$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b456d9a-b78d-45ba-9949-b00a9581f118.roa File: 0b456d9a-b78d-45ba-9949-b00a9581f118.roa (raw, json) Hash identifier: LX5OD8pE1fNwrQy7zmEyKOXynHzzld2v8/LL7po1TUA= Subject key identifier: 18:F3:90:97:BE:27:A6:D3:B5:7A:75:AC:A7:5B:D0:5B:1C:7F:F3:FC Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 28D26977EFFE805B023CEAB70BEA04CDAF348A17 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b456d9a-b78d-45ba-9949-b00a9581f118.roa Signing time: Tue 21 Oct 2025 12:50:15 +0000 ROA not before: Tue 21 Oct 2025 12:50:15 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ec00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:d2:69:77:ef:fe:80:5b:02:3c:ea:b7:0b:ea:04:cd:af:34:8a:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:15 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=c18e36520bd3ab3b574bac08ee279a6678629192d5a63a6d8f8d75ac29cab56f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5f:8b:b4:99:45:0f:59:2b:48:74:54:f6:6c: e9:83:c3:9f:2c:6e:c7:5d:a1:0c:2c:f5:79:ca:84: 77:75:7a:bc:6b:18:03:7d:84:6a:7c:6b:1f:ef:97: 93:ad:d7:f5:be:c8:87:43:36:38:f8:25:96:ed:97: 73:32:98:6c:ac:6d:b6:5f:eb:b1:48:52:c0:fe:fd: d4:50:30:75:2c:72:c9:18:24:2c:65:55:9a:66:d9: 9c:fa:bb:e4:79:da:da:28:a1:58:30:f9:6b:15:94: d5:a5:3f:98:3d:c0:49:aa:9e:91:61:6e:64:3b:86: 13:29:98:ec:f5:3a:e4:e3:d2:40:9a:b3:55:ef:e3: a8:65:82:11:d3:87:c1:97:a4:7c:96:a4:11:4e:4a: 65:6f:72:9f:72:bf:f9:6b:f2:ff:f1:2f:89:f8:3a: aa:16:2b:b3:4f:22:01:b2:05:2c:c6:86:75:3f:5d: df:4c:96:bf:3b:f7:ea:c2:42:7e:c4:79:92:6c:07: c1:2f:49:51:52:0b:e6:fd:9d:54:45:aa:c3:14:c3: 7f:c4:ac:d1:d1:a6:66:29:78:fb:29:3a:89:c1:85: ad:a1:93:af:d0:4c:68:73:d9:b9:76:37:29:2e:97: 52:0d:28:3b:b3:79:26:6b:3d:68:d5:67:dd:2e:11: ec:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:F3:90:97:BE:27:A6:D3:B5:7A:75:AC:A7:5B:D0:5B:1C:7F:F3:FC X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b456d9a-b78d-45ba-9949-b00a9581f118.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ec00::/42 Signature Algorithm: sha256WithRSAEncryption 29:2e:1c:84:bc:09:5c:7e:41:59:2e:f6:d4:82:0a:a4:3f:89: 6b:c2:c0:cc:e0:1b:cf:f1:86:54:68:b5:d4:2d:cf:86:99:8e: ce:23:ec:06:d4:9e:ca:b1:9a:ad:06:5b:09:c8:60:cf:2e:d4: 44:07:a2:c4:d3:dd:9e:5c:a6:dc:8a:6c:c6:46:d6:e2:68:80: 16:5b:21:29:6f:8e:b8:f3:6a:53:fb:69:56:2d:20:79:60:7a: 92:96:18:14:7b:ac:f1:de:23:ab:da:49:10:35:d5:a3:e8:30: d8:de:ab:49:38:cb:87:3d:7f:08:a0:6b:40:36:a4:98:a8:92: 19:48:63:b2:31:77:64:8a:03:b8:b4:70:85:ba:34:82:92:c2: 70:05:77:14:fc:4c:1b:46:23:1b:e5:3c:68:50:30:53:62:31: 60:1b:1f:25:4d:3d:d9:34:dc:36:8b:ba:09:34:c5:e4:19:b1: 09:20:4d:0e:19:aa:cf:a7:16:44:ad:8d:69:e7:f2:9e:a5:df: 48:f7:12:3b:89:3e:69:f6:6a:67:3b:94:68:a6:1d:25:86:90: d9:c9:f6:d7:1f:8c:51:09:e0:a8:3c:94:a2:03:1a:b2:71:73: be:db:87:f6:93:29:44:86:7b:88:1d:54:4f:4c:57:57:2e:cc: f9:4d:56:5c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKNJpd+/+gFsCPOq3C+oEza80ihcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDE1WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMThlMzY1MjBiZDNhYjNiNTc0YmFjMDhlZTI3OWE2Njc4 NjI5MTkyZDVhNjNhNmQ4ZjhkNzVhYzI5Y2FiNTZmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQX4u0mUUPWStIdFT2bOmDw58sbsddoQws9XnKhHd1erxr GAN9hGp8ax/vl5Ot1/W+yIdDNjj4JZbtl3MymGysbbZf67FIUsD+/dRQMHUscskY JCxlVZpm2Zz6u+R52toooVgw+WsVlNWlP5g9wEmqnpFhbmQ7hhMpmOz1OuTj0kCa s1Xv46hlghHTh8GXpHyWpBFOSmVvcp9yv/lr8v/xL4n4OqoWK7NPIgGyBSzGhnU/ Xd9Mlr879+rCQn7EeZJsB8EvSVFSC+b9nVRFqsMUw3/ErNHRpmYpePspOonBha2h k6/QTGhz2bl2Nykul1INKDuzeSZrPWjVZ90uEezJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUGPOQl74nptO1enWsp1vQWxx/8/wwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBiNDU2ZDlhLWI3OGQtNDViYS05OTQ5LWIwMGE5NTgxZjExOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD77AAwDQYJKoZIhvcNAQELBQADggEBACkuHIS8CVx+QVku9tSCCqQ/ iWvCwMzgG8/xhlRotdQtz4aZjs4j7AbUnsqxmq0GWwnIYM8u1EQHosTT3Z5cptyK bMZG1uJogBZbISlvjrjzalP7aVYtIHlgepKWGBR7rPHeI6vaSRA11aPoMNjeq0k4 y4c9fwiga0A2pJiokhlIY7Ixd2SKA7i0cIW6NIKSwnAFdxT8TBtGIxvlPGhQMFNi MWAbHyVNPdk03DaLugk0xeQZsQkgTQ4Zqs+nFkStjWnn8p6l30j3EjuJPmn2amc7 lGimHSWGkNnJ9tcfjFEJ4Kg8lKIDGrJxc77bh/aTKUSGe4gdVE9MV1cuzPlNVlw= -----END CERTIFICATE-----Generated at Wed Nov 5 05:48:12 2025 by rpki-client