$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ed489dd8-33df-4b42-9bde-ace356f6114a.roa File: ed489dd8-33df-4b42-9bde-ace356f6114a.roa (raw, json) Hash identifier: AueSZ+Bs/UcMMCN0PxDG16qYFGZDt54ICmMOYOLPLJM= Subject key identifier: 7F:44:AA:7F:2C:DD:73:CD:08:C7:57:0C:0E:93:0F:F8:58:97:71:64 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 01EFBEE0F1020A1104B068308FB175142C1D4E9A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ed489dd8-33df-4b42-9bde-ace356f6114a.roa Signing time: Sat 27 Sep 2025 00:53:39 +0000 ROA not before: Sat 27 Sep 2025 00:53:39 +0000 ROA not after: Sat 01 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f102::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:ef:be:e0:f1:02:0a:11:04:b0:68:30:8f:b1:75:14:2c:1d:4e:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 27 00:53:39 2025 GMT Not After : Nov 1 23:59:59 2025 GMT Subject: serialNumber=13082d27767033a04cbdf8acc25af58bc01e91a4f83fbe58da09f63750343fc5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4c:ff:6d:92:b5:66:8b:63:af:9b:72:3f:cf: ef:a1:03:5c:28:cb:f8:00:ab:1e:47:1d:b6:80:66: 06:ef:51:1d:b0:9a:df:ee:a6:dc:74:dc:89:e6:76: 75:49:88:bd:11:f1:04:f2:20:ad:75:c1:c4:5e:5b: 44:48:ed:2b:ea:a8:73:28:60:ed:19:7b:f6:02:76: f0:3d:de:26:6c:7d:b2:1a:ef:6c:f2:02:86:89:d9: 5f:66:14:ba:3c:4a:ab:39:76:1e:74:a8:4a:1e:1a: 4d:17:48:54:40:c9:9f:9c:1d:93:d2:df:b9:dc:d9: 94:8e:2b:9c:95:03:a7:5f:39:7d:12:d4:e3:e5:1f: 43:98:78:01:63:df:a8:0c:06:99:8b:01:3c:f0:e2: 3e:4a:57:80:3b:0a:84:77:65:97:1f:6f:83:14:67: 89:80:ba:0d:1f:1e:e8:22:8c:2c:a4:18:17:05:68: 14:d9:13:48:94:5b:f1:4f:64:66:e5:2d:08:3d:3e: c2:10:99:92:75:14:25:e4:45:aa:59:97:a6:34:a2: 28:ed:d9:eb:69:bf:9b:8e:b4:55:e5:af:57:e2:b2: 7a:03:e2:8d:d7:9a:78:8e:ec:4b:4e:5c:18:62:ae: e7:b7:18:9a:33:20:2d:6d:13:e0:6d:92:7d:57:55: cf:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:44:AA:7F:2C:DD:73:CD:08:C7:57:0C:0E:93:0F:F8:58:97:71:64 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ed489dd8-33df-4b42-9bde-ace356f6114a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f102::/48 Signature Algorithm: sha256WithRSAEncryption 6a:d2:f0:0b:52:6d:d4:09:8b:aa:23:50:e3:06:4d:c0:a4:88: ab:af:97:6f:cb:16:1a:ff:ed:7c:a1:f9:3f:73:1e:4b:c4:01: e1:d5:1e:e5:61:9a:b4:ca:33:6a:e1:c4:96:10:50:6d:f4:cc: 8f:f9:9f:08:20:33:80:df:65:01:ff:35:e5:e7:27:a9:4a:1a: 11:64:fd:3a:3e:26:45:90:b9:b5:ee:dd:fa:20:e2:e5:c1:0f: fc:b5:e0:c3:b3:95:82:de:dd:de:cf:1a:65:0b:b2:1c:27:3e: 4f:3c:37:55:88:1e:de:ac:e9:c1:6b:7d:5d:f1:2b:39:ab:6a: f8:e7:5c:bb:72:b5:25:6e:47:1e:0d:04:1a:d5:8e:1e:b2:f7: 6d:d2:8a:b6:9a:72:94:9e:05:90:6f:88:9c:31:32:3f:d8:8a: f5:46:da:03:eb:1f:65:4b:07:b6:9e:b0:d9:aa:26:77:6a:2a: e9:d5:76:8e:7e:cb:3e:35:b2:8b:9b:52:45:db:17:5d:fa:ef: 72:1b:c5:fb:21:e5:84:a9:ba:72:f0:46:0b:02:33:d2:13:11: 4e:65:2d:dd:e8:1e:d7:e6:7c:4f:73:d9:1d:96:f5:c4:33:a6: fb:f9:d4:0e:62:2e:b2:4f:51:f3:2a:00:fc:70:c9:16:f4:0a: 17:c4:e4:79 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUAe++4PECChEEsGgwj7F1FCwdTpowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI3MDA1MzM5WhcNMjUxMTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMzA4MmQyNzc2NzAzM2EwNGNiZGY4YWNjMjVhZjU4YmMw MWU5MWE0ZjgzZmJlNThkYTA5ZjYzNzUwMzQzZmM1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4TP9tkrVmi2Ovm3I/z++hA1woy/gAqx5HHbaAZgbvUR2w mt/uptx03InmdnVJiL0R8QTyIK11wcReW0RI7SvqqHMoYO0Ze/YCdvA93iZsfbIa 72zyAoaJ2V9mFLo8Sqs5dh50qEoeGk0XSFRAyZ+cHZPS37nc2ZSOK5yVA6dfOX0S 1OPlH0OYeAFj36gMBpmLATzw4j5KV4A7CoR3ZZcfb4MUZ4mAug0fHugijCykGBcF aBTZE0iUW/FPZGblLQg9PsIQmZJ1FCXkRapZl6Y0oijt2etpv5uOtFXlr1fisnoD 4o3XmniO7EtOXBhirue3GJozIC1tE+Btkn1XVc9ZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUf0Sqfyzdc80Ix1cMDpMP+FiXcWQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VkNDg5ZGQ4LTMzZGYtNGI0Mi05YmRlLWFjZTM1NmY2MTE0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QIwDQYJKoZIhvcNAQELBQADggEBAGrS8AtSbdQJi6ojUOMGTcCk iKuvl2/LFhr/7Xyh+T9zHkvEAeHVHuVhmrTKM2rhxJYQUG30zI/5nwggM4DfZQH/ NeXnJ6lKGhFk/To+JkWQubXu3fog4uXBD/y14MOzlYLe3d7PGmULshwnPk88N1WI Ht6s6cFrfV3xKzmravjnXLtytSVuRx4NBBrVjh6y923SiraacpSeBZBviJwxMj/Y ivVG2gPrH2VLB7aesNmqJndqKunVdo5+yz41soubUkXbF13673Ibxfsh5YSpunLw RgsCM9ITEU5lLd3oHtfmfE9z2R2W9cQzpvv51A5iLrJPUfMqAPxwyRb0ChfE5Hk= -----END CERTIFICATE-----Generated at Mon Oct 20 09:48:29 2025 by rpki-client