$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4b04bc90-cc5c-48b6-be4f-8c1e0fa64617.roa File: 4b04bc90-cc5c-48b6-be4f-8c1e0fa64617.roa (raw, json) Hash identifier: 7gEkD7iVlLIOsH1WW5NJE+OX+t3YxmulHNCThLeLsHE= Subject key identifier: 11:34:5D:1A:3A:44:B6:A6:39:FE:FB:AF:1E:0D:01:1E:4F:50:B4:F9 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 131D72BCA966BAFB91F9DF6BD689F616FD0C4D4D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4b04bc90-cc5c-48b6-be4f-8c1e0fa64617.roa Signing time: Sat 25 Oct 2025 00:10:06 +0000 ROA not before: Sat 25 Oct 2025 00:10:06 +0000 ROA not after: Sat 29 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8b00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:1d:72:bc:a9:66:ba:fb:91:f9:df:6b:d6:89:f6:16:fd:0c:4d:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 25 00:10:06 2025 GMT Not After : Nov 29 23:59:59 2025 GMT Subject: serialNumber=223b871799e33498374714f952e5716cdda68669a0ee8f0672a0d3296630d5ce, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:ac:c5:80:09:fd:93:11:f6:b4:1e:d9:97:6d: d5:8c:40:57:84:95:3f:95:22:cd:29:42:ac:bf:70: 50:f6:0c:fa:77:e7:11:61:ce:35:cc:e9:ef:d9:02: fd:dd:e7:11:8c:0d:6d:34:21:bc:62:20:5c:e6:a9: 58:57:a9:7c:ab:10:f6:65:0a:1e:79:be:43:5f:8d: 98:66:2c:45:67:45:70:d8:ed:2f:17:68:b1:b2:7a: 67:62:86:18:12:0b:a3:e6:d9:74:2d:24:a5:fa:7b: 53:7d:7d:b1:67:cd:4d:20:28:16:f4:9a:63:c8:28: 00:45:73:69:73:25:40:bc:7c:bf:9e:9b:6a:ce:aa: 85:47:47:5e:fe:18:4a:93:ab:28:98:cb:d7:2e:83: 91:62:7c:3a:da:94:5a:7d:12:d2:e7:b1:16:12:8f: 24:58:ca:13:a6:15:75:08:69:77:5b:46:22:68:bf: 91:35:7f:8f:ea:35:43:ce:d6:ce:38:61:23:7e:2f: bd:d7:f7:3f:f1:0c:1d:cd:9f:2b:9c:c6:99:41:78: 66:66:74:4e:74:bb:54:7d:c1:17:bb:b6:1a:56:8e: 67:2b:2c:16:fb:85:b2:5f:b9:ba:34:aa:47:a7:45: 5b:78:5b:ed:69:45:24:39:2d:2f:12:86:20:b5:ea: 7f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:34:5D:1A:3A:44:B6:A6:39:FE:FB:AF:1E:0D:01:1E:4F:50:B4:F9 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4b04bc90-cc5c-48b6-be4f-8c1e0fa64617.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8b00::/40 Signature Algorithm: sha256WithRSAEncryption a3:b4:28:0f:3d:30:e4:4c:bc:91:ab:20:90:d5:a3:c8:e5:3a: 58:8d:b7:d2:78:76:a4:0b:7c:12:7c:41:9c:e6:d6:e8:ff:02: ed:6b:f6:67:f1:82:48:59:20:02:cb:ae:93:ed:0f:30:5f:0d: 26:2d:9b:a3:db:64:61:4e:17:21:57:48:8e:16:5b:e8:fd:82: 1f:6e:a3:8b:3f:d5:7a:f5:5a:ab:b2:2f:e7:74:ac:d4:8c:90: 02:e5:1d:92:28:d4:69:87:e0:73:7d:e9:08:ae:8f:9c:fe:cc: f6:fe:9e:22:5d:b0:53:e3:21:f2:3f:1a:bb:4b:be:8c:d5:51: ea:f0:80:98:f4:c1:03:11:0b:9b:e1:03:00:64:e6:c4:48:01: fd:7a:f9:b4:ef:bb:86:63:05:12:41:87:6d:2a:61:d2:fb:a9: bd:5d:10:17:18:ee:bf:7c:7c:8d:87:83:29:b6:ac:8d:ab:86: 2d:c5:71:b8:1e:05:b9:0c:64:82:05:fc:fc:dd:73:18:6b:a0: 5c:4f:b5:64:45:11:53:c6:2e:16:e8:20:99:23:c8:5a:d5:59: 02:9d:82:29:99:89:e4:e3:01:d4:81:d6:fd:21:71:62:09:be: 5e:48:d7:e9:71:d7:ab:e5:3e:2e:f0:ee:24:74:0e:6c:c7:2b: 5b:9c:3a:e6 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUEx1yvKlmuvuR+d9r1on2Fv0MTU0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDI1MDAxMDA2WhcNMjUxMTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMjNiODcxNzk5ZTMzNDk4Mzc0NzE0Zjk1MmU1NzE2Y2Rk YTY4NjY5YTBlZThmMDY3MmEwZDMyOTY2MzBkNWNlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLrMWACf2TEfa0HtmXbdWMQFeElT+VIs0pQqy/cFD2DPp3 5xFhzjXM6e/ZAv3d5xGMDW00IbxiIFzmqVhXqXyrEPZlCh55vkNfjZhmLEVnRXDY 7S8XaLGyemdihhgSC6Pm2XQtJKX6e1N9fbFnzU0gKBb0mmPIKABFc2lzJUC8fL+e m2rOqoVHR17+GEqTqyiYy9cug5FifDralFp9EtLnsRYSjyRYyhOmFXUIaXdbRiJo v5E1f4/qNUPO1s44YSN+L73X9z/xDB3NnyucxplBeGZmdE50u1R9wRe7thpWjmcr LBb7hbJfubo0qkenRVt4W+1pRSQ5LS8ShiC16n/LAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUETRdGjpEtqY5/vuvHg0BHk9QtPkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzRiMDRiYzkwLWNjNWMtNDhiNi1iZTRmLThjMWUwZmE2NDYxNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDxizANBgkqhkiG9w0BAQsFAAOCAQEAo7QoDz0w5Ey8kasgkNWjyOU6 WI230nh2pAt8EnxBnObW6P8C7Wv2Z/GCSFkgAsuuk+0PMF8NJi2bo9tkYU4XIVdI jhZb6P2CH26jiz/VevVaq7Iv53Ss1IyQAuUdkijUaYfgc33pCK6PnP7M9v6eIl2w U+Mh8j8au0u+jNVR6vCAmPTBAxELm+EDAGTmxEgB/Xr5tO+7hmMFEkGHbSph0vup vV0QFxjuv3x8jYeDKbasjauGLcVxuB4FuQxkggX8/N1zGGugXE+1ZEURU8YuFugg mSPIWtVZAp2CKZmJ5OMB1IHW/SFxYgm+XkjX6XHXq+U+LvDuJHQObMcrW5w65g== -----END CERTIFICATE-----Generated at Wed Nov 5 05:45:12 2025 by rpki-client