$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/56527727-111d-4d4a-9da3-1e8d68e15a4c.roa File: 56527727-111d-4d4a-9da3-1e8d68e15a4c.roa (raw, json) Hash identifier: bPdwQ5Z35XvUFlnA+0Vk3cXO/2ujD6Gr9frbRvFTX8M= Subject key identifier: 81:FF:73:6B:BD:F4:A5:58:F1:E7:78:D8:2D:D9:BB:F7:3E:B4:05:77 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2EE5E7942DE495250FDE3A591E27EBAFBC262687 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/56527727-111d-4d4a-9da3-1e8d68e15a4c.roa Signing time: Tue 21 Oct 2025 13:10:03 +0000 ROA not before: Tue 21 Oct 2025 13:10:03 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:80::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:e5:e7:94:2d:e4:95:25:0f:de:3a:59:1e:27:eb:af:bc:26:26:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:10:03 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=f812650be43011edff15709bd72c3b44acbe2df0d8e5f1fa14808a1ef0fed34b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:28:bd:a6:e9:7d:6c:04:70:4f:c5:57:a3:84: 29:d8:c5:e1:95:0f:c4:65:7f:e8:1e:52:0d:33:6b: 94:ef:47:a9:70:1d:af:3d:2e:44:70:16:67:15:1c: 69:6b:49:7b:b0:9e:cf:db:5b:4a:9e:3f:72:f1:48: 2f:1c:f1:9b:ff:94:c1:24:90:99:ba:2f:34:8d:c0: 32:44:66:c5:0c:6c:54:f5:50:04:81:98:08:5e:57: ce:d6:53:45:5c:0c:e7:d1:23:c7:84:51:90:99:d4: 36:23:d0:5c:20:15:04:3a:1a:0a:af:87:5e:54:6e: 5a:7d:6b:99:8e:20:1b:7c:5c:17:2b:d6:fd:3b:d3: 8f:c2:9f:16:36:48:2f:f5:9e:f5:f3:3d:97:0b:ff: 54:40:17:b0:f8:35:4e:c7:d4:2f:60:1d:15:40:03: 7f:f8:39:04:2d:02:a6:57:77:2c:31:78:dc:da:2e: a0:54:01:7f:bd:b2:1f:3a:c5:8c:a1:8b:cf:b9:ce: 55:70:c7:97:89:47:a9:6c:46:7a:4e:90:2f:42:a3: 80:80:f3:41:0a:57:e7:a1:74:01:75:1b:37:fe:6d: 05:16:10:02:99:ee:6b:5b:eb:7d:a2:93:4e:14:56: 6a:44:33:3b:45:49:eb:e8:fc:9c:04:40:6a:11:6f: 28:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:FF:73:6B:BD:F4:A5:58:F1:E7:78:D8:2D:D9:BB:F7:3E:B4:05:77 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/56527727-111d-4d4a-9da3-1e8d68e15a4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:80::/44 Signature Algorithm: sha256WithRSAEncryption 94:64:c4:0d:90:5e:71:98:20:d6:b2:86:7d:26:96:a3:c4:cf: 38:7e:c3:d4:17:5d:0d:58:98:2c:d2:2d:d9:fb:1b:4b:c0:64: a0:34:ca:ca:18:00:c6:32:32:e3:3c:e0:23:2e:db:7c:68:16: c7:b2:30:e6:41:19:5e:f8:bc:c5:f1:b3:bf:f0:0b:16:91:5d: 47:b8:c4:49:9d:f2:a0:13:da:7f:57:66:7a:d4:c6:d2:f7:91: 11:c6:c2:2e:06:d1:bb:f5:5a:ad:b8:42:ae:37:f8:b5:0a:9c: e5:f1:a8:f9:be:24:36:af:b5:fa:ac:13:89:6e:6f:20:9e:cb: c8:63:3c:97:5e:68:89:3e:d8:80:35:5b:93:29:83:e8:e1:f5: 43:76:c9:f8:3d:1b:1e:28:76:9b:e5:86:33:0f:c3:74:ec:7d: 62:24:2a:77:a0:8d:8d:3c:ce:b5:45:f2:a5:5c:29:0a:c3:5d: 34:f4:82:c0:03:9d:51:c4:07:6f:0f:dc:b5:cc:e3:ee:4d:36: 4a:9a:c0:9e:81:df:54:ff:02:c9:f4:02:be:23:a8:39:38:99: b1:ba:37:d5:ce:86:90:ce:64:cd:73:5c:97:bc:f6:04:f3:a5: 90:fd:74:5c:4d:b3:01:c1:6c:04:e3:04:70:bf:36:55:11:83: d1:0d:74:4a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULuXnlC3klSUP3jpZHifrr7wmJocwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMxMDAzWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmODEyNjUwYmU0MzAxMWVkZmYxNTcwOWJkNzJjM2I0NGFj YmUyZGYwZDhlNWYxZmExNDgwOGExZWYwZmVkMzRiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGKL2m6X1sBHBPxVejhCnYxeGVD8Rlf+geUg0za5TvR6lw Ha89LkRwFmcVHGlrSXuwns/bW0qeP3LxSC8c8Zv/lMEkkJm6LzSNwDJEZsUMbFT1 UASBmAheV87WU0VcDOfRI8eEUZCZ1DYj0FwgFQQ6Ggqvh15Ublp9a5mOIBt8XBcr 1v0704/CnxY2SC/1nvXzPZcL/1RAF7D4NU7H1C9gHRVAA3/4OQQtAqZXdywxeNza LqBUAX+9sh86xYyhi8+5zlVwx5eJR6lsRnpOkC9Co4CA80EKV+ehdAF1Gzf+bQUW EAKZ7mtb632ik04UVmpEMztFSevo/JwEQGoRbyjlAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUgf9za730pVjx53jYLdm79z60BXcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU2NTI3NzI3LTExMWQtNGQ0YS05ZGEzLTFlOGQ2OGUxNWE0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAIAwDQYJKoZIhvcNAQELBQADggEBAJRkxA2QXnGYINayhn0mlqPE zzh+w9QXXQ1YmCzSLdn7G0vAZKA0ysoYAMYyMuM84CMu23xoFseyMOZBGV74vMXx s7/wCxaRXUe4xEmd8qAT2n9XZnrUxtL3kRHGwi4G0bv1Wq24Qq43+LUKnOXxqPm+ JDavtfqsE4lubyCey8hjPJdeaIk+2IA1W5Mpg+jh9UN2yfg9Gx4odpvlhjMPw3Ts fWIkKnegjY08zrVF8qVcKQrDXTT0gsADnVHEB28P3LXM4+5NNkqawJ6B31T/Asn0 Ar4jqDk4mbG6N9XOhpDOZM1zXJe89gTzpZD9dFxNswHBbATjBHC/NlURg9ENdEo= -----END CERTIFICATE-----Generated at Wed Nov 5 05:44:21 2025 by rpki-client