$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5211bbfa-c26c-44f8-96b2-a9282cfd61a1.roa File: 5211bbfa-c26c-44f8-96b2-a9282cfd61a1.roa (raw, json) Hash identifier: 8Q05Qxpb3UFUH1GR6afQjXvFXNP5IxGZdhWPTl23mEI= Subject key identifier: AA:75:FC:F8:EF:34:06:3F:3C:B5:B2:B6:16:63:12:8F:18:54:4D:A0 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6DF4BC3C0C65AFFA910DBBF277A7915BFD9F62A3 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5211bbfa-c26c-44f8-96b2-a9282cfd61a1.roa Signing time: Tue 21 Oct 2025 12:50:10 +0000 ROA not before: Tue 21 Oct 2025 12:50:10 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:f4:bc:3c:0c:65:af:fa:91:0d:bb:f2:77:a7:91:5b:fd:9f:62:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:10 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=f99d8821ffc3b7607b7e187603ef18c3396e164bdc3a00bdb5f0ed6f9be2e8c1, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d8:98:01:1f:03:98:57:0d:9e:cf:07:3d:2f: 36:ce:fd:82:d3:2a:66:75:cf:69:4d:67:53:7d:0c: 7d:f7:2d:e1:17:06:6d:7b:a3:9d:dd:8d:1a:de:06: c8:96:df:27:91:ab:b2:5b:26:4c:12:c2:cd:a4:22: 29:32:87:3e:0e:b3:d8:66:e4:bd:00:20:39:36:bb: 93:e9:50:8a:d5:72:0c:6a:f7:ab:0d:38:a7:33:40: c7:e9:89:36:4d:bf:a4:dc:8d:3a:9b:b7:59:f5:85: b8:e8:97:13:8f:2d:a6:27:a3:60:21:23:95:22:27: 06:04:ae:6c:b9:22:84:d5:4b:0f:0d:de:e6:fe:03: 4f:75:11:66:29:2d:f9:ce:a5:5c:3c:10:8b:6c:53: b8:58:d3:27:60:32:8e:bb:89:a1:0f:ce:14:29:91: ed:57:c5:f0:ce:e2:3d:38:d7:f2:bf:d9:d6:5e:0e: 18:85:8c:e7:21:9d:12:42:e6:54:2d:6b:9d:ab:be: ef:eb:93:1f:ed:57:cd:9f:de:bb:d3:ca:de:56:a3: 89:64:50:c1:69:70:c5:0a:56:30:fe:22:80:d2:24: 08:99:ab:ed:96:a9:a7:13:62:84:a2:5f:7a:40:c1: 97:1b:df:6f:fa:d9:9f:15:45:7c:7d:00:ff:76:6c: e8:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:75:FC:F8:EF:34:06:3F:3C:B5:B2:B6:16:63:12:8F:18:54:4D:A0 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5211bbfa-c26c-44f8-96b2-a9282cfd61a1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e100::/40 Signature Algorithm: sha256WithRSAEncryption 7b:0b:fb:c0:6d:52:1b:3c:41:df:7d:69:b2:7f:eb:74:8d:db: 42:cd:bc:b7:e0:78:0a:ff:79:27:e8:7b:64:9a:d0:0d:3c:2d: fc:a5:26:cf:4f:70:e2:1c:4b:80:85:46:bc:92:b7:a7:b1:5d: 5a:33:ff:2e:cd:d1:ed:dd:ea:42:72:f9:51:46:8a:8a:16:b6: 5b:72:3d:31:f0:bc:f3:c5:8c:e2:a5:6d:35:c1:ad:ce:c3:ee: 60:cc:66:29:89:58:2f:c9:bf:ad:25:82:40:70:3a:11:f7:d4: 6b:c9:92:3a:6e:ce:97:b9:42:b4:d0:a2:20:8a:cb:37:4e:2a: 90:11:f1:12:4a:d2:b0:05:fc:0e:d5:e8:d9:5d:d5:b3:91:a5: b8:b9:96:5d:24:e0:72:ed:02:28:d0:d4:77:4a:a0:a1:96:1d: 6a:2f:a0:ce:90:65:89:82:fe:21:cd:77:b4:ed:9c:a0:23:82: a5:f1:6a:fa:80:e5:7f:71:27:ab:55:50:a1:67:60:10:ec:69: 19:72:4a:e3:22:d4:9f:c6:04:27:72:e7:62:f4:c4:1b:ed:9c: cc:72:1b:77:56:44:7b:06:54:83:c4:13:e0:6c:75:34:aa:bd: f0:c1:76:46:2d:9d:18:98:a4:73:1c:2d:21:74:08:87:7c:d9: e8:5d:31:2a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUbfS8PAxlr/qRDbvyd6eRW/2fYqMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDEwWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmOTlkODgyMWZmYzNiNzYwN2I3ZTE4NzYwM2VmMThjMzM5 NmUxNjRiZGMzYTAwYmRiNWYwZWQ2ZjliZTJlOGMxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC42JgBHwOYVw2ezwc9LzbO/YLTKmZ1z2lNZ1N9DH33LeEX Bm17o53djRreBsiW3yeRq7JbJkwSws2kIikyhz4Os9hm5L0AIDk2u5PpUIrVcgxq 96sNOKczQMfpiTZNv6TcjTqbt1n1hbjolxOPLaYno2AhI5UiJwYErmy5IoTVSw8N 3ub+A091EWYpLfnOpVw8EItsU7hY0ydgMo67iaEPzhQpke1XxfDO4j041/K/2dZe DhiFjOchnRJC5lQta52rvu/rkx/tV82f3rvTyt5Wo4lkUMFpcMUKVjD+IoDSJAiZ q+2WqacTYoSiX3pAwZcb32/62Z8VRXx9AP92bOi/AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUqnX8+O80Bj88tbK2FmMSjxhUTaAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzUyMTFiYmZhLWMyNmMtNDRmOC05NmIyLWE5MjgyY2ZkNjFhMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74TANBgkqhkiG9w0BAQsFAAOCAQEAewv7wG1SGzxB331psn/rdI3b Qs28t+B4Cv95J+h7ZJrQDTwt/KUmz09w4hxLgIVGvJK3p7FdWjP/Ls3R7d3qQnL5 UUaKiha2W3I9MfC888WM4qVtNcGtzsPuYMxmKYlYL8m/rSWCQHA6EffUa8mSOm7O l7lCtNCiIIrLN04qkBHxEkrSsAX8DtXo2V3Vs5GluLmWXSTgcu0CKNDUd0qgoZYd ai+gzpBliYL+Ic13tO2coCOCpfFq+oDlf3Enq1VQoWdgEOxpGXJK4yLUn8YEJ3Ln YvTEG+2czHIbd1ZEewZUg8QT4Gx1NKq98MF2Ri2dGJikcxwtIXQIh3zZ6F0xKg== -----END CERTIFICATE-----Generated at Wed Nov 5 11:10:25 2025 by rpki-client