$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa File: fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa (raw, json) Hash identifier: /O/NmvxGP+zwX2LLX+KNqzzFsaqwdGKnemkIeTGY8DI= Subject key identifier: A2:F9:19:71:25:99:42:EE:36:17:7D:9A:2C:FA:E5:BF:53:B5:44:21 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2ABBB3805654037DCA8CB69C5E116EC6DDA51205 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa Signing time: Mon 13 Oct 2025 17:55:14 +0000 ROA not before: Mon 13 Oct 2025 17:55:14 +0000 ROA not after: Mon 17 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f000::/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 22 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:bb:b3:80:56:54:03:7d:ca:8c:b6:9c:5e:11:6e:c6:dd:a5:12:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 13 17:55:14 2025 GMT Not After : Nov 17 23:59:59 2025 GMT Subject: serialNumber=1e15e68336f5344b6a6d92e9aef12a48a46c3b10ce81e54dc09681e75e565091, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:97:f2:e5:6c:8c:68:a5:1e:74:db:06:cd:08: ed:6f:6f:6c:dc:70:f8:60:67:9a:38:8c:a8:7b:bf: 31:33:9b:b1:66:03:5a:dc:ff:30:7d:22:a5:53:33: 27:bf:e3:2a:0e:02:c9:93:27:81:c8:ab:ed:2d:f9: e3:94:00:34:3a:e2:8d:56:f4:5a:90:b7:5b:d7:13: b5:ca:0a:e4:30:8a:d6:0f:7b:5a:12:dd:ab:ec:10: f4:14:92:bd:a2:1a:a1:13:61:2f:7d:55:ac:0f:8e: a2:6d:60:77:dd:84:f8:7a:75:1f:6b:fb:6e:1b:29: 71:e5:9d:2c:5b:68:4d:bc:9c:50:89:c7:5c:7d:cb: c6:37:36:d8:d2:eb:d1:e1:c8:93:7e:6e:d0:bc:2b: 62:ad:91:de:24:3e:43:dd:ca:43:14:80:c1:b2:61: d1:f0:02:c2:60:49:4a:45:5b:19:b5:7a:9c:00:ff: b8:c3:16:b4:1b:1c:0f:ca:f5:f1:97:b6:85:8d:a9: bf:2a:6b:fd:3e:e4:a9:d9:85:3a:99:5d:09:e4:2b: 1b:73:bd:2d:4b:f9:c2:21:96:f4:92:5e:0d:82:95: 78:65:e6:bd:74:86:44:78:c8:7e:d4:0a:7a:aa:99: 4c:1f:8d:24:36:e1:c4:4a:c0:1b:f0:1f:0c:7c:65: 3a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:F9:19:71:25:99:42:EE:36:17:7D:9A:2C:FA:E5:BF:53:B5:44:21 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f000::/24 Signature Algorithm: sha256WithRSAEncryption 58:35:f2:68:8f:f7:35:97:0e:90:82:d9:cd:11:56:f9:87:09: d0:0c:4e:62:c1:34:8a:15:41:36:a4:79:37:18:c9:58:d8:d2: 52:04:d9:60:94:d1:bc:7c:94:fc:b8:73:ed:07:33:e3:9e:8d: 48:e3:74:ef:87:9c:91:c0:6f:f9:c7:ba:84:de:aa:9f:35:18: e8:4c:2f:b8:31:89:a9:b3:05:e8:96:33:43:64:d4:bc:66:ab: 1b:68:16:91:29:b1:1e:31:c5:c6:0e:bf:42:67:89:9b:78:e3: b0:76:e1:b3:6b:f8:7c:8d:55:f5:bb:61:76:28:09:9a:84:70: 95:7d:f2:a7:10:d1:bb:d4:96:26:31:1f:e8:ab:05:b6:11:8c: be:56:fd:5f:41:11:29:0d:27:76:94:66:ba:dd:0d:7a:14:ca: b7:38:a3:cc:11:01:45:9f:34:81:40:a8:68:10:bb:8e:e9:7b: 74:a7:2b:62:fd:d1:c9:b6:3c:f5:2d:79:cd:25:04:18:bc:eb: 2c:4f:f2:4e:b4:21:f2:60:06:15:7e:b3:42:2f:9e:77:05:7e: e8:3c:1a:1f:e0:31:c7:fe:43:5e:b0:e9:be:ba:29:2e:2e:88: 17:27:7d:a9:80:b1:8b:80:04:bc:c1:3f:2b:7b:d2:8a:27:4c: 35:47:e4:17 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKruzgFZUA33KjLacXhFuxt2lEgUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDEzMTc1NTE0WhcNMjUxMTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZTE1ZTY4MzM2ZjUzNDRiNmE2ZDkyZTlhZWYxMmE0OGE0 NmMzYjEwY2U4MWU1NGRjMDk2ODFlNzVlNTY1MDkxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDel/LlbIxopR502wbNCO1vb2zccPhgZ5o4jKh7vzEzm7Fm A1rc/zB9IqVTMye/4yoOAsmTJ4HIq+0t+eOUADQ64o1W9FqQt1vXE7XKCuQwitYP e1oS3avsEPQUkr2iGqETYS99VawPjqJtYHfdhPh6dR9r+24bKXHlnSxbaE28nFCJ x1x9y8Y3NtjS69HhyJN+btC8K2Ktkd4kPkPdykMUgMGyYdHwAsJgSUpFWxm1epwA /7jDFrQbHA/K9fGXtoWNqb8qa/0+5KnZhTqZXQnkKxtzvS1L+cIhlvSSXg2ClXhl 5r10hkR4yH7UCnqqmUwfjSQ24cRKwBvwHwx8ZTphAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUovkZcSWZQu42F32aLPrlv1O1RCEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ZjNjJhNGVkLWE0YmYtNDYzNC1iNmYzLTBjNzBiZWRiNzA2OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAC MAYDBAAmAPAwDQYJKoZIhvcNAQELBQADggEBAFg18miP9zWXDpCC2c0RVvmHCdAM TmLBNIoVQTakeTcYyVjY0lIE2WCU0bx8lPy4c+0HM+OejUjjdO+HnJHAb/nHuoTe qp81GOhML7gxiamzBeiWM0Nk1LxmqxtoFpEpsR4xxcYOv0JniZt447B24bNr+HyN VfW7YXYoCZqEcJV98qcQ0bvUliYxH+irBbYRjL5W/V9BESkNJ3aUZrrdDXoUyrc4 o8wRAUWfNIFAqGgQu47pe3SnK2L90cm2PPUtec0lBBi86yxP8k60IfJgBhV+s0Iv nncFfug8Gh/gMcf+Q16w6b66KS4uiBcnfamAsYuABLzBPyt70oonTDVH5Bc= -----END CERTIFICATE-----Generated at Mon Oct 20 18:46:51 2025 by rpki-client