$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ca586b6c-c586-4283-8392-892b53790b90.roa File: ca586b6c-c586-4283-8392-892b53790b90.roa (raw, json) Hash identifier: h6iXENpE+VY9j5wGZilMGLgbTc7GVhBopwEtQQIL3gk= Subject key identifier: 08:59:3F:6E:7F:E1:03:35:14:31:D7:B1:41:F3:8D:4B:2A:69:D2:D0 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5836308105A6C4C25E0DF928057DFB3865F85FE8 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ca586b6c-c586-4283-8392-892b53790b90.roa Signing time: Mon 13 Oct 2025 17:55:17 +0000 ROA not before: Mon 13 Oct 2025 17:55:17 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f1::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 20 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:36:30:81:05:a6:c4:c2:5e:0d:f9:28:05:7d:fb:38:65:f8:5f:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 13 17:55:17 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=a4f6e802164fffae023c8a9b80bc5adad2c4bd856d1204ae9d0de47026a5253e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8c:28:31:eb:98:17:b8:9c:ac:44:b2:98:6a: 98:11:53:e2:1c:1d:84:6f:a3:67:be:ed:dc:e7:4c: 24:ca:57:24:12:38:67:72:80:72:9b:29:98:7f:9a: ec:78:18:6c:ff:f1:ba:7c:2f:58:68:e7:8f:6d:76: 5e:ee:4d:d0:d3:62:d0:9c:c0:af:76:63:28:87:c7: 15:0c:b3:0b:dd:67:01:5b:28:a9:e0:eb:77:0e:fc: 87:35:b8:b0:64:01:09:66:0a:df:c8:e5:15:2e:e1: 2f:09:10:05:a8:f7:3b:b7:6e:bf:a5:f7:d5:53:b6: a6:c8:c5:6a:68:4c:af:4f:78:03:e8:97:6c:c6:b0: 81:97:77:21:7d:19:d7:c0:16:c0:1c:1d:51:bf:fd: 2e:e9:59:e6:ef:17:a8:e2:b6:75:4a:be:d5:b8:b4: a3:20:6a:b3:c2:e5:81:3d:b7:78:68:43:5d:e6:1f: 5c:74:fa:43:fb:a9:86:13:b0:a4:4b:52:0a:c6:1f: e8:e1:36:2a:19:8c:d7:96:7b:e0:89:cf:30:a3:56: c4:84:15:71:11:e4:e1:87:07:e6:18:20:d4:a3:a8: 41:6a:c2:42:e6:d9:86:17:79:e6:b5:4e:66:17:5a: 7a:a4:26:fa:3e:67:89:d6:eb:ce:3b:10:8a:7a:ad: fb:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:59:3F:6E:7F:E1:03:35:14:31:D7:B1:41:F3:8D:4B:2A:69:D2:D0 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ca586b6c-c586-4283-8392-892b53790b90.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1::/44 Signature Algorithm: sha256WithRSAEncryption 9e:8c:7e:59:80:85:84:f6:31:c8:6e:7c:7f:4e:f5:82:a6:04: 4f:6f:ec:68:df:6f:83:d7:74:75:93:25:3e:f2:1b:2f:94:b4: 9d:22:73:ef:bb:46:a2:50:3d:8c:7b:ea:5f:ec:c9:3c:f4:40: 24:b1:90:fe:c9:25:29:3b:ec:36:4d:c5:fc:ac:7f:13:6b:bb: 90:ab:a2:7a:f2:4b:47:db:60:91:35:28:ae:9f:d1:f6:3e:2f: 9e:11:0c:33:bc:a9:3d:a1:1c:a9:79:3e:57:d8:14:14:69:40: e4:b0:28:37:f8:3e:36:53:75:3e:14:2c:cd:0d:48:67:27:67: 16:9a:03:21:3c:da:2e:1f:b3:57:b0:15:2e:52:83:9c:84:39: 00:cd:fa:17:9a:b8:6f:cd:08:0f:19:47:2c:fd:88:b0:6f:fe: 67:8c:e4:79:0c:3c:48:90:0f:b4:5a:98:92:6f:da:6b:53:bf: b8:23:a4:1b:03:57:6a:9a:34:27:ae:5d:95:75:9f:3b:39:55: 68:88:ca:6e:94:89:17:1c:59:9f:75:23:ad:82:bb:0d:e7:ce: c2:74:1c:9d:86:5e:6b:b5:1d:60:12:75:6a:71:03:d4:8c:9a: 75:77:f6:41:2f:68:a4:8d:9c:3c:12:80:51:c5:8c:cc:19:c7: 4b:46:2e:0a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWDYwgQWmxMJeDfkoBX37OGX4X+gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDEzMTc1NTE3WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNGY2ZTgwMjE2NGZmZmFlMDIzYzhhOWI4MGJjNWFkYWQy YzRiZDg1NmQxMjA0YWU5ZDBkZTQ3MDI2YTUyNTNlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrjCgx65gXuJysRLKYapgRU+IcHYRvo2e+7dznTCTKVyQS OGdygHKbKZh/mux4GGz/8bp8L1ho549tdl7uTdDTYtCcwK92YyiHxxUMswvdZwFb KKng63cO/Ic1uLBkAQlmCt/I5RUu4S8JEAWo9zu3br+l99VTtqbIxWpoTK9PeAPo l2zGsIGXdyF9GdfAFsAcHVG//S7pWebvF6jitnVKvtW4tKMgarPC5YE9t3hoQ13m H1x0+kP7qYYTsKRLUgrGH+jhNioZjNeWe+CJzzCjVsSEFXER5OGHB+YYINSjqEFq wkLm2YYXeea1TmYXWnqkJvo+Z4nW6847EIp6rfsdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUCFk/bn/hAzUUMdexQfONSypp0tAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NhNTg2YjZjLWM1ODYtNDI4My04MzkyLTg5MmI1Mzc5MGI5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDxAAAwDQYJKoZIhvcNAQELBQADggEBAJ6MflmAhYT2MchufH9O9YKm BE9v7Gjfb4PXdHWTJT7yGy+UtJ0ic++7RqJQPYx76l/syTz0QCSxkP7JJSk77DZN xfysfxNru5CronryS0fbYJE1KK6f0fY+L54RDDO8qT2hHKl5PlfYFBRpQOSwKDf4 PjZTdT4ULM0NSGcnZxaaAyE82i4fs1ewFS5Sg5yEOQDN+heauG/NCA8ZRyz9iLBv /meM5HkMPEiQD7RamJJv2mtTv7gjpBsDV2qaNCeuXZV1nzs5VWiIym6UiRccWZ91 I62Cuw3nzsJ0HJ2GXmu1HWASdWpxA9SMmnV39kEvaKSNnDwSgFHFjMwZx0tGLgo= -----END CERTIFICATE-----Generated at Sun Oct 19 22:57:37 2025 by rpki-client