$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1df4a82a-0875-47b6-9fc0-b67c097bc45c.roa File: 1df4a82a-0875-47b6-9fc0-b67c097bc45c.roa (raw, json) Hash identifier: IxRXoDwjq+Sbb2k5nHwKZHMD8k+SJ3wfCu4bvx830eI= Subject key identifier: B5:24:A2:0B:EC:EE:7D:7E:C8:EB:BD:04:38:89:E4:50:C7:8D:3E:FF Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 78D411E89654FD8D054C7CFA8886F9357BFD91BE Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1df4a82a-0875-47b6-9fc0-b67c097bc45c.roa Signing time: Wed 22 Oct 2025 00:50:04 +0000 ROA not before: Wed 22 Oct 2025 00:50:04 +0000 ROA not after: Wed 26 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:d4:11:e8:96:54:fd:8d:05:4c:7c:fa:88:86:f9:35:7b:fd:91:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 22 00:50:04 2025 GMT Not After : Nov 26 23:59:59 2025 GMT Subject: serialNumber=ee1ddf7db035afafb1f4aef9fac9bb9a18ef7dceea008f81a6ffc91789ed4b56, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a8:93:07:48:08:ce:78:d3:01:9a:23:3f:d6: 78:d2:33:23:23:40:69:3e:6b:da:ec:42:16:a0:19: b1:46:d0:d1:a6:15:6e:d9:73:9c:c4:61:7d:4f:99: ad:f9:de:ab:00:8e:d6:df:e5:c7:28:e0:ef:88:25: e5:e5:b4:3b:57:04:e5:b5:fe:a8:fa:ff:5f:53:0c: 08:73:e5:80:8b:6d:27:92:d5:52:95:7b:f0:62:77: c7:04:69:15:4f:44:1b:2b:e0:ae:28:cb:d4:a2:5f: 64:47:9f:da:5b:42:f4:e0:db:af:af:e1:cb:1d:7a: be:a6:bb:e7:85:87:6e:d7:44:d2:a5:7f:4c:fa:d1: a4:37:e5:fc:30:0b:02:71:70:a9:8c:2f:1c:6f:e7: a4:57:b5:9d:55:f6:4c:01:64:5a:43:3c:2d:2a:e1: a6:8f:5d:b1:52:88:2f:5e:fe:ed:50:75:76:52:1b: 1f:a7:83:57:36:d8:2a:a7:2c:fc:c4:1f:7c:aa:36: 91:b7:7d:7f:51:3f:ac:3a:3e:d5:46:f8:c0:6a:66: 43:5b:ea:fa:40:9e:b9:76:36:c1:83:f6:ad:b4:4b: d1:18:c1:f2:8d:88:7c:23:04:4f:40:92:d1:ad:29: 54:82:4c:6c:fe:36:ec:97:18:76:d4:d1:28:72:6a: c7:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:24:A2:0B:EC:EE:7D:7E:C8:EB:BD:04:38:89:E4:50:C7:8D:3E:FF X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1df4a82a-0875-47b6-9fc0-b67c097bc45c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8800::/40 Signature Algorithm: sha256WithRSAEncryption 73:2a:f5:51:c4:ee:bf:c0:56:c4:4e:79:00:bd:3a:6e:b4:88: b8:e0:ef:e4:3c:45:9c:ba:b6:f8:1b:c4:f6:be:db:f0:51:93: 5d:23:ae:aa:6e:3a:d7:5c:0e:54:2b:1a:38:1b:f3:85:4d:4c: fd:b9:54:35:7e:7b:ec:4f:ce:57:0a:69:09:a5:e9:f4:0e:b3: 4a:e8:75:b0:ca:61:06:82:3f:2c:0d:f2:f7:ed:c0:6b:d6:91: bd:c3:00:d6:76:c7:e8:be:20:c3:a7:31:b4:7e:68:5b:16:8d: 26:c4:5a:80:d1:c9:bd:4f:c5:f8:2f:6d:1a:cf:b4:4f:19:1a: 88:58:d4:7d:52:df:30:dd:24:01:04:6e:6b:6d:34:50:a3:45: 85:da:25:21:57:22:34:94:4f:7c:f3:f1:3e:24:c9:ac:96:f2: 81:c4:1b:e1:8d:8b:15:12:4c:ba:af:1d:4f:31:dc:60:8f:f0: 39:84:05:bc:a6:a7:98:d9:28:e4:f8:23:dd:37:9a:38:15:26: 5c:6d:3a:11:ba:3c:80:a6:42:1d:4d:a1:e3:5f:a3:0f:a2:a7: 24:8f:44:4c:53:b5:27:19:93:2e:f5:c5:1f:92:a1:98:09:9d: ce:95:cf:f2:6d:f4:b1:40:98:08:79:cb:ea:fb:8a:a1:a7:be: 5b:0f:46:34 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUeNQR6JZU/Y0FTHz6iIb5NXv9kb4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIyMDA1MDA0WhcNMjUxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZTFkZGY3ZGIwMzVhZmFmYjFmNGFlZjlmYWM5YmI5YTE4 ZWY3ZGNlZWEwMDhmODFhNmZmYzkxNzg5ZWQ0YjU2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDqJMHSAjOeNMBmiM/1njSMyMjQGk+a9rsQhagGbFG0NGm FW7Zc5zEYX1Pma353qsAjtbf5cco4O+IJeXltDtXBOW1/qj6/19TDAhz5YCLbSeS 1VKVe/Bid8cEaRVPRBsr4K4oy9SiX2RHn9pbQvTg26+v4csder6mu+eFh27XRNKl f0z60aQ35fwwCwJxcKmMLxxv56RXtZ1V9kwBZFpDPC0q4aaPXbFSiC9e/u1QdXZS Gx+ng1c22CqnLPzEH3yqNpG3fX9RP6w6PtVG+MBqZkNb6vpAnrl2NsGD9q20S9EY wfKNiHwjBE9AktGtKVSCTGz+NuyXGHbU0ShyascXAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUtSSiC+zufX7I670EOInkUMeNPv8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFkZjRhODJhLTA4NzUtNDdiNi05ZmMwLWI2N2MwOTdiYzQ1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDxiDANBgkqhkiG9w0BAQsFAAOCAQEAcyr1UcTuv8BWxE55AL06brSI uODv5DxFnLq2+BvE9r7b8FGTXSOuqm4611wOVCsaOBvzhU1M/blUNX577E/OVwpp CaXp9A6zSuh1sMphBoI/LA3y9+3Aa9aRvcMA1nbH6L4gw6cxtH5oWxaNJsRagNHJ vU/F+C9tGs+0TxkaiFjUfVLfMN0kAQRua200UKNFhdolIVciNJRPfPPxPiTJrJby gcQb4Y2LFRJMuq8dTzHcYI/wOYQFvKanmNko5Pgj3TeaOBUmXG06Ebo8gKZCHU2h 41+jD6KnJI9ETFO1JxmTLvXFH5KhmAmdzpXP8m30sUCYCHnL6vuKoae+Ww9GNA== -----END CERTIFICATE-----Generated at Wed Nov 5 05:46:00 2025 by rpki-client