$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/20df74ce-1a64-4df1-b616-115d4493a969.roa File: 20df74ce-1a64-4df1-b616-115d4493a969.roa (raw, json) Hash identifier: yer74sLEMZxfe4NxKHJEcgQMMAzND0jAtFU889QEhFY= Subject key identifier: D3:BA:9A:D2:31:6B:9C:CF:17:67:04:CC:B4:85:B5:A7:70:28:FA:0C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 170C4A59ED94F50592CBD86A50861367EC71D6F9 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/20df74ce-1a64-4df1-b616-115d4493a969.roa Signing time: Tue 21 Oct 2025 12:50:41 +0000 ROA not before: Tue 21 Oct 2025 12:50:41 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:200::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:0c:4a:59:ed:94:f5:05:92:cb:d8:6a:50:86:13:67:ec:71:d6:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:41 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=a53c4a33fb317fcf7a21f982105764a6f9395690f7a11b9dc619bae954241ee2, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:30:4d:7f:e0:eb:d1:64:fd:db:8e:d8:8b:be: 48:4a:c5:93:f8:3e:c7:d6:6b:da:76:9e:f6:d1:6c: 5a:17:d5:2f:3c:a3:97:57:16:0e:0f:15:62:df:8d: ad:31:78:41:ce:ca:30:0f:1d:e1:a5:b5:4f:33:06: ce:4a:d5:c2:b6:bf:61:0d:e2:66:e6:b5:38:dd:2e: c1:bf:4f:5c:f0:d3:0e:c1:1e:03:49:6c:12:fd:da: 13:6e:02:4c:90:fd:b7:97:fd:eb:17:3d:a1:85:6b: 13:3f:b6:21:d5:35:55:95:6c:d2:e0:7e:51:25:6d: 6b:1f:de:b0:91:b2:4a:7a:c1:92:b2:35:12:0e:b2: 57:15:63:3b:fc:a7:8b:c2:e2:33:4c:9d:4a:82:7c: 3a:7e:61:99:80:45:a6:d9:90:1f:24:af:14:e9:ac: 24:48:22:e2:a5:dc:e2:cf:19:cf:42:a4:ec:b2:bd: e1:13:a2:5e:c3:50:48:dc:b0:03:38:be:5f:d4:97: fa:f4:18:f4:b7:93:29:f1:de:fb:8a:e5:1f:b4:83: bd:00:5f:20:fb:c7:3f:20:ad:3a:e4:93:94:cf:3f: 53:c1:7f:0f:fc:f4:a0:b9:4d:b3:a3:3b:1c:e4:95: 2c:50:c5:07:a5:a3:4f:be:ad:d4:eb:c7:c8:8f:31: 2f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:BA:9A:D2:31:6B:9C:CF:17:67:04:CC:B4:85:B5:A7:70:28:FA:0C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/20df74ce-1a64-4df1-b616-115d4493a969.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:200::/40 Signature Algorithm: sha256WithRSAEncryption 17:e2:19:2a:76:c4:99:20:60:f5:33:b8:38:b5:c6:1d:b6:8a: b4:51:f0:e8:fb:e7:92:5b:3e:d5:79:eb:55:29:3e:37:e6:04: 56:8e:69:9d:00:6a:79:1f:14:17:87:b3:0e:d7:b6:ae:f6:06: 63:0a:28:bb:d9:c3:1f:7a:2a:a5:33:43:6f:99:66:e7:0c:6b: e0:16:62:bf:11:9a:8c:e0:9a:4a:df:a6:30:23:0c:9f:ca:3e: 37:2b:7a:68:a9:9c:d9:61:43:2a:27:88:ee:68:36:20:62:2f: 80:0b:e9:a5:52:22:0a:aa:b2:c0:f9:f4:50:23:a7:fd:d7:76: 0b:eb:d6:68:6a:f0:fa:f0:64:86:b8:79:c1:f0:3f:98:cb:ae: 18:e8:d5:00:5e:f0:74:8d:4a:d5:10:f6:c5:0e:b0:49:e6:75: 0f:02:ed:b8:6c:23:98:e8:c9:a1:cb:f4:11:d3:a8:70:1c:bd: b1:93:97:73:60:35:cb:41:fa:81:32:dc:b4:1a:f4:2f:51:b6: 88:fb:79:c2:ea:fe:ed:5c:84:04:a8:18:ca:f1:34:01:e1:6d: 3d:42:7b:70:1d:94:06:34:1d:1c:b7:7a:64:98:ce:6a:af:5e: 65:df:5d:bf:53:b0:b1:53:65:88:8d:e3:33:1d:56:e9:d5:ed: f7:1b:d7:33 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUFwxKWe2U9QWSy9hqUIYTZ+xx1vkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDQxWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNTNjNGEzM2ZiMzE3ZmNmN2EyMWY5ODIxMDU3NjRhNmY5 Mzk1NjkwZjdhMTFiOWRjNjE5YmFlOTU0MjQxZWUyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaME1/4OvRZP3bjtiLvkhKxZP4PsfWa9p2nvbRbFoX1S88 o5dXFg4PFWLfja0xeEHOyjAPHeGltU8zBs5K1cK2v2EN4mbmtTjdLsG/T1zw0w7B HgNJbBL92hNuAkyQ/beX/esXPaGFaxM/tiHVNVWVbNLgflElbWsf3rCRskp6wZKy NRIOslcVYzv8p4vC4jNMnUqCfDp+YZmARabZkB8krxTprCRIIuKl3OLPGc9CpOyy veETol7DUEjcsAM4vl/Ul/r0GPS3kynx3vuK5R+0g70AXyD7xz8grTrkk5TPP1PB fw/89KC5TbOjOxzklSxQxQelo0++rdTrx8iPMS9LAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU07qa0jFrnM8XZwTMtIW1p3Ao+gwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzIwZGY3NGNlLTFhNjQtNGRmMS1iNjE2LTExNWQ0NDkzYTk2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwAjANBgkqhkiG9w0BAQsFAAOCAQEAF+IZKnbEmSBg9TO4OLXGHbaK tFHw6Pvnkls+1XnrVSk+N+YEVo5pnQBqeR8UF4ezDte2rvYGYwoou9nDH3oqpTND b5lm5wxr4BZivxGajOCaSt+mMCMMn8o+Nyt6aKmc2WFDKieI7mg2IGIvgAvppVIi CqqywPn0UCOn/dd2C+vWaGrw+vBkhrh5wfA/mMuuGOjVAF7wdI1K1RD2xQ6wSeZ1 DwLtuGwjmOjJocv0EdOocBy9sZOXc2A1y0H6gTLctBr0L1G2iPt5wur+7VyEBKgY yvE0AeFtPUJ7cB2UBjQdHLd6ZJjOaq9eZd9dv1OwsVNliI3jMx1W6dXt9xvXMw== -----END CERTIFICATE-----Generated at Wed Nov 5 05:45:14 2025 by rpki-client