$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5362b40e-d987-4a9d-8f30-59c3b7075db1.roa File: 5362b40e-d987-4a9d-8f30-59c3b7075db1.roa (raw, json) Hash identifier: g5V8GrHI1tCX1CEzXHaz6h09eLKTakq1Iy2E4w7Jeg8= Subject key identifier: 09:ED:B7:B5:15:D3:B9:EC:89:33:F3:31:3E:2D:C2:39:1B:AA:18:E9 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5791DD8B599BA28CA67BEEF3064D381278B8218A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5362b40e-d987-4a9d-8f30-59c3b7075db1.roa Signing time: Tue 21 Oct 2025 13:00:06 +0000 ROA not before: Tue 21 Oct 2025 13:00:06 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5530::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:91:dd:8b:59:9b:a2:8c:a6:7b:ee:f3:06:4d:38:12:78:b8:21:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:00:06 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=47511c060abf4ed9f6c173cb078c8b0e853364afec1495c40da0b74c4a969c6f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fc:9e:21:10:4f:03:cc:4d:28:46:9e:82:24: 74:d9:c0:29:54:80:a4:29:67:a5:c6:7b:a0:0a:43: 2b:64:34:81:95:5a:d2:a2:be:81:f3:4b:45:90:3b: 88:be:af:3e:0f:35:53:5e:d3:d9:de:e5:e5:66:0b: 4e:13:a1:bb:b9:39:33:13:0b:b3:05:dc:9c:de:8b: 15:0f:69:45:c1:99:a3:97:8f:cf:b0:68:d3:a9:27: 7f:56:c0:96:e9:e0:fc:6d:dd:d6:88:9f:87:0a:09: 56:ca:25:ea:7d:c6:fb:b3:19:ef:c5:8a:39:64:42: 06:2e:12:58:5a:84:e1:78:2b:63:72:e7:7e:f7:21: 67:9b:fc:00:00:b6:88:19:ad:5c:79:52:29:bf:30: 58:48:a1:cc:41:ec:d6:2e:1b:ad:21:b5:32:3c:62: f8:d5:e0:aa:13:1d:7f:93:55:41:5f:24:05:9f:40: ab:d3:1b:ad:38:f8:1b:f9:f8:cd:c8:9d:df:4c:f6: df:46:18:af:5a:2e:1b:79:98:54:11:b1:f5:4a:d3: 4d:02:47:bd:55:97:b9:bd:cd:b8:02:ba:f6:07:37: aa:d4:2d:f2:c6:04:14:cf:5d:5a:f9:4b:58:cb:54: b8:17:26:a5:69:be:7b:03:3c:6b:bb:e8:ee:89:43: 42:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:ED:B7:B5:15:D3:B9:EC:89:33:F3:31:3E:2D:C2:39:1B:AA:18:E9 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5362b40e-d987-4a9d-8f30-59c3b7075db1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5530::/44 Signature Algorithm: sha256WithRSAEncryption 8f:66:2f:f4:51:a2:44:58:04:31:d5:7c:35:a7:13:40:b3:20: 6a:60:3d:ac:c0:19:8d:3d:21:5c:b7:02:ab:ee:eb:fa:ad:c2: 88:62:e6:05:b3:94:33:a1:b3:1b:fd:08:eb:30:f6:8f:83:63: 79:59:a2:ab:bf:58:b3:28:93:13:c3:59:1d:9f:4a:4b:82:be: a4:69:ab:c3:e6:db:df:28:f1:0a:72:95:c2:f8:59:31:2f:6c: 51:22:c6:29:57:df:b0:c5:82:d3:9d:03:29:4c:bf:4d:99:4b: c5:2c:33:fd:fc:9c:6f:10:48:cf:30:93:c4:2d:c9:53:75:6f: f9:38:aa:1c:f0:25:fe:3a:49:b5:65:d6:94:7f:40:b5:d4:a6: e2:67:e4:a4:7c:8e:35:29:a5:c0:f7:70:ba:f6:82:c9:1a:12: 49:12:aa:b9:03:f7:1b:4b:b6:cc:7c:fd:5f:f5:b9:50:6d:6d: e0:30:d7:42:d3:16:e9:9c:be:3f:10:a0:ab:be:e0:52:4f:9c: 9e:57:ff:35:b7:a4:92:bc:4a:de:36:c6:36:37:3a:43:88:de: 56:5f:e7:55:25:9a:e5:1b:29:03:e1:dc:ba:e4:c5:d0:c7:9c: d8:c0:f4:98:d9:02:f0:4b:51:28:1d:d8:b6:d2:fe:6f:a4:4a: 6d:ea:e8:66 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUV5Hdi1mbooyme+7zBk04Eni4IYowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMwMDA2WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NzUxMWMwNjBhYmY0ZWQ5ZjZjMTczY2IwNzhjOGIwZTg1 MzM2NGFmZWMxNDk1YzQwZGEwYjc0YzRhOTY5YzZmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6/J4hEE8DzE0oRp6CJHTZwClUgKQpZ6XGe6AKQytkNIGV WtKivoHzS0WQO4i+rz4PNVNe09ne5eVmC04Tobu5OTMTC7MF3JzeixUPaUXBmaOX j8+waNOpJ39WwJbp4Pxt3daIn4cKCVbKJep9xvuzGe/FijlkQgYuElhahOF4K2Ny 5373IWeb/AAAtogZrVx5Uim/MFhIocxB7NYuG60htTI8YvjV4KoTHX+TVUFfJAWf QKvTG604+Bv5+M3Ind9M9t9GGK9aLht5mFQRsfVK000CR71Vl7m9zbgCuvYHN6rU LfLGBBTPXVr5S1jLVLgXJqVpvnsDPGu76O6JQ0KvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUCe23tRXTueyJM/MxPi3CORuqGOkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzUzNjJiNDBlLWQ5ODctNGE5ZC04ZjMwLTU5YzNiNzA3NWRiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwVTAwDQYJKoZIhvcNAQELBQADggEBAI9mL/RRokRYBDHVfDWnE0Cz IGpgPazAGY09IVy3Aqvu6/qtwohi5gWzlDOhsxv9COsw9o+DY3lZoqu/WLMokxPD WR2fSkuCvqRpq8Pm298o8QpylcL4WTEvbFEixilX37DFgtOdAylMv02ZS8UsM/38 nG8QSM8wk8QtyVN1b/k4qhzwJf46SbVl1pR/QLXUpuJn5KR8jjUppcD3cLr2gska EkkSqrkD9xtLtsx8/V/1uVBtbeAw10LTFumcvj8QoKu+4FJPnJ5X/zW3pJK8St42 xjY3OkOI3lZf51UlmuUbKQPh3LrkxdDHnNjA9JjZAvBLUSgd2LbS/m+kSm3q6GY= -----END CERTIFICATE-----Generated at Wed Nov 5 07:49:15 2025 by rpki-client