$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/579d3087-6060-4a0d-b623-b91cce78806a.roa File: 579d3087-6060-4a0d-b623-b91cce78806a.roa (raw, json) Hash identifier: 9+o/vqIJPxbY8T11e9ZNOkuWgPh9VwhKqEhs80ThR1w= Subject key identifier: D1:57:BC:CA:28:43:98:1A:99:D7:C2:53:9E:CA:4E:83:AF:BA:95:AF Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 37C09360776DC6E22852A8AF5BDE6CF520933933 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/579d3087-6060-4a0d-b623-b91cce78806a.roa Signing time: Tue 21 Oct 2025 13:10:05 +0000 ROA not before: Tue 21 Oct 2025 13:10:05 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:4000::/34 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:c0:93:60:77:6d:c6:e2:28:52:a8:af:5b:de:6c:f5:20:93:39:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:10:05 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=ca41aceb56616613f75cf4bb44be8b0895ee43bf74314db948eb9f448ee6a5a6, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:92:5d:9d:84:16:ed:2e:2f:2b:8e:e7:3c:ed: f4:f2:e8:07:78:07:43:70:8a:9a:64:1e:56:78:d2: e4:cb:0c:d3:f2:74:1f:46:04:c4:c3:03:bd:c1:8d: 3d:01:02:07:1b:8f:b1:13:fd:ff:f0:fe:fd:4b:90: e2:97:08:f9:08:f4:f1:ba:9b:3c:44:0e:0e:85:c0: f4:1c:d1:97:ce:8c:04:ed:94:1a:f4:ed:99:b5:b2: 47:a4:27:1c:47:15:b6:e6:f7:7e:fd:da:8e:4d:f1: bb:d5:35:4a:d9:e9:7b:8e:d7:cd:93:e9:eb:bc:51: 43:3e:42:85:82:f4:95:ba:a8:14:33:91:f0:d9:1d: 74:cb:0e:90:82:18:50:88:15:c7:25:7e:00:f3:10: 54:34:f6:91:bc:62:38:59:a4:72:f9:09:16:92:d8: f9:95:cf:31:8a:c9:ae:55:e0:25:0e:b1:29:bf:15: d7:8f:c2:32:b2:5d:75:f8:90:58:60:97:3b:c5:1a: 1e:01:6a:e3:40:ff:dc:fc:03:f9:89:b6:a2:e0:85: 47:ac:7f:54:f6:16:0f:a4:d3:e2:9f:09:f6:df:1f: 19:28:69:e7:27:fe:00:11:75:d4:00:d0:b3:24:d3: 0a:4f:bd:dc:36:8a:da:6d:12:46:74:9e:4d:55:78: 65:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:57:BC:CA:28:43:98:1A:99:D7:C2:53:9E:CA:4E:83:AF:BA:95:AF X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/579d3087-6060-4a0d-b623-b91cce78806a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:4000::/34 Signature Algorithm: sha256WithRSAEncryption a4:e7:06:8d:ea:6b:a6:d8:f2:5f:7a:e8:b1:9a:75:1e:a6:ba: a9:16:5b:b1:12:21:8a:69:ad:74:51:03:c1:6a:49:27:cc:df: 49:87:89:be:da:c6:3e:8e:5e:16:83:02:ab:cc:d9:5d:62:0f: fa:74:70:15:b1:9c:10:ce:2e:07:1a:ed:ab:8b:e2:30:ae:bd: 7e:d0:8b:b1:24:9e:02:12:bb:32:aa:9d:98:d9:54:9a:65:4d: 47:3c:fd:23:8a:21:72:c3:b9:fe:88:04:31:6c:19:9a:78:74: 41:e1:33:47:c6:33:74:e1:96:82:6d:94:9b:a5:29:2c:cd:c9: 00:d2:0e:c4:ba:c4:07:9e:16:22:e8:de:08:38:08:bc:fa:5e: 23:30:17:e9:11:01:1d:23:76:1a:d2:60:68:70:65:77:f8:72: 32:60:11:df:ce:a0:66:4c:0e:ec:6a:eb:f3:07:9e:56:f4:3e: 7a:9e:01:97:e6:2c:ee:9d:dd:1a:da:60:8b:86:d5:10:1b:1a: 0d:12:14:07:f1:36:39:2c:3d:78:66:32:8f:5d:07:f7:12:d9: f4:f3:f5:77:a0:5b:44:94:6b:21:78:a7:39:a3:55:48:ba:64: fc:68:f2:00:7c:59:4f:c4:04:78:93:84:a4:1f:b8:18:c1:c9: 80:f0:58:5f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUN8CTYHdtxuIoUqivW95s9SCTOTMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMxMDA1WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYTQxYWNlYjU2NjE2NjEzZjc1Y2Y0YmI0NGJlOGIwODk1 ZWU0M2JmNzQzMTRkYjk0OGViOWY0NDhlZTZhNWE2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNkl2dhBbtLi8rjuc87fTy6Ad4B0NwippkHlZ40uTLDNPy dB9GBMTDA73BjT0BAgcbj7ET/f/w/v1LkOKXCPkI9PG6mzxEDg6FwPQc0ZfOjATt lBr07Zm1skekJxxHFbbm93792o5N8bvVNUrZ6XuO182T6eu8UUM+QoWC9JW6qBQz kfDZHXTLDpCCGFCIFcclfgDzEFQ09pG8YjhZpHL5CRaS2PmVzzGKya5V4CUOsSm/ FdePwjKyXXX4kFhglzvFGh4BauNA/9z8A/mJtqLghUesf1T2Fg+k0+KfCfbfHxko aecn/gARddQA0LMk0wpPvdw2itptEkZ0nk1VeGXJAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU0Ve8yihDmBqZ18JTnspOg6+6la8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU3OWQzMDg3LTYwNjAtNGEwZC1iNjIzLWI5MWNjZTc4ODA2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgYmAPDxQDANBgkqhkiG9w0BAQsFAAOCAQEApOcGjeprptjyX3rosZp1Hqa6 qRZbsRIhimmtdFEDwWpJJ8zfSYeJvtrGPo5eFoMCq8zZXWIP+nRwFbGcEM4uBxrt q4viMK69ftCLsSSeAhK7MqqdmNlUmmVNRzz9I4ohcsO5/ogEMWwZmnh0QeEzR8Yz dOGWgm2Um6UpLM3JANIOxLrEB54WIujeCDgIvPpeIzAX6REBHSN2GtJgaHBld/hy MmAR386gZkwO7Grr8weeVvQ+ep4Bl+Ys7p3dGtpgi4bVEBsaDRIUB/E2OSw9eGYy j10H9xLZ9PP1d6BbRJRrIXinOaNVSLpk/GjyAHxZT8QEeJOEpB+4GMHJgPBYXw== -----END CERTIFICATE-----Generated at Wed Nov 5 05:38:00 2025 by rpki-client