$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/dc0e0e73-bbbe-4170-b733-4904ecc27f99.roa File: dc0e0e73-bbbe-4170-b733-4904ecc27f99.roa (raw, json) Hash identifier: 2AsZ4Gz7uS93v2C49tRaTwEfoHC/yrBcyY80X5R0Dd0= Subject key identifier: F6:F8:6F:FB:DB:BF:17:EB:5A:3E:46:86:D0:68:6F:DA:7E:F4:4E:46 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6A4B575D51317DF9DEDFAD9084D4C6A415EF093E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/dc0e0e73-bbbe-4170-b733-4904ecc27f99.roa Signing time: Tue 21 Oct 2025 13:00:09 +0000 ROA not before: Tue 21 Oct 2025 13:00:09 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:4b:57:5d:51:31:7d:f9:de:df:ad:90:84:d4:c6:a4:15:ef:09:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:00:09 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=ba7875355ec589655965f5b2384e65f348ef3b3d2d5a306ac8f8c25627af64c5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b6:e0:26:9d:a6:2b:07:ea:ea:85:bb:03:e9: fc:99:84:16:dc:33:00:9a:af:e7:8a:3b:0e:25:95: ac:d7:8f:25:f2:1e:01:bf:9e:6b:82:68:81:0b:77: 6f:05:32:f0:f6:7f:71:93:4d:33:92:c0:de:13:98: 9a:18:ef:f0:23:89:80:bb:36:a8:fa:01:b1:71:61: 17:24:4f:fa:6e:31:7b:6b:e7:61:73:3c:1b:86:f9: d6:ba:35:31:c9:0a:d4:ea:ad:1a:d6:b4:0b:15:15: 8c:1b:b6:52:48:1f:76:be:6d:bd:76:40:01:cf:1b: 1b:f7:a3:68:dd:a6:d0:8e:c5:1b:0b:8c:42:d8:c3: 3b:13:68:c1:2f:81:69:92:e3:03:76:44:5d:3c:4a: 70:a7:7a:f2:5f:28:40:9c:c2:0c:9c:63:eb:b2:bb: ff:df:e6:b4:42:21:3c:79:24:16:e6:62:89:f3:24: b8:3a:81:a7:43:8b:84:6b:f1:3a:db:e0:b7:29:c9: 2b:66:88:87:6b:bf:54:1c:fe:b8:23:79:f7:f2:14: 87:54:fd:5a:62:99:fc:3e:5b:36:18:b8:aa:db:a3: 3f:5c:7a:00:75:1e:91:10:de:58:de:79:cf:30:99: 5e:e9:01:92:ea:81:3a:f1:b0:a1:4e:fe:24:f9:78: 25:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:F8:6F:FB:DB:BF:17:EB:5A:3E:46:86:D0:68:6F:DA:7E:F4:4E:46 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/dc0e0e73-bbbe-4170-b733-4904ecc27f99.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e000::/40 Signature Algorithm: sha256WithRSAEncryption 71:95:83:7a:6f:40:ed:b0:be:fe:5d:65:69:18:5f:fe:c3:bc: dc:14:9f:a8:4a:73:46:cb:16:4f:2a:c8:ca:09:71:02:2a:63: 9e:5d:09:3b:f5:18:2a:7f:4c:ce:d7:1d:49:3a:da:99:0a:4e: e9:d8:0f:0a:50:4a:0d:ae:29:f1:72:75:ee:2a:51:45:bd:9f: e3:94:37:24:2e:79:0a:d1:6a:65:70:d5:d3:22:28:f2:1e:a3: cd:aa:29:74:b8:4b:a4:d7:1c:e1:76:50:46:b8:08:bd:68:fa: 09:fe:55:58:d4:ff:40:9d:1d:5a:4b:fb:b9:34:54:d6:6a:de: 99:3b:a2:5b:ef:5a:f2:02:d2:aa:6c:58:8c:c4:dd:9a:20:74: 36:38:39:a2:c6:29:15:b7:0b:e3:a5:d1:8f:87:55:aa:c7:b1: dd:d6:27:59:a7:04:ac:3e:0c:f7:9a:35:76:9c:5a:9c:ca:00: 3f:1a:af:29:2f:a6:ac:e0:a9:bc:2b:6c:ae:88:76:96:fb:e8: 93:57:73:96:ce:81:a7:fa:60:73:ac:d1:b9:6e:88:66:a7:13: 5c:e8:79:83:3d:a3:6a:3c:c8:95:58:a7:ea:ad:17:99:14:b4: be:a2:01:7b:cf:a0:d7:fb:3d:b9:32:75:12:29:e0:2e:89:09: fd:5f:5e:69 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUaktXXVExffne362QhNTGpBXvCT4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMwMDA5WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYTc4NzUzNTVlYzU4OTY1NTk2NWY1YjIzODRlNjVmMzQ4 ZWYzYjNkMmQ1YTMwNmFjOGY4YzI1NjI3YWY2NGM1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvtuAmnaYrB+rqhbsD6fyZhBbcMwCar+eKOw4llazXjyXy HgG/nmuCaIELd28FMvD2f3GTTTOSwN4TmJoY7/AjiYC7Nqj6AbFxYRckT/puMXtr 52FzPBuG+da6NTHJCtTqrRrWtAsVFYwbtlJIH3a+bb12QAHPGxv3o2jdptCOxRsL jELYwzsTaMEvgWmS4wN2RF08SnCnevJfKECcwgycY+uyu//f5rRCITx5JBbmYonz JLg6gadDi4Rr8Trb4LcpyStmiIdrv1Qc/rgjeffyFIdU/Vpimfw+WzYYuKrboz9c egB1HpEQ3ljeec8wmV7pAZLqgTrxsKFO/iT5eCU1AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU9vhv+9u/F+taPkaG0Ghv2n70TkYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RjMGUwZTczLWJiYmUtNDE3MC1iNzMzLTQ5MDRlY2MyN2Y5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74DANBgkqhkiG9w0BAQsFAAOCAQEAcZWDem9A7bC+/l1laRhf/sO8 3BSfqEpzRssWTyrIyglxAipjnl0JO/UYKn9MztcdSTramQpO6dgPClBKDa4p8XJ1 7ipRRb2f45Q3JC55CtFqZXDV0yIo8h6jzaopdLhLpNcc4XZQRrgIvWj6Cf5VWNT/ QJ0dWkv7uTRU1mremTuiW+9a8gLSqmxYjMTdmiB0Njg5osYpFbcL46XRj4dVqsex 3dYnWacErD4M95o1dpxanMoAPxqvKS+mrOCpvCtsroh2lvvok1dzls6Bp/pgc6zR uW6IZqcTXOh5gz2jajzIlVin6q0XmRS0vqIBe8+g1/s9uTJ1EingLokJ/V9eaQ== -----END CERTIFICATE-----Generated at Wed Nov 5 09:59:46 2025 by rpki-client