu5Gw5E= -----END CERTIFICATE-----Generated at Mon Oct 20 01:30:58 2025 by rpki-client