$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4c7c26d0-0e62-4cc8-ad3c-3c15ffe314e0.roa File: 4c7c26d0-0e62-4cc8-ad3c-3c15ffe314e0.roa (raw, json) Hash identifier: bqCwGTi0tMZ3NHs0rz73Sh3vhV0roVVfRXjDRARjOVY= Subject key identifier: 43:BA:61:71:6C:D5:8D:89:20:9A:1D:AF:AB:AC:37:CB:99:9F:04:2B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 14175039DE11027DA76950910E2D4EDB64622BD5 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4c7c26d0-0e62-4cc8-ad3c-3c15ffe314e0.roa Signing time: Tue 21 Oct 2025 13:00:25 +0000 ROA not before: Tue 21 Oct 2025 13:00:25 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e500::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:17:50:39:de:11:02:7d:a7:69:50:91:0e:2d:4e:db:64:62:2b:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:00:25 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=8d69c92b119577af578fe9edc63f844b45a63f5e817515090249b5155e6479bd, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9a:c3:b4:84:69:5b:0c:99:98:8d:e5:fd:7c: 74:d4:53:4f:9c:0f:2d:eb:2e:11:a8:1e:73:2f:5d: 48:aa:2d:87:83:e6:a5:4b:75:18:fa:72:69:ab:e5: 41:e4:d1:96:83:2d:47:e9:26:01:c1:f1:0d:37:ac: cf:c4:e0:98:ca:25:d9:d0:3c:b0:34:c8:aa:74:2a: b5:ea:57:86:b6:e5:f6:dc:df:ed:bb:10:cc:20:69: ce:0a:d3:5a:99:f5:5c:6a:56:d4:5e:84:e3:61:4b: 1e:06:55:91:8b:f1:39:40:18:5e:8c:39:12:4c:04: 14:9a:71:63:3c:f0:6d:38:8b:e6:d9:4d:d1:c2:4b: 47:a8:59:4e:f6:a1:8c:22:38:7a:06:7e:23:06:5e: 22:38:88:11:e3:70:ab:4f:c3:89:9b:1a:d4:1d:a3: 7a:15:39:87:23:8c:7e:4f:a7:0a:11:95:52:13:4a: fa:90:f5:5f:77:b1:40:2d:7c:a5:75:77:e9:b5:02: 5c:de:c0:4f:2c:5d:66:43:dd:98:35:4c:46:b9:24: 11:1d:fa:57:a9:e2:f2:bb:0f:df:b2:55:c7:86:37: c7:ba:9f:5f:72:78:bf:cc:1a:71:30:85:c5:09:fc: 94:77:a4:93:5c:37:86:8a:90:23:30:81:aa:e8:c3: f9:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:BA:61:71:6C:D5:8D:89:20:9A:1D:AF:AB:AC:37:CB:99:9F:04:2B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4c7c26d0-0e62-4cc8-ad3c-3c15ffe314e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e500::/42 Signature Algorithm: sha256WithRSAEncryption 50:9d:95:b6:8b:8a:3f:43:83:e2:56:e0:58:82:05:6f:ee:54: 9b:91:77:47:f5:6d:1a:af:2d:e0:b9:44:0f:60:40:c8:5f:4e: 2f:ef:9b:56:c9:e3:07:5c:01:27:70:38:dc:67:d2:56:ef:4e: e9:e5:18:93:2b:f8:48:43:0c:d0:7f:ad:6a:b4:18:7c:04:3a: e4:dc:ef:0d:bf:bd:12:11:36:4b:a8:3e:84:7a:eb:81:4d:cb: 7c:a7:a5:b2:0c:d4:6b:4f:f6:f3:8d:54:28:ec:0e:93:23:19: cf:92:a5:d9:1a:72:fb:aa:71:06:b5:ea:3c:53:3a:d3:95:e0: b0:88:56:76:1c:9c:3e:82:61:d6:eb:37:32:25:40:89:a6:44: c8:5d:af:4b:19:ef:28:87:6c:fa:6d:61:75:6a:51:70:ae:d8: b2:eb:26:b9:64:e8:72:d7:25:7b:04:da:d3:c9:75:de:86:8d: d3:45:14:9c:e3:8c:ac:34:95:a9:17:42:67:e7:6d:d4:22:d8: 56:85:cd:49:12:71:39:1e:13:ed:c7:d0:4b:a0:72:26:42:cb: fd:47:88:fd:bc:d7:40:39:21:e0:12:c1:c5:1d:16:8a:fc:c2: ab:fc:31:d9:13:85:c3:2a:be:f3:03:fc:65:85:bd:4c:c0:6a: 5e:f0:0d:25 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFBdQOd4RAn2naVCRDi1O22RiK9UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMwMDI1WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZDY5YzkyYjExOTU3N2FmNTc4ZmU5ZWRjNjNmODQ0YjQ1 YTYzZjVlODE3NTE1MDkwMjQ5YjUxNTVlNjQ3OWJkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4msO0hGlbDJmYjeX9fHTUU0+cDy3rLhGoHnMvXUiqLYeD 5qVLdRj6cmmr5UHk0ZaDLUfpJgHB8Q03rM/E4JjKJdnQPLA0yKp0KrXqV4a25fbc 3+27EMwgac4K01qZ9VxqVtRehONhSx4GVZGL8TlAGF6MORJMBBSacWM88G04i+bZ TdHCS0eoWU72oYwiOHoGfiMGXiI4iBHjcKtPw4mbGtQdo3oVOYcjjH5PpwoRlVIT SvqQ9V93sUAtfKV1d+m1AlzewE8sXWZD3Zg1TEa5JBEd+lep4vK7D9+yVceGN8e6 n19yeL/MGnEwhcUJ/JR3pJNcN4aKkCMwgarow/nnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQ7phcWzVjYkgmh2vq6w3y5mfBCswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzRjN2MyNmQwLTBlNjItNGNjOC1hZDNjLTNjMTVmZmUzMTRlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD75QAwDQYJKoZIhvcNAQELBQADggEBAFCdlbaLij9Dg+JW4FiCBW/u VJuRd0f1bRqvLeC5RA9gQMhfTi/vm1bJ4wdcASdwONxn0lbvTunlGJMr+EhDDNB/ rWq0GHwEOuTc7w2/vRIRNkuoPoR664FNy3ynpbIM1GtP9vONVCjsDpMjGc+Spdka cvuqcQa16jxTOtOV4LCIVnYcnD6CYdbrNzIlQImmRMhdr0sZ7yiHbPptYXVqUXCu 2LLrJrlk6HLXJXsE2tPJdd6GjdNFFJzjjKw0lakXQmfnbdQi2FaFzUkScTkeE+3H 0EugciZCy/1HiP2810A5IeASwcUdFor8wqv8MdkThcMqvvMD/GWFvUzAal7wDSU= -----END CERTIFICATE-----Generated at Wed Nov 5 05:41:04 2025 by rpki-client