$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa File: bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa (raw, json) Hash identifier: 9QofCdl7NhxEe2GuH4tS6VTuD6gSLS6flfGbNKnfT40= Subject key identifier: 91:9C:52:49:26:29:68:E9:24:72:15:8E:01:F7:A2:7F:B0:65:66:7F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5013159A47E5C14B81E7DEE99029F4F2776BE397 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa Signing time: Tue 21 Oct 2025 12:50:11 +0000 ROA not before: Tue 21 Oct 2025 12:50:11 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e400::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:13:15:9a:47:e5:c1:4b:81:e7:de:e9:90:29:f4:f2:77:6b:e3:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:11 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=4e1ae894aa3fbccdc0c655aa93afd9c6043c5fd9e236a1bec12c5e1f0ed13b2a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ce:7f:80:54:e0:2a:fb:8f:7b:54:48:23:eb: d0:43:3d:d1:60:f2:bf:9b:86:16:2b:df:d4:9e:1e: fb:93:20:88:71:f8:8b:4a:6c:87:82:13:3b:15:4e: a6:38:f9:8b:ee:52:aa:29:1d:84:93:db:5a:1e:5f: 66:ad:69:32:88:69:20:18:eb:7a:19:41:3e:d3:2b: d5:ca:96:0f:6e:ed:b3:fa:2c:1b:f7:f5:de:c7:77: 70:ca:9f:6b:86:6b:5a:00:e2:8b:ee:d2:42:6e:9f: ff:5b:5f:9a:01:61:5a:c1:dc:b4:d5:ae:bf:58:03: d7:0e:a9:a6:fd:8b:a9:6a:74:8c:e7:ee:5d:aa:e1: 0c:ac:b9:a0:82:16:1b:99:4e:81:04:01:59:79:7a: b9:da:db:4b:23:50:f6:92:dd:0b:1e:f7:67:83:ae: 09:d8:b2:be:f2:15:52:b4:d7:09:51:f6:1e:75:c5: d9:01:5e:77:67:09:ad:c7:81:45:20:2e:2c:18:3d: 79:2f:53:f5:b5:6a:d9:c1:93:ab:b8:e9:f9:30:d2: 8e:3f:8f:17:2f:7d:a7:7f:40:96:62:8e:4e:d3:03: 2b:a0:b1:78:5e:23:b2:0a:4c:d5:b5:fc:4c:e9:0c: ba:9a:7e:dd:04:b6:f8:82:03:d2:3a:a9:06:95:f5: c9:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:9C:52:49:26:29:68:E9:24:72:15:8E:01:F7:A2:7F:B0:65:66:7F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf27fdb7-84bf-40d2-906a-7b4c1ff405b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e400::/42 Signature Algorithm: sha256WithRSAEncryption 5a:0e:0e:e5:24:40:9a:5a:db:2b:4d:8f:8f:6d:aa:0d:70:a8: 24:ac:57:f7:40:10:67:c5:04:a7:56:80:2b:45:f5:5a:25:6d: a8:f7:95:b6:30:cb:2e:5f:0b:76:40:b4:e3:fc:7e:fa:5e:7a: 06:df:28:a2:f8:4d:d0:7d:01:02:c6:b4:b3:aa:00:0e:b9:7d: bc:c5:b8:60:66:9d:ef:3b:37:b7:59:3a:4c:99:a7:ab:64:03: 05:05:eb:11:32:7d:91:7c:d6:ac:ee:82:5a:50:f3:a4:25:e6: a4:68:b1:8d:e3:6c:82:73:e8:2b:64:94:8f:bc:ea:26:ed:33: e6:e2:b4:98:19:72:9e:6c:88:44:40:95:71:4d:11:aa:96:5e: 3b:4c:3e:6b:22:69:83:8f:e8:ac:58:d5:67:6c:c8:86:ef:f6: fd:b9:49:f2:cc:3e:58:01:43:63:a9:7b:3b:01:96:b8:29:ec: ab:78:9d:0b:68:c5:5c:42:a5:6f:d2:b8:d0:10:c1:4e:8d:0e: c4:ca:97:8d:c4:b5:ac:18:5a:5e:66:5c:f5:00:02:ba:43:cb: 3a:cc:70:aa:58:d9:82:71:ad:b1:a7:c9:9d:57:19:88:4b:c4: d9:ba:86:47:07:80:40:4a:c7:bb:2f:9c:f2:81:a7:9b:d0:54: f4:9b:51:3a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUBMVmkflwUuB597pkCn08ndr45cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDExWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZTFhZTg5NGFhM2ZiY2NkYzBjNjU1YWE5M2FmZDljNjA0 M2M1ZmQ5ZTIzNmExYmVjMTJjNWUxZjBlZDEzYjJhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9zn+AVOAq+497VEgj69BDPdFg8r+bhhYr39SeHvuTIIhx +ItKbIeCEzsVTqY4+YvuUqopHYST21oeX2ataTKIaSAY63oZQT7TK9XKlg9u7bP6 LBv39d7Hd3DKn2uGa1oA4ovu0kJun/9bX5oBYVrB3LTVrr9YA9cOqab9i6lqdIzn 7l2q4QysuaCCFhuZToEEAVl5erna20sjUPaS3Qse92eDrgnYsr7yFVK01wlR9h51 xdkBXndnCa3HgUUgLiwYPXkvU/W1atnBk6u46fkw0o4/jxcvfad/QJZijk7TAyug sXheI7IKTNW1/EzpDLqaft0EtviCA9I6qQaV9cmXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUkZxSSSYpaOkkchWOAfeif7BlZn8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2JmMjdmZGI3LTg0YmYtNDBkMi05MDZhLTdiNGMxZmY0MDViMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD75AAwDQYJKoZIhvcNAQELBQADggEBAFoODuUkQJpa2ytNj49tqg1w qCSsV/dAEGfFBKdWgCtF9Volbaj3lbYwyy5fC3ZAtOP8fvpeegbfKKL4TdB9AQLG tLOqAA65fbzFuGBmne87N7dZOkyZp6tkAwUF6xEyfZF81qzuglpQ86Ql5qRosY3j bIJz6CtklI+86ibtM+bitJgZcp5siERAlXFNEaqWXjtMPmsiaYOP6KxY1WdsyIbv 9v25SfLMPlgBQ2OpezsBlrgp7Kt4nQtoxVxCpW/SuNAQwU6NDsTKl43EtawYWl5m XPUAArpDyzrMcKpY2YJxrbGnyZ1XGYhLxNm6hkcHgEBKx7svnPKBp5vQVPSbUTo= -----END CERTIFICATE-----Generated at Wed Nov 5 05:48:45 2025 by rpki-client