$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/13d95532-571e-4655-86b3-383b815023ba.roa File: 13d95532-571e-4655-86b3-383b815023ba.roa (raw, json) Hash identifier: IRywM2NsJdQx+WLPDqg1GmDBaONuulHSraUBkdqyGQo= Subject key identifier: 1F:69:8E:99:93:97:67:01:5D:1B:76:63:12:97:46:77:07:37:72:70 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3CCE76149E72C63A04C80A7C5F02574FB3EAFD86 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/13d95532-571e-4655-86b3-383b815023ba.roa Signing time: Tue 21 Oct 2025 12:50:13 +0000 ROA not before: Tue 21 Oct 2025 12:50:13 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e900::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:ce:76:14:9e:72:c6:3a:04:c8:0a:7c:5f:02:57:4f:b3:ea:fd:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:13 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=028bdf601cf363ae7bf7a6ca13f7d42bc2a76c8110917749c71dc41561a71390, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:12:5e:3d:56:4e:fc:ab:38:73:c4:16:7c:77: ad:94:55:99:93:bd:d4:99:0d:2c:21:4a:27:4b:31: c1:68:bf:78:ae:25:6d:af:b1:6d:07:1b:11:25:dd: be:c4:bf:a5:06:f0:92:ee:da:cb:14:ec:8f:11:ea: 30:51:01:cd:b7:fd:6b:3f:9c:82:00:fa:8d:62:35: 00:37:19:de:72:39:d8:2e:d6:c0:5c:9b:14:e6:41: 13:ec:96:4b:6f:ec:c0:a0:2a:33:d9:3d:12:a4:72: 92:9a:b6:31:4d:10:44:d9:88:04:c3:43:0b:7e:ff: 50:00:ef:62:26:29:0b:c8:ee:5c:55:e4:5b:e8:9d: 63:b0:e9:c3:4d:54:eb:86:17:22:75:7b:7e:d6:0d: 18:93:8e:b2:43:cf:cc:83:b0:c1:8c:5f:79:15:49: f0:6e:ea:57:94:78:a8:93:98:f2:10:48:93:e3:30: f3:3f:7f:6e:18:19:50:ca:a3:28:63:e2:b4:fb:ba: 86:5f:08:1a:8e:24:6c:f5:21:d2:29:66:64:1f:4c: d4:22:ce:7e:28:30:be:39:58:3c:78:2f:b0:30:09: ef:4c:4b:55:79:93:bc:61:5c:3e:92:9c:fb:1b:94: 25:13:ca:9d:e4:cd:db:78:0f:44:6a:2d:c1:51:0c: 84:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:69:8E:99:93:97:67:01:5D:1B:76:63:12:97:46:77:07:37:72:70 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/13d95532-571e-4655-86b3-383b815023ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e900::/40 Signature Algorithm: sha256WithRSAEncryption 21:69:70:a3:6e:28:1d:aa:29:d6:75:4c:0c:9c:ac:c8:6d:7d: 94:e9:54:26:34:f9:d2:aa:d2:ca:2c:14:e0:55:3a:e7:b2:ca: ff:8d:e6:0c:88:11:86:b3:77:3c:34:37:7d:8a:47:98:e0:11: 66:62:d6:9f:16:03:43:1d:f7:fa:5f:cc:e9:f6:b9:36:7f:7a: 70:b2:27:1b:a3:76:1f:a9:19:86:bc:ce:fc:ab:1f:08:fd:23: 40:92:0f:f1:61:73:a0:53:9b:44:52:b9:87:52:9b:52:24:fa: 54:17:16:5e:d6:0a:4e:99:5e:d5:c7:26:cc:db:c1:b6:59:30: 57:9a:e3:ce:b9:ff:c7:ba:23:7f:96:43:5a:92:d5:c3:3b:64: 51:97:8f:03:70:30:d2:a7:b7:52:d4:20:06:73:cb:b2:c7:8f: 20:74:1d:b9:f4:3c:e3:ed:b6:8e:46:47:e5:55:38:c6:63:fd: d8:3d:29:73:3b:f2:4a:5f:5c:01:3d:24:01:76:4d:1c:78:32: 2c:7e:25:16:d3:02:88:eb:70:d3:89:3c:34:0d:1e:f4:e5:b3: a0:04:b8:c8:cf:ef:0f:a7:01:9f:77:d3:7f:87:1e:9e:0c:8e: 50:4d:7f:eb:52:54:54:33:12:a4:86:1a:3c:e6:17:d5:00:f6: 45:d3:cd:4b -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUPM52FJ5yxjoEyAp8XwJXT7Pq/YYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDEzWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMjhiZGY2MDFjZjM2M2FlN2JmN2E2Y2ExM2Y3ZDQyYmMy YTc2YzgxMTA5MTc3NDljNzFkYzQxNTYxYTcxMzkwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9El49Vk78qzhzxBZ8d62UVZmTvdSZDSwhSidLMcFov3iu JW2vsW0HGxEl3b7Ev6UG8JLu2ssU7I8R6jBRAc23/Ws/nIIA+o1iNQA3Gd5yOdgu 1sBcmxTmQRPslktv7MCgKjPZPRKkcpKatjFNEETZiATDQwt+/1AA72ImKQvI7lxV 5FvonWOw6cNNVOuGFyJ1e37WDRiTjrJDz8yDsMGMX3kVSfBu6leUeKiTmPIQSJPj MPM/f24YGVDKoyhj4rT7uoZfCBqOJGz1IdIpZmQfTNQizn4oML45WDx4L7AwCe9M S1V5k7xhXD6SnPsblCUTyp3kzdt4D0RqLcFRDIT3AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUH2mOmZOXZwFdG3ZjEpdGdwc3cnAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzEzZDk1NTMyLTU3MWUtNDY1NS04NmIzLTM4M2I4MTUwMjNiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD76TANBgkqhkiG9w0BAQsFAAOCAQEAIWlwo24oHaop1nVMDJysyG19 lOlUJjT50qrSyiwU4FU657LK/43mDIgRhrN3PDQ3fYpHmOARZmLWnxYDQx33+l/M 6fa5Nn96cLInG6N2H6kZhrzO/KsfCP0jQJIP8WFzoFObRFK5h1KbUiT6VBcWXtYK Tple1ccmzNvBtlkwV5rjzrn/x7ojf5ZDWpLVwztkUZePA3Aw0qe3UtQgBnPLsseP IHQdufQ84+22jkZH5VU4xmP92D0pczvySl9cAT0kAXZNHHgyLH4lFtMCiOtw04k8 NA0e9OWzoAS4yM/vD6cBn3fTf4cengyOUE1/61JUVDMSpIYaPOYX1QD2RdPNSw== -----END CERTIFICATE-----Generated at Wed Nov 5 05:47:41 2025 by rpki-client