$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/37e5da86-98ab-4d9c-889e-6ab6e277d866.roa File: 37e5da86-98ab-4d9c-889e-6ab6e277d866.roa (raw, json) Hash identifier: saouIzqbWR/OZyrXiKJ+6rvswyzqzpNdftlhAeYEZu0= Subject key identifier: 27:F0:9F:A9:E3:A3:82:FA:3A:0A:0B:7E:51:56:C1:60:83:C2:CA:1F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4BA67A0AE5F275AA595B0E1D82238D58C51DC08F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/37e5da86-98ab-4d9c-889e-6ab6e277d866.roa Signing time: Tue 21 Oct 2025 12:50:41 +0000 ROA not before: Tue 21 Oct 2025 12:50:41 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:a6:7a:0a:e5:f2:75:aa:59:5b:0e:1d:82:23:8d:58:c5:1d:c0:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:41 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=c476d82f4afe41378d0615c5d0d16db5dd63ba9d892dc495728348f23c2833e0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:00:5c:0e:7f:0a:8e:be:b3:7e:18:bf:cf:b7: 72:5c:86:f0:59:b8:1e:ad:8c:3a:fa:dc:a3:a2:27: 81:65:83:43:e4:ee:12:8c:98:92:2f:f2:71:ea:ff: 1e:d9:43:5e:a0:b1:74:bc:a2:0c:2a:2c:6b:99:19: e8:b1:9c:56:3d:d8:3e:0c:c3:f0:b0:78:75:e7:64: 3f:57:5d:fa:6b:a3:f9:4c:73:0b:28:d4:02:f9:86: e1:15:28:4e:df:36:fd:c1:38:a8:38:94:6e:c8:7f: df:0f:9f:e9:a9:0a:ca:4b:9d:9c:3e:e8:57:95:48: 84:aa:e9:69:1c:82:66:ef:4b:0d:85:c3:7c:61:4a: 0f:4d:18:a1:c8:2f:9e:e9:b8:4e:00:3e:c9:66:4d: 7e:19:b8:7c:df:2d:25:d5:0c:1c:c2:e0:c5:9a:5d: 32:a8:7c:91:60:e2:62:3d:0b:eb:c7:4c:7d:e5:1c: 12:64:cf:9a:7c:bf:ea:b1:f6:67:09:47:23:86:c7: 31:cf:ff:d1:40:2a:22:99:16:31:aa:de:a1:e8:dd: cd:b9:ca:67:72:ca:ba:62:5e:06:09:f6:4d:4d:2f: d9:1d:10:72:38:fd:81:3e:c8:b5:71:5c:ad:3c:71: 7b:44:73:d0:30:19:14:88:c7:eb:f5:f0:da:93:7f: a4:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:F0:9F:A9:E3:A3:82:FA:3A:0A:0B:7E:51:56:C1:60:83:C2:CA:1F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/37e5da86-98ab-4d9c-889e-6ab6e277d866.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1::/48 Signature Algorithm: sha256WithRSAEncryption 9a:c5:68:9c:33:1f:69:5a:36:5e:10:fc:71:8c:3a:b7:13:c9: 53:7e:24:05:4f:48:c6:98:5a:a6:e1:f3:fa:f5:e5:ca:68:ea: ba:66:b8:b7:58:b2:3b:a4:ad:ce:0f:1d:fa:fa:07:f5:0f:e8: bc:32:f9:66:33:dd:d7:c4:b4:00:5e:cb:c9:34:99:4a:53:fb: 86:0d:2d:2d:86:22:95:3a:50:b8:d8:74:a5:1a:c8:89:40:c4: c6:4a:61:5d:8b:2d:72:8d:4b:99:69:e8:5c:bb:4e:e8:70:63: 13:53:bc:f6:16:9b:43:68:8c:c7:39:d2:2d:ac:96:5f:2d:6d: 4f:32:b4:bb:1d:98:cf:3d:26:43:13:e5:38:3f:a7:83:d3:46: 18:5f:41:20:13:5a:9d:e6:59:a9:60:4c:f8:e2:fc:52:79:e8: e8:b9:ac:7d:b7:4f:a4:77:69:be:b5:f0:fa:c9:d2:03:9d:75: aa:53:d9:8b:60:e6:44:20:3a:e7:23:65:a7:03:d6:c9:f9:e2: ec:40:72:20:0f:5e:7a:36:90:c7:3c:44:0e:96:fe:83:a4:98: 18:53:50:3c:67:0b:db:69:76:95:05:da:6a:30:0d:ed:03:df: f4:3a:08:6d:1c:1e:39:65:47:f7:67:54:c6:67:23:33:59:34: d1:3f:9c:50 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUS6Z6CuXydapZWw4dgiONWMUdwI8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDQxWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNDc2ZDgyZjRhZmU0MTM3OGQwNjE1YzVkMGQxNmRiNWRk NjNiYTlkODkyZGM0OTU3MjgzNDhmMjNjMjgzM2UwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjAFwOfwqOvrN+GL/Pt3JchvBZuB6tjDr63KOiJ4Flg0Pk 7hKMmJIv8nHq/x7ZQ16gsXS8ogwqLGuZGeixnFY92D4Mw/CweHXnZD9XXfpro/lM cwso1AL5huEVKE7fNv3BOKg4lG7If98Pn+mpCspLnZw+6FeVSISq6WkcgmbvSw2F w3xhSg9NGKHIL57puE4APslmTX4ZuHzfLSXVDBzC4MWaXTKofJFg4mI9C+vHTH3l HBJkz5p8v+qx9mcJRyOGxzHP/9FAKiKZFjGq3qHo3c25ymdyyrpiXgYJ9k1NL9kd EHI4/YE+yLVxXK08cXtEc9AwGRSIx+v18NqTf6SRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUJ/CfqeOjgvo6Cgt+UVbBYIPCyh8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM3ZTVkYTg2LTk4YWItNGQ5Yy04ODllLTZhYjZlMjc3ZDg2Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAEwDQYJKoZIhvcNAQELBQADggEBAJrFaJwzH2laNl4Q/HGMOrcT yVN+JAVPSMaYWqbh8/r15cpo6rpmuLdYsjukrc4PHfr6B/UP6Lwy+WYz3dfEtABe y8k0mUpT+4YNLS2GIpU6ULjYdKUayIlAxMZKYV2LLXKNS5lp6Fy7TuhwYxNTvPYW m0NojMc50i2sll8tbU8ytLsdmM89JkMT5Tg/p4PTRhhfQSATWp3mWalgTPji/FJ5 6Oi5rH23T6R3ab618PrJ0gOddapT2Ytg5kQgOucjZacD1sn54uxAciAPXno2kMc8 RA6W/oOkmBhTUDxnC9tpdpUF2mowDe0D3/Q6CG0cHjllR/dnVMZnIzNZNNE/nFA= -----END CERTIFICATE-----Generated at Wed Nov 5 05:44:45 2025 by rpki-client