$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9064d4f5-965a-4659-9876-beff899ab4b1.roa File: 9064d4f5-965a-4659-9876-beff899ab4b1.roa (raw, json) Hash identifier: 2+Q6ARmCyAlswJ20EVqXKRWMUICNPWOPJlNv3rISXOs= Subject key identifier: 07:95:49:E8:61:AE:0F:94:E6:F9:AC:10:B4:1C:BF:44:78:61:5B:3A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 17D343C6ACAC4A24718C064BCC047094BC7F03DD Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9064d4f5-965a-4659-9876-beff899ab4b1.roa Signing time: Fri 31 Oct 2025 01:50:08 +0000 ROA not before: Fri 31 Oct 2025 01:50:08 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6114::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:d3:43:c6:ac:ac:4a:24:71:8c:06:4b:cc:04:70:94:bc:7f:03:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 31 01:50:08 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=650b82cb12273d90a9abfbba69061324735611ef3c68172921a20b7a3be1371c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:02:ec:14:ff:26:18:e6:9b:53:af:ac:f6:6c: a5:07:1c:c3:5a:cd:43:bf:5c:3e:7a:99:8d:15:92: a2:a2:eb:63:17:39:cb:44:d0:81:1e:7a:42:72:0d: 68:de:c8:bb:d0:c9:00:b9:7f:a4:46:31:b8:1d:45: 3a:b0:d7:af:98:72:68:8f:3d:83:52:ee:cd:05:4c: 76:7d:ae:aa:63:9c:87:f0:0d:8d:78:64:d3:18:cb: 7d:c0:13:2b:9a:ab:b6:e7:97:02:fb:19:d6:63:3e: 87:73:84:bb:36:bf:99:4b:41:08:fc:1c:2e:1e:1c: e9:d6:d6:e5:cf:a3:b1:39:6e:2c:5e:aa:3d:95:25: 2b:40:61:92:13:84:65:92:63:89:b4:f4:5a:c1:73: bd:92:38:38:47:8a:9e:62:b8:c1:35:1e:28:32:9a: 1f:e6:50:4e:83:f1:10:45:9c:70:05:ce:3b:c5:ec: c0:94:57:6d:3a:be:fd:35:c4:1b:af:8b:ed:c2:6e: 68:3c:e8:f4:54:68:97:71:ef:ce:06:03:c5:a4:de: aa:98:1a:1c:b2:6b:fb:49:a9:15:53:b1:fd:c1:4f: f7:17:09:fa:13:76:49:89:a8:d7:78:db:b8:3e:6f: 1b:32:90:63:bd:73:f5:ce:2d:b1:1e:43:b8:35:56: e7:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:95:49:E8:61:AE:0F:94:E6:F9:AC:10:B4:1C:BF:44:78:61:5B:3A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9064d4f5-965a-4659-9876-beff899ab4b1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6114::/48 Signature Algorithm: sha256WithRSAEncryption 9b:7d:83:f0:a4:78:1d:0c:65:c3:80:37:7f:69:57:5e:ee:38: d6:4a:2d:aa:c7:41:af:f2:4d:fc:3b:03:04:09:41:c6:9d:e4: c2:77:a7:35:ec:b7:d6:32:97:69:d4:f1:b6:89:aa:66:c0:b7: 61:b4:ff:b3:15:ff:90:6f:4c:ee:76:3b:41:1b:d5:92:ac:00: cc:09:22:ca:5a:b5:04:d8:7e:52:eb:95:3a:02:af:20:8f:1c: c7:06:a9:66:51:9d:0d:65:7f:6e:3f:a4:64:f8:98:3f:5c:d2: 16:b4:f8:19:42:81:ff:90:1f:db:fc:41:2c:c4:be:65:36:4e: d0:57:1e:5b:12:73:36:78:e0:ae:5e:95:3b:46:ca:b2:59:20: 51:10:16:6a:8a:84:e5:62:a9:b2:36:17:ed:13:e3:6f:62:5b: c7:12:ed:4a:e2:a8:b5:95:b7:14:7e:52:74:59:62:f2:46:07: 7f:d9:e2:20:cd:06:2c:3c:79:45:b2:bd:76:ca:f7:a0:c4:92: c2:ae:c2:ed:49:ec:d2:6a:13:a3:bf:94:f2:ca:93:ce:45:f8: 04:80:60:d2:42:b2:7b:bb:79:6f:7c:84:50:58:5f:28:a9:c3: 93:4a:df:dd:09:34:25:64:29:da:3e:e1:89:90:06:67:5c:ff: 27:67:2d:05 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUF9NDxqysSiRxjAZLzARwlLx/A90wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDMxMDE1MDA4WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NTBiODJjYjEyMjczZDkwYTlhYmZiYmE2OTA2MTMyNDcz NTYxMWVmM2M2ODE3MjkyMWEyMGI3YTNiZTEzNzFjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRAuwU/yYY5ptTr6z2bKUHHMNazUO/XD56mY0VkqKi62MX OctE0IEeekJyDWjeyLvQyQC5f6RGMbgdRTqw16+YcmiPPYNS7s0FTHZ9rqpjnIfw DY14ZNMYy33AEyuaq7bnlwL7GdZjPodzhLs2v5lLQQj8HC4eHOnW1uXPo7E5bixe qj2VJStAYZIThGWSY4m09FrBc72SODhHip5iuME1Higymh/mUE6D8RBFnHAFzjvF 7MCUV206vv01xBuvi+3Cbmg86PRUaJdx784GA8Wk3qqYGhyya/tJqRVTsf3BT/cX CfoTdkmJqNd427g+bxsykGO9c/XOLbEeQ7g1VufDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUB5VJ6GGuD5Tm+awQtBy/RHhhWzowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzkwNjRkNGY1LTk2NWEtNDY1OS05ODc2LWJlZmY4OTlhYjRiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRQwDQYJKoZIhvcNAQELBQADggEBAJt9g/CkeB0MZcOAN39pV17u ONZKLarHQa/yTfw7AwQJQcad5MJ3pzXst9Yyl2nU8baJqmbAt2G0/7MV/5BvTO52 O0Eb1ZKsAMwJIspatQTYflLrlToCryCPHMcGqWZRnQ1lf24/pGT4mD9c0ha0+BlC gf+QH9v8QSzEvmU2TtBXHlsSczZ44K5elTtGyrJZIFEQFmqKhOViqbI2F+0T429i W8cS7UriqLWVtxR+UnRZYvJGB3/Z4iDNBiw8eUWyvXbK96DEksKuwu1J7NJqE6O/ lPLKk85F+ASAYNJCsnu7eW98hFBYXyipw5NK390JNCVkKdo+4YmQBmdc/ydnLQU= -----END CERTIFICATE-----Generated at Wed Nov 5 07:42:09 2025 by rpki-client