$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c92a8c24-62b8-4009-a51c-8908d7373850.roa File: c92a8c24-62b8-4009-a51c-8908d7373850.roa (raw, json) Hash identifier: +JJSNtAI/NZzX17sGB33SLQPyrZJr7hOveVDfD52wyI= Subject key identifier: E3:34:75:70:2E:8A:C5:9B:59:A6:85:ED:71:43:0D:D5:9A:7E:A8:62 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3B3A64011E3C7CD6FAC8131BA6D7D06C9F941F66 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c92a8c24-62b8-4009-a51c-8908d7373850.roa Signing time: Tue 21 Oct 2025 13:10:07 +0000 ROA not before: Tue 21 Oct 2025 13:10:07 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e100::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:3a:64:01:1e:3c:7c:d6:fa:c8:13:1b:a6:d7:d0:6c:9f:94:1f:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:10:07 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=2e52199323d060b9609caa7c00ee303a04aa588c6b12c1718286bdc4329a6088, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:7e:b2:b3:cd:ea:a5:db:12:93:3f:3f:d7:18: 0f:2b:28:0a:46:db:22:d9:8a:ab:c1:1c:4d:a8:cc: cc:c6:43:8b:18:0e:af:d5:23:c8:c6:00:53:8b:11: aa:fc:9f:da:02:85:84:de:a7:b4:0d:81:ff:83:cd: da:d3:85:f1:31:29:d9:92:bf:3e:4f:ad:1a:33:ee: 35:61:ab:4b:f2:01:12:78:a9:c9:75:62:2f:7e:49: 71:f6:b4:41:f7:71:1b:3c:94:b7:60:fa:b3:53:22: 1e:95:45:a0:2d:51:7d:31:6e:c0:38:56:15:8c:7c: dc:43:94:c0:8e:4f:7c:70:bf:86:77:b1:73:df:94: af:54:19:11:a5:3e:74:3a:30:95:f3:2c:1c:42:47: da:f7:18:b3:e2:36:78:d7:21:25:f7:e1:08:d1:3e: 7f:40:78:e1:ae:d2:17:96:79:1e:b8:9c:c1:d3:12: 72:ac:c7:7c:17:45:c2:a6:86:7d:d3:bd:39:85:c5: 84:46:85:df:ca:ef:c8:4c:5f:d4:e2:51:04:51:b2: ea:eb:73:45:83:63:69:67:55:e8:dd:06:55:5e:27: eb:45:b5:02:ae:59:c6:2c:7d:99:01:b1:3f:64:30: 40:2f:da:21:22:47:cf:9a:2c:7d:4b:63:56:fc:03: b2:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:34:75:70:2E:8A:C5:9B:59:A6:85:ED:71:43:0D:D5:9A:7E:A8:62 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c92a8c24-62b8-4009-a51c-8908d7373850.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e100::/42 Signature Algorithm: sha256WithRSAEncryption 4f:de:6d:2c:73:c4:4a:8a:b8:2e:d6:cb:63:68:4c:c3:01:26: bd:26:ff:cf:4d:39:eb:39:35:1d:80:42:fd:05:be:7a:ab:90: 0e:75:77:47:a6:22:bc:fa:b3:b3:d6:b0:c2:92:a7:85:d1:91: bc:fd:fe:38:7b:68:99:cd:b3:86:c6:99:15:8c:eb:da:2b:ca: 20:91:54:dd:c0:fe:1e:4d:0c:5e:d8:61:48:9b:62:14:af:22: 19:1c:a7:87:e9:c0:a9:9d:a6:c2:cd:89:c9:6f:d8:f0:25:ed: 68:71:09:3d:b7:5d:7a:f8:15:b4:dc:07:e3:d5:34:dd:c4:b5: c0:bd:81:06:3f:5e:50:3e:79:2f:d5:30:f8:77:98:c0:e4:30: 6f:22:12:37:a2:34:af:e5:26:48:13:23:d1:76:c4:bc:d6:33: 71:4a:06:f8:de:63:94:aa:42:40:0b:d4:4a:bb:ac:de:5f:46: 04:56:12:5a:44:8e:c1:da:a5:a4:d2:a5:7a:c0:e8:e2:02:4a: 81:54:02:c1:34:f4:a1:e7:36:97:be:e4:ee:f2:1e:5e:3e:29: 68:07:90:bb:4d:b2:74:78:05:bb:52:80:26:87:c0:cb:ce:6c: f0:ba:d5:2d:50:10:e7:ff:de:36:e1:40:bf:8a:76:41:d9:3f: 27:81:8c:4a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOzpkAR48fNb6yBMbptfQbJ+UH2YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMxMDA3WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZTUyMTk5MzIzZDA2MGI5NjA5Y2FhN2MwMGVlMzAzYTA0 YWE1ODhjNmIxMmMxNzE4Mjg2YmRjNDMyOWE2MDg4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdfrKzzeql2xKTPz/XGA8rKApG2yLZiqvBHE2ozMzGQ4sY Dq/VI8jGAFOLEar8n9oChYTep7QNgf+DzdrThfExKdmSvz5PrRoz7jVhq0vyARJ4 qcl1Yi9+SXH2tEH3cRs8lLdg+rNTIh6VRaAtUX0xbsA4VhWMfNxDlMCOT3xwv4Z3 sXPflK9UGRGlPnQ6MJXzLBxCR9r3GLPiNnjXISX34QjRPn9AeOGu0heWeR64nMHT EnKsx3wXRcKmhn3TvTmFxYRGhd/K78hMX9TiUQRRsurrc0WDY2lnVejdBlVeJ+tF tQKuWcYsfZkBsT9kMEAv2iEiR8+aLH1LY1b8A7I3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU4zR1cC6KxZtZpoXtcUMN1Zp+qGIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M5MmE4YzI0LTYyYjgtNDAwOS1hNTFjLTg5MDhkNzM3Mzg1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD74QAwDQYJKoZIhvcNAQELBQADggEBAE/ebSxzxEqKuC7Wy2NoTMMB Jr0m/89NOes5NR2AQv0FvnqrkA51d0emIrz6s7PWsMKSp4XRkbz9/jh7aJnNs4bG mRWM69oryiCRVN3A/h5NDF7YYUibYhSvIhkcp4fpwKmdpsLNiclv2PAl7WhxCT23 XXr4FbTcB+PVNN3EtcC9gQY/XlA+eS/VMPh3mMDkMG8iEjeiNK/lJkgTI9F2xLzW M3FKBvjeY5SqQkAL1Eq7rN5fRgRWElpEjsHapaTSpXrA6OICSoFUAsE09KHnNpe+ 5O7yHl4+KWgHkLtNsnR4BbtSgCaHwMvObPC61S1QEOf/3jbhQL+KdkHZPyeBjEo= -----END CERTIFICATE-----Generated at Wed Nov 5 11:14:01 2025 by rpki-client