$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c9a7bd20-48bd-4f0a-937e-2ccc73008f73.roa File: c9a7bd20-48bd-4f0a-937e-2ccc73008f73.roa (raw, json) Hash identifier: KHW+/UTBQ0KlErtWlYxWxeLcjqtQxVeze4yyAf2Zon8= Subject key identifier: 4C:AD:7D:DC:41:7B:24:31:92:AB:0B:E2:DF:4E:12:06:96:A2:17:6B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 50D1DDB54B9B711D9C1010626305E177FABF8B9E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c9a7bd20-48bd-4f0a-937e-2ccc73008f73.roa Signing time: Tue 21 Oct 2025 13:00:21 +0000 ROA not before: Tue 21 Oct 2025 13:00:21 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:300::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:d1:dd:b5:4b:9b:71:1d:9c:10:10:62:63:05:e1:77:fa:bf:8b:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:00:21 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=42260a822c7a7601b21d00ebe5021a3bed457e50213f34553f2d8b7afa8c12b6, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:61:99:34:cb:9d:66:4f:2c:d5:95:b4:85:83: c9:db:31:d2:a6:3e:d4:6f:02:ef:cc:46:2a:bf:cf: 0e:cb:6c:f0:20:b6:b5:8a:3e:de:62:94:e4:91:32: a6:9c:53:22:25:08:ac:fb:4e:6c:df:fa:24:d4:24: 31:ec:b6:89:15:8b:07:79:88:d5:72:84:6b:c6:02: 11:35:5b:ab:59:6c:f4:43:32:a1:02:66:3f:76:a4: 7b:82:35:ab:fd:70:06:d0:aa:82:61:3b:f6:5e:c1: 06:f2:d2:81:ef:2a:7a:7d:6a:20:bd:69:31:4f:eb: bd:e1:64:27:f6:6c:c5:6a:8d:06:c0:d0:28:19:d1: 12:22:fc:09:d3:e2:5a:c8:b7:1f:a1:27:ca:61:b4: f9:8f:39:1c:63:f9:b2:b1:62:71:6a:b5:d4:40:39: e6:2b:2b:f6:29:d0:9d:1b:97:7b:13:3d:53:dc:11: 31:2e:54:af:5c:6f:44:2c:e3:41:6c:06:b2:b7:2b: b7:c7:86:10:6b:e4:ed:a0:8f:ec:40:f0:ac:9b:a4: b0:45:50:ca:d3:9a:b6:00:1e:73:db:da:6a:0a:ab: de:7a:7c:da:3a:09:f5:a6:6d:0f:d4:2a:f2:f2:22: 72:cb:36:a9:b6:ce:4f:05:7f:bc:b0:9a:cd:b0:64: 6d:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:AD:7D:DC:41:7B:24:31:92:AB:0B:E2:DF:4E:12:06:96:A2:17:6B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c9a7bd20-48bd-4f0a-937e-2ccc73008f73.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:300::/44 Signature Algorithm: sha256WithRSAEncryption 02:6b:25:55:72:fb:de:b1:2a:2f:07:ab:16:2a:f8:38:58:84: 0e:8c:8d:32:7b:98:6a:5c:08:d6:c9:63:20:71:3e:82:f3:59: 3f:95:2f:32:31:7f:0f:8a:0c:63:8b:5f:7d:9e:65:93:9c:7a: d2:c1:1e:d9:7d:3f:44:5e:d6:ff:d1:b9:0c:d9:79:7a:1a:fa: 15:f9:25:2b:b4:74:37:94:ed:d0:0e:7d:c6:a6:8f:aa:2c:88: 6e:14:df:b5:ab:34:10:d2:82:c3:48:81:8b:a0:e2:ec:6a:9e: 43:eb:8b:88:b3:6e:ac:82:9d:69:d5:bf:a1:8b:5c:b5:0b:25: c1:5b:2f:6e:f5:8e:0a:6d:47:28:b2:bd:47:67:d5:dd:2f:9a: f3:09:ef:6e:af:d8:6a:37:1a:88:38:36:2a:7c:5b:7b:94:98: ea:64:aa:74:76:03:a1:2d:3c:50:b0:b5:01:ba:b1:de:62:3d: 64:5f:8b:c7:64:e5:91:78:a6:f5:01:b1:37:34:b2:ca:c5:a5: d9:18:14:a6:4c:7f:73:a6:5a:29:f6:d6:ff:b7:86:ee:c1:92: 62:e1:06:15:a8:2b:89:b2:6b:d3:9f:82:55:b9:d8:0a:db:ed: 55:57:c6:c9:bf:f6:2f:75:4f:bc:65:bb:ca:f3:55:2b:27:7d: 06:b4:66:47 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUNHdtUubcR2cEBBiYwXhd/q/i54wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMwMDIxWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MjI2MGE4MjJjN2E3NjAxYjIxZDAwZWJlNTAyMWEzYmVk NDU3ZTUwMjEzZjM0NTUzZjJkOGI3YWZhOGMxMmI2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgYZk0y51mTyzVlbSFg8nbMdKmPtRvAu/MRiq/zw7LbPAg trWKPt5ilOSRMqacUyIlCKz7Tmzf+iTUJDHstokViwd5iNVyhGvGAhE1W6tZbPRD MqECZj92pHuCNav9cAbQqoJhO/ZewQby0oHvKnp9aiC9aTFP673hZCf2bMVqjQbA 0CgZ0RIi/AnT4lrItx+hJ8phtPmPORxj+bKxYnFqtdRAOeYrK/Yp0J0bl3sTPVPc ETEuVK9cb0Qs40FsBrK3K7fHhhBr5O2gj+xA8KybpLBFUMrTmrYAHnPb2moKq956 fNo6CfWmbQ/UKvLyInLLNqm2zk8Ff7ywms2wZG1bAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUTK193EF7JDGSqwvi304SBpaiF2swHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M5YTdiZDIwLTQ4YmQtNGYwYS05MzdlLTJjY2M3MzAwOGY3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAwAwDQYJKoZIhvcNAQELBQADggEBAAJrJVVy+96xKi8HqxYq+DhY hA6MjTJ7mGpcCNbJYyBxPoLzWT+VLzIxfw+KDGOLX32eZZOcetLBHtl9P0Re1v/R uQzZeXoa+hX5JSu0dDeU7dAOfcamj6osiG4U37WrNBDSgsNIgYug4uxqnkPri4iz bqyCnWnVv6GLXLULJcFbL271jgptRyiyvUdn1d0vmvMJ726v2Go3Gog4Nip8W3uU mOpkqnR2A6EtPFCwtQG6sd5iPWRfi8dk5ZF4pvUBsTc0ssrFpdkYFKZMf3OmWin2 1v+3hu7BkmLhBhWoK4mya9OfglW52Arb7VVXxsm/9i91T7xlu8rzVSsnfQa0Zkc= -----END CERTIFICATE-----Generated at Wed Nov 5 16:16:10 2025 by rpki-client