$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f933dc9a-6cb0-4836-9711-454fb0e2e364.roa File: f933dc9a-6cb0-4836-9711-454fb0e2e364.roa (raw, json) Hash identifier: bgrvfe/R81v4OP9cVH5Kh6pqo9QWW/Yd6gid2UOq7GI= Subject key identifier: 0C:DE:67:5D:E2:71:8C:F9:D0:E0:92:1B:03:E8:A0:DB:DE:64:3D:20 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6F74C25DA281C92FE4E7D5CD4DBA652D51C4F0FB Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f933dc9a-6cb0-4836-9711-454fb0e2e364.roa Signing time: Sat 27 Sep 2025 00:53:24 +0000 ROA not before: Sat 27 Sep 2025 00:53:24 +0000 ROA not after: Sat 01 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f104::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 20 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:74:c2:5d:a2:81:c9:2f:e4:e7:d5:cd:4d:ba:65:2d:51:c4:f0:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 27 00:53:24 2025 GMT Not After : Nov 1 23:59:59 2025 GMT Subject: serialNumber=f44d8f033da947caf73b135eb22716222eca0b08b8b27a9d0b1ea24529890bac, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:88:0e:76:6a:a6:f3:3e:0a:cf:50:fd:1c:db: b5:a9:b9:a4:5e:eb:86:50:07:2e:52:58:70:2b:cc: da:1c:98:ba:5a:fb:09:ff:d1:e4:37:8e:4b:f5:6e: 74:b4:ff:40:3c:79:b4:75:de:f9:3c:a0:0c:74:f7: 22:d7:95:70:71:69:aa:03:02:8b:fb:79:68:b2:89: e9:2f:d0:8f:05:3e:c5:3e:94:83:58:f3:56:fa:d5: 2d:c4:58:6f:2e:fc:ac:83:f0:f0:04:0f:1f:3c:54: 92:37:7a:e6:c5:4f:69:2e:ec:92:5c:e6:65:a1:02: 76:91:f2:b5:fc:ab:27:e7:22:2e:f2:48:1f:2e:47: bb:c5:f9:d4:cf:65:8a:3b:c8:f3:49:01:ce:d2:f0: 02:97:f7:b0:1c:bd:01:ee:26:03:c2:01:0c:b8:01: 69:1c:34:66:7d:d3:a9:31:0b:9c:b7:7a:40:8a:9a: 21:7d:61:bb:ef:d0:69:43:be:6b:fc:cd:16:8e:0f: 3b:63:12:07:a7:d7:3a:8d:88:6e:25:6a:f2:a1:d1: cd:c9:79:80:3a:77:84:86:c2:a9:7d:b3:05:96:fa: 55:b2:88:5b:87:4e:df:80:30:2c:18:2f:5c:9c:c4: 29:6e:41:ac:aa:2a:d3:1c:83:4b:36:db:34:66:15: 36:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:DE:67:5D:E2:71:8C:F9:D0:E0:92:1B:03:E8:A0:DB:DE:64:3D:20 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f933dc9a-6cb0-4836-9711-454fb0e2e364.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f104::/48 Signature Algorithm: sha256WithRSAEncryption 40:38:86:35:1e:56:47:40:79:40:ea:6e:86:54:a4:97:cd:3f: 24:e8:a9:b6:5a:0d:b8:51:0c:ed:c0:8d:c9:8e:ba:88:13:d1: bc:05:87:46:5f:97:5b:f7:4b:25:98:0a:f9:46:f7:d9:53:c5: 3e:c6:13:63:b1:ff:a3:3d:a1:ff:fe:50:1d:70:b6:c4:3d:9b: 8d:2a:d9:67:11:69:40:ea:c9:87:10:11:f7:e6:29:bc:f9:71: cb:1b:54:a8:15:f8:98:b2:4d:03:52:09:34:8e:b4:c2:23:46: fd:19:1a:84:f4:2a:d7:11:54:95:b8:33:76:38:17:8c:45:28: 55:49:ff:86:d1:7c:ea:59:b2:07:8d:45:25:e4:7c:d5:56:98: 4c:aa:b1:c5:9e:da:7b:5e:61:26:8c:16:2a:7b:67:50:d2:8d: c2:8e:66:e4:f7:5d:5e:2a:eb:e6:33:85:eb:47:43:e1:42:95: e4:4e:fa:4d:2f:69:d8:a5:08:fe:3f:fc:a3:6b:3f:70:e7:95: fe:5a:c1:39:2a:db:2b:b5:6a:b0:32:b1:fb:4f:3c:eb:01:56: 81:c3:5f:ec:28:34:30:8e:46:6c:ad:57:ae:56:b8:e8:6f:bd: 6f:f0:a3:d8:3b:a1:55:65:d9:66:61:73:23:ad:ff:07:f2:75: 85:e0:19:4d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUb3TCXaKByS/k59XNTbplLVHE8PswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTI3MDA1MzI0WhcNMjUxMTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNDRkOGYwMzNkYTk0N2NhZjczYjEzNWViMjI3MTYyMjJl Y2EwYjA4YjhiMjdhOWQwYjFlYTI0NTI5ODkwYmFjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpiA52aqbzPgrPUP0c27WpuaRe64ZQBy5SWHArzNocmLpa +wn/0eQ3jkv1bnS0/0A8ebR13vk8oAx09yLXlXBxaaoDAov7eWiyiekv0I8FPsU+ lINY81b61S3EWG8u/KyD8PAEDx88VJI3eubFT2ku7JJc5mWhAnaR8rX8qyfnIi7y SB8uR7vF+dTPZYo7yPNJAc7S8AKX97AcvQHuJgPCAQy4AWkcNGZ906kxC5y3ekCK miF9Ybvv0GlDvmv8zRaODztjEgen1zqNiG4lavKh0c3JeYA6d4SGwql9swWW+lWy iFuHTt+AMCwYL1ycxCluQayqKtMcg0s22zRmFTbPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDN5nXeJxjPnQ4JIbA+ig295kPSAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y5MzNkYzlhLTZjYjAtNDgzNi05NzExLTQ1NGZiMGUyZTM2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QQwDQYJKoZIhvcNAQELBQADggEBAEA4hjUeVkdAeUDqboZUpJfN PyToqbZaDbhRDO3AjcmOuogT0bwFh0Zfl1v3SyWYCvlG99lTxT7GE2Ox/6M9of/+ UB1wtsQ9m40q2WcRaUDqyYcQEffmKbz5ccsbVKgV+JiyTQNSCTSOtMIjRv0ZGoT0 KtcRVJW4M3Y4F4xFKFVJ/4bRfOpZsgeNRSXkfNVWmEyqscWe2nteYSaMFip7Z1DS jcKOZuT3XV4q6+YzhetHQ+FCleRO+k0vadilCP4//KNrP3Dnlf5awTkq2yu1arAy sftPPOsBVoHDX+woNDCORmytV65WuOhvvW/wo9g7oVVl2WZhcyOt/wfydYXgGU0= -----END CERTIFICATE-----Generated at Sun Oct 19 22:57:27 2025 by rpki-client