$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7c0c4811-7db0-4cc0-8fa1-6dbda4055b97.roa File: 7c0c4811-7db0-4cc0-8fa1-6dbda4055b97.roa (raw, json) Hash identifier: Py4XdaFn/pzoOLGZ/C+31vAp1n7fUyry0Zk1UONesUM= Subject key identifier: 36:6C:39:BD:C9:87:C0:37:71:E3:84:F2:F5:AA:89:D6:C3:CE:37:49 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7507AD3948FC43202B59268C1A26777DD49E6B2F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7c0c4811-7db0-4cc0-8fa1-6dbda4055b97.roa Signing time: Tue 21 Oct 2025 13:00:12 +0000 ROA not before: Tue 21 Oct 2025 13:00:12 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:eb00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:07:ad:39:48:fc:43:20:2b:59:26:8c:1a:26:77:7d:d4:9e:6b:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:00:12 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=6ee8dadb67763ac28fdb11e2589d06af1f8c8985cfc64a9894257f214835a0df, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d8:1b:a7:d5:3c:63:97:14:4b:11:ef:07:fc: 69:c7:93:aa:34:ca:93:8c:cb:f0:cc:69:10:24:a6: 42:4b:8a:93:06:0f:b6:77:81:73:29:f9:78:45:a3: d1:64:e4:b2:de:2d:b3:2f:30:d2:19:ef:c3:d6:cc: ef:67:18:eb:f9:24:11:4d:27:dc:3c:5c:93:d5:3c: d9:ff:ee:d6:b1:9f:1c:1e:72:6e:1b:92:2b:b5:e7: e4:0f:bc:0d:17:b4:db:63:b2:09:d4:09:e7:36:05: 8f:23:da:e5:59:95:9f:bd:75:16:36:bc:e3:03:05: 23:7b:75:5b:93:b1:09:d6:20:52:37:d3:ed:c3:31: c8:b6:43:83:15:23:cc:df:95:fb:07:01:bd:17:3e: 7b:e4:f7:c5:8c:34:bb:ce:57:1e:c8:c3:79:5e:ad: f8:a7:c4:c0:1e:11:2f:ee:b3:03:de:9a:86:89:50: 0d:2e:94:d3:f3:70:12:d4:e3:67:d6:80:19:77:b4: 5b:5d:f2:2b:6f:ed:34:d0:4f:06:d8:b0:bf:4d:42: 41:af:12:22:24:ad:53:3f:2f:2a:f5:39:a8:d9:e0: 11:2d:83:23:18:a5:fe:3e:db:01:e8:34:50:d9:b4: 61:8a:b0:8c:36:80:9b:64:ec:64:c4:ba:e5:36:b3: ba:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:6C:39:BD:C9:87:C0:37:71:E3:84:F2:F5:AA:89:D6:C3:CE:37:49 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7c0c4811-7db0-4cc0-8fa1-6dbda4055b97.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:eb00::/40 Signature Algorithm: sha256WithRSAEncryption 55:44:41:16:fc:d9:c5:c7:42:6d:60:fc:8d:33:38:c3:be:c2: c3:bc:5b:cd:16:4e:77:02:af:67:a2:93:d8:18:3d:24:6f:06: 4f:6e:2e:31:eb:28:bb:e4:fd:dc:64:aa:bd:ed:70:38:85:fa: ec:d5:16:c4:6c:0f:6e:b1:18:d6:be:2a:b3:3c:42:cb:3d:a6: 43:42:d0:1a:4c:0a:ad:29:af:20:3c:de:2e:d1:d0:d8:3b:73: 78:82:16:af:83:5b:ad:67:51:a8:e0:e6:66:b3:88:cf:c4:2e: f1:62:f2:61:a9:fb:1b:75:9a:71:77:74:48:88:e6:20:27:0a: 70:b6:dc:ed:0d:73:a5:5b:34:e5:79:7d:df:9e:ca:e0:aa:dd: 88:b4:bd:2f:ad:bc:2a:72:43:90:23:b6:e2:2a:18:cc:ff:99: 44:d3:be:2b:64:91:03:c5:ee:fd:ad:fe:55:a5:51:f0:fd:05: 01:13:44:5a:2e:7a:ea:ce:2b:c8:cc:15:0d:7d:06:04:82:d2: f1:c4:46:07:67:05:d7:b8:7f:aa:69:bd:96:8f:5e:1a:7c:78: 45:55:92:6a:f8:e2:03:4f:8f:d8:40:99:f6:cf:0f:c0:29:6c: 0d:a9:8b:d5:9d:98:99:2f:79:61:69:4d:5f:7d:3c:04:86:37: 63:5b:94:e1 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUdQetOUj8QyArWSaMGiZ3fdSeay8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMwMDEyWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZWU4ZGFkYjY3NzYzYWMyOGZkYjExZTI1ODlkMDZhZjFm OGM4OTg1Y2ZjNjRhOTg5NDI1N2YyMTQ4MzVhMGRmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCy2Bun1TxjlxRLEe8H/GnHk6o0ypOMy/DMaRAkpkJLipMG D7Z3gXMp+XhFo9Fk5LLeLbMvMNIZ78PWzO9nGOv5JBFNJ9w8XJPVPNn/7taxnxwe cm4bkiu15+QPvA0XtNtjsgnUCec2BY8j2uVZlZ+9dRY2vOMDBSN7dVuTsQnWIFI3 0+3DMci2Q4MVI8zflfsHAb0XPnvk98WMNLvOVx7Iw3lerfinxMAeES/uswPemoaJ UA0ulNPzcBLU42fWgBl3tFtd8itv7TTQTwbYsL9NQkGvEiIkrVM/Lyr1OajZ4BEt gyMYpf4+2wHoNFDZtGGKsIw2gJtk7GTEuuU2s7pvAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUNmw5vcmHwDdx44Ty9aqJ1sPON0kwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzdjMGM0ODExLTdkYjAtNGNjMC04ZmExLTZkYmRhNDA1NWI5Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD76zANBgkqhkiG9w0BAQsFAAOCAQEAVURBFvzZxcdCbWD8jTM4w77C w7xbzRZOdwKvZ6KT2Bg9JG8GT24uMesou+T93GSqve1wOIX67NUWxGwPbrEY1r4q szxCyz2mQ0LQGkwKrSmvIDzeLtHQ2DtzeIIWr4NbrWdRqODmZrOIz8Qu8WLyYan7 G3WacXd0SIjmICcKcLbc7Q1zpVs05Xl9357K4KrdiLS9L628KnJDkCO24ioYzP+Z RNO+K2SRA8Xu/a3+VaVR8P0FARNEWi566s4ryMwVDX0GBILS8cRGB2cF17h/qmm9 lo9eGnx4RVWSavjiA0+P2ECZ9s8PwClsDamL1Z2YmS95YWlNX308BIY3Y1uU4Q== -----END CERTIFICATE-----Generated at Wed Nov 5 05:45:57 2025 by rpki-client