$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/50aa830a-891f-4ae0-bee7-f2758c54eae3.roa File: 50aa830a-891f-4ae0-bee7-f2758c54eae3.roa (raw, json) Hash identifier: K8zWtowVj/XzVCLYAgu5E3flzAZGH/V6fJvolunvFyo= Subject key identifier: 37:18:DD:5F:30:84:3E:F9:BD:56:D7:F5:E9:1E:FD:FB:EC:BE:D9:34 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 263EBF1262D207AD265FE2548F65FB3CF71FE33E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/50aa830a-891f-4ae0-bee7-f2758c54eae3.roa Signing time: Tue 21 Oct 2025 12:50:42 +0000 ROA not before: Tue 21 Oct 2025 12:50:42 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:50::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:3e:bf:12:62:d2:07:ad:26:5f:e2:54:8f:65:fb:3c:f7:1f:e3:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:42 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=036094605f6fe61e93b387f4531d920c690e16a61cf198bd13191332efba310b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:b4:c3:23:38:6f:72:cf:49:19:0d:51:1c:18: 35:3e:82:e2:da:a9:38:6e:ca:c6:85:84:5d:3d:0c: 3d:2d:c7:f3:e9:0f:09:40:de:f6:2e:11:9f:54:6d: 5f:57:60:87:11:f7:8f:d1:8c:27:81:7f:07:ba:8b: ea:58:f3:6c:40:b5:1b:ad:f9:0a:04:31:5c:5b:70: 8c:ea:89:4d:6e:3d:7e:0c:42:be:54:d2:6b:06:42: be:e9:10:ea:37:e7:05:a0:3c:30:9a:d8:74:45:75: 88:fb:da:4c:d0:c0:37:4a:d0:23:09:19:65:53:bc: 18:3c:bd:95:3d:f2:ce:60:bc:b8:0f:d3:64:bb:f3: d3:a2:b3:3a:3d:85:0d:ec:4c:0b:f9:82:c6:75:3c: 38:db:e6:f9:6b:23:a7:05:f5:cb:d7:71:cc:e8:df: 5f:de:c6:16:b9:d1:2f:f6:b9:5a:18:92:45:3e:b2: 77:40:03:26:59:73:8f:2f:90:37:55:7a:4f:06:34: 67:74:52:33:92:c8:81:b8:63:5e:48:40:3f:5c:44: 44:d6:01:cb:ca:79:4d:b0:2f:7a:19:4a:77:59:e4: bf:78:a0:53:5a:ea:83:83:48:01:dd:b7:d0:b0:a2: 03:d2:a7:f3:c4:11:6f:d2:31:f8:28:d1:c9:14:e8: 01:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:18:DD:5F:30:84:3E:F9:BD:56:D7:F5:E9:1E:FD:FB:EC:BE:D9:34 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/50aa830a-891f-4ae0-bee7-f2758c54eae3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:50::/44 Signature Algorithm: sha256WithRSAEncryption 0b:ed:ef:d2:dc:2d:cb:d0:e6:cf:d8:21:3b:54:31:38:13:a0: 2e:21:bd:8c:27:65:a8:2b:6f:2f:3e:35:f3:a5:1b:99:66:28: 7f:75:95:e0:e7:91:e5:ca:5b:94:09:83:ef:7e:1d:c6:99:bd: b0:b7:41:07:ca:83:a8:e8:93:94:ef:f5:6d:68:81:49:59:6e: eb:35:47:2a:88:fd:5b:2b:79:5d:17:50:c7:b1:84:97:7c:fa: 9a:0e:43:d3:83:96:02:6b:c7:f8:60:fa:b0:1a:11:cf:ad:3a: 76:1b:c8:95:02:d0:82:1b:39:a0:4b:5b:0e:9c:7b:44:c2:fc: a1:d8:5c:38:32:c3:bb:6c:7a:22:98:2a:a1:07:fa:3e:5b:47: 4b:e5:96:d0:10:b8:da:b9:63:04:76:46:ab:b7:04:b1:6b:7d: 17:a5:fa:04:cf:d0:0d:e3:37:cf:07:45:e1:57:9c:c5:2c:50: f5:e1:ac:46:d4:96:ea:c5:64:84:64:79:d9:72:1c:2b:76:08: 97:78:ab:13:c5:ce:35:b5:f5:3b:1b:a4:fb:2f:30:6f:95:69: 10:33:ba:a0:b3:04:66:1c:35:08:9d:81:81:f5:91:a1:a0:2f: f3:e7:b2:9c:b1:6b:ac:db:59:74:8b:e5:62:b7:9d:ad:cb:56: 47:fc:5f:f0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJj6/EmLSB60mX+JUj2X7PPcf4z4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDQyWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMzYwOTQ2MDVmNmZlNjFlOTNiMzg3ZjQ1MzFkOTIwYzY5 MGUxNmE2MWNmMTk4YmQxMzE5MTMzMmVmYmEzMTBiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCMtMMjOG9yz0kZDVEcGDU+guLaqThuysaFhF09DD0tx/Pp DwlA3vYuEZ9UbV9XYIcR94/RjCeBfwe6i+pY82xAtRut+QoEMVxbcIzqiU1uPX4M Qr5U0msGQr7pEOo35wWgPDCa2HRFdYj72kzQwDdK0CMJGWVTvBg8vZU98s5gvLgP 02S789Oiszo9hQ3sTAv5gsZ1PDjb5vlrI6cF9cvXcczo31/exha50S/2uVoYkkU+ sndAAyZZc48vkDdVek8GNGd0UjOSyIG4Y15IQD9cRETWAcvKeU2wL3oZSndZ5L94 oFNa6oODSAHdt9CwogPSp/PEEW/SMfgo0ckU6AGHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUNxjdXzCEPvm9Vtf16R79++y+2TQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzUwYWE4MzBhLTg5MWYtNGFlMC1iZWU3LWYyNzU4YzU0ZWFlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAFAwDQYJKoZIhvcNAQELBQADggEBAAvt79LcLcvQ5s/YITtUMTgT oC4hvYwnZagrby8+NfOlG5lmKH91leDnkeXKW5QJg+9+HcaZvbC3QQfKg6jok5Tv 9W1ogUlZbus1RyqI/VsreV0XUMexhJd8+poOQ9ODlgJrx/hg+rAaEc+tOnYbyJUC 0IIbOaBLWw6ce0TC/KHYXDgyw7tseiKYKqEH+j5bR0vlltAQuNq5YwR2Rqu3BLFr fRel+gTP0A3jN88HReFXnMUsUPXhrEbUlurFZIRkedlyHCt2CJd4qxPFzjW19Tsb pPsvMG+VaRAzuqCzBGYcNQidgYH1kaGgL/Pnspyxa6zbWXSL5WK3na3LVkf8X/A= -----END CERTIFICATE-----Generated at Wed Nov 5 05:48:02 2025 by rpki-client