$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6d504583-8250-4693-a46d-7a40db5add33.roa File: 6d504583-8250-4693-a46d-7a40db5add33.roa (raw, json) Hash identifier: L1xl6WwEJlxwheFcvOaBQG3d7em6JZYiU6X+lN3WG3E= Subject key identifier: 65:05:F5:0E:B0:EC:BD:31:52:52:2B:A9:EE:A5:93:89:86:59:CB:F9 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 715DD56068308F8D01575CD0C1F21E06F8995D55 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6d504583-8250-4693-a46d-7a40db5add33.roa Signing time: Tue 21 Oct 2025 12:50:12 +0000 ROA not before: Tue 21 Oct 2025 12:50:12 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e500::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:5d:d5:60:68:30:8f:8d:01:57:5c:d0:c1:f2:1e:06:f8:99:5d:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:12 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=81729943a6b64693b2932f53e5a388ff004f154436d2901c843670fb009588e6, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:de:64:21:6d:ba:ef:39:0b:b1:dc:26:e4:52: d7:84:4a:8f:9f:43:e1:42:62:61:5d:b8:80:96:36: 1b:e4:55:84:be:14:ae:62:68:56:ee:09:da:0b:25: 3e:9e:2f:48:ce:25:6d:7b:e1:d5:0a:7f:b1:d7:dd: 43:73:db:69:af:de:f0:9c:e5:67:59:4e:0d:32:a2: a8:ab:db:03:46:3a:ae:20:26:bb:c5:d3:3a:8e:97: 0b:b0:c1:d8:20:59:b0:6a:99:ac:88:32:b5:46:4c: ad:87:a7:cc:18:1e:0d:7f:50:4f:92:e4:fe:8e:2d: 9a:ac:5b:66:fe:0e:9a:48:de:33:a0:93:92:b1:e1: 06:18:d5:31:fd:62:60:93:a9:95:1d:46:e0:a3:4b: b5:cb:42:94:38:50:6a:c2:a2:43:43:3f:14:aa:9d: 04:2e:8c:74:19:e3:8e:74:be:d5:64:ef:e9:18:05: 37:7b:d3:c8:55:97:c5:f0:c9:20:b7:32:db:54:5f: 58:94:a1:39:ec:ea:4c:df:42:ff:b8:c7:a5:be:1f: 82:ef:5e:ed:1a:a5:e9:1e:34:8d:9f:6a:ea:9f:4a: d6:a6:de:f1:96:8c:f7:c5:0d:0c:63:c4:c4:b4:3a: 6e:8f:15:9a:20:15:26:86:41:69:f1:b2:24:4d:d9: 76:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:05:F5:0E:B0:EC:BD:31:52:52:2B:A9:EE:A5:93:89:86:59:CB:F9 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6d504583-8250-4693-a46d-7a40db5add33.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e500::/40 Signature Algorithm: sha256WithRSAEncryption 90:94:57:90:98:88:9e:c0:d6:f9:68:66:d8:8f:5e:cb:27:80: c2:53:95:ba:a9:29:35:84:63:85:f0:61:3c:99:c7:3e:06:a6: 0e:f7:f8:99:c5:be:b9:18:21:4c:f5:12:a1:6f:c2:12:55:80: 02:f5:7d:19:5f:35:60:2a:d4:2b:4f:5c:b2:7e:8a:68:ad:80: 3d:b9:3f:a4:01:b1:fb:7f:1e:3e:9e:a2:da:64:78:a6:db:87: 40:00:de:5a:f6:39:82:33:e4:a8:1e:d0:b9:dc:02:7a:19:5f: 07:dc:9c:6a:e6:82:84:38:16:00:b7:09:bf:85:cf:b7:c4:ff: 31:a5:31:1a:54:7f:de:d6:0d:c6:ce:1f:34:14:3b:73:fd:94: 2e:23:75:1b:1d:15:89:87:ff:dc:6a:5c:af:51:10:ba:60:7a: 53:08:87:cc:f0:66:cd:3e:30:b7:4c:ce:d7:74:f2:ad:1d:a9: a3:9c:59:a3:9d:82:97:2a:98:3f:ba:ab:cb:43:0e:ee:87:4c: cc:45:e7:70:c9:73:aa:01:5b:67:86:cf:36:ad:cf:32:e2:f1: 7d:15:d0:b5:4a:8e:b8:b4:c5:11:fa:f0:6f:16:36:f6:71:e3: 51:7a:ae:ce:24:09:d1:c7:80:1a:02:56:8a:52:0e:ff:21:01: 4d:79:f6:92 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUcV3VYGgwj40BV1zQwfIeBviZXVUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDEyWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MTcyOTk0M2E2YjY0NjkzYjI5MzJmNTNlNWEzODhmZjAw NGYxNTQ0MzZkMjkwMWM4NDM2NzBmYjAwOTU4OGU2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC53mQhbbrvOQux3CbkUteESo+fQ+FCYmFduICWNhvkVYS+ FK5iaFbuCdoLJT6eL0jOJW174dUKf7HX3UNz22mv3vCc5WdZTg0yoqir2wNGOq4g JrvF0zqOlwuwwdggWbBqmayIMrVGTK2Hp8wYHg1/UE+S5P6OLZqsW2b+DppI3jOg k5Kx4QYY1TH9YmCTqZUdRuCjS7XLQpQ4UGrCokNDPxSqnQQujHQZ4450vtVk7+kY BTd708hVl8XwySC3MttUX1iUoTns6kzfQv+4x6W+H4LvXu0apekeNI2fauqfStam 3vGWjPfFDQxjxMS0Om6PFZogFSaGQWnxsiRN2XbxAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUZQX1DrDsvTFSUiup7qWTiYZZy/kwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzZkNTA0NTgzLTgyNTAtNDY5My1hNDZkLTdhNDBkYjVhZGQzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD75TANBgkqhkiG9w0BAQsFAAOCAQEAkJRXkJiInsDW+Whm2I9eyyeA wlOVuqkpNYRjhfBhPJnHPgamDvf4mcW+uRghTPUSoW/CElWAAvV9GV81YCrUK09c sn6KaK2APbk/pAGx+38ePp6i2mR4ptuHQADeWvY5gjPkqB7QudwCehlfB9ycauaC hDgWALcJv4XPt8T/MaUxGlR/3tYNxs4fNBQ7c/2ULiN1Gx0ViYf/3Gpcr1EQumB6 UwiHzPBmzT4wt0zO13TyrR2po5xZo52ClyqYP7qry0MO7odMzEXncMlzqgFbZ4bP Nq3PMuLxfRXQtUqOuLTFEfrwbxY29nHjUXquziQJ0ceAGgJWilIO/yEBTXn2kg== -----END CERTIFICATE-----Generated at Wed Nov 5 09:59:43 2025 by rpki-client