$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/39b45593-f3f3-4a2e-aa3a-895815db366a.roa File: 39b45593-f3f3-4a2e-aa3a-895815db366a.roa (raw, json) Hash identifier: 4mLwmlNMCVuUwldU4j2i7ITvYv1d4Lo7L0uYUftRZoE= Subject key identifier: 00:D5:41:26:51:37:68:56:30:40:59:AA:D8:00:E3:D9:D5:AB:91:07 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6E0C0515EE66F7CE0EDB2828831E5F2EE3776579 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/39b45593-f3f3-4a2e-aa3a-895815db366a.roa Signing time: Tue 21 Oct 2025 13:00:19 +0000 ROA not before: Tue 21 Oct 2025 13:00:19 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:0c:05:15:ee:66:f7:ce:0e:db:28:28:83:1e:5f:2e:e3:77:65:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:00:19 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=49edf0ce21256e4b518a70cc6e10855a59c062d0a7db8170edcffd84b1d46d63, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:55:0f:6b:03:39:ab:f1:8c:a0:ed:07:f9:97: 62:66:72:31:b5:d8:a6:da:94:6a:60:1b:fe:cb:63: de:85:e4:75:1e:60:70:24:78:af:d7:f8:83:6c:28: 2a:47:52:a2:34:af:74:a8:20:c3:f6:be:ed:cd:5a: 47:cb:38:4c:1b:b9:4a:2b:07:02:cf:dd:fc:54:bf: 7c:68:60:67:22:ab:29:a1:2b:b9:29:08:4f:31:db: 74:8a:05:08:a8:22:8d:e4:4f:03:a4:58:aa:aa:c0: a2:c0:93:e9:ed:09:5b:5e:9d:ed:ca:9c:6e:b3:1b: 11:b9:38:9b:17:ed:9f:51:6e:d8:4b:4e:4a:c3:4a: f4:f5:ad:53:ad:5a:ae:0a:16:7f:85:9a:ef:08:e6: 0f:ca:25:c2:28:de:fb:35:35:c8:74:83:31:e6:2b: 95:5a:10:fe:37:aa:ce:88:b3:8f:99:38:ce:fe:8d: 45:ca:23:10:87:1e:9d:70:63:f8:c3:75:66:e3:29: 52:86:cf:a0:31:f7:42:0d:90:80:1a:89:ca:ba:17: 20:46:8e:79:be:77:33:8c:ba:54:bb:60:10:fb:55: 0c:a9:f9:7c:68:b8:3f:0f:cb:b2:6a:28:2d:e9:4b: 84:61:6e:ad:eb:db:e6:d3:87:6b:ba:33:20:4c:35: 9e:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:D5:41:26:51:37:68:56:30:40:59:AA:D8:00:E3:D9:D5:AB:91:07 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/39b45593-f3f3-4a2e-aa3a-895815db366a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f000::/39 Signature Algorithm: sha256WithRSAEncryption 62:54:86:5b:5a:61:b8:12:05:05:fa:80:8e:0a:c3:f9:10:fa: 6e:be:62:b0:07:4f:de:69:f0:ba:4a:94:f8:39:ed:b1:a1:fe: dd:98:ce:3a:c2:aa:20:c6:11:00:6c:6f:0a:bf:2e:fe:95:94: be:19:38:e2:b2:92:62:e7:03:cf:e4:2e:2b:43:ff:bb:c9:cc: 42:7f:55:91:98:46:fd:6a:3d:cf:5e:94:2f:02:a6:a6:40:ec: 81:45:3b:39:aa:18:9a:45:39:64:3e:db:68:95:3a:7a:36:1b: 04:2e:f5:c5:34:80:24:38:ef:bd:39:45:37:b9:61:67:96:2a: 5d:e2:ac:07:bb:67:f0:d1:16:be:91:5d:d9:58:5f:48:f2:9c: 02:25:2a:26:05:02:ea:8b:3e:92:af:f1:ab:61:dc:ff:4e:41: c6:58:e7:c7:f0:12:bc:97:77:e4:06:de:cb:c6:bc:a3:95:3e: c1:91:c1:04:b6:39:6f:7f:cd:74:e3:66:e7:35:1d:02:1c:b9: 21:fc:ce:1d:b7:89:f5:8f:8f:7c:0e:6c:64:f9:97:61:0f:d4: fe:95:86:e9:08:58:cc:e2:b1:68:c4:07:e4:a7:12:6b:a8:dd: 46:7e:a0:3e:3d:62:13:5d:f7:a6:ac:0d:d4:ea:03:47:60:d4: b7:09:0c:43 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUbgwFFe5m984O2ygogx5fLuN3ZXkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMwMDE5WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0OWVkZjBjZTIxMjU2ZTRiNTE4YTcwY2M2ZTEwODU1YTU5 YzA2MmQwYTdkYjgxNzBlZGNmZmQ4NGIxZDQ2ZDYzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRVQ9rAzmr8Yyg7Qf5l2JmcjG12KbalGpgG/7LY96F5HUe YHAkeK/X+INsKCpHUqI0r3SoIMP2vu3NWkfLOEwbuUorBwLP3fxUv3xoYGciqymh K7kpCE8x23SKBQioIo3kTwOkWKqqwKLAk+ntCVtene3KnG6zGxG5OJsX7Z9RbthL TkrDSvT1rVOtWq4KFn+Fmu8I5g/KJcIo3vs1Nch0gzHmK5VaEP43qs6Is4+ZOM7+ jUXKIxCHHp1wY/jDdWbjKVKGz6Ax90INkIAaicq6FyBGjnm+dzOMulS7YBD7VQyp +XxouD8Py7JqKC3pS4Rhbq3r2+bTh2u6MyBMNZ6pAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUANVBJlE3aFYwQFmq2ADj2dWrkQcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM5YjQ1NTkzLWYzZjMtNGEyZS1hYTNhLTg5NTgxNWRiMzY2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAPAAADANBgkqhkiG9w0BAQsFAAOCAQEAYlSGW1phuBIFBfqAjgrD+RD6 br5isAdP3mnwukqU+DntsaH+3ZjOOsKqIMYRAGxvCr8u/pWUvhk44rKSYucDz+Qu K0P/u8nMQn9VkZhG/Wo9z16ULwKmpkDsgUU7OaoYmkU5ZD7baJU6ejYbBC71xTSA JDjvvTlFN7lhZ5YqXeKsB7tn8NEWvpFd2VhfSPKcAiUqJgUC6os+kq/xq2Hc/05B xljnx/ASvJd35Abey8a8o5U+wZHBBLY5b3/NdONm5zUdAhy5IfzOHbeJ9Y+PfA5s ZPmXYQ/U/pWG6QhYzOKxaMQH5KcSa6jdRn6gPj1iE133pqwN1OoDR2DUtwkMQw== -----END CERTIFICATE-----Generated at Wed Nov 5 05:46:31 2025 by rpki-client