$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/455cc001-6d98-49b1-ab73-9a1e06726f9f.roa File: 455cc001-6d98-49b1-ab73-9a1e06726f9f.roa (raw, json) Hash identifier: aowojt9DFJbmThtW9ihXedGCeQTEQCLsuhmMNPLIzhs= Subject key identifier: 3D:FC:67:67:8A:7C:C9:18:2D:57:39:BC:61:D6:14:C7:53:08:A5:CF Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 109F755DFFAD0BCCB695CD29181AF1249B5E4A99 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/455cc001-6d98-49b1-ab73-9a1e06726f9f.roa Signing time: Tue 04 Nov 2025 00:10:07 +0000 ROA not before: Tue 04 Nov 2025 00:10:07 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:9f:75:5d:ff:ad:0b:cc:b6:95:cd:29:18:1a:f1:24:9b:5e:4a:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 4 00:10:07 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=60fc060efbed133df7c2c93cb074312e013dd14c16951bdc687ba190a17fcf3b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:b8:91:85:ce:dd:ab:83:48:37:b5:dd:2d:c8: 86:52:6e:a3:7d:ae:f4:c3:9e:2e:4a:45:c0:54:38: d3:b7:c1:41:f6:22:34:19:2c:0a:67:cc:e7:b2:0b: 5a:50:c6:f3:f6:b2:4a:10:4d:fe:5e:27:b8:5e:29: 40:03:5e:7a:87:98:fa:d1:43:66:2e:13:2b:66:2a: c8:bc:1a:92:f9:a0:b3:21:78:c2:19:ca:fd:0c:5a: 33:07:c8:19:ac:51:39:08:fc:2b:52:6c:12:43:94: 3d:f1:2a:23:b6:9b:40:7c:1c:db:f0:3d:aa:95:95: 37:cd:69:5e:3c:80:d8:8d:1d:fe:c2:34:ab:c9:02: c8:ec:b3:e1:22:34:3c:ae:17:3a:f0:ad:1e:9e:26: 5e:6d:25:27:3f:8f:ad:a9:77:d8:fd:2d:f1:5c:ed: 1b:88:31:a3:5f:a2:d0:fb:57:6b:fa:85:f1:9d:45: 66:bd:01:62:4f:a3:c5:1e:66:4e:54:fd:dd:80:b1: 6c:62:75:25:f6:93:e2:49:8f:ec:79:2c:bf:63:73: d9:b2:fd:de:74:cc:93:1b:87:15:1b:d4:1a:25:be: cf:f5:8f:32:2f:27:13:94:b2:80:ce:cc:c6:e6:3d: d3:30:16:19:83:f6:8b:21:e5:7c:1b:db:2b:b4:4d: 42:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:FC:67:67:8A:7C:C9:18:2D:57:39:BC:61:D6:14:C7:53:08:A5:CF X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/455cc001-6d98-49b1-ab73-9a1e06726f9f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:11::/48 Signature Algorithm: sha256WithRSAEncryption 47:b7:2e:7f:97:e4:b7:7b:54:96:11:32:e6:0c:4b:09:71:28: 96:82:c4:c6:02:e3:c7:20:77:ea:ff:58:16:e5:c9:c7:8f:05: 1d:cd:20:5e:d2:16:af:64:7d:54:5e:6e:da:9a:f1:0f:ef:33: 96:f3:29:85:de:53:e5:20:bb:43:6d:ba:c8:6c:08:4c:49:55: b0:1d:9a:04:5c:af:f0:e8:96:b9:78:38:55:59:bd:f7:fc:33: 09:46:16:c8:6a:5c:05:e6:e4:e9:cb:52:7d:48:9e:b8:82:3e: 42:d4:99:15:a1:ff:80:bf:12:73:fc:26:61:0b:5b:c5:4f:cd: 85:e8:2a:f1:1e:da:d7:33:fc:9d:dc:8d:c2:54:76:e0:61:e0: 48:62:64:9b:67:95:bb:4c:cf:7f:7c:6d:d1:b9:94:f4:4e:f2: d1:83:af:e0:a6:b0:93:99:c6:7b:f4:ae:a8:5c:13:aa:76:6e: 1a:d2:b6:fa:7c:95:27:cb:00:4b:b6:30:f8:34:20:ac:83:d6: 78:0e:5d:40:f1:99:70:95:ea:17:14:cd:8a:1d:5e:44:20:35: 38:fb:04:23:3f:56:0d:0e:05:22:1e:ce:f0:b4:65:f5:97:80: 6e:fa:79:dd:c0:87:16:cd:f5:fd:a6:93:81:bb:aa:8c:d9:b7: 4a:38:c1:15 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEJ91Xf+tC8y2lc0pGBrxJJteSpkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMTA0MDAxMDA3WhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MGZjMDYwZWZiZWQxMzNkZjdjMmM5M2NiMDc0MzEyZTAx M2RkMTRjMTY5NTFiZGM2ODdiYTE5MGExN2ZjZjNiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpuJGFzt2rg0g3td0tyIZSbqN9rvTDni5KRcBUONO3wUH2 IjQZLApnzOeyC1pQxvP2skoQTf5eJ7heKUADXnqHmPrRQ2YuEytmKsi8GpL5oLMh eMIZyv0MWjMHyBmsUTkI/CtSbBJDlD3xKiO2m0B8HNvwPaqVlTfNaV48gNiNHf7C NKvJAsjss+EiNDyuFzrwrR6eJl5tJSc/j62pd9j9LfFc7RuIMaNfotD7V2v6hfGd RWa9AWJPo8UeZk5U/d2AsWxidSX2k+JJj+x5LL9jc9my/d50zJMbhxUb1Bolvs/1 jzIvJxOUsoDOzMbmPdMwFhmD9osh5Xwb2yu0TUIFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUPfxnZ4p8yRgtVzm8YdYUx1MIpc8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzQ1NWNjMDAxLTZkOTgtNDliMS1hYjczLTlhMWUwNjcyNmY5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwABEwDQYJKoZIhvcNAQELBQADggEBAEe3Ln+X5Ld7VJYRMuYMSwlx KJaCxMYC48cgd+r/WBblycePBR3NIF7SFq9kfVRebtqa8Q/vM5bzKYXeU+Ugu0Nt ushsCExJVbAdmgRcr/Dolrl4OFVZvff8MwlGFshqXAXm5OnLUn1InriCPkLUmRWh /4C/EnP8JmELW8VPzYXoKvEe2tcz/J3cjcJUduBh4EhiZJtnlbtMz398bdG5lPRO 8tGDr+CmsJOZxnv0rqhcE6p2bhrStvp8lSfLAEu2MPg0IKyD1ngOXUDxmXCV6hcU zYodXkQgNTj7BCM/Vg0OBSIezvC0ZfWXgG76ed3AhxbN9f2mk4G7qozZt0o4wRU= -----END CERTIFICATE-----Generated at Wed Nov 5 05:48:00 2025 by rpki-client