$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa File: 5443f26e-949a-460a-b187-e26290bfcf24.roa (raw, json) Hash identifier: P6vJvsSa0xaAj0/RQq1Y9pcNwrGdXWJ3B/xNeHWFGbY= Subject key identifier: 02:6D:E6:5D:A4:3D:25:D2:2D:BA:E8:0C:F5:2E:65:D4:73:1F:D3:C4 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4DC9435E5C49B864AC7F220F02DC72C1F7F72EDE Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa Signing time: Wed 22 Oct 2025 00:50:02 +0000 ROA not before: Wed 22 Oct 2025 00:50:02 +0000 ROA not after: Wed 26 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:c9:43:5e:5c:49:b8:64:ac:7f:22:0f:02:dc:72:c1:f7:f7:2e:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 22 00:50:02 2025 GMT Not After : Nov 26 23:59:59 2025 GMT Subject: serialNumber=eaae6c900e3de03c3fe4df2c11d891b2b2db992c73415d330a9bcec29052b6c8, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:54:6d:df:50:e4:f6:2f:3d:93:c8:e2:8e:d4: d6:15:8e:6f:6a:d7:5f:ac:9b:bb:08:d8:fe:20:d7: 9e:93:be:69:3a:c0:b0:23:b1:30:17:24:08:28:cd: 12:83:15:56:8f:70:99:e1:89:56:d0:a1:04:cc:0a: 6e:1d:56:64:13:e7:96:5c:a2:6b:1c:41:89:fe:87: b9:88:59:83:75:82:8f:b5:b0:8c:b7:66:ef:5c:6c: 0a:ed:ad:60:4e:85:b0:23:e1:ff:e8:f9:76:42:17: a3:7c:11:6c:78:fc:81:70:77:43:53:4d:3a:c5:d4: 45:1c:fb:d7:4d:e0:38:72:4c:db:67:1f:a1:46:ba: b0:77:69:58:17:20:c2:8f:bf:d9:cd:cf:7f:ca:0c: dc:c8:b0:5f:4e:ca:a9:6f:3b:2f:2a:13:df:96:e3: 7b:2d:5d:8f:e8:17:1f:9b:ab:d8:95:fa:5c:2a:79: 6c:4e:8a:44:8d:4f:3e:63:e2:95:c8:d3:4b:8e:d7: 33:a6:be:fc:b8:91:3c:ad:47:cd:02:50:9d:f3:49: b4:5c:fe:e2:73:bd:81:7f:ff:ed:19:99:8a:b2:05: a8:54:9b:36:77:a9:f0:cc:c3:31:51:0e:da:22:3c: ed:fc:d8:38:5a:17:9e:32:8d:27:33:e5:79:93:18: 0f:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:6D:E6:5D:A4:3D:25:D2:2D:BA:E8:0C:F5:2E:65:D4:73:1F:D3:C4 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4000::/44 Signature Algorithm: sha256WithRSAEncryption 03:ec:c8:a8:53:99:fa:46:71:ad:7d:22:d0:86:b8:a7:a1:b6: 86:b4:94:6a:e3:af:e7:44:70:2b:ce:99:49:fa:25:83:89:c2: 5c:3c:18:e5:e4:ba:d5:a4:a9:5d:25:4e:61:d8:c9:2e:aa:ba: 4c:d6:3a:79:6f:70:c0:f8:ba:ec:b6:12:44:c3:bd:b0:d2:c1: eb:c6:b9:96:6a:a2:da:35:40:dc:10:84:49:af:3a:c1:ae:e4: b5:f7:e0:b3:11:43:6e:6b:ab:35:ab:47:59:1f:48:ff:f9:21: 46:9b:fd:d1:e2:e6:a5:73:f8:13:cd:2a:f8:00:39:8a:49:8f: 9b:fe:0d:c5:b2:f2:05:30:84:f6:5c:01:4d:a7:16:2e:73:a0: 49:f1:44:36:4f:80:36:01:2a:b7:dc:f1:1e:19:db:3b:18:2d: 4f:21:5f:7c:7e:98:5a:e3:96:3e:9c:57:ca:eb:ad:7e:ca:ae: a3:1b:10:4c:16:9d:0d:b8:85:4b:92:61:c2:77:18:5b:09:fc: 89:7d:91:9b:07:65:11:4c:2d:1b:6f:3e:05:7b:0a:71:ec:d6: d7:b8:f6:a4:70:ad:f2:96:3e:7c:12:33:b5:8e:5e:7f:d8:6d: 36:d3:a7:18:02:ba:d8:95:3c:04:7b:9d:9c:0f:77:02:74:f7: 4e:84:ac:88 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTclDXlxJuGSsfyIPAtxywff3Lt4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIyMDA1MDAyWhcNMjUxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYWFlNmM5MDBlM2RlMDNjM2ZlNGRmMmMxMWQ4OTFiMmIy ZGI5OTJjNzM0MTVkMzMwYTliY2VjMjkwNTJiNmM4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkVG3fUOT2Lz2TyOKO1NYVjm9q11+sm7sI2P4g156Tvmk6 wLAjsTAXJAgozRKDFVaPcJnhiVbQoQTMCm4dVmQT55ZcomscQYn+h7mIWYN1go+1 sIy3Zu9cbArtrWBOhbAj4f/o+XZCF6N8EWx4/IFwd0NTTTrF1EUc+9dN4DhyTNtn H6FGurB3aVgXIMKPv9nNz3/KDNzIsF9OyqlvOy8qE9+W43stXY/oFx+bq9iV+lwq eWxOikSNTz5j4pXI00uO1zOmvvy4kTytR80CUJ3zSbRc/uJzvYF//+0ZmYqyBahU mzZ3qfDMwzFRDtoiPO382DhaF54yjScz5XmTGA/JAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUAm3mXaQ9JdItuugM9S5l1HMf08QwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU0NDNmMjZlLTk0OWEtNDYwYS1iMTg3LWUyNjI5MGJmY2YyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwQAAwDQYJKoZIhvcNAQELBQADggEBAAPsyKhTmfpGca19ItCGuKeh toa0lGrjr+dEcCvOmUn6JYOJwlw8GOXkutWkqV0lTmHYyS6qukzWOnlvcMD4uuy2 EkTDvbDSwevGuZZqoto1QNwQhEmvOsGu5LX34LMRQ25rqzWrR1kfSP/5IUab/dHi 5qVz+BPNKvgAOYpJj5v+DcWy8gUwhPZcAU2nFi5zoEnxRDZPgDYBKrfc8R4Z2zsY LU8hX3x+mFrjlj6cV8rrrX7KrqMbEEwWnQ24hUuSYcJ3GFsJ/Il9kZsHZRFMLRtv PgV7CnHs1te49qRwrfKWPnwSM7WOXn/YbTbTpxgCutiVPAR7nZwPdwJ0906ErIg= -----END CERTIFICATE-----Generated at Wed Nov 5 07:53:00 2025 by rpki-client