$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa File: 514fa870-df33-4dfe-a228-5ea96e0f3560.roa (raw, json) Hash identifier: pAt+8CufDvlkHpwT7hF+iLOC8XgPOTkxvNLE/jkfgJY= Subject key identifier: C7:45:20:2B:92:0E:06:F7:13:66:BB:2D:93:88:09:86:54:59:62:47 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 181A116C4BD77C494A34565265AEA8150FDDEF28 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa Signing time: Sat 25 Oct 2025 00:10:04 +0000 ROA not before: Sat 25 Oct 2025 00:10:04 +0000 ROA not after: Sat 29 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:90::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:1a:11:6c:4b:d7:7c:49:4a:34:56:52:65:ae:a8:15:0f:dd:ef:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 25 00:10:04 2025 GMT Not After : Nov 29 23:59:59 2025 GMT Subject: serialNumber=164d583ca8f231051b292ea277be339f9bb414a0bfcba9bb412e843aeab401db, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b7:a8:49:74:61:46:e6:16:06:3e:77:10:93: 85:bc:5a:9d:64:45:7c:13:54:38:d8:e3:cf:f7:f8: 6a:4f:dc:0b:54:2a:01:55:bb:b9:44:08:d5:43:ac: da:29:75:55:44:23:2e:ce:b6:9a:94:d1:3c:4d:5a: 03:c7:ca:47:03:a4:25:29:bb:3f:b5:99:23:5e:6a: fb:ec:b5:82:3f:10:05:9e:04:6d:e6:0f:ea:38:22: a9:46:d0:d5:02:c2:d7:0b:55:17:06:d1:a8:5e:10: ac:ce:42:f1:10:1c:2e:33:87:3c:d5:95:48:a2:19: fc:b7:25:d6:93:88:9c:43:98:e2:55:ce:e8:ef:ee: a0:b2:70:e2:19:7a:c3:b9:8a:8f:35:2f:e4:31:d7: 78:04:fb:72:ee:bd:1e:31:04:1c:09:d7:d7:e7:eb: fe:a9:a1:b6:71:d9:76:2e:0f:20:a6:ee:90:e8:d3: 7a:ac:27:d7:ba:bb:7d:fd:47:18:4b:e8:7d:bf:3c: d2:f2:9f:19:b1:f9:e7:e6:77:fb:51:8d:78:9a:b7: 37:fd:8c:76:31:9d:22:1f:25:0b:47:25:18:42:15: 86:4f:92:81:51:2c:c3:45:6e:89:a5:f7:ed:f8:f1: b9:d1:45:de:6b:ac:b8:d7:4b:23:30:ca:5a:8c:ec: ae:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:45:20:2B:92:0E:06:F7:13:66:BB:2D:93:88:09:86:54:59:62:47 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:90::/44 Signature Algorithm: sha256WithRSAEncryption 98:57:a0:f0:d1:32:2a:a1:83:9c:15:6b:01:9b:27:49:1f:1d: f0:fc:a6:3d:fe:d4:94:c0:37:86:56:92:34:e8:69:e0:4d:c9: 06:ac:cd:09:d2:3b:82:6a:39:52:08:c8:ce:27:ef:ec:f8:b7: 84:30:c0:87:33:fa:07:1d:47:b1:12:a1:56:17:58:9f:68:f8: 9f:1b:62:a1:9c:8f:05:23:74:68:25:2b:1d:6f:1a:e0:6d:fa: 74:01:4f:73:1b:a8:e5:df:03:6d:9f:0e:ff:c5:66:6d:1c:ce: f8:07:87:63:a0:65:57:4b:1d:5a:b5:3a:9a:18:e4:f7:13:0e: 5b:d3:89:7f:d8:ae:05:1a:76:f1:27:44:ab:a5:2c:5e:45:74: 67:67:06:ae:39:8b:9f:a5:ce:53:fa:0b:c3:0d:d7:45:e4:73: 1f:a5:dc:b2:90:bc:51:d0:42:ce:05:26:3b:2b:f8:87:37:16: c3:9a:a2:a4:d7:f5:72:fa:5e:03:d5:23:17:1a:eb:44:37:2b: 94:e3:a0:8d:36:73:7a:51:16:e3:f3:8d:81:09:c8:9c:db:12: 89:f0:9f:a9:51:3f:42:f6:d1:b6:3f:6e:03:f6:b1:f9:a2:f0: 95:10:a2:65:5c:1f:85:c5:0a:c9:03:80:5a:05:f2:c4:d9:d5: 58:8f:bd:ab -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGBoRbEvXfElKNFZSZa6oFQ/d7ygwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDI1MDAxMDA0WhcNMjUxMTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNjRkNTgzY2E4ZjIzMTA1MWIyOTJlYTI3N2JlMzM5Zjli YjQxNGEwYmZjYmE5YmI0MTJlODQzYWVhYjQwMWRiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2t6hJdGFG5hYGPncQk4W8Wp1kRXwTVDjY48/3+GpP3AtU KgFVu7lECNVDrNopdVVEIy7OtpqU0TxNWgPHykcDpCUpuz+1mSNeavvstYI/EAWe BG3mD+o4IqlG0NUCwtcLVRcG0aheEKzOQvEQHC4zhzzVlUiiGfy3JdaTiJxDmOJV zujv7qCycOIZesO5io81L+Qx13gE+3LuvR4xBBwJ19fn6/6pobZx2XYuDyCm7pDo 03qsJ9e6u339RxhL6H2/PNLynxmx+efmd/tRjXiatzf9jHYxnSIfJQtHJRhCFYZP koFRLMNFboml9+348bnRRd5rrLjXSyMwylqM7K53AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUx0UgK5IOBvcTZrstk4gJhlRZYkcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzUxNGZhODcwLWRmMzMtNGRmZS1hMjI4LTVlYTk2ZTBmMzU2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAJAwDQYJKoZIhvcNAQELBQADggEBAJhXoPDRMiqhg5wVawGbJ0kf HfD8pj3+1JTAN4ZWkjToaeBNyQaszQnSO4JqOVIIyM4n7+z4t4QwwIcz+gcdR7ES oVYXWJ9o+J8bYqGcjwUjdGglKx1vGuBt+nQBT3MbqOXfA22fDv/FZm0czvgHh2Og ZVdLHVq1OpoY5PcTDlvTiX/YrgUadvEnRKulLF5FdGdnBq45i5+lzlP6C8MN10Xk cx+l3LKQvFHQQs4FJjsr+Ic3FsOaoqTX9XL6XgPVIxca60Q3K5TjoI02c3pRFuPz jYEJyJzbEonwn6lRP0L20bY/bgP2sfmi8JUQomVcH4XFCskDgFoF8sTZ1ViPvas= -----END CERTIFICATE-----Generated at Wed Nov 5 07:49:53 2025 by rpki-client