$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7200dfa9-d36f-44de-852a-1adda1bbb99c.roa File: 7200dfa9-d36f-44de-852a-1adda1bbb99c.roa (raw, json) Hash identifier: 2UEk7BMP7GK7iynU9e7MP8QdacyqvxiPY4yAIWpDS6Y= Subject key identifier: E7:FE:64:CA:F6:4F:CD:A9:81:52:FA:48:FB:92:94:92:49:24:96:AE Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3A7721105BDDE9FAADC75453573DAED18EDD85E7 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7200dfa9-d36f-44de-852a-1adda1bbb99c.roa Signing time: Tue 21 Oct 2025 12:50:04 +0000 ROA not before: Tue 21 Oct 2025 12:50:04 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:1000::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:77:21:10:5b:dd:e9:fa:ad:c7:54:53:57:3d:ae:d1:8e:dd:85:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:04 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=105470a7aae18d6f470374030117446da42187b0d23f236910e747d3ab69cf08, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:70:9f:21:5d:3b:2b:c2:a7:a6:f6:c9:dd:1e: ee:09:64:6a:a8:57:72:81:5a:f1:77:c2:79:09:2e: b7:e7:45:80:09:d8:ac:f4:ca:9a:02:c7:cb:f0:33: 1c:fb:e7:1c:c8:fb:8a:e6:9f:ba:d3:d4:45:4f:d2: a8:9e:74:83:5f:de:c3:b3:56:b7:42:06:bf:62:34: f1:12:ce:b4:be:ed:b0:f9:d1:c7:61:82:cb:14:9f: 8c:e3:4d:c7:d0:d6:9d:8c:ed:ed:84:0e:75:4b:07: 1b:ab:72:a1:f9:53:20:d5:f1:73:b4:35:c8:9c:ab: 05:71:04:91:35:99:98:94:9a:a5:c5:43:3c:7e:f7: fa:21:44:38:f8:be:89:7e:50:f0:3c:38:c2:e8:f4: 8f:65:89:f1:df:11:e8:18:bc:a9:c5:11:70:bf:06: 2b:7d:f7:38:53:60:8b:02:f9:ef:6a:e8:a3:e9:81: 64:40:b0:ff:65:66:79:06:b6:d3:84:ca:88:0a:7b: 21:e8:cf:27:75:00:77:93:4c:c6:79:da:6a:8d:d5: 95:ea:99:fa:d3:d4:ef:59:96:f1:bf:56:40:32:85: b1:71:00:a3:50:dd:d0:9c:24:3f:d3:83:34:36:d8: b6:b6:e3:6b:11:55:7e:ec:24:b0:6f:39:62:c1:05: ac:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:FE:64:CA:F6:4F:CD:A9:81:52:FA:48:FB:92:94:92:49:24:96:AE X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7200dfa9-d36f-44de-852a-1adda1bbb99c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1000::/44 Signature Algorithm: sha256WithRSAEncryption 51:68:e4:e3:5b:b6:be:be:dd:d2:90:6f:94:93:fa:fc:4e:c8: ef:bf:37:f1:71:44:14:ee:23:94:fd:07:5b:29:b8:9f:c8:cb: 8d:6a:48:75:c5:58:fd:7f:17:89:26:3c:f9:09:5f:b2:ed:2f: 62:5a:de:5a:6a:92:61:29:19:7b:9c:5b:d1:82:08:9f:dc:00: e2:e1:e1:b3:fb:0e:77:0e:4c:6a:bb:d3:27:b3:d7:c8:26:2e: 54:1b:fd:6f:38:ac:a1:22:e1:13:b1:bc:94:83:66:e4:de:bc: 15:18:cb:4e:5b:b4:55:a4:12:35:57:e1:17:08:ab:40:3e:7d: 01:ae:3c:b6:7a:d1:06:3e:34:0c:34:96:58:2d:25:fa:62:73: ef:17:93:e6:44:89:5a:ca:17:3c:f7:48:b3:2c:43:88:b5:7d: 38:88:79:1a:8c:43:2b:d9:43:a1:39:2e:1e:09:fa:71:8c:14: 4a:15:6b:82:51:05:a8:a6:90:93:88:a9:fe:55:98:b1:c3:74: fa:a0:48:8e:7b:cc:6f:71:8f:ce:60:c5:91:39:cb:8b:6b:4c: fb:7a:aa:93:41:0d:7c:60:b4:fc:d3:ff:e7:f7:8f:76:58:b5: 25:96:86:fb:83:33:e1:f2:27:91:14:2b:39:9f:41:31:ac:33: b9:3d:05:fb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOnchEFvd6fqtx1RTVz2u0Y7dhecwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDA0WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMDU0NzBhN2FhZTE4ZDZmNDcwMzc0MDMwMTE3NDQ2ZGE0 MjE4N2IwZDIzZjIzNjkxMGU3NDdkM2FiNjljZjA4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCscJ8hXTsrwqem9sndHu4JZGqoV3KBWvF3wnkJLrfnRYAJ 2Kz0ypoCx8vwMxz75xzI+4rmn7rT1EVP0qiedINf3sOzVrdCBr9iNPESzrS+7bD5 0cdhgssUn4zjTcfQ1p2M7e2EDnVLBxurcqH5UyDV8XO0NcicqwVxBJE1mZiUmqXF Qzx+9/ohRDj4vol+UPA8OMLo9I9lifHfEegYvKnFEXC/Bit99zhTYIsC+e9q6KPp gWRAsP9lZnkGttOEyogKeyHozyd1AHeTTMZ52mqN1ZXqmfrT1O9ZlvG/VkAyhbFx AKNQ3dCcJD/TgzQ22La242sRVX7sJLBvOWLBBaxzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5/5kyvZPzamBUvpI+5KUkkkklq4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcyMDBkZmE5LWQzNmYtNDRkZS04NTJhLTFhZGRhMWJiYjk5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwEAAwDQYJKoZIhvcNAQELBQADggEBAFFo5ONbtr6+3dKQb5ST+vxO yO+/N/FxRBTuI5T9B1spuJ/Iy41qSHXFWP1/F4kmPPkJX7LtL2Ja3lpqkmEpGXuc W9GCCJ/cAOLh4bP7DncOTGq70yez18gmLlQb/W84rKEi4ROxvJSDZuTevBUYy05b tFWkEjVX4RcIq0A+fQGuPLZ60QY+NAw0llgtJfpic+8Xk+ZEiVrKFzz3SLMsQ4i1 fTiIeRqMQyvZQ6E5Lh4J+nGMFEoVa4JRBaimkJOIqf5VmLHDdPqgSI57zG9xj85g xZE5y4trTPt6qpNBDXxgtPzT/+f3j3ZYtSWWhvuDM+HyJ5EUKzmfQTGsM7k9Bfs= -----END CERTIFICATE-----Generated at Wed Nov 5 22:13:20 2025 by rpki-client