$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/06ea2b4a-6dfc-489d-b8f1-dc7f93cac1c3.roa File: 06ea2b4a-6dfc-489d-b8f1-dc7f93cac1c3.roa (raw, json) Hash identifier: Le1gEdTjdiTMg3urxZlfq4il0JGcQjOlF+JsAjzlEzg= Subject key identifier: E7:DC:96:23:B2:1E:E9:52:11:1E:ED:5E:CE:16:98:78:0F:7D:6B:35 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 251AB7983BDADC8DB4DC96785B4149071F41C6A2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/06ea2b4a-6dfc-489d-b8f1-dc7f93cac1c3.roa Signing time: Tue 21 Oct 2025 13:00:27 +0000 ROA not before: Tue 21 Oct 2025 13:00:27 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e900::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:1a:b7:98:3b:da:dc:8d:b4:dc:96:78:5b:41:49:07:1f:41:c6:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:00:27 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=757bbad8cc5308ec6aa120a74bf2870294e682298db5e71528d362d204301b8c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:99:86:2c:ab:a8:71:35:65:11:2e:c2:49:63: 36:d7:da:c1:c6:83:ce:6a:99:dc:b8:90:21:3b:02: f0:df:1d:8b:f6:74:48:51:4a:c2:79:6c:c5:4a:c9: aa:77:96:19:da:69:14:57:d5:f8:3a:4f:8c:cf:45: 4a:23:42:d3:eb:db:67:02:11:29:f4:12:c6:83:0f: 79:7f:cf:01:f5:13:85:71:bb:0c:3f:da:d5:07:02: 1a:83:3f:af:eb:ae:4e:3d:96:03:06:67:62:f5:c4: a5:40:f4:68:7c:1b:61:6a:04:3f:67:54:73:5d:5a: 5c:23:d2:2a:7f:9c:31:ee:e4:72:40:6a:19:af:92: f6:f6:cd:d2:ed:98:d6:2a:ce:e1:58:3a:34:0f:39: 9a:81:db:1d:f8:5c:1b:3d:b2:5b:f4:0a:da:a5:d1: 94:78:2c:33:b6:ec:e6:c4:68:58:d9:e1:7e:3d:48: 5c:dc:a3:ac:c0:82:00:96:81:e1:ea:db:4f:30:e2: 8e:49:7e:3d:65:da:28:e3:60:c9:4a:ca:b3:78:5a: d8:b7:41:b7:46:3b:01:14:13:1c:83:5f:f7:9d:07: 5c:fb:56:90:91:31:be:d6:91:94:c0:67:d2:ea:e8: 30:6c:97:15:89:be:02:1e:79:a5:ac:90:f9:ef:05: a6:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:DC:96:23:B2:1E:E9:52:11:1E:ED:5E:CE:16:98:78:0F:7D:6B:35 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/06ea2b4a-6dfc-489d-b8f1-dc7f93cac1c3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e900::/42 Signature Algorithm: sha256WithRSAEncryption 40:19:dd:aa:41:93:0a:f7:40:de:80:08:d7:cb:67:f1:64:c4: a7:15:a4:7d:db:58:8f:56:1c:95:dd:2a:a6:01:c7:12:cd:b4: 61:83:17:a9:8f:8f:d3:d3:30:dc:dd:7e:8d:41:fc:60:81:a7: 93:dd:73:be:f7:48:ac:20:b9:0a:4f:32:fc:f5:bd:a9:5a:1a: fd:a3:61:45:0b:3b:d3:dd:08:7b:22:ce:a6:59:cd:67:19:eb: 56:5b:01:e1:10:c6:48:63:d1:a1:5e:2a:55:84:74:1c:48:12: df:5a:c5:42:e4:e1:5c:91:66:ac:93:71:10:75:70:f2:82:06: 24:3a:c9:a6:55:23:8f:a6:00:82:86:79:31:45:84:ee:de:09: ec:37:ed:69:75:63:69:4d:24:9c:cd:76:33:d2:9a:43:e4:72: f2:f8:df:01:e6:e0:f3:9e:54:17:64:cc:54:4b:d2:e1:8b:c8: 00:9e:59:24:58:97:29:bd:e0:27:3e:b1:42:5c:02:69:e0:b9: 68:0c:f3:81:a8:6a:fe:b3:c1:9e:ab:52:a4:20:f4:81:17:f1: 54:62:82:fb:e0:7b:b3:f3:5a:4b:42:fe:82:70:35:66:27:a3: bf:0a:e2:01:bf:de:ec:2c:0c:33:88:04:92:88:93:cf:5b:82: 21:42:d6:00 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJRq3mDva3I203JZ4W0FJBx9BxqIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMwMDI3WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NTdiYmFkOGNjNTMwOGVjNmFhMTIwYTc0YmYyODcwMjk0 ZTY4MjI5OGRiNWU3MTUyOGQzNjJkMjA0MzAxYjhjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmmYYsq6hxNWURLsJJYzbX2sHGg85qmdy4kCE7AvDfHYv2 dEhRSsJ5bMVKyap3lhnaaRRX1fg6T4zPRUojQtPr22cCESn0EsaDD3l/zwH1E4Vx uww/2tUHAhqDP6/rrk49lgMGZ2L1xKVA9Gh8G2FqBD9nVHNdWlwj0ip/nDHu5HJA ahmvkvb2zdLtmNYqzuFYOjQPOZqB2x34XBs9slv0Ctql0ZR4LDO27ObEaFjZ4X49 SFzco6zAggCWgeHq208w4o5Jfj1l2ijjYMlKyrN4Wti3QbdGOwEUExyDX/edB1z7 VpCRMb7WkZTAZ9Lq6DBslxWJvgIeeaWskPnvBaZZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU59yWI7Ie6VIRHu1ezhaYeA99azUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzA2ZWEyYjRhLTZkZmMtNDg5ZC1iOGYxLWRjN2Y5M2NhYzFjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76QAwDQYJKoZIhvcNAQELBQADggEBAEAZ3apBkwr3QN6ACNfLZ/Fk xKcVpH3bWI9WHJXdKqYBxxLNtGGDF6mPj9PTMNzdfo1B/GCBp5Pdc773SKwguQpP Mvz1valaGv2jYUULO9PdCHsizqZZzWcZ61ZbAeEQxkhj0aFeKlWEdBxIEt9axULk 4VyRZqyTcRB1cPKCBiQ6yaZVI4+mAIKGeTFFhO7eCew37Wl1Y2lNJJzNdjPSmkPk cvL43wHm4POeVBdkzFRL0uGLyACeWSRYlym94Cc+sUJcAmnguWgM84Goav6zwZ6r UqQg9IEX8VRigvvge7PzWktC/oJwNWYno78K4gG/3uwsDDOIBJKIk89bgiFC1gA= -----END CERTIFICATE-----Generated at Wed Nov 5 07:44:14 2025 by rpki-client