$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2910bcfa-4bcb-4125-a56f-4bb9596f5adf.roa File: 2910bcfa-4bcb-4125-a56f-4bb9596f5adf.roa (raw, json) Hash identifier: +l+1wsAFS0SqFXrlT5qHC6HSsgbS5S09qG7Icm5RoIY= Subject key identifier: E4:1F:AF:3E:BF:D8:E6:9A:A5:21:01:20:77:4F:C9:4E:57:1F:FA:1B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 621E592E896620E75673BF98981102AE0C7BBEC0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2910bcfa-4bcb-4125-a56f-4bb9596f5adf.roa Signing time: Tue 21 Oct 2025 13:00:22 +0000 ROA not before: Tue 21 Oct 2025 13:00:22 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:500::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:1e:59:2e:89:66:20:e7:56:73:bf:98:98:11:02:ae:0c:7b:be:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:00:22 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=0fa17ff780c216b289aaa222c1b7853c04b517d05bf616f4d87abe4ae42c7f75, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d5:09:cf:67:69:3b:75:bb:2e:ff:c6:41:7b: 90:e4:b4:4b:61:82:10:cf:07:46:a3:5a:67:7c:c2: 58:70:d4:3b:7c:b2:92:96:a7:c0:00:f0:f4:9f:dd: 12:87:3a:e8:2a:12:97:0f:fc:ff:48:10:e3:b0:a3: 2a:41:ee:fb:bb:6b:82:ed:e4:4d:e2:1c:e9:08:f0: 9f:f3:25:5c:0f:a1:25:68:22:60:b3:a9:e5:bf:8b: 3d:a1:5f:ee:63:80:56:fe:ec:d3:03:a6:5b:5b:43: 31:70:57:bc:e6:0a:f4:57:10:64:27:e6:b4:4c:2b: 53:83:44:b7:54:11:8d:da:fc:26:bb:19:62:ef:8f: 10:7e:c8:51:0c:25:0d:d3:91:13:0b:a5:b2:8f:5a: f2:5e:58:ae:79:f5:a1:d6:fc:63:f0:42:b6:12:88: 88:93:63:a7:27:57:fc:2c:23:d5:74:fc:4c:99:6f: 07:f2:44:b7:03:9a:35:ab:98:b5:3a:a8:65:d2:fb: 05:ee:c2:32:99:4b:ad:86:f4:f5:6c:da:78:7f:8a: 60:25:35:cd:f0:3d:ac:a1:b2:ab:58:05:16:9c:3f: 86:5d:a1:26:94:12:20:6e:7e:5e:f1:3c:53:b8:ff: 24:16:11:da:4f:77:f1:fc:0c:48:28:52:96:2f:8c: d4:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:1F:AF:3E:BF:D8:E6:9A:A5:21:01:20:77:4F:C9:4E:57:1F:FA:1B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2910bcfa-4bcb-4125-a56f-4bb9596f5adf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:500::/40 Signature Algorithm: sha256WithRSAEncryption 1e:22:ea:bc:18:b0:a5:62:5c:c2:a2:01:9a:4a:d6:04:3f:06: 7e:52:ea:1e:41:06:2e:1d:3e:7c:c1:7a:5f:b6:8b:00:a4:ee: 96:4f:f5:c0:19:a6:17:66:ad:88:7c:c5:16:d3:7c:2d:e6:f6: a1:52:39:18:17:f2:66:73:c7:06:64:aa:25:ad:3e:b5:cb:5b: f8:a8:4b:9c:69:8d:84:3e:a9:ab:ad:0e:3c:24:3f:7d:d7:a9: 47:92:f2:0d:f0:5f:50:dc:3b:9c:08:4c:4a:7d:db:ef:b8:0b: 6e:07:2d:2c:6e:c0:66:33:af:35:24:bb:ad:1b:a6:23:ce:a2: 5b:3c:5d:30:1a:10:01:93:fe:50:43:80:01:15:d0:12:36:e6: df:dd:c3:da:07:71:67:86:3a:aa:6b:cc:9d:d6:0c:83:f9:4a: 38:2a:26:6f:ee:f2:72:54:12:2d:41:86:30:e5:93:c4:44:0f: a9:7c:00:9e:a9:76:1a:32:3e:18:d1:96:fe:01:c5:8f:b6:c2: 45:2d:d3:ed:46:d5:9b:10:df:c6:36:b1:2f:b2:6d:e3:f4:8d: 73:d5:d8:d3:ba:09:a5:00:d8:7e:bf:0f:9a:a8:3b:9b:88:35: d1:04:29:26:62:72:f3:bc:bf:27:29:bf:9d:61:c0:a7:30:48: 45:24:2b:ad -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUYh5ZLolmIOdWc7+YmBECrgx7vsAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMwMDIyWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZmExN2ZmNzgwYzIxNmIyODlhYWEyMjJjMWI3ODUzYzA0 YjUxN2QwNWJmNjE2ZjRkODdhYmU0YWU0MmM3Zjc1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDS1QnPZ2k7dbsu/8ZBe5DktEthghDPB0ajWmd8wlhw1Dt8 spKWp8AA8PSf3RKHOugqEpcP/P9IEOOwoypB7vu7a4Lt5E3iHOkI8J/zJVwPoSVo ImCzqeW/iz2hX+5jgFb+7NMDpltbQzFwV7zmCvRXEGQn5rRMK1ODRLdUEY3a/Ca7 GWLvjxB+yFEMJQ3TkRMLpbKPWvJeWK559aHW/GPwQrYSiIiTY6cnV/wsI9V0/EyZ bwfyRLcDmjWrmLU6qGXS+wXuwjKZS62G9PVs2nh/imAlNc3wPayhsqtYBRacP4Zd oSaUEiBufl7xPFO4/yQWEdpPd/H8DEgoUpYvjNQhAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU5B+vPr/Y5pqlIQEgd0/JTlcf+hswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzI5MTBiY2ZhLTRiY2ItNDEyNS1hNTZmLTRiYjk1OTZmNWFkZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwBTANBgkqhkiG9w0BAQsFAAOCAQEAHiLqvBiwpWJcwqIBmkrWBD8G flLqHkEGLh0+fMF6X7aLAKTulk/1wBmmF2atiHzFFtN8Leb2oVI5GBfyZnPHBmSq Ja0+tctb+KhLnGmNhD6pq60OPCQ/fdepR5LyDfBfUNw7nAhMSn3b77gLbgctLG7A ZjOvNSS7rRumI86iWzxdMBoQAZP+UEOAARXQEjbm393D2gdxZ4Y6qmvMndYMg/lK OComb+7yclQSLUGGMOWTxEQPqXwAnql2GjI+GNGW/gHFj7bCRS3T7UbVmxDfxjax L7Jt4/SNc9XY07oJpQDYfr8Pmqg7m4g10QQpJmJy87y/Jym/nWHApzBIRSQrrQ== -----END CERTIFICATE-----Generated at Wed Nov 5 07:47:52 2025 by rpki-client