$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3562da89-c8ff-4159-8f92-365721d94405.roa File: 3562da89-c8ff-4159-8f92-365721d94405.roa (raw, json) Hash identifier: knLxAXYLGSa37awvkP6zVtIXEUB4iuRqMRFWQrvB3fM= Subject key identifier: D6:01:4A:8D:EC:84:B8:DC:24:C2:EE:EE:30:03:02:0A:D9:E8:03:2E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 370E35A517F568194C8D0A579B266A10C82FD4D7 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3562da89-c8ff-4159-8f92-365721d94405.roa Signing time: Fri 31 Oct 2025 01:50:14 +0000 ROA not before: Fri 31 Oct 2025 01:50:14 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f030::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:0e:35:a5:17:f5:68:19:4c:8d:0a:57:9b:26:6a:10:c8:2f:d4:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 31 01:50:14 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=5f963b27cd975119fb8782c999f8dcd55629ab33761d755e88a85c69b9ab5329, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:4a:21:ef:3e:f6:86:34:9a:37:4a:c0:8d:58: 94:1c:ba:31:38:f7:32:a5:90:47:04:4a:eb:f0:f4: 7c:2a:b3:96:39:3f:0e:27:6a:5a:dd:65:0b:b3:39: 0b:56:e7:9d:f5:23:d4:df:2b:d0:bc:90:f1:6b:25: 05:ae:41:8a:e6:ed:f8:39:cf:39:ba:f2:68:e5:a8: 41:84:58:d1:57:77:27:01:2b:11:e7:7b:8d:9c:22: 35:cc:ff:de:3d:28:a5:82:aa:6e:98:0a:dd:39:16: 13:1a:69:98:21:0b:bf:d9:d4:ad:b6:9a:d5:ec:1a: e1:9e:59:7c:28:70:80:8a:27:e6:63:23:92:64:41: c2:ef:20:e9:ae:68:ed:ae:6e:02:5a:a4:a4:e7:26: 34:27:76:8e:7d:dc:9a:91:27:97:49:af:13:98:62: 59:d7:fb:c7:c6:29:e1:49:e1:b2:a1:39:d2:eb:44: 3a:6b:ee:96:a7:e5:0d:62:81:93:a4:03:ac:6b:49: 15:5b:bb:63:ff:bf:6b:d2:cf:d3:f2:6e:48:e7:40: 0c:d7:f4:11:21:56:8b:b7:22:7b:f2:fe:28:8b:37: 02:5a:8f:34:c6:6a:02:e6:15:fa:c5:ed:7b:ff:f8: cb:aa:fd:c8:dc:b2:f0:09:62:a0:b2:1d:fe:4c:03: ed:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:01:4A:8D:EC:84:B8:DC:24:C2:EE:EE:30:03:02:0A:D9:E8:03:2E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3562da89-c8ff-4159-8f92-365721d94405.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f030::/44 Signature Algorithm: sha256WithRSAEncryption 77:6c:de:c9:e5:59:fa:54:e4:4d:c4:7c:fc:63:f6:8a:f8:d1: 5e:59:21:d4:b5:7e:03:df:09:8e:ed:0d:08:07:c3:77:07:52: 30:6e:55:50:a7:17:b8:de:80:bd:3c:2a:27:ba:d9:d1:51:07: bb:13:b5:b1:a3:47:e4:29:38:76:16:f9:aa:26:d8:45:87:43: df:c2:ac:e5:95:91:0b:d5:3c:1e:7e:7c:75:78:7d:2b:92:2d: dc:85:42:6b:8b:44:16:84:a6:3f:99:5a:0a:73:25:3a:d2:f8: 95:d3:6f:a9:f5:22:8a:a6:ca:6d:35:38:69:15:d7:a1:42:0a: 84:6b:9d:c8:74:8b:87:09:fb:1f:00:fa:ed:a1:50:e4:86:50: 87:be:7d:7f:d0:ac:c9:6f:96:4e:d9:13:09:70:b9:8a:2b:7f: d6:84:b2:c7:fc:f0:78:cb:57:21:d9:48:ba:4a:19:a2:c9:79: aa:37:ef:73:2d:28:12:f2:a5:76:c8:b2:86:53:24:d9:62:0d: e7:b2:65:7c:57:c7:5f:c7:93:70:7b:8f:38:c3:cd:f3:ad:4f: 25:91:cd:4c:dc:19:c0:6a:77:57:e6:0f:a4:7f:15:4e:ae:01: d5:8b:2f:f6:b9:57:99:61:ab:c0:12:40:c8:dc:bc:4f:99:16: 50:ac:e4:4b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNw41pRf1aBlMjQpXmyZqEMgv1NcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDMxMDE1MDE0WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1Zjk2M2IyN2NkOTc1MTE5ZmI4NzgyYzk5OWY4ZGNkNTU2 MjlhYjMzNzYxZDc1NWU4OGE4NWM2OWI5YWI1MzI5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDaSiHvPvaGNJo3SsCNWJQcujE49zKlkEcESuvw9Hwqs5Y5 Pw4nalrdZQuzOQtW5531I9TfK9C8kPFrJQWuQYrm7fg5zzm68mjlqEGEWNFXdycB KxHne42cIjXM/949KKWCqm6YCt05FhMaaZghC7/Z1K22mtXsGuGeWXwocICKJ+Zj I5JkQcLvIOmuaO2ubgJapKTnJjQndo593JqRJ5dJrxOYYlnX+8fGKeFJ4bKhOdLr RDpr7pan5Q1igZOkA6xrSRVbu2P/v2vSz9PybkjnQAzX9BEhVou3Invy/iiLNwJa jzTGagLmFfrF7Xv/+Muq/cjcsvAJYqCyHf5MA+2jAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU1gFKjeyEuNwkwu7uMAMCCtnoAy4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM1NjJkYTg5LWM4ZmYtNDE1OS04ZjkyLTM2NTcyMWQ5NDQwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78DAwDQYJKoZIhvcNAQELBQADggEBAHds3snlWfpU5E3EfPxj9or4 0V5ZIdS1fgPfCY7tDQgHw3cHUjBuVVCnF7jegL08Kie62dFRB7sTtbGjR+QpOHYW +aom2EWHQ9/CrOWVkQvVPB5+fHV4fSuSLdyFQmuLRBaEpj+ZWgpzJTrS+JXTb6n1 Ioqmym01OGkV16FCCoRrnch0i4cJ+x8A+u2hUOSGUIe+fX/QrMlvlk7ZEwlwuYor f9aEssf88HjLVyHZSLpKGaLJeao373MtKBLypXbIsoZTJNliDeeyZXxXx1/Hk3B7 jzjDzfOtTyWRzUzcGcBqd1fmD6R/FU6uAdWLL/a5V5lhq8ASQMjcvE+ZFlCs5Es= -----END CERTIFICATE-----Generated at Wed Nov 5 17:18:35 2025 by rpki-client