$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/48713909-c1f3-4664-9c83-d3f0ba77a7f0.roa File: 48713909-c1f3-4664-9c83-d3f0ba77a7f0.roa (raw, json) Hash identifier: st9lrUOT9mnb+c7Rucn/R3RggVlnh8F1Z2pYhjXv6h8= Subject key identifier: 17:60:A8:3E:27:B2:EA:A5:4C:45:93:A1:2E:82:75:9D:26:19:9B:27 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 55AC0F5CB3F54F990833D40622D5903A8739ABA2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/48713909-c1f3-4664-9c83-d3f0ba77a7f0.roa Signing time: Fri 31 Oct 2025 02:00:04 +0000 ROA not before: Fri 31 Oct 2025 02:00:04 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:108::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:ac:0f:5c:b3:f5:4f:99:08:33:d4:06:22:d5:90:3a:87:39:ab:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 31 02:00:04 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=628e2b8dfe6a58749e8e85865bd49e05e0b324b8adcc61f50b883bccf6fa0d29, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:53:11:82:9a:40:cb:7d:85:1a:4f:fc:ea:13: c2:9c:2b:29:22:61:38:76:c4:05:89:fd:a2:81:0f: f8:e0:63:a9:43:53:ab:d0:da:cb:2a:78:47:10:e9: cf:52:76:45:9c:77:8c:58:ad:32:56:7b:37:f9:2e: 92:b1:34:1d:13:4b:2c:54:56:6f:d6:de:09:bd:ef: 17:d6:c0:bd:d3:57:02:57:9e:6e:bc:10:41:7e:f8: a7:bd:0e:01:aa:6f:3e:ff:17:36:0a:9e:a1:ae:a7: 54:82:4c:ee:23:43:46:e7:03:8d:20:97:84:ef:a9: fb:df:85:9a:60:4f:2a:d5:70:16:81:9d:1a:46:3f: ef:49:bb:f5:0f:33:75:fa:24:a5:77:6c:f1:ae:a7: a6:be:59:f7:36:28:de:16:62:21:e6:fb:8d:1c:f5: b5:93:bd:76:bf:d1:e3:22:0d:7f:53:0b:7e:69:9a: 07:88:e3:90:f7:b1:80:3d:2a:8b:44:2f:15:f0:c1: 18:80:d9:da:82:6c:76:4f:33:84:db:d3:b0:7b:db: e6:a0:9f:b1:3f:52:fd:c6:71:31:17:b6:7a:47:a9: 16:a2:41:4e:6d:55:cc:07:86:b1:1a:33:2c:e9:10: 37:8e:42:ba:e7:c0:df:1a:ee:b5:4c:60:89:1f:13: 36:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:60:A8:3E:27:B2:EA:A5:4C:45:93:A1:2E:82:75:9D:26:19:9B:27 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/48713909-c1f3-4664-9c83-d3f0ba77a7f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:108::/47 Signature Algorithm: sha256WithRSAEncryption 5c:ee:98:11:12:b9:02:ee:fb:1b:0d:7a:eb:c0:0d:1d:dc:8a: 86:c6:0d:8e:78:a0:42:d1:d0:b7:f0:4f:39:de:7d:ae:97:5e: eb:dc:6e:2a:ed:7b:ef:df:10:25:2d:56:ff:eb:ac:a3:bf:e4: 8f:a9:7c:9f:05:29:7e:39:18:a4:f3:5f:81:30:b3:15:a4:ed: 64:8b:3a:c3:93:e7:7c:c6:01:8b:b1:2f:e7:31:90:7b:69:71: 6b:8d:7c:80:bb:ec:db:08:4b:48:84:d8:48:f4:ef:ce:ad:2f: 77:47:a6:c2:39:e8:6d:4d:4b:42:29:6c:12:56:d2:23:a7:fe: 94:85:87:2e:5b:ca:7f:ce:ae:ae:10:93:73:75:4c:c7:80:c5: 38:01:d5:42:3f:7b:d0:00:19:4d:88:37:fa:6c:ec:d7:9e:24: 92:d7:c2:5f:54:b4:b0:dd:79:e9:14:54:a0:68:62:74:0e:aa: a7:9e:46:f5:08:55:dd:95:66:89:17:75:a7:de:06:67:f7:cd: 5c:57:27:cb:a9:75:05:35:a4:46:5d:88:f1:9a:76:5c:48:ed: 30:b9:1f:4e:b5:39:4e:2e:9d:9f:ec:13:71:e5:19:fc:29:a4: 6d:12:77:09:9f:be:c0:d8:52:6c:ed:c6:30:96:3d:c9:15:08: 75:e7:d0:5d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVawPXLP1T5kIM9QGItWQOoc5q6IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDMxMDIwMDA0WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MjhlMmI4ZGZlNmE1ODc0OWU4ZTg1ODY1YmQ0OWUwNWUw YjMyNGI4YWRjYzYxZjUwYjg4M2JjY2Y2ZmEwZDI5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzUxGCmkDLfYUaT/zqE8KcKykiYTh2xAWJ/aKBD/jgY6lD U6vQ2ssqeEcQ6c9SdkWcd4xYrTJWezf5LpKxNB0TSyxUVm/W3gm97xfWwL3TVwJX nm68EEF++Ke9DgGqbz7/FzYKnqGup1SCTO4jQ0bnA40gl4TvqfvfhZpgTyrVcBaB nRpGP+9Ju/UPM3X6JKV3bPGup6a+Wfc2KN4WYiHm+40c9bWTvXa/0eMiDX9TC35p mgeI45D3sYA9KotELxXwwRiA2dqCbHZPM4Tb07B72+agn7E/Uv3GcTEXtnpHqRai QU5tVcwHhrEaMyzpEDeOQrrnwN8a7rVMYIkfEzZ7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUF2CoPiey6qVMRZOhLoJ1nSYZmycwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzQ4NzEzOTA5LWMxZjMtNDY2NC05YzgzLWQzZjBiYTc3YTdmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAPDwAQgwDQYJKoZIhvcNAQELBQADggEBAFzumBESuQLu+xsNeuvADR3c iobGDY54oELR0LfwTznefa6XXuvcbirte+/fECUtVv/rrKO/5I+pfJ8FKX45GKTz X4EwsxWk7WSLOsOT53zGAYuxL+cxkHtpcWuNfIC77NsIS0iE2Ej0786tL3dHpsI5 6G1NS0IpbBJW0iOn/pSFhy5byn/Orq4Qk3N1TMeAxTgB1UI/e9AAGU2IN/ps7Nee JJLXwl9UtLDdeekUVKBoYnQOqqeeRvUIVd2VZokXdafeBmf3zVxXJ8updQU1pEZd iPGadlxI7TC5H061OU4unZ/sE3HlGfwppG0SdwmfvsDYUmztxjCWPckVCHXn0F0= -----END CERTIFICATE-----Generated at Wed Nov 5 07:59:42 2025 by rpki-client