$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1a6b8fe3-7a24-4908-a73d-425df209068f.roa File: 1a6b8fe3-7a24-4908-a73d-425df209068f.roa (raw, json) Hash identifier: EAfYX8xbSrxdGzeNYtCk/jNz4aYvW21AgjolDMWJjl4= Subject key identifier: 62:6A:73:27:4B:12:1A:9A:39:57:1A:D3:1F:2A:7F:16:42:07:0C:22 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 69249F92829F45DAE03CF80EB26F40442D4F7AED Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1a6b8fe3-7a24-4908-a73d-425df209068f.roa Signing time: Fri 31 Oct 2025 02:00:11 +0000 ROA not before: Fri 31 Oct 2025 02:00:11 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:611d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:24:9f:92:82:9f:45:da:e0:3c:f8:0e:b2:6f:40:44:2d:4f:7a:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 31 02:00:11 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=207bb475d1fe640aec171a3d82f7f5ae63f711c550a348686dbee2ce997351c9, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:45:ba:35:fe:8b:af:d4:3e:af:79:ac:26:c4: aa:d7:63:dc:a9:26:66:f7:41:6e:be:d2:93:7d:e1: c7:ac:75:ec:fe:e4:11:3c:6c:da:42:a9:fe:92:cb: 73:5e:a7:b9:1f:46:b2:42:95:0c:7e:32:60:bf:58: 3b:f7:44:9c:40:0f:6e:f3:25:28:83:f9:c1:26:6f: 5b:ed:71:a7:bd:3a:e1:b7:49:a3:2b:4b:05:3c:35: 9d:29:15:3a:d0:72:fb:a4:3b:45:ee:06:40:52:7a: e5:e5:95:6e:83:b2:d7:6a:f7:01:19:1b:e3:f9:a9: fe:6a:2d:35:53:9a:a7:9d:7c:d6:fd:c3:b8:72:99: 8a:c6:3f:01:2e:3e:1d:32:29:f4:05:ce:ab:b9:7c: e6:ce:70:f1:2b:3b:77:3d:ac:33:7b:0c:75:cc:4a: 7e:ee:36:49:93:60:cd:db:2e:0a:1e:ec:90:72:d9: 66:fa:0e:1e:c8:21:b7:30:90:ab:78:39:d9:17:f2: 27:a4:bd:69:c5:bf:9d:b5:46:d6:9f:c5:d4:2a:fd: 8f:99:89:c2:c6:b7:51:1d:c3:14:3c:cb:02:00:e0: df:dc:a4:da:ee:64:b8:e2:18:f7:e8:a3:f1:94:2b: 46:32:0d:be:af:ee:a3:12:92:e0:a8:46:82:42:5d: 6a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:6A:73:27:4B:12:1A:9A:39:57:1A:D3:1F:2A:7F:16:42:07:0C:22 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1a6b8fe3-7a24-4908-a73d-425df209068f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:611d::/48 Signature Algorithm: sha256WithRSAEncryption 8c:95:64:1b:f9:08:01:42:21:23:e7:56:8c:bf:6e:09:29:50: 10:32:eb:a4:65:70:78:3b:3f:ca:fb:5a:d1:36:71:71:28:8e: 30:ca:8d:85:7c:e6:57:6d:e0:49:11:7f:63:40:ef:b1:a9:2a: ca:e2:a4:8f:42:94:9b:4c:47:9a:91:42:de:79:b7:b2:3b:63: c0:24:48:0f:79:88:ee:1d:65:b8:9e:46:1e:b4:d2:04:d5:fd: 62:e3:b7:3b:ef:a8:53:9c:6f:0c:1d:5b:27:a3:49:ee:be:ab: 79:7a:12:0a:06:9d:a9:5a:26:d1:62:02:b8:2c:81:06:5d:07: 90:f0:79:96:78:4e:53:73:d3:50:00:02:78:72:72:42:dd:80: 23:68:c1:e4:23:b0:15:19:df:4c:d8:43:f0:94:f7:25:79:a1: 55:e6:1e:26:81:61:ce:c3:3c:82:75:f8:29:be:84:0f:f4:bf: 9c:78:97:01:d8:25:fd:9c:f5:60:1d:16:cb:6a:ee:fe:1d:5d: 0a:16:fa:3d:45:4c:74:69:fb:1c:65:83:e6:d8:c3:89:a7:9c: e4:0b:32:a2:6e:0a:8a:c9:f4:fb:34:03:5c:1b:19:36:72:17: d4:d9:b8:a5:d2:77:1c:6e:59:33:98:4d:9f:ae:1c:37:d4:27: 22:4e:c1:aa -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUaSSfkoKfRdrgPPgOsm9ARC1Peu0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDMxMDIwMDExWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMDdiYjQ3NWQxZmU2NDBhZWMxNzFhM2Q4MmY3ZjVhZTYz ZjcxMWM1NTBhMzQ4Njg2ZGJlZTJjZTk5NzM1MWM5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDxRbo1/ouv1D6veawmxKrXY9ypJmb3QW6+0pN94cesdez+ 5BE8bNpCqf6Sy3Nep7kfRrJClQx+MmC/WDv3RJxAD27zJSiD+cEmb1vtcae9OuG3 SaMrSwU8NZ0pFTrQcvukO0XuBkBSeuXllW6Dstdq9wEZG+P5qf5qLTVTmqedfNb9 w7hymYrGPwEuPh0yKfQFzqu5fObOcPErO3c9rDN7DHXMSn7uNkmTYM3bLgoe7JBy 2Wb6Dh7IIbcwkKt4OdkX8iekvWnFv521RtafxdQq/Y+ZicLGt1EdwxQ8ywIA4N/c pNruZLjiGPfoo/GUK0YyDb6v7qMSkuCoRoJCXWoxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUYmpzJ0sSGpo5VxrTHyp/FkIHDCIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFhNmI4ZmUzLTdhMjQtNDkwOC1hNzNkLTQyNWRmMjA5MDY4Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYR0wDQYJKoZIhvcNAQELBQADggEBAIyVZBv5CAFCISPnVoy/bgkp UBAy66RlcHg7P8r7WtE2cXEojjDKjYV85ldt4EkRf2NA77GpKsripI9ClJtMR5qR Qt55t7I7Y8AkSA95iO4dZbieRh600gTV/WLjtzvvqFOcbwwdWyejSe6+q3l6EgoG nalaJtFiArgsgQZdB5DweZZ4TlNz01AAAnhyckLdgCNoweQjsBUZ30zYQ/CU9yV5 oVXmHiaBYc7DPIJ1+Cm+hA/0v5x4lwHYJf2c9WAdFstq7v4dXQoW+j1FTHRp+xxl g+bYw4mnnOQLMqJuCorJ9Ps0A1wbGTZyF9TZuKXSdxxuWTOYTZ+uHDfUJyJOwao= -----END CERTIFICATE-----Generated at Wed Nov 5 15:29:11 2025 by rpki-client