$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5463f2e9-c071-45ba-a891-46817c1759f6.roa File: 5463f2e9-c071-45ba-a891-46817c1759f6.roa (raw, json) Hash identifier: gPlgL8HHjc512+gp2Yuxj3xLLF9VKv4WKgcT52+b7Do= Subject key identifier: 00:00:36:51:37:45:F5:52:DD:39:DA:80:89:3F:1C:48:50:40:B5:77 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1B349439F70A624C3307AA86D39F27D89667207B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5463f2e9-c071-45ba-a891-46817c1759f6.roa Signing time: Fri 31 Oct 2025 01:50:09 +0000 ROA not before: Fri 31 Oct 2025 01:50:09 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:611a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:34:94:39:f7:0a:62:4c:33:07:aa:86:d3:9f:27:d8:96:67:20:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 31 01:50:09 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=99658ac83905ad6587ac8cd59adad06b964dbc8b7e7286ba6fae3e37c3127683, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:a2:8e:fe:f0:bf:ae:78:65:fd:5d:54:da:06: 94:e8:08:a5:df:38:da:a5:1c:ce:da:3e:5d:f6:cf: cb:0b:ab:d5:1b:73:0f:95:05:f1:2b:3a:98:25:97: 31:9b:07:bd:63:bd:44:0a:cf:8e:60:5d:d4:e7:2e: 81:3c:6f:b8:e0:1b:c0:87:25:cf:7e:dd:e0:2a:61: 34:98:cf:c9:2d:fe:ab:cd:85:bf:05:04:af:18:47: 16:39:78:81:0f:f0:3f:cb:1a:1c:ca:d3:62:d5:00: 90:9b:43:ea:94:a3:42:d8:19:d3:8c:2a:db:fc:86: 2e:bd:cf:78:21:d2:89:27:63:d0:de:5c:fa:04:1c: 5a:f3:63:3c:07:22:04:28:12:c0:d8:8d:93:97:02: 1f:4a:c1:65:b6:50:fd:ce:a5:12:81:7c:d7:d2:92: cd:ad:a1:5a:0e:22:5c:21:0c:2f:f1:a7:85:24:7c: 0b:96:ef:55:f3:a6:b8:f6:cf:47:8b:14:f7:13:49: 22:49:62:44:df:b5:c4:fb:76:d2:8a:4b:20:e9:f7: d7:19:b0:fe:ff:cc:f4:ed:f4:f2:6b:a0:ce:b7:c9: 0f:4d:76:bd:80:2d:4d:6f:bd:c8:ce:be:a8:65:38: ec:d6:b6:20:00:fc:ac:23:b0:21:2a:60:97:a0:47: ee:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:00:36:51:37:45:F5:52:DD:39:DA:80:89:3F:1C:48:50:40:B5:77 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5463f2e9-c071-45ba-a891-46817c1759f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:611a::/48 Signature Algorithm: sha256WithRSAEncryption 81:4d:f3:fa:3f:48:e3:5d:fa:ef:59:d0:97:25:f7:bd:59:6d: fd:8b:71:56:13:b8:b8:4b:1b:9e:3c:8f:31:1c:61:31:71:cf: 05:56:ed:90:5b:89:28:a4:dc:80:88:39:f7:8a:0f:5f:b4:df: 2b:d1:32:20:db:e1:77:fb:85:42:3c:e5:37:ce:9a:95:27:46: 39:84:11:37:41:02:02:ea:a3:45:e6:c3:5c:c8:6e:37:2b:f8: 35:c0:4b:5b:ab:c8:4d:14:91:bb:37:f6:38:78:a0:90:af:0a: c8:a7:9f:ea:8a:ec:ba:fd:e9:31:04:9d:3e:32:1a:5a:9b:0d: 0a:68:a6:61:f4:29:88:86:89:e8:f5:4b:77:e9:29:9c:6a:c1: a6:db:ab:78:10:40:0b:a1:d7:43:42:13:17:b8:22:7e:c8:21: 41:0d:be:c5:c3:e5:36:f6:aa:f2:af:07:b6:37:4d:41:40:7f: 7e:0a:9e:9a:89:a3:fd:78:00:4a:f4:ad:c4:76:4f:97:e7:d9: 98:f2:9e:4e:34:59:6a:14:6f:3c:5a:73:9d:95:6e:84:8a:30: c4:55:e6:dc:ab:1d:ad:b1:16:5c:ee:3a:cb:22:9b:6c:0e:a2: d3:b3:36:ba:2a:d3:9b:04:6c:d8:ed:27:9e:49:75:5a:25:ba: fe:1a:d4:b4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGzSUOfcKYkwzB6qG058n2JZnIHswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDMxMDE1MDA5WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5OTY1OGFjODM5MDVhZDY1ODdhYzhjZDU5YWRhZDA2Yjk2 NGRiYzhiN2U3Mjg2YmE2ZmFlM2UzN2MzMTI3NjgzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDhoo7+8L+ueGX9XVTaBpToCKXfONqlHM7aPl32z8sLq9Ub cw+VBfErOpgllzGbB71jvUQKz45gXdTnLoE8b7jgG8CHJc9+3eAqYTSYz8kt/qvN hb8FBK8YRxY5eIEP8D/LGhzK02LVAJCbQ+qUo0LYGdOMKtv8hi69z3gh0oknY9De XPoEHFrzYzwHIgQoEsDYjZOXAh9KwWW2UP3OpRKBfNfSks2toVoOIlwhDC/xp4Uk fAuW71Xzprj2z0eLFPcTSSJJYkTftcT7dtKKSyDp99cZsP7/zPTt9PJroM63yQ9N dr2ALU1vvcjOvqhlOOzWtiAA/KwjsCEqYJegR+4PAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUAAA2UTdF9VLdOdqAiT8cSFBAtXcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU0NjNmMmU5LWMwNzEtNDViYS1hODkxLTQ2ODE3YzE3NTlmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRowDQYJKoZIhvcNAQELBQADggEBAIFN8/o/SONd+u9Z0Jcl971Z bf2LcVYTuLhLG548jzEcYTFxzwVW7ZBbiSik3ICIOfeKD1+03yvRMiDb4Xf7hUI8 5TfOmpUnRjmEETdBAgLqo0Xmw1zIbjcr+DXAS1uryE0Ukbs39jh4oJCvCsinn+qK 7Lr96TEEnT4yGlqbDQpopmH0KYiGiej1S3fpKZxqwabbq3gQQAuh10NCExe4In7I IUENvsXD5Tb2qvKvB7Y3TUFAf34KnpqJo/14AEr0rcR2T5fn2Zjynk40WWoUbzxa c52VboSKMMRV5tyrHa2xFlzuOssim2wOotOzNroq05sEbNjtJ55JdVoluv4a1LQ= -----END CERTIFICATE-----Generated at Wed Nov 5 07:41:25 2025 by rpki-client