$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2c005aeb-f132-4bb2-a865-90077d8d5e49.roa File: 2c005aeb-f132-4bb2-a865-90077d8d5e49.roa (raw, json) Hash identifier: s7SrtcG2Q0e9fqvBYYJsIxCgsTuI3+Vm/NjFY5u7Zdk= Subject key identifier: AA:90:38:33:2A:87:C5:26:07:34:CA:53:A5:C2:F6:48:C5:27:63:31 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 100A80A07B3CCCF4DBBA0CFCA45754DCDA4565D8 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2c005aeb-f132-4bb2-a865-90077d8d5e49.roa Signing time: Fri 31 Oct 2025 01:50:00 +0000 ROA not before: Fri 31 Oct 2025 01:50:00 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:10a::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:0a:80:a0:7b:3c:cc:f4:db:ba:0c:fc:a4:57:54:dc:da:45:65:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 31 01:50:00 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=77a8916d27785b56996eda450d9a921c3f0f0ca12c98e61a7d33eb27686c2f55, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:bc:8a:62:c1:d0:80:31:14:ec:95:4a:2a:f9: 0f:60:de:92:3b:b1:80:57:0e:e2:af:d5:b0:be:7d: 53:10:9b:bb:21:83:a6:90:41:55:e1:05:f6:28:bf: a8:e5:42:29:c2:9d:36:57:f4:5a:1c:4b:84:61:d5: 83:a7:8a:e7:44:a7:47:e3:3a:3e:71:4e:02:c3:5b: b2:ef:46:b0:8d:7a:bb:a0:43:11:11:c9:4d:b4:2a: 25:07:86:19:63:a6:47:57:be:90:03:8d:14:c7:96: eb:37:ee:0e:82:c8:4d:74:b7:4c:e7:2f:0e:0d:47: 29:0c:b5:0e:6c:28:e5:49:7b:4c:86:cd:97:60:3c: 03:bf:33:ad:1f:24:d0:f9:91:43:6a:3d:01:60:d4: b1:3f:89:93:4a:d8:c3:25:eb:81:68:82:12:09:eb: b0:9c:5d:58:be:b2:de:b5:39:aa:f5:64:69:1f:5b: 42:01:2e:a9:c8:80:60:c6:b3:95:a0:58:6b:1b:75: b1:86:bb:b1:1e:18:3c:e4:62:1f:fc:48:4c:44:1c: af:db:71:9a:e1:c1:f0:38:a2:6b:46:ad:72:d8:59: 3c:dd:99:fd:ec:8d:2d:87:28:fb:57:fc:a3:f5:12: 0c:68:d8:f7:00:5d:aa:6d:a7:45:11:83:e7:65:9e: 66:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:90:38:33:2A:87:C5:26:07:34:CA:53:A5:C2:F6:48:C5:27:63:31 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2c005aeb-f132-4bb2-a865-90077d8d5e49.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:10a::/47 Signature Algorithm: sha256WithRSAEncryption 76:e2:d8:a5:94:53:88:da:97:46:d0:56:61:83:d1:f9:a9:b4: 3e:c5:e5:e0:67:aa:b3:eb:fd:64:6c:e3:11:e6:78:c9:fd:52: f1:0c:a3:cd:48:d6:16:7a:47:af:49:80:4b:66:60:d9:42:be: f7:50:cf:b7:fd:96:41:bd:01:8b:e4:2a:5d:00:4f:c5:f1:4b: 11:42:ca:33:95:d9:d8:d9:29:1b:5c:a0:4b:88:6b:98:f9:5a: 15:db:05:32:14:c9:c4:1c:ba:7c:19:b0:31:f8:02:cd:a1:71: 65:ab:5c:04:d7:c4:07:6e:17:46:23:95:b0:8b:c4:54:79:17: 6f:1a:67:bf:03:58:b7:3f:82:6f:49:cf:4b:7c:ef:41:e3:7d: d1:0d:78:b1:34:e1:ac:5e:39:a1:94:ed:bd:ae:7d:fd:d8:45: f6:6c:27:80:aa:21:fa:24:aa:5e:07:7f:c7:91:19:2d:90:32: dc:d7:b1:62:ed:5b:93:8e:9f:21:de:28:cf:a0:80:f4:51:0d: 6e:3b:d2:c8:c3:af:2b:09:01:cc:d5:5d:3d:3e:eb:2a:26:13: ef:80:9f:84:31:33:1d:8d:4a:e1:67:51:55:ac:eb:e1:29:90: 3b:8c:17:54:02:46:16:6d:c7:91:18:2b:58:8a:ca:16:cf:4c: c0:aa:10:f3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEAqAoHs8zPTbugz8pFdU3NpFZdgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDMxMDE1MDAwWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3N2E4OTE2ZDI3Nzg1YjU2OTk2ZWRhNDUwZDlhOTIxYzNm MGYwY2ExMmM5OGU2MWE3ZDMzZWIyNzY4NmMyZjU1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVvIpiwdCAMRTslUoq+Q9g3pI7sYBXDuKv1bC+fVMQm7sh g6aQQVXhBfYov6jlQinCnTZX9FocS4Rh1YOniudEp0fjOj5xTgLDW7LvRrCNerug QxERyU20KiUHhhljpkdXvpADjRTHlus37g6CyE10t0znLw4NRykMtQ5sKOVJe0yG zZdgPAO/M60fJND5kUNqPQFg1LE/iZNK2MMl64FoghIJ67CcXVi+st61Oar1ZGkf W0IBLqnIgGDGs5WgWGsbdbGGu7EeGDzkYh/8SExEHK/bcZrhwfA4omtGrXLYWTzd mf3sjS2HKPtX/KP1Egxo2PcAXaptp0URg+dlnmZDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUqpA4MyqHxSYHNMpTpcL2SMUnYzEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzJjMDA1YWViLWYxMzItNGJiMi1hODY1LTkwMDc3ZDhkNWU0OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAPDwAQowDQYJKoZIhvcNAQELBQADggEBAHbi2KWUU4jal0bQVmGD0fmp tD7F5eBnqrPr/WRs4xHmeMn9UvEMo81I1hZ6R69JgEtmYNlCvvdQz7f9lkG9AYvk Kl0AT8XxSxFCyjOV2djZKRtcoEuIa5j5WhXbBTIUycQcunwZsDH4As2hcWWrXATX xAduF0YjlbCLxFR5F28aZ78DWLc/gm9Jz0t870HjfdENeLE04axeOaGU7b2uff3Y RfZsJ4CqIfokql4Hf8eRGS2QMtzXsWLtW5OOnyHeKM+ggPRRDW470sjDrysJAczV XT0+6yomE++An4QxMx2NSuFnUVWs6+EpkDuMF1QCRhZtx5EYK1iKyhbPTMCqEPM= -----END CERTIFICATE-----Generated at Wed Nov 5 09:31:49 2025 by rpki-client