$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7ef9d80d-500c-4762-aefe-0aa07f82b263.roa File: 7ef9d80d-500c-4762-aefe-0aa07f82b263.roa (raw, json) Hash identifier: fUVm5a4baJB7RPuokUThVT+WLl+Bto22gsDuQukSJng= Subject key identifier: 7B:03:90:82:6A:2D:EB:AE:CB:09:A9:69:A2:E2:5D:E1:C2:85:7E:FD Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 01B120D5C136FEE22EABF70BA4BF619BD1DCB9E7 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7ef9d80d-500c-4762-aefe-0aa07f82b263.roa Signing time: Tue 21 Oct 2025 13:00:11 +0000 ROA not before: Tue 21 Oct 2025 13:00:11 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:b1:20:d5:c1:36:fe:e2:2e:ab:f7:0b:a4:bf:61:9b:d1:dc:b9:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:00:11 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=0db6ebcb02aecb8abc997308f79deac1304387dbed0612f73cfba46dc891dbca, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:5a:89:e1:ec:5f:c3:01:8f:3e:55:43:ec:9d: 42:5f:d9:5e:81:24:6a:62:0c:38:7e:8a:89:f7:7d: 09:71:4a:d9:a7:be:af:46:5d:6e:c4:c7:59:1d:ce: 16:88:88:29:f2:9c:de:a8:c0:70:07:60:8a:a9:cd: 9e:89:bb:e2:f6:79:eb:4b:c9:fd:b1:ec:1c:8a:da: 18:ff:75:7c:c5:89:9a:9a:b9:3f:56:88:cd:7c:2f: 33:bc:dc:7a:af:96:9a:82:11:88:e9:04:d5:72:4f: b0:39:7f:a5:f1:6a:10:41:14:ea:67:c3:3a:c2:a0: 06:ef:cf:d4:ff:15:da:f4:1e:86:d0:b7:33:74:54: b8:c5:b5:9a:84:5d:73:e5:61:85:5f:17:e9:e7:8b: 49:a2:e7:d3:74:c0:74:af:c7:9c:82:01:72:51:f3: 77:4f:e1:26:b7:f6:47:ba:07:80:fb:3f:68:84:34: 98:85:81:a1:af:25:7e:63:0d:f2:05:63:1e:15:8e: fe:47:c1:20:61:d5:9e:60:fe:b8:de:bf:74:be:64: 69:a3:cb:0f:87:14:c1:c5:39:b1:66:f0:38:25:18: 95:ab:1d:1c:56:6d:6c:f1:cf:d5:9e:c9:4a:b5:4f: d4:d0:fc:02:d0:74:f8:07:c3:d9:4f:ae:31:1f:fd: d0:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:03:90:82:6A:2D:EB:AE:CB:09:A9:69:A2:E2:5D:E1:C2:85:7E:FD X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7ef9d80d-500c-4762-aefe-0aa07f82b263.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e400::/40 Signature Algorithm: sha256WithRSAEncryption a4:37:8e:1b:44:fe:05:ed:0e:8a:46:86:de:5c:7a:95:54:f5: 39:ac:21:d0:07:ea:c5:e4:63:5e:a0:5f:90:4c:7c:fa:48:a7: 60:cc:1a:d5:ff:19:12:27:ef:27:49:e1:7b:e9:22:91:34:4c: 43:a7:f0:a8:38:31:5e:bd:02:4e:da:91:de:77:3f:08:38:0b: b0:f3:26:c8:9e:64:15:ca:a0:8d:f0:7e:26:08:84:1a:ee:af: bd:d3:83:25:9b:8c:a9:47:1f:fc:9e:b0:1f:b0:33:1d:4e:c5: 19:81:2b:79:83:ca:05:cd:da:8b:c7:5e:09:aa:0a:09:91:5d: 1c:e3:28:bf:ba:04:cc:4b:f9:6f:56:af:ad:ed:7e:be:66:0c: b6:0e:e6:f3:37:46:0f:b7:76:3e:17:53:cb:c1:02:93:84:2b: 56:dc:29:9f:fc:c8:d4:22:47:eb:40:80:f3:17:4a:aa:2d:72: eb:08:44:72:b0:30:ab:d5:63:20:6d:ad:29:0b:12:ab:1d:20: 80:dc:2d:0d:87:f5:86:d1:f8:0d:29:ab:18:da:9a:75:ba:4b: f0:78:47:b6:b3:d9:c9:62:88:be:62:0a:73:7c:b6:42:b1:b4: 05:10:c8:0e:97:0a:e8:8b:ca:aa:26:7a:65:5a:71:30:5e:62: 3b:34:84:45 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUAbEg1cE2/uIuq/cLpL9hm9HcuecwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMwMDExWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZGI2ZWJjYjAyYWVjYjhhYmM5OTczMDhmNzlkZWFjMTMw NDM4N2RiZWQwNjEyZjczY2ZiYTQ2ZGM4OTFkYmNhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjWonh7F/DAY8+VUPsnUJf2V6BJGpiDDh+ion3fQlxStmn vq9GXW7Ex1kdzhaIiCnynN6owHAHYIqpzZ6Ju+L2eetLyf2x7ByK2hj/dXzFiZqa uT9WiM18LzO83HqvlpqCEYjpBNVyT7A5f6XxahBBFOpnwzrCoAbvz9T/Fdr0HobQ tzN0VLjFtZqEXXPlYYVfF+nni0mi59N0wHSvx5yCAXJR83dP4Sa39ke6B4D7P2iE NJiFgaGvJX5jDfIFYx4Vjv5HwSBh1Z5g/rjev3S+ZGmjyw+HFMHFObFm8DglGJWr HRxWbWzxz9WeyUq1T9TQ/ALQdPgHw9lPrjEf/dDHAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUewOQgmot667LCalpouJd4cKFfv0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzdlZjlkODBkLTUwMGMtNDc2Mi1hZWZlLTBhYTA3ZjgyYjI2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD75DANBgkqhkiG9w0BAQsFAAOCAQEApDeOG0T+Be0OikaG3lx6lVT1 Oawh0AfqxeRjXqBfkEx8+kinYMwa1f8ZEifvJ0nhe+kikTRMQ6fwqDgxXr0CTtqR 3nc/CDgLsPMmyJ5kFcqgjfB+JgiEGu6vvdODJZuMqUcf/J6wH7AzHU7FGYEreYPK Bc3ai8deCaoKCZFdHOMov7oEzEv5b1avre1+vmYMtg7m8zdGD7d2PhdTy8ECk4Qr Vtwpn/zI1CJH60CA8xdKqi1y6whEcrAwq9VjIG2tKQsSqx0ggNwtDYf1htH4DSmr GNqadbpL8HhHtrPZyWKIvmIKc3y2QrG0BRDIDpcK6IvKqiZ6ZVpxMF5iOzSERQ== -----END CERTIFICATE-----Generated at Wed Nov 5 05:48:20 2025 by rpki-client