$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/71a2a2c0-b8db-4847-a756-b7515aa42b07.roa File: 71a2a2c0-b8db-4847-a756-b7515aa42b07.roa (raw, json) Hash identifier: s47ObhFI3lCK3FBD5ZR4+TOM7UGdGT2PEGVrYYURlSc= Subject key identifier: 1F:18:0E:39:DC:45:C1:BD:68:E5:E2:88:01:3A:FA:42:2B:F0:4A:F9 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7C3CEC877CA02ED998AE49A8B4247E4A77C833E5 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/71a2a2c0-b8db-4847-a756-b7515aa42b07.roa Signing time: Tue 21 Oct 2025 13:10:02 +0000 ROA not before: Tue 21 Oct 2025 13:10:02 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5510::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:3c:ec:87:7c:a0:2e:d9:98:ae:49:a8:b4:24:7e:4a:77:c8:33:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:10:02 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=e97d5457daa4d0fb22bf30e0513576562cded4653f131537577e39513ea17eb4, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:8e:fb:9e:9b:74:3a:a2:01:72:a7:3c:38:49: 84:c6:e5:96:37:64:9b:99:7f:47:49:4b:9b:78:45: 08:97:c9:8b:0f:39:d4:16:4f:a7:91:7f:78:dc:7f: 0b:20:b5:4e:45:88:01:36:17:4e:62:de:3c:28:71: 98:93:da:e1:4a:6d:42:a0:8b:9b:1e:4c:7f:93:f0: 86:96:a0:00:20:0c:a0:14:52:dd:85:da:74:52:07: 27:95:e6:a5:00:64:07:10:d8:08:ff:c5:ef:27:df: da:38:c6:f7:42:24:75:db:65:20:d0:fb:03:8f:85: 4c:08:d8:97:30:df:e9:b4:fa:50:a8:5c:f5:d2:dc: 44:46:3a:09:a5:37:00:7a:4c:06:22:a0:13:56:79: 21:19:57:a8:be:2c:ce:49:e0:43:c6:c6:96:e2:09: c0:33:ad:5a:80:1f:dd:ac:48:b7:10:a9:41:15:79: 05:39:74:64:7b:9e:05:4f:ac:ab:bc:20:dc:c8:a8: 34:ed:4e:43:e4:82:5e:a2:21:9e:be:e2:66:64:11: c2:56:5e:e9:93:01:70:d0:a2:44:07:dc:da:dc:4d: e6:9d:fb:bd:77:e2:1b:7b:65:9c:71:ad:f7:6b:8f: 52:18:77:c2:e1:ef:3b:16:4b:28:b6:09:99:6e:41: e0:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:18:0E:39:DC:45:C1:BD:68:E5:E2:88:01:3A:FA:42:2B:F0:4A:F9 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/71a2a2c0-b8db-4847-a756-b7515aa42b07.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5510::/44 Signature Algorithm: sha256WithRSAEncryption 94:16:a3:71:00:7a:bc:2c:d3:41:52:bb:bb:af:b0:44:d7:59: a5:11:32:38:77:af:67:8c:a8:3b:68:b0:aa:6e:61:e9:69:b3: 5b:7c:1d:d6:b3:62:c2:24:28:e9:85:4c:91:eb:e0:43:d6:fa: 39:49:06:ef:56:bc:e0:3a:21:31:43:76:d3:0f:0d:0f:a0:61: dc:fb:6e:5a:59:dd:1c:a0:43:e5:bb:91:56:c1:80:09:18:04: bf:8a:c4:6a:91:53:d5:91:d1:b5:00:54:a1:ea:fc:07:70:67: fc:05:89:0a:12:52:fa:fc:fb:d7:3e:1e:0f:b4:a3:13:06:8e: 1f:46:f1:50:cc:84:80:e6:2f:c0:3a:5f:a7:ab:5c:87:39:e5: 60:e8:27:62:49:d9:cd:de:7a:8b:c4:4b:51:c8:50:67:f8:b9: be:33:4f:e4:04:b2:e3:ee:93:da:63:60:23:23:13:4f:30:78: 0f:db:51:07:db:db:d0:8f:d9:a1:15:07:97:85:23:9f:ee:ed: e2:6c:f5:16:e3:b0:00:a8:94:64:04:8c:99:33:ce:0e:31:5b: b3:10:b3:9f:ff:af:95:8b:71:71:7d:b8:37:8d:87:0f:e6:2f: e7:ae:f4:b0:97:1c:13:9c:1d:33:5a:8e:40:ad:dd:70:05:b5: 73:d0:1e:b2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfDzsh3ygLtmYrkmotCR+SnfIM+UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMxMDAyWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlOTdkNTQ1N2RhYTRkMGZiMjJiZjMwZTA1MTM1NzY1NjJj ZGVkNDY1M2YxMzE1Mzc1NzdlMzk1MTNlYTE3ZWI0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjjvuem3Q6ogFypzw4SYTG5ZY3ZJuZf0dJS5t4RQiXyYsP OdQWT6eRf3jcfwsgtU5FiAE2F05i3jwocZiT2uFKbUKgi5seTH+T8IaWoAAgDKAU Ut2F2nRSByeV5qUAZAcQ2Aj/xe8n39o4xvdCJHXbZSDQ+wOPhUwI2Jcw3+m0+lCo XPXS3ERGOgmlNwB6TAYioBNWeSEZV6i+LM5J4EPGxpbiCcAzrVqAH92sSLcQqUEV eQU5dGR7ngVPrKu8INzIqDTtTkPkgl6iIZ6+4mZkEcJWXumTAXDQokQH3NrcTead +7134ht7ZZxxrfdrj1IYd8Lh7zsWSyi2CZluQeBJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUHxgOOdxFwb1o5eKIATr6QivwSvkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcxYTJhMmMwLWI4ZGItNDg0Ny1hNzU2LWI3NTE1YWE0MmIwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwVRAwDQYJKoZIhvcNAQELBQADggEBAJQWo3EAerws00FSu7uvsETX WaURMjh3r2eMqDtosKpuYelps1t8HdazYsIkKOmFTJHr4EPW+jlJBu9WvOA6ITFD dtMPDQ+gYdz7blpZ3RygQ+W7kVbBgAkYBL+KxGqRU9WR0bUAVKHq/AdwZ/wFiQoS Uvr8+9c+Hg+0oxMGjh9G8VDMhIDmL8A6X6erXIc55WDoJ2JJ2c3eeovES1HIUGf4 ub4zT+QEsuPuk9pjYCMjE08weA/bUQfb29CP2aEVB5eFI5/u7eJs9RbjsAColGQE jJkzzg4xW7MQs5//r5WLcXF9uDeNhw/mL+eu9LCXHBOcHTNajkCt3XAFtXPQHrI= -----END CERTIFICATE-----Generated at Wed Nov 5 11:04:23 2025 by rpki-client