$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/529e132d-0c8c-4ca3-bafc-0927932483fd.roa File: 529e132d-0c8c-4ca3-bafc-0927932483fd.roa (raw, json) Hash identifier: 3hOIqxDvss0PNY3Ba8HzwXtj8pSmexrUZ49WMfna0/0= Subject key identifier: 0E:1C:B5:C6:2A:10:C5:15:AA:89:2E:ED:FB:68:8A:21:C4:D5:D7:EA Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3B0A3F1F85045DE855C5B964496FE531EC7F6E0F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/529e132d-0c8c-4ca3-bafc-0927932483fd.roa Signing time: Tue 21 Oct 2025 13:10:06 +0000 ROA not before: Tue 21 Oct 2025 13:10:06 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:0a:3f:1f:85:04:5d:e8:55:c5:b9:64:49:6f:e5:31:ec:7f:6e:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:10:06 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=08e2922340383f0403c856ee2dedf0083c4e92e6da2e2ef51adf0882e57779e7, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a3:23:da:59:95:08:47:43:de:dc:03:22:98: b6:ea:4b:64:a7:64:cf:cf:1e:d6:27:e3:7b:a1:13: 2e:49:99:3c:0a:f1:68:a0:48:7a:1a:24:e1:ca:5c: af:64:08:1f:11:2e:92:a1:ba:7e:7a:6f:61:37:da: 38:41:76:51:31:65:55:06:a5:95:9a:56:4c:0d:78: 86:bf:d3:e8:03:ae:eb:0a:2e:fd:48:af:6e:7b:51: 8c:74:39:84:23:82:33:c2:df:7b:08:a6:6f:22:f5: e7:43:ad:e5:8d:e8:d5:08:fe:1e:0f:27:5e:49:64: 7a:8f:84:7d:80:fe:6d:7f:e7:bc:58:ae:9f:be:c8: 7c:19:2d:16:41:37:a1:be:29:34:d4:aa:b0:24:39: c6:f0:08:cf:7c:f9:58:0d:25:ca:ea:79:bf:2f:1a: 75:58:54:7a:98:3e:50:f4:7b:16:a0:e8:8d:84:79: 07:bb:d8:85:d3:39:df:26:79:d1:47:62:27:42:da: e0:08:01:64:ab:62:8c:1d:bf:da:8e:41:4d:89:95: 3f:97:25:11:a1:6f:3e:16:4b:b9:5f:50:ac:1c:86: 15:0a:7c:f8:6e:89:86:87:30:60:29:66:bc:19:0e: e1:00:af:4b:3e:a8:ba:96:b2:85:03:59:50:11:4d: 32:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:1C:B5:C6:2A:10:C5:15:AA:89:2E:ED:FB:68:8A:21:C4:D5:D7:EA X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/529e132d-0c8c-4ca3-bafc-0927932483fd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e000::/36 Signature Algorithm: sha256WithRSAEncryption 18:11:2a:31:af:16:30:6d:4f:ad:29:91:be:df:d7:78:7b:01: 54:72:30:f2:3e:ad:01:21:8e:56:45:5e:e2:bd:ff:69:f4:ec: b0:36:fc:64:e7:6c:3b:a5:b8:a7:a6:ff:54:ea:a0:88:a4:35: b3:f9:5e:6c:53:b8:49:22:87:37:5e:ce:6d:a5:2a:3a:60:2c: fa:51:50:4d:4d:b3:07:5d:db:15:c4:41:f1:fd:9b:ec:13:43: de:5d:43:19:09:49:23:e6:a5:48:ff:ce:0f:ef:b8:a3:3b:1e: b0:e7:c2:ab:4c:b6:5d:f1:43:ec:ba:8b:79:fa:2c:10:39:c6: 84:a5:52:0f:d2:7a:3e:e7:d8:27:a7:c3:be:68:60:62:4e:47: 89:c2:20:60:15:c0:88:74:e5:81:35:bb:5e:76:b3:9f:d2:7f: 30:3e:7c:7e:00:d4:62:91:e1:d2:ee:9c:ed:d7:ad:cb:80:72: dd:b6:ef:55:1e:88:14:32:50:34:b4:3e:30:6e:5b:2e:c2:8d: f6:7a:50:5b:9c:22:d1:88:88:8d:d9:b2:07:12:cf:e5:0a:2c: 6f:fa:ba:2f:01:db:b2:35:b3:02:02:fa:69:83:ab:8f:57:9b: 81:71:f7:67:96:aa:8e:e2:7b:e3:d7:09:f8:ca:27:a1:b5:fb: a7:fa:20:60 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUOwo/H4UEXehVxblkSW/lMex/bg8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMxMDA2WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOGUyOTIyMzQwMzgzZjA0MDNjODU2ZWUyZGVkZjAwODNj NGU5MmU2ZGEyZTJlZjUxYWRmMDg4MmU1Nzc3OWU3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6oyPaWZUIR0Pe3AMimLbqS2SnZM/PHtYn43uhEy5JmTwK 8WigSHoaJOHKXK9kCB8RLpKhun56b2E32jhBdlExZVUGpZWaVkwNeIa/0+gDrusK Lv1Ir257UYx0OYQjgjPC33sIpm8i9edDreWN6NUI/h4PJ15JZHqPhH2A/m1/57xY rp++yHwZLRZBN6G+KTTUqrAkOcbwCM98+VgNJcrqeb8vGnVYVHqYPlD0exag6I2E eQe72IXTOd8medFHYidC2uAIAWSrYowdv9qOQU2JlT+XJRGhbz4WS7lfUKwchhUK fPhuiYaHMGApZrwZDuEAr0s+qLqWsoUDWVARTTJvAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUDhy1xioQxRWqiS7t+2iKIcTV1+owHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzUyOWUxMzJkLTBjOGMtNGNhMy1iYWZjLTA5Mjc5MzI0ODNmZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAPD74DANBgkqhkiG9w0BAQsFAAOCAQEAGBEqMa8WMG1PrSmRvt/XeHsB VHIw8j6tASGOVkVe4r3/afTssDb8ZOdsO6W4p6b/VOqgiKQ1s/lebFO4SSKHN17O baUqOmAs+lFQTU2zB13bFcRB8f2b7BND3l1DGQlJI+alSP/OD++4ozsesOfCq0y2 XfFD7LqLefosEDnGhKVSD9J6PufYJ6fDvmhgYk5HicIgYBXAiHTlgTW7Xnazn9J/ MD58fgDUYpHh0u6c7dety4By3bbvVR6IFDJQNLQ+MG5bLsKN9npQW5wi0YiIjdmy BxLP5Qosb/q6LwHbsjWzAgL6aYOrj1ebgXH3Z5aqjuJ749cJ+MonobX7p/ogYA== -----END CERTIFICATE-----Generated at Wed Nov 5 05:44:11 2025 by rpki-client