$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5549fdb0-617d-43e3-951f-9747f0d27829.roa File: 5549fdb0-617d-43e3-951f-9747f0d27829.roa (raw, json) Hash identifier: iSMUHxtx7JB07IIyJZo0617PLhhYPvW6D+Gi8bF2Uj0= Subject key identifier: DE:2F:08:00:FA:54:0C:3C:A3:AD:38:1E:03:9A:D1:2E:82:91:F7:4B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 53CB12C049D6ED43CB2B63D5B795CCEB847CB6CD Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5549fdb0-617d-43e3-951f-9747f0d27829.roa Signing time: Fri 24 Oct 2025 00:20:06 +0000 ROA not before: Fri 24 Oct 2025 00:20:06 +0000 ROA not after: Fri 28 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:cb:12:c0:49:d6:ed:43:cb:2b:63:d5:b7:95:cc:eb:84:7c:b6:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 24 00:20:06 2025 GMT Not After : Nov 28 23:59:59 2025 GMT Subject: serialNumber=ec68ec1563ba5a4aaaa64b641e00229e3b089ab574325f9d3bb8307ff341a548, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:31:a7:80:cc:26:4c:9a:c5:37:52:14:93:f8: af:e7:40:4e:12:e8:20:fd:3f:fa:c6:d2:b4:6c:d2: d8:62:4c:92:01:7d:16:9c:3e:a1:e9:5d:88:bb:0c: a6:84:37:f9:e0:72:82:22:9a:31:fd:d9:9a:d8:d5: 2b:b2:8c:3f:ba:d3:ad:6e:7c:16:55:06:e4:ec:44: e2:22:9a:f1:82:ad:61:e3:2c:e8:6c:a9:17:63:90: 97:76:82:cd:7c:7b:0c:12:b7:5b:64:3d:67:b9:73: 0e:1e:83:ed:2a:f2:83:6c:ae:21:55:28:14:97:d0: a4:d4:9f:48:94:0d:47:e3:ab:8e:2d:74:6f:eb:6a: cb:f8:10:a6:8f:d4:8e:ca:41:3b:1a:b2:7d:ad:9b: 3b:74:1f:8b:a8:84:5a:dc:c3:17:cb:28:48:a2:31: 5d:d1:c2:4d:d1:d6:9a:8a:2c:00:8e:a4:22:c7:bd: 03:c8:a1:6a:f2:07:1f:ce:7b:67:29:9e:f2:47:d9: d6:04:c3:66:b0:dc:ac:76:3f:16:ee:f1:a0:87:21: 00:f2:3c:c7:20:82:a5:d8:49:0a:45:6a:6e:1f:77: 9a:65:9c:ba:f4:41:8f:be:e3:7c:94:72:4f:05:f3: 1f:fe:fa:1a:d9:cd:27:bd:6a:76:03:a7:41:6d:a0: 6b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:2F:08:00:FA:54:0C:3C:A3:AD:38:1E:03:9A:D1:2E:82:91:F7:4B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5549fdb0-617d-43e3-951f-9747f0d27829.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4140::/48 Signature Algorithm: sha256WithRSAEncryption 74:18:e1:a1:94:5e:a2:35:8e:dd:06:4f:06:36:1b:6b:dc:d0: 20:49:67:71:e9:e8:85:48:be:6b:c5:ab:99:c0:e6:cc:b3:3a: 8f:aa:8b:25:77:e4:ae:f8:b8:13:31:2b:5a:ea:ca:da:fc:df: 95:7d:14:d3:4e:12:65:09:00:a7:2a:42:39:27:2e:41:86:44: 8f:82:bf:4d:fa:2f:10:05:9c:54:fd:ad:5f:64:0a:59:f5:3f: 09:7a:97:d9:9c:6b:04:4d:3b:26:a2:c2:a5:80:d5:f7:2e:87: 21:87:d2:13:b9:16:56:6a:11:71:ff:19:c8:d3:83:28:af:20: 16:a7:f0:69:18:36:aa:0f:ad:71:44:b3:32:09:46:d7:48:3d: 60:00:92:0f:df:a6:2a:7a:4e:9b:9a:a2:bf:38:25:39:28:43: 08:27:ac:6e:86:ce:00:fb:b8:12:01:21:aa:66:93:f6:c5:59: e5:f6:e4:21:c0:60:2e:4d:49:4f:f5:af:2e:5e:45:d1:95:bd: 24:65:71:50:e4:f2:69:2a:44:cc:32:08:91:3a:d7:8c:97:9a: c8:03:c5:ca:f5:e2:23:e5:f7:ad:15:d4:6a:f0:51:67:2c:ff: 68:b8:83:f7:f1:09:76:df:f4:29:3b:74:ec:cb:dc:02:cd:e6: d7:64:ed:01 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUU8sSwEnW7UPLK2PVt5XM64R8ts0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDI0MDAyMDA2WhcNMjUxMTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYzY4ZWMxNTYzYmE1YTRhYWFhNjRiNjQxZTAwMjI5ZTNi MDg5YWI1NzQzMjVmOWQzYmI4MzA3ZmYzNDFhNTQ4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfMaeAzCZMmsU3UhST+K/nQE4S6CD9P/rG0rRs0thiTJIB fRacPqHpXYi7DKaEN/ngcoIimjH92ZrY1SuyjD+6061ufBZVBuTsROIimvGCrWHj LOhsqRdjkJd2gs18ewwSt1tkPWe5cw4eg+0q8oNsriFVKBSX0KTUn0iUDUfjq44t dG/rasv4EKaP1I7KQTsasn2tmzt0H4uohFrcwxfLKEiiMV3Rwk3R1pqKLACOpCLH vQPIoWryBx/Oe2cpnvJH2dYEw2aw3Kx2Pxbu8aCHIQDyPMcggqXYSQpFam4fd5pl nLr0QY++43yUck8F8x/++hrZzSe9anYDp0FtoGvXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3i8IAPpUDDyjrTgeA5rRLoKR90swHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU1NDlmZGIwLTYxN2QtNDNlMy05NTFmLTk3NDdmMGQyNzgyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwQUAwDQYJKoZIhvcNAQELBQADggEBAHQY4aGUXqI1jt0GTwY2G2vc 0CBJZ3Hp6IVIvmvFq5nA5syzOo+qiyV35K74uBMxK1rqytr835V9FNNOEmUJAKcq QjknLkGGRI+Cv036LxAFnFT9rV9kCln1Pwl6l9mcawRNOyaiwqWA1fcuhyGH0hO5 FlZqEXH/GcjTgyivIBan8GkYNqoPrXFEszIJRtdIPWAAkg/fpip6Tpuaor84JTko QwgnrG6GzgD7uBIBIapmk/bFWeX25CHAYC5NSU/1ry5eRdGVvSRlcVDk8mkqRMwy CJE614yXmsgDxcr14iPl960V1GrwUWcs/2i4g/fxCXbf9Ck7dOzL3ALN5tdk7QE= -----END CERTIFICATE-----Generated at Wed Nov 5 20:47:24 2025 by rpki-client