$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/72241dc6-56ae-4337-bb4b-b84fbdae51d0.roa File: 72241dc6-56ae-4337-bb4b-b84fbdae51d0.roa (raw, json) Hash identifier: K7w0Q47Pz0RWOhKPy0O/9iU0QdRJS/jZKxKyc3K3ZUU= Subject key identifier: 34:05:90:5D:02:98:D2:08:53:FC:02:85:3C:F0:25:B3:8F:6F:63:0E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0AA5A543DE8B9A283BE73946563659892DBC90A1 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/72241dc6-56ae-4337-bb4b-b84fbdae51d0.roa Signing time: Tue 21 Oct 2025 12:50:51 +0000 ROA not before: Tue 21 Oct 2025 12:50:51 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ee00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:a5:a5:43:de:8b:9a:28:3b:e7:39:46:56:36:59:89:2d:bc:90:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:51 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=cbde86f97a35271f7140bc26568d93129eaabdbf831fc8ab0aa2829d3aeb763c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:26:0f:31:86:44:30:e2:95:6e:65:9b:ef:cc: 8d:a2:70:d0:e8:06:91:f0:93:a0:ff:56:2f:a4:22: 10:2f:d6:6f:b0:02:6e:81:17:53:83:45:35:d9:8a: 87:a0:fe:cf:ea:cc:ca:79:40:e5:3c:2f:dd:cb:38: 9f:85:30:71:58:c0:0d:bb:d1:02:33:76:bd:3d:10: 42:db:21:e5:43:6d:29:1a:a2:d4:a7:ee:6f:24:47: 2d:94:66:ef:5f:11:f4:84:15:b2:c2:3c:52:0b:51: 33:49:b1:0d:4d:18:12:93:53:1f:df:6b:2b:f3:fc: e6:18:8d:60:f7:a3:84:1f:2f:60:15:2a:43:3d:1d: b4:52:2f:1f:82:b4:91:5d:40:57:5e:72:f8:bb:07: e0:af:cb:b1:9e:f7:cc:03:b6:f2:4a:72:44:eb:7e: c9:16:89:f2:c3:71:42:d0:8e:64:a7:40:2c:0a:fb: 6d:66:35:3d:b8:d2:c9:ae:8d:09:77:38:4b:c5:b1: c8:1e:53:31:28:0f:57:28:8e:c0:5d:ad:1d:e7:9f: a6:7c:0f:f4:42:38:aa:fc:3c:28:22:59:40:d5:a0: f0:38:6d:17:d0:24:0d:22:d9:de:99:2e:f3:f7:61: 7c:4c:3a:25:7b:b2:bf:88:2b:ad:ce:34:ee:75:92: d8:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:05:90:5D:02:98:D2:08:53:FC:02:85:3C:F0:25:B3:8F:6F:63:0E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/72241dc6-56ae-4337-bb4b-b84fbdae51d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ee00::/42 Signature Algorithm: sha256WithRSAEncryption 83:97:eb:0c:19:0d:be:9d:8c:d9:db:a9:23:c7:f7:65:0e:aa: 14:4f:c1:8b:25:bc:36:b8:2e:df:5a:d6:dc:f0:b4:10:32:f5: c3:d0:d8:e7:1e:6d:c5:b3:b7:de:2c:d3:6b:06:50:4e:7b:6f: c3:43:20:28:17:27:37:d6:7f:06:dd:44:ae:27:79:e6:9a:ec: 15:c4:5b:e0:8e:25:09:23:63:27:92:4f:70:fc:1a:53:2f:59: d0:e5:1a:21:5d:6d:f0:2b:15:d4:ca:64:54:3f:40:a8:03:92: 0d:80:87:b0:86:c3:3a:28:55:db:92:4c:b1:c4:6b:d8:fa:8a: b2:a8:37:52:d0:52:c2:2d:e0:4e:14:af:84:7b:93:c6:8f:9e: 06:79:6f:1d:a3:4e:e6:45:6b:ea:ce:95:b4:2d:69:c4:c2:60: c0:cb:80:96:b3:4c:44:aa:52:60:37:0f:41:f4:28:d8:3c:37: 6a:31:56:05:6f:dd:68:a9:6c:b8:d7:a1:e6:5f:c4:ad:41:8d: f3:cf:82:d8:f4:82:19:26:f2:8e:61:24:ef:e1:0a:7e:54:02: 37:5b:c5:e2:bd:93:68:3d:bd:b3:77:37:94:ed:2e:b1:a6:bb: b5:f9:84:ec:6a:4e:91:67:ee:70:f1:c4:e4:48:cb:e1:18:5a: f9:fb:d4:ac -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCqWlQ96Lmig75zlGVjZZiS28kKEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDUxWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYmRlODZmOTdhMzUyNzFmNzE0MGJjMjY1NjhkOTMxMjll YWFiZGJmODMxZmM4YWIwYWEyODI5ZDNhZWI3NjNjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7Jg8xhkQw4pVuZZvvzI2icNDoBpHwk6D/Vi+kIhAv1m+w Am6BF1ODRTXZioeg/s/qzMp5QOU8L93LOJ+FMHFYwA270QIzdr09EELbIeVDbSka otSn7m8kRy2UZu9fEfSEFbLCPFILUTNJsQ1NGBKTUx/fayvz/OYYjWD3o4QfL2AV KkM9HbRSLx+CtJFdQFdecvi7B+Cvy7Ge98wDtvJKckTrfskWifLDcULQjmSnQCwK +21mNT240smujQl3OEvFscgeUzEoD1cojsBdrR3nn6Z8D/RCOKr8PCgiWUDVoPA4 bRfQJA0i2d6ZLvP3YXxMOiV7sr+IK63ONO51ktjNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUNAWQXQKY0ghT/AKFPPAls49vYw4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcyMjQxZGM2LTU2YWUtNDMzNy1iYjRiLWI4NGZiZGFlNTFkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD77gAwDQYJKoZIhvcNAQELBQADggEBAIOX6wwZDb6djNnbqSPH92UO qhRPwYslvDa4Lt9a1tzwtBAy9cPQ2OcebcWzt94s02sGUE57b8NDICgXJzfWfwbd RK4neeaa7BXEW+COJQkjYyeST3D8GlMvWdDlGiFdbfArFdTKZFQ/QKgDkg2Ah7CG wzooVduSTLHEa9j6irKoN1LQUsIt4E4Ur4R7k8aPngZ5bx2jTuZFa+rOlbQtacTC YMDLgJazTESqUmA3D0H0KNg8N2oxVgVv3WipbLjXoeZfxK1BjfPPgtj0ghkm8o5h JO/hCn5UAjdbxeK9k2g9vbN3N5TtLrGmu7X5hOxqTpFn7nDxxORIy+EYWvn71Kw= -----END CERTIFICATE-----Generated at Wed Nov 5 20:47:33 2025 by rpki-client