$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/56ee27f8-4518-41fe-86ac-ae8a2e2a410d.roa File: 56ee27f8-4518-41fe-86ac-ae8a2e2a410d.roa (raw, json) Hash identifier: dWC60PzlLljsuNosLab/v5IC55N1hkp3w1CrYGl0H5Y= Subject key identifier: CC:1A:D8:72:CA:74:9B:5A:1F:C1:45:55:6F:7A:FB:BF:22:92:72:67 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3A40B881F03275D4D1CBB94548C5B566CE87104D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/56ee27f8-4518-41fe-86ac-ae8a2e2a410d.roa Signing time: Tue 21 Oct 2025 13:00:03 +0000 ROA not before: Tue 21 Oct 2025 13:00:03 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:4100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:40:b8:81:f0:32:75:d4:d1:cb:b9:45:48:c5:b5:66:ce:87:10:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:00:03 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=037860821164a5062e0275d4214d23069faf4b28840e1aeb38bf593e6b8a9ff1, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:74:f0:46:0d:d4:27:52:92:45:04:09:d4:54: c7:17:89:6a:c6:9e:1e:44:5c:77:fc:a3:d0:5d:e7: 3c:07:bb:8a:bd:95:95:28:a3:ad:57:26:4c:fa:66: 6d:8e:fb:8d:04:a7:66:93:0f:23:3d:43:68:bb:b1: ab:07:ba:28:ad:59:21:e4:20:ed:e1:3c:e6:ef:16: 75:a1:f6:55:6a:59:c0:d1:73:75:4d:ab:68:f0:32: 56:27:81:04:c9:56:d9:e5:3e:47:7b:eb:7f:1a:40: f6:75:41:57:ea:fa:c1:5e:6b:3c:ae:9a:40:1f:25: 3a:82:da:4b:ba:5f:f5:4d:52:ee:fc:bd:d3:ea:c0: 07:61:4d:13:cb:39:c0:37:45:c1:b4:2a:a2:d9:ed: 3e:34:de:76:77:d2:7f:2a:76:88:66:d7:30:20:ec: 59:7d:d3:92:62:47:d7:ad:11:b9:c1:28:97:72:5b: 9a:e1:b3:2b:2f:fa:df:2c:5f:be:bd:22:fe:38:c4: 32:80:8f:63:43:53:1d:df:df:fd:de:50:ef:0b:b6: cb:e8:cd:62:76:12:31:15:ce:65:cc:26:28:8a:c4: 7e:9e:a8:ed:6a:47:c6:8b:f3:e2:00:37:31:b5:73: 9f:fb:ce:b5:70:b8:b5:e8:c3:12:79:76:f3:23:39: fe:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:1A:D8:72:CA:74:9B:5A:1F:C1:45:55:6F:7A:FB:BF:22:92:72:67 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/56ee27f8-4518-41fe-86ac-ae8a2e2a410d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4100::/48 Signature Algorithm: sha256WithRSAEncryption 2c:2d:4c:a2:b9:71:8c:49:26:7f:34:69:e2:b9:3b:f0:bd:86: 43:6f:a8:36:0c:c0:e2:96:55:94:58:c1:30:e8:92:5b:4c:0c: 40:69:b4:58:c7:9e:2b:fa:66:60:df:dc:fb:f5:40:ca:f1:15: f6:57:ee:7f:3d:c6:e6:7b:15:47:bb:9b:54:12:2e:5b:38:9c: 9b:ea:c5:cc:46:f2:3f:7c:79:a0:ea:50:2d:9c:80:32:1a:3d: 6a:61:5d:c9:b9:f0:4c:15:aa:02:ae:4f:41:65:2b:04:fc:2e: d4:8e:72:8a:21:0c:26:9f:24:51:fc:d4:96:a7:2a:1d:5d:42: 64:7f:a5:39:3b:07:68:b1:0b:ef:92:ee:68:95:31:ca:3d:47: 27:a5:dc:9f:ae:68:25:fe:29:7b:fc:8a:43:d9:dd:70:1e:0a: de:72:4a:eb:a2:50:a9:a6:8d:ef:5e:0c:22:fc:7e:e2:98:83: 6f:9f:52:a7:d6:44:51:b2:eb:03:4d:2c:5b:3f:ac:b7:fe:dd: 9c:f4:e6:72:c2:5b:71:b2:11:6a:af:86:65:05:07:db:3b:d1: e7:34:a7:de:40:4e:2d:5f:fe:d1:be:2e:2f:d1:7b:65:bc:e3: 30:ae:5f:08:06:ff:44:83:02:6c:9e:4b:5a:65:26:0d:cc:e3: d1:43:cd:3f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOkC4gfAyddTRy7lFSMW1Zs6HEE0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMwMDAzWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMzc4NjA4MjExNjRhNTA2MmUwMjc1ZDQyMTRkMjMwNjlm YWY0YjI4ODQwZTFhZWIzOGJmNTkzZTZiOGE5ZmYxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLdPBGDdQnUpJFBAnUVMcXiWrGnh5EXHf8o9Bd5zwHu4q9 lZUoo61XJkz6Zm2O+40Ep2aTDyM9Q2i7sasHuiitWSHkIO3hPObvFnWh9lVqWcDR c3VNq2jwMlYngQTJVtnlPkd7638aQPZ1QVfq+sFeazyumkAfJTqC2ku6X/VNUu78 vdPqwAdhTRPLOcA3RcG0KqLZ7T403nZ30n8qdohm1zAg7Fl905JiR9etEbnBKJdy W5rhsysv+t8sX769Iv44xDKAj2NDUx3f3/3eUO8LtsvozWJ2EjEVzmXMJiiKxH6e qO1qR8aL8+IANzG1c5/7zrVwuLXowxJ5dvMjOf4PAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUzBrYcsp0m1ofwUVVb3r7vyKScmcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU2ZWUyN2Y4LTQ1MTgtNDFmZS04NmFjLWFlOGEyZTJhNDEwZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwQQAwDQYJKoZIhvcNAQELBQADggEBACwtTKK5cYxJJn80aeK5O/C9 hkNvqDYMwOKWVZRYwTDokltMDEBptFjHniv6ZmDf3Pv1QMrxFfZX7n89xuZ7FUe7 m1QSLls4nJvqxcxG8j98eaDqUC2cgDIaPWphXcm58EwVqgKuT0FlKwT8LtSOcooh DCafJFH81JanKh1dQmR/pTk7B2ixC++S7miVMco9Ryel3J+uaCX+KXv8ikPZ3XAe Ct5ySuuiUKmmje9eDCL8fuKYg2+fUqfWRFGy6wNNLFs/rLf+3Zz05nLCW3GyEWqv hmUFB9s70ec0p95ATi1f/tG+Li/Re2W84zCuXwgG/0SDAmyeS1plJg3M49FDzT8= -----END CERTIFICATE-----Generated at Wed Nov 5 14:41:23 2025 by rpki-client