$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/321028ee-2e2d-410c-8bdc-39a00f2044f0.roa File: 321028ee-2e2d-410c-8bdc-39a00f2044f0.roa (raw, json) Hash identifier: dU+hPJXBxxKzh3hvuj9zRh//T/vi14KE6Nb00R6sCqk= Subject key identifier: DA:3C:B3:A2:F9:44:96:0E:8D:87:0A:2A:2A:5F:9B:AC:7F:2E:E2:A4 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 653741DA1F599C7C94D6B55383510D918719EFAF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/321028ee-2e2d-410c-8bdc-39a00f2044f0.roa Signing time: Tue 21 Oct 2025 13:00:04 +0000 ROA not before: Tue 21 Oct 2025 13:00:04 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:37:41:da:1f:59:9c:7c:94:d6:b5:53:83:51:0d:91:87:19:ef:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:00:04 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=9627a417bbec8c9d4cd9da21c7a079cfaa78f266109d7562c7b841fcb852e5e6, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b8:1a:87:e6:8b:12:20:3c:7c:01:68:6f:a5: c4:1c:9a:39:1c:b0:e6:62:1c:d7:33:c9:a9:0a:9c: 02:62:8e:6e:41:9b:ab:b0:e8:60:4e:45:80:b5:83: 95:4f:8c:d7:61:a7:c0:62:ae:b4:83:a3:49:9d:6b: f3:65:46:8b:ef:0e:15:4e:45:f0:87:65:51:51:34: d3:49:41:0f:a9:8d:f9:7d:3d:87:4c:25:4d:a3:88: 80:2f:9e:73:7e:24:ae:20:d0:cc:99:fe:59:a2:a2: e4:19:ab:4f:e6:96:b1:db:5b:11:cb:2b:77:fc:ce: 92:bf:6a:c6:cb:e6:30:e4:a2:76:03:24:42:b0:e7: 8b:85:93:03:72:21:f7:71:22:1f:ec:e1:66:50:ce: d6:64:11:f5:5b:5a:4c:d8:29:84:ce:be:0d:56:9a: ea:01:8a:24:81:85:da:47:7b:e8:ae:ea:50:9c:dc: 60:b5:c2:45:86:9a:8d:10:fd:29:9e:9c:73:56:c4: c2:8c:ff:3b:cb:fa:0a:61:59:c9:dc:3b:73:3d:a9: 4d:c3:6f:cf:1c:80:26:6d:4b:4f:3d:7f:3a:18:76: 08:b0:e6:5f:6b:44:b6:e8:bc:f1:67:c2:bd:f7:30: f0:c9:91:9e:e4:36:2e:83:73:45:65:0e:de:be:bd: ed:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:3C:B3:A2:F9:44:96:0E:8D:87:0A:2A:2A:5F:9B:AC:7F:2E:E2:A4 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/321028ee-2e2d-410c-8bdc-39a00f2044f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:500::/48 Signature Algorithm: sha256WithRSAEncryption 59:fb:ca:75:e9:f5:8b:32:2d:b8:d9:fb:88:92:79:f7:36:7b: f1:38:1a:bf:a3:cb:86:90:82:74:71:84:42:5f:88:4a:66:34: f2:31:95:c5:51:50:ea:6a:f2:a0:ec:3a:b4:fc:c7:ea:8f:1f: ac:2a:ca:75:32:02:4b:b7:9a:23:7d:c2:dd:e6:aa:af:fb:49: 18:d2:0c:85:74:aa:10:3b:3f:3c:98:3e:61:83:8a:9f:14:b1: b7:a0:7b:6a:12:5a:0c:09:0c:b7:23:d9:3e:e0:bf:6f:96:c7: 15:4a:23:e9:a3:78:ae:4f:a1:82:7f:71:bd:ad:a2:95:b1:63: a1:11:f0:9b:56:b0:29:9a:e4:b2:32:55:d3:8d:a5:14:15:ef: 98:4c:c8:f6:5d:37:cf:52:50:2c:90:ae:eb:a0:74:ff:9b:c7: bb:4d:ab:60:a5:cd:f4:2a:af:09:5e:db:34:e4:57:71:19:72: 7d:0b:7b:7f:6c:95:c3:91:6d:f0:5b:66:bd:fc:61:b0:9a:36: 74:c7:6d:8c:0e:d9:c7:bd:07:5a:c1:05:76:f4:9b:6d:22:3f: 52:e1:ba:a4:eb:7f:0d:19:b3:c0:d1:f1:8a:53:7b:85:b0:80: f6:7c:e2:80:cc:8c:82:54:a9:74:ca:40:cd:18:dc:1f:4a:4b: 6e:ee:ef:8e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZTdB2h9ZnHyU1rVTg1ENkYcZ768wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMwMDA0WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NjI3YTQxN2JiZWM4YzlkNGNkOWRhMjFjN2EwNzljZmFh NzhmMjY2MTA5ZDc1NjJjN2I4NDFmY2I4NTJlNWU2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNuBqH5osSIDx8AWhvpcQcmjkcsOZiHNczyakKnAJijm5B m6uw6GBORYC1g5VPjNdhp8BirrSDo0mda/NlRovvDhVORfCHZVFRNNNJQQ+pjfl9 PYdMJU2jiIAvnnN+JK4g0MyZ/lmiouQZq0/mlrHbWxHLK3f8zpK/asbL5jDkonYD JEKw54uFkwNyIfdxIh/s4WZQztZkEfVbWkzYKYTOvg1WmuoBiiSBhdpHe+iu6lCc 3GC1wkWGmo0Q/SmenHNWxMKM/zvL+gphWcncO3M9qU3Db88cgCZtS089fzoYdgiw 5l9rRLbovPFnwr33MPDJkZ7kNi6Dc0VlDt6+ve0tAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2jyzovlElg6NhwoqKl+brH8u4qQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzMyMTAyOGVlLTJlMmQtNDEwYy04YmRjLTM5YTAwZjIwNDRmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwBQAwDQYJKoZIhvcNAQELBQADggEBAFn7ynXp9YsyLbjZ+4iSefc2 e/E4Gr+jy4aQgnRxhEJfiEpmNPIxlcVRUOpq8qDsOrT8x+qPH6wqynUyAku3miN9 wt3mqq/7SRjSDIV0qhA7PzyYPmGDip8Usbege2oSWgwJDLcj2T7gv2+WxxVKI+mj eK5PoYJ/cb2topWxY6ER8JtWsCma5LIyVdONpRQV75hMyPZdN89SUCyQruugdP+b x7tNq2ClzfQqrwle2zTkV3EZcn0Le39slcORbfBbZr38YbCaNnTHbYwO2ce9B1rB BXb0m20iP1LhuqTrfw0Zs8DR8YpTe4WwgPZ84oDMjIJUqXTKQM0Y3B9KS27u744= -----END CERTIFICATE-----Generated at Wed Nov 5 07:47:53 2025 by rpki-client