$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/c518c762-ddbf-4352-b9b9-1484318adaa8.roa File: c518c762-ddbf-4352-b9b9-1484318adaa8.roa (raw, json) Hash identifier: DyUkCIbeZMZw+r/G0eGilgLWQQmRlZgwpQF2etwjRYo= Subject key identifier: 52:4C:E1:4F:61:C0:3E:2F:31:A1:11:50:ED:83:AA:17:6C:F7:79:4B Certificate issuer: /CN=6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267 Certificate serial: 1641F583B129659DE1299BE836DDD5A915D45BAB Authority key identifier: 6D:CA:65:D0:71:4D:7E:F2:56:90:BC:09:13:D3:54:DB:AC:89:2A:5E Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/c518c762-ddbf-4352-b9b9-1484318adaa8.roa Signing time: Tue 21 Oct 2025 00:20:28 +0000 ROA not before: Tue 21 Oct 2025 00:20:28 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:c940::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/7276b2fa-548d-4970-8314-8d73945c34d8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/7276b2fa-548d-4970-8314-8d73945c34d8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:41:f5:83:b1:29:65:9d:e1:29:9b:e8:36:dd:d5:a9:15:d4:5b:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267 Validity Not Before: Oct 21 00:20:28 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=ef22fe0dac26e5fc9820556788bd8abe9ee46ae6534de3216b64d4c253a25852, CN=15f1683a-c0c2-4266-9a96-ecf9eba3239c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:37:98:a7:31:2e:70:77:31:a3:7c:f2:c1:d8: f1:13:7e:5c:1b:ef:41:ab:af:70:82:a6:0e:56:44: 42:1e:ee:4a:40:79:43:90:62:ce:92:0d:b1:52:08: c8:70:54:15:b4:9f:17:ed:4d:42:9a:1e:ee:34:e8: 44:46:bd:68:d9:44:b9:eb:66:f7:43:33:f7:38:56: 21:b9:be:7a:da:a0:23:3b:dc:49:95:ce:f0:90:23: cc:dc:74:6c:88:12:51:7e:28:93:13:78:0c:a9:d4: 53:58:b0:9a:86:15:9a:7f:4c:33:b1:96:6d:df:c9: ab:b1:2d:e8:7e:0e:09:24:d6:5a:01:05:13:29:c7: 9b:07:62:fe:65:f1:24:bf:ce:72:1e:07:29:ba:91: cf:15:91:ba:5e:bc:53:46:ea:5f:5b:09:08:82:6b: b7:d5:bc:35:48:fe:be:fc:46:3e:ad:e4:d3:c9:61: de:0d:9a:d6:3b:6e:d6:8a:90:f7:ef:d4:43:4b:c1: 85:0c:66:5b:66:74:f9:36:9b:54:f3:92:5e:6a:53: b0:d8:0d:23:7e:ac:66:92:34:7b:ee:71:f8:dc:df: 3a:76:b0:ee:d0:c6:60:3a:55:b1:35:65:82:86:dd: 77:22:bd:4d:c9:29:69:f5:8e:79:34:fe:46:5c:ca: eb:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:4C:E1:4F:61:C0:3E:2F:31:A1:11:50:ED:83:AA:17:6C:F7:79:4B X509v3 Authority Key Identifier: keyid:6D:CA:65:D0:71:4D:7E:F2:56:90:BC:09:13:D3:54:DB:AC:89:2A:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/c518c762-ddbf-4352-b9b9-1484318adaa8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:c940::/32 Signature Algorithm: sha256WithRSAEncryption aa:29:83:d8:b9:2d:ad:86:e6:82:0a:86:08:b6:57:d6:e5:d0: 85:68:41:43:ae:1b:26:21:2e:4a:f2:fd:ce:8c:fd:25:33:b7: 2e:43:44:d8:22:53:68:38:73:3a:eb:49:74:c9:eb:82:d1:9a: a5:f7:25:d1:57:57:b0:eb:f3:24:17:f5:87:80:0e:8a:53:c1: 87:b0:0b:d5:d1:db:99:a3:94:c8:98:3d:48:d1:67:6a:3f:26: ae:ba:c1:9a:5a:23:e4:d1:48:28:2f:f2:86:c5:07:82:14:80: d5:db:64:bb:95:98:48:30:73:63:5d:6d:2e:68:68:0f:ca:51: 7a:0d:1e:84:6c:1b:2c:01:e4:ca:35:e2:10:06:24:ad:76:f1: 1f:7d:f0:51:68:bb:87:f9:12:d8:2e:16:7d:0b:10:ff:72:a2: 21:db:3d:1a:2f:52:5f:47:06:31:19:76:f9:4d:54:6d:61:08: 37:c6:ff:ef:81:07:28:fc:eb:bd:3e:bd:7c:9b:04:c1:41:2e: e7:be:63:c8:9d:87:91:ed:eb:c0:d0:bc:9a:81:7f:03:b7:53: b8:66:45:1f:47:a1:6d:d5:d2:db:d1:81:66:35:94:02:3f:9e: 1b:2d:a3:ba:bd:d1:6d:5c:c5:53:93:b5:bc:53:0a:45:6d:e5: 61:44:f7:b2 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUFkH1g7EpZZ3hKZvoNt3VqRXUW6swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmY5Yjk4NWIwZmU1ZGVmMDliOTk0ZjhjZjYwYmFkOGM5 MDI5YzAwNjU3NzUwYjIyNjcwHhcNMjUxMDIxMDAyMDI4WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZjIyZmUwZGFjMjZlNWZjOTgyMDU1Njc4OGJkOGFiZTll ZTQ2YWU2NTM0ZGUzMjE2YjY0ZDRjMjUzYTI1ODUyMS0wKwYDVQQDEyQxNWYxNjgz YS1jMGMyLTQyNjYtOWE5Ni1lY2Y5ZWJhMzIzOWMwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWN5inMS5wdzGjfPLB2PETflwb70Grr3CCpg5WREIe7kpA eUOQYs6SDbFSCMhwVBW0nxftTUKaHu406ERGvWjZRLnrZvdDM/c4ViG5vnraoCM7 3EmVzvCQI8zcdGyIElF+KJMTeAyp1FNYsJqGFZp/TDOxlm3fyauxLeh+Dgkk1loB BRMpx5sHYv5l8SS/znIeBym6kc8VkbpevFNG6l9bCQiCa7fVvDVI/r78Rj6t5NPJ Yd4NmtY7btaKkPfv1ENLwYUMZltmdPk2m1Tzkl5qU7DYDSN+rGaSNHvucfjc3zp2 sO7QxmA6VbE1ZYKG3XcivU3JKWn1jnk0/kZcyuvfAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUUkzhT2HAPi8xoRFQ7YOqF2z3eUswHwYDVR0jBBgwFoAUbcpl0HFNfvJW kLwJE9NU26yJKl4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC83Mjc2YjJmYS01 NDhkLTQ5NzAtODMxNC04ZDczOTQ1YzM0ZDgvNmY5Yjk4NWIwZmU1ZGVmMDliOTk0 ZjhjZjYwYmFkOGM5MDI5YzAwNjU3NzUwYjIyNjcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjNmNmI2ODgtY2ZmNC00MDJmLTk3ZDUtMDJm NmYxODg2YjdlL2M1MThjNzYyLWRkYmYtNDM1Mi1iOWI5LTE0ODQzMThhZGFhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2IzZjZiNjg4LWNmZjQtNDAyZi05N2Q1 LTAyZjZmMTg4NmI3ZS81ZDd3bTVsUGpQWUxyWXlRS2NBR1YzVUxJbWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBclAMA0GCSqGSIb3DQEBCwUAA4IBAQCqKYPYuS2thuaCCoYItlfW5dCF aEFDrhsmIS5K8v3OjP0lM7cuQ0TYIlNoOHM660l0yeuC0Zql9yXRV1ew6/MkF/WH gA6KU8GHsAvV0duZo5TImD1I0WdqPyauusGaWiPk0UgoL/KGxQeCFIDV22S7lZhI MHNjXW0uaGgPylF6DR6EbBssAeTKNeIQBiStdvEfffBRaLuH+RLYLhZ9CxD/cqIh 2z0aL1JfRwYxGXb5TVRtYQg3xv/vgQco/Ou9Pr18mwTBQS7nvmPInYeR7evA0Lya gX8Dt1O4ZkUfR6Ft1dLb0YFmNZQCP54bLaO6vdFtXMVTk7W8UwpFbeVhRPey -----END CERTIFICATE-----Generated at Wed Nov 5 05:48:47 2025 by rpki-client