$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5711ca9f-54b1-42ca-be68-93036263a87f.roa File: 5711ca9f-54b1-42ca-be68-93036263a87f.roa (raw, json) Hash identifier: RJkcE+0CTz6z8UXnw+vFlaxP7atJBqshBeqJfSPJPkk= Subject key identifier: 19:CC:EE:24:01:76:BD:95:E6:07:F4:DB:58:EB:C7:DE:AC:61:68:22 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0548FA05FD3F173DEF00B70A7B6322FB0BCA53E2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5711ca9f-54b1-42ca-be68-93036263a87f.roa Signing time: Wed 22 Oct 2025 00:40:13 +0000 ROA not before: Wed 22 Oct 2025 00:40:13 +0000 ROA not after: Wed 26 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f10d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:48:fa:05:fd:3f:17:3d:ef:00:b7:0a:7b:63:22:fb:0b:ca:53:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 22 00:40:13 2025 GMT Not After : Nov 26 23:59:59 2025 GMT Subject: serialNumber=8371112c7d53c2af83a9ab0ef6f4edc6f8a39fd10314d94bcfafbb328f5306ad, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f2:e0:ab:87:02:e2:04:f2:ba:c1:95:3e:fa: 28:44:3b:0a:73:56:86:e8:89:78:28:bb:5d:07:aa: 39:39:2f:42:f1:f7:89:f1:a4:ff:82:60:c5:b4:a9: f4:51:e9:41:ee:d4:11:ca:fe:1f:b9:60:ae:8d:f3: 42:67:82:71:a5:e3:be:e7:37:2d:4a:5e:56:a4:9b: 00:e9:78:21:8c:e3:ae:b5:8a:aa:77:3e:20:85:d0: 1b:49:02:2c:f9:94:d4:69:ed:17:df:97:44:fb:03: 92:40:78:32:f3:eb:11:26:20:b9:a9:75:e3:94:19: 18:f1:3c:78:26:39:f7:52:15:ff:08:f4:91:81:31: 45:32:e6:74:7d:00:4a:1d:37:03:9a:ae:40:79:05: 28:25:d3:b7:c1:0c:87:6a:3b:6f:5b:cc:76:d6:1f: fc:ce:51:6e:5f:67:d0:c5:48:d8:df:9b:4c:fb:28: 0f:cc:6f:d2:1d:16:39:0b:b0:c4:88:0c:df:c6:bd: bc:76:36:8b:9d:61:91:38:77:1c:96:d4:b3:b9:62: 7d:3e:0e:2d:0d:47:62:03:8a:9d:e5:0b:13:2c:e8: 7e:ad:17:1f:9e:11:c4:de:3b:7b:fd:b6:b0:62:ea: 33:fa:c6:33:68:6c:fb:e9:3e:00:1b:a3:98:63:4b: b5:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:CC:EE:24:01:76:BD:95:E6:07:F4:DB:58:EB:C7:DE:AC:61:68:22 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5711ca9f-54b1-42ca-be68-93036263a87f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f10d::/48 Signature Algorithm: sha256WithRSAEncryption 30:9d:7d:f7:53:92:13:4c:3b:c2:16:e4:75:cf:ab:d9:5f:d4: 70:99:6f:87:52:d3:4f:2b:b3:77:73:14:50:81:8c:2b:35:44: 92:48:8f:69:20:ab:a9:69:87:97:9a:b7:e3:80:74:42:f2:fa: 1e:07:04:d3:bd:e7:0c:cc:42:b1:21:8f:d0:9e:74:97:4c:7e: 33:db:21:b0:9b:6a:c6:34:19:42:f7:03:a7:4b:59:bb:a8:6b: b7:78:39:00:d4:02:50:b5:e5:2b:ae:21:ee:a7:37:47:80:e4: 78:05:19:f6:4a:fb:1a:51:43:83:68:9b:4a:de:dd:ad:5d:e0: 44:81:41:9a:15:05:10:40:92:d0:a6:2b:40:f4:96:dd:9f:62: 53:ea:7d:82:e4:c5:9d:25:f6:ee:87:92:86:ec:dd:7e:d4:f1: 04:ea:cf:3d:7d:7a:64:c5:82:01:29:05:b7:b0:f1:35:a8:5d: cd:35:9a:58:37:eb:6d:ed:56:f5:ac:cb:f4:a2:5b:be:13:75: d0:17:4a:8d:6d:b6:c9:b3:cf:05:d5:1e:e5:4e:c0:07:71:37: 1d:96:db:cc:99:cd:2a:69:52:bf:ff:75:d9:a7:f4:31:70:e1: 81:57:df:58:92:ed:97:37:24:26:70:b1:2e:e8:69:03:e8:fa: 4f:e2:02:bb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBUj6Bf0/Fz3vALcKe2Mi+wvKU+IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIyMDA0MDEzWhcNMjUxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MzcxMTEyYzdkNTNjMmFmODNhOWFiMGVmNmY0ZWRjNmY4 YTM5ZmQxMDMxNGQ5NGJjZmFmYmIzMjhmNTMwNmFkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCe8uCrhwLiBPK6wZU++ihEOwpzVoboiXgou10Hqjk5L0Lx 94nxpP+CYMW0qfRR6UHu1BHK/h+5YK6N80JngnGl477nNy1KXlakmwDpeCGM4661 iqp3PiCF0BtJAiz5lNRp7Rffl0T7A5JAeDLz6xEmILmpdeOUGRjxPHgmOfdSFf8I 9JGBMUUy5nR9AEodNwOarkB5BSgl07fBDIdqO29bzHbWH/zOUW5fZ9DFSNjfm0z7 KA/Mb9IdFjkLsMSIDN/Gvbx2NoudYZE4dxyW1LO5Yn0+Di0NR2IDip3lCxMs6H6t Fx+eEcTeO3v9trBi6jP6xjNobPvpPgAbo5hjS7XnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUGczuJAF2vZXmB/TbWOvH3qxhaCIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU3MTFjYTlmLTU0YjEtNDJjYS1iZTY4LTkzMDM2MjYzYTg3Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78Q0wDQYJKoZIhvcNAQELBQADggEBADCdffdTkhNMO8IW5HXPq9lf 1HCZb4dS008rs3dzFFCBjCs1RJJIj2kgq6lph5eat+OAdELy+h4HBNO95wzMQrEh j9CedJdMfjPbIbCbasY0GUL3A6dLWbuoa7d4OQDUAlC15SuuIe6nN0eA5HgFGfZK +xpRQ4Nom0re3a1d4ESBQZoVBRBAktCmK0D0lt2fYlPqfYLkxZ0l9u6Hkobs3X7U 8QTqzz19emTFggEpBbew8TWoXc01mlg3623tVvWsy/SiW74TddAXSo1ttsmzzwXV HuVOwAdxNx2W28yZzSppUr//ddmn9DFw4YFX31iS7Zc3JCZwsS7oaQPo+k/iArs= -----END CERTIFICATE-----Generated at Wed Nov 5 05:38:11 2025 by rpki-client