$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4550dcb5-431c-4b07-9e46-224c71cb2b00.roa File: 4550dcb5-431c-4b07-9e46-224c71cb2b00.roa (raw, json) Hash identifier: MzvdXacDbLLRXhkrxCPrmhGA24/dQCrCn0dJX7mEoYY= Subject key identifier: B7:E4:94:77:A8:0E:EB:83:B9:52:66:8D:FD:03:89:94:CD:22:2B:43 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4D8D5EE240C55E071C4D09C24BFBD656C7ACECF0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4550dcb5-431c-4b07-9e46-224c71cb2b00.roa Signing time: Tue 21 Oct 2025 13:00:05 +0000 ROA not before: Tue 21 Oct 2025 13:00:05 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:5518::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:8d:5e:e2:40:c5:5e:07:1c:4d:09:c2:4b:fb:d6:56:c7:ac:ec:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:00:05 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=27e9ad4f3847ccf38a08147f81c95e0e31abd10a0db5fb3dbd9cf50bc0f026ab, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9d:bc:cb:67:b5:d9:0a:f6:42:d2:e1:72:d5: 6f:cb:98:f2:54:36:b0:db:ed:35:25:8d:81:b6:88: f0:8a:bd:c0:15:32:57:a8:d8:20:52:5c:6c:09:22: 46:76:ca:74:8b:cb:b2:81:36:3f:60:30:93:2f:db: f1:51:94:c9:a3:f8:db:10:30:09:70:d4:f5:ee:e1: 42:7d:fe:68:cf:65:02:8d:2d:03:76:30:d4:7c:fd: 25:cd:e8:a8:c4:c1:cf:20:ea:f6:f0:94:ac:7a:b4: a6:e1:14:78:bd:2f:c4:d0:51:42:e2:f3:94:6c:9b: f7:89:ed:98:a9:5e:5a:6d:80:a3:2b:98:d6:e6:12: dc:bc:29:9f:6c:b7:6c:ed:8e:3b:da:f9:e4:3a:8f: 3e:62:28:f9:73:68:0c:52:2e:cc:64:41:27:15:96: 19:c2:23:78:f8:37:f2:c9:43:28:45:cb:1d:53:48: f2:66:fb:dc:95:ca:d4:2b:b7:3a:dc:14:23:b8:09: 45:8f:c8:9d:74:a2:f1:37:9b:b7:06:a0:d8:21:aa: 5e:58:6a:0f:0d:62:1a:7a:19:4c:ae:c9:3a:0a:8a: 28:f6:74:d0:7c:97:0c:b6:ff:a8:63:fc:9f:60:5b: f8:01:9c:13:30:9f:c6:ab:3d:3d:90:fe:b2:2d:69: 31:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:E4:94:77:A8:0E:EB:83:B9:52:66:8D:FD:03:89:94:CD:22:2B:43 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4550dcb5-431c-4b07-9e46-224c71cb2b00.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5518::/48 Signature Algorithm: sha256WithRSAEncryption 31:95:34:b2:b9:06:c8:db:f5:d7:12:ba:3d:01:2d:66:b7:69: dc:d3:99:ff:78:b1:28:74:da:6b:bf:f9:9d:02:d7:d5:9c:2b: 42:bc:37:10:db:7b:19:da:b0:56:5a:0b:f2:9e:fc:9c:e9:be: bc:95:b9:ba:fe:97:ce:38:84:8e:4b:9c:c0:2f:71:c0:d3:53: aa:7f:32:85:36:5d:02:c9:b8:c8:c8:d1:a5:50:ed:2f:74:f3: 71:8c:e8:88:6e:f1:30:0e:d0:65:5d:dd:9e:49:8a:a8:cd:00: 7f:57:24:6a:8a:e8:29:1e:06:6b:b5:82:b4:48:a1:78:b3:7c: 3a:d1:8b:5d:49:eb:ed:b0:73:6a:26:0e:c0:43:60:3d:2e:a7: a1:7c:e1:4d:41:0e:74:ba:52:d4:5f:bb:58:25:15:ab:7f:d7: e9:da:1f:10:23:17:7d:9d:28:13:14:8c:13:24:1c:d6:3a:56: 03:45:68:0e:b9:a4:b5:a7:4b:12:c2:6b:88:4e:a9:90:10:13: b7:5c:13:9c:42:76:07:02:cd:89:6a:db:c1:d6:ec:56:69:7b: 5d:84:1e:30:78:43:ac:98:c0:97:70:f8:f8:11:4d:67:14:e5: c1:db:d6:bb:84:be:99:cd:23:cd:e6:6d:c9:84:ef:d7:1d:99: fe:58:ff:0a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTY1e4kDFXgccTQnCS/vWVses7PAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMwMDA1WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyN2U5YWQ0ZjM4NDdjY2YzOGEwODE0N2Y4MWM5NWUwZTMx YWJkMTBhMGRiNWZiM2RiZDljZjUwYmMwZjAyNmFiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJnbzLZ7XZCvZC0uFy1W/LmPJUNrDb7TUljYG2iPCKvcAV Mleo2CBSXGwJIkZ2ynSLy7KBNj9gMJMv2/FRlMmj+NsQMAlw1PXu4UJ9/mjPZQKN LQN2MNR8/SXN6KjEwc8g6vbwlKx6tKbhFHi9L8TQUULi85Rsm/eJ7ZipXlptgKMr mNbmEty8KZ9st2ztjjva+eQ6jz5iKPlzaAxSLsxkQScVlhnCI3j4N/LJQyhFyx1T SPJm+9yVytQrtzrcFCO4CUWPyJ10ovE3m7cGoNghql5Yag8NYhp6GUyuyToKiij2 dNB8lwy2/6hj/J9gW/gBnBMwn8arPT2Q/rItaTHJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUt+SUd6gO64O5UmaN/QOJlM0iK0MwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzQ1NTBkY2I1LTQzMWMtNGIwNy05ZTQ2LTIyNGM3MWNiMmIwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRgwDQYJKoZIhvcNAQELBQADggEBADGVNLK5Bsjb9dcSuj0BLWa3 adzTmf94sSh02mu/+Z0C19WcK0K8NxDbexnasFZaC/Ke/JzpvryVubr+l844hI5L nMAvccDTU6p/MoU2XQLJuMjI0aVQ7S9083GM6Ihu8TAO0GVd3Z5JiqjNAH9XJGqK 6CkeBmu1grRIoXizfDrRi11J6+2wc2omDsBDYD0up6F84U1BDnS6UtRfu1glFat/ 1+naHxAjF32dKBMUjBMkHNY6VgNFaA65pLWnSxLCa4hOqZAQE7dcE5xCdgcCzYlq 28HW7FZpe12EHjB4Q6yYwJdw+PgRTWcU5cHb1ruEvpnNI83mbcmE79cdmf5Y/wo= -----END CERTIFICATE-----Generated at Wed Nov 5 05:44:55 2025 by rpki-client