$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/15261f12-a3b4-407e-9226-8285aa79061d.roa File: 15261f12-a3b4-407e-9226-8285aa79061d.roa (raw, json) Hash identifier: bcDbb8JzrzOt88ku2raRLAd6Iq/X/9W+ou2azfxr0bA= Subject key identifier: FA:E1:0E:86:92:5B:A9:C6:30:40:CA:29:E5:CA:56:7F:B5:6C:AD:07 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2304DDDADAB7978C2B6A6D6604B388BC08819F3A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/15261f12-a3b4-407e-9226-8285aa79061d.roa Signing time: Fri 24 Oct 2025 00:20:04 +0000 ROA not before: Fri 24 Oct 2025 00:20:04 +0000 ROA not after: Fri 28 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:4100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:04:dd:da:da:b7:97:8c:2b:6a:6d:66:04:b3:88:bc:08:81:9f:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 24 00:20:04 2025 GMT Not After : Nov 28 23:59:59 2025 GMT Subject: serialNumber=28c6a36413f1ce4516bd55c3278dcff52fda0072f502e6ed5f94533be2936cdc, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:74:62:77:fe:23:c5:4f:69:d8:c1:c8:b0:6a: 17:fd:92:8f:06:ef:db:d6:46:fb:a7:74:6d:d2:19: e4:42:5c:a7:37:fc:02:0c:40:eb:db:95:f7:9e:4e: 77:66:23:1b:ab:69:c5:8e:a4:e4:12:9f:1c:e0:12: 34:84:da:aa:f3:d5:e8:62:78:8f:bd:bf:ae:6c:02: 39:6a:cb:18:6f:c1:19:6b:7d:39:97:67:9e:1d:18: 19:1e:03:7a:b3:7e:3e:e8:4a:4d:a3:6a:fb:9d:31: 0e:4c:5d:33:3f:f0:d7:5d:c9:9a:1a:f4:05:82:d3: 96:0b:41:8f:22:45:98:53:03:39:2d:8e:7f:85:9e: 9d:a7:b8:60:ac:0e:34:11:d7:d4:f6:80:97:b4:90: 22:7f:d5:01:f2:2f:2c:c3:02:f4:ba:a2:8d:66:e8: 3d:a4:44:d1:80:e4:1e:bd:3b:f7:a6:43:7b:37:4a: 61:b1:a6:9e:45:40:03:6c:66:6d:54:c5:19:56:69: 21:05:4a:94:d2:c4:9e:eb:43:81:b3:93:c3:56:13: 68:9f:c2:3a:2a:d2:31:53:7f:a2:1f:ba:45:9a:5e: 90:90:8a:4e:26:46:b4:39:fe:a2:fc:5c:a5:56:63: 22:b5:33:e6:7c:cd:34:86:21:8f:15:63:18:16:d8: d7:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:E1:0E:86:92:5B:A9:C6:30:40:CA:29:E5:CA:56:7F:B5:6C:AD:07 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/15261f12-a3b4-407e-9226-8285aa79061d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4100::/40 Signature Algorithm: sha256WithRSAEncryption 6a:0f:7e:d9:4f:b4:6e:fc:fb:e0:4e:d7:0e:4e:e5:18:aa:8c: a0:78:a2:b7:b7:f2:41:0f:02:8b:4b:82:e0:83:5a:a2:10:07: 94:db:b0:6a:62:47:9a:4d:88:49:0f:04:d2:dd:49:d5:fd:3c: 91:81:95:b9:de:29:7e:cc:ee:27:5a:16:60:57:ce:43:d0:2c: 89:3d:93:ae:cc:9e:cc:98:cc:e3:8d:a0:b6:4d:79:ac:37:29: 4f:e6:52:7a:9b:6f:58:6b:63:a5:a8:3c:35:6f:ef:f1:f1:e0: 8e:8c:b3:a9:c2:7e:20:eb:54:ce:b0:e8:20:75:ab:61:dc:4c: 1a:69:bf:1d:02:48:2c:39:7d:b2:70:7e:5b:ac:a5:27:ea:25: 28:ef:5b:b4:8c:fd:2d:4a:b3:77:fc:21:31:ad:94:e8:a5:c8: 1e:7d:30:a0:a8:88:28:9d:a5:c0:4e:ca:bc:65:aa:bd:30:2f: 09:fe:45:70:5e:8e:49:fb:e1:d9:de:82:bc:79:c1:73:45:ee: 70:8f:b5:e2:ce:fa:99:78:72:f4:81:4e:7a:c3:c8:b9:04:81: ba:06:eb:d5:26:04:b5:90:e1:d2:32:06:24:6d:0f:da:2a:99: da:f9:d8:0a:6a:b1:2b:b9:6c:10:d8:aa:af:11:bb:bf:86:e3: 56:a2:80:94 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUIwTd2tq3l4wram1mBLOIvAiBnzowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDI0MDAyMDA0WhcNMjUxMTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOGM2YTM2NDEzZjFjZTQ1MTZiZDU1YzMyNzhkY2ZmNTJm ZGEwMDcyZjUwMmU2ZWQ1Zjk0NTMzYmUyOTM2Y2RjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUdGJ3/iPFT2nYwciwahf9ko8G79vWRvundG3SGeRCXKc3 /AIMQOvblfeeTndmIxuracWOpOQSnxzgEjSE2qrz1ehieI+9v65sAjlqyxhvwRlr fTmXZ54dGBkeA3qzfj7oSk2javudMQ5MXTM/8NddyZoa9AWC05YLQY8iRZhTAzkt jn+Fnp2nuGCsDjQR19T2gJe0kCJ/1QHyLyzDAvS6oo1m6D2kRNGA5B69O/emQ3s3 SmGxpp5FQANsZm1UxRlWaSEFSpTSxJ7rQ4Gzk8NWE2ifwjoq0jFTf6IfukWaXpCQ ik4mRrQ5/qL8XKVWYyK1M+Z8zTSGIY8VYxgW2NddAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU+uEOhpJbqcYwQMop5cpWf7VsrQcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzE1MjYxZjEyLWEzYjQtNDA3ZS05MjI2LTgyODVhYTc5MDYxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwQTANBgkqhkiG9w0BAQsFAAOCAQEAag9+2U+0bvz74E7XDk7lGKqM oHiit7fyQQ8Ci0uC4INaohAHlNuwamJHmk2ISQ8E0t1J1f08kYGVud4pfszuJ1oW YFfOQ9AsiT2TrsyezJjM442gtk15rDcpT+ZSeptvWGtjpag8NW/v8fHgjoyzqcJ+ IOtUzrDoIHWrYdxMGmm/HQJILDl9snB+W6ylJ+olKO9btIz9LUqzd/whMa2U6KXI Hn0woKiIKJ2lwE7KvGWqvTAvCf5FcF6OSfvh2d6CvHnBc0XucI+14s76mXhy9IFO esPIuQSBugbr1SYEtZDh0jIGJG0P2iqZ2vnYCmqxK7lsENiqrxG7v4bjVqKAlA== -----END CERTIFICATE-----Generated at Wed Nov 5 05:48:49 2025 by rpki-client