$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5aab2439-03d3-439a-885f-e2f641886f3d.roa File: 5aab2439-03d3-439a-885f-e2f641886f3d.roa (raw, json) Hash identifier: /BNpn06pLLzlQRSwtwd4SRcJXn4Ui3ZYWNzN4JRXKsg= Subject key identifier: 7C:C0:76:AD:F6:0C:BB:3E:C0:F9:0F:AF:8F:74:13:93:D2:97:E7:3A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4F2879A46BA3AE3CF80C933321FB8D7E13696ADA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5aab2439-03d3-439a-885f-e2f641886f3d.roa Signing time: Fri 31 Oct 2025 02:00:12 +0000 ROA not before: Fri 31 Oct 2025 02:00:12 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f020::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:28:79:a4:6b:a3:ae:3c:f8:0c:93:33:21:fb:8d:7e:13:69:6a:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 31 02:00:12 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=ab49fb7dc58b41a19914f351d773621a358c95545aca6e698474d47676012818, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f2:be:70:62:e2:d6:fc:91:ba:e0:69:f5:34: bf:76:4c:0e:86:a5:42:80:b9:d8:5f:ec:3b:a7:4b: fd:b3:ce:32:e1:b9:a1:6f:a1:d7:f1:fd:cf:5a:0a: e0:f2:49:bd:99:bd:79:7f:25:66:55:74:3e:95:f6: b3:66:38:ae:af:19:57:68:3d:57:fa:79:91:b0:d4: f2:27:13:21:1c:51:44:7a:a3:a3:09:fc:44:ab:9a: 12:f4:67:93:41:ff:e8:13:ae:46:e3:f9:96:0e:37: c7:4e:a5:57:8f:47:dd:db:f1:69:ec:1a:ae:34:bf: 64:5d:b2:f6:18:f7:b6:da:3e:3c:a8:8b:3d:35:82: e5:88:8e:e3:eb:71:ff:55:52:c6:f4:ab:d3:10:4b: 7c:5f:b3:29:64:91:b1:4a:1e:c1:d5:37:41:ee:ef: f7:40:28:35:02:7e:ac:f5:29:b7:5b:5c:a6:d2:be: 17:d3:14:62:e5:e4:51:6a:43:4a:e6:3d:83:3a:0b: a4:4c:d6:dd:23:77:97:16:46:6b:af:ee:7d:42:b0: a5:61:e5:7a:af:2a:fc:07:cc:7d:0a:f3:1c:71:0c: 8d:92:74:17:c3:0a:cf:69:be:a2:fc:fd:da:71:75: 4c:d4:32:6e:c7:9b:4d:e7:85:1e:81:5f:75:e0:bf: 73:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:C0:76:AD:F6:0C:BB:3E:C0:F9:0F:AF:8F:74:13:93:D2:97:E7:3A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5aab2439-03d3-439a-885f-e2f641886f3d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f020::/44 Signature Algorithm: sha256WithRSAEncryption 1e:ee:7f:fd:ff:10:af:b6:35:fe:7f:03:b6:2b:57:ad:51:d5: fc:70:f7:ac:57:a5:9c:ec:a3:c5:b8:85:9b:bc:c6:57:c8:76: 7c:f3:cd:96:c2:04:40:43:35:84:46:08:ee:89:0c:33:62:94: a8:f0:33:a0:5d:d6:eb:49:65:8d:98:2f:fa:c3:c8:5d:37:7d: aa:cb:3d:6d:1a:9c:0f:7c:3f:3a:c3:19:c5:c8:55:f3:32:d2: cc:63:cf:c8:58:bc:e3:b3:11:f1:b6:a3:fe:47:bb:ce:fb:fb: cf:79:5a:10:3e:21:a9:aa:ac:7e:7c:c1:12:a3:4c:79:e7:58: 1b:b5:d1:6f:9b:fb:b6:6a:76:ac:84:41:46:79:87:f8:79:af: 02:13:0e:b4:0a:ed:b4:00:b9:92:52:8c:9f:24:6b:b9:99:0d: 50:9b:f7:94:e6:c8:fd:6a:bd:d1:08:08:3c:0e:2d:3f:54:cc: 88:42:7e:14:15:b4:2b:26:a1:53:e4:ad:e1:f4:39:55:c7:ca: d9:95:fd:8e:16:28:38:e8:ab:c6:af:99:32:6d:df:45:76:61: 0f:d0:8c:ac:d3:6f:fe:9b:b0:d7:4d:90:6d:da:6d:0e:bd:ae: 8e:fb:ac:15:ee:63:67:3e:63:c7:1d:64:02:c4:77:9c:3f:3e: 91:b1:53:e6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTyh5pGujrjz4DJMzIfuNfhNpatowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDMxMDIwMDEyWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYjQ5ZmI3ZGM1OGI0MWExOTkxNGYzNTFkNzczNjIxYTM1 OGM5NTU0NWFjYTZlNjk4NDc0ZDQ3Njc2MDEyODE4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDR8r5wYuLW/JG64Gn1NL92TA6GpUKAudhf7DunS/2zzjLh uaFvodfx/c9aCuDySb2ZvXl/JWZVdD6V9rNmOK6vGVdoPVf6eZGw1PInEyEcUUR6 o6MJ/ESrmhL0Z5NB/+gTrkbj+ZYON8dOpVePR93b8WnsGq40v2RdsvYY97baPjyo iz01guWIjuPrcf9VUsb0q9MQS3xfsylkkbFKHsHVN0Hu7/dAKDUCfqz1KbdbXKbS vhfTFGLl5FFqQ0rmPYM6C6RM1t0jd5cWRmuv7n1CsKVh5XqvKvwHzH0K8xxxDI2S dBfDCs9pvqL8/dpxdUzUMm7Hm03nhR6BX3Xgv3MpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUfMB2rfYMuz7A+Q+vj3QTk9KX5zowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzVhYWIyNDM5LTAzZDMtNDM5YS04ODVmLWUyZjY0MTg4NmYzZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78CAwDQYJKoZIhvcNAQELBQADggEBAB7uf/3/EK+2Nf5/A7YrV61R 1fxw96xXpZzso8W4hZu8xlfIdnzzzZbCBEBDNYRGCO6JDDNilKjwM6Bd1utJZY2Y L/rDyF03farLPW0anA98PzrDGcXIVfMy0sxjz8hYvOOzEfG2o/5Hu877+895WhA+ IamqrH58wRKjTHnnWBu10W+b+7ZqdqyEQUZ5h/h5rwITDrQK7bQAuZJSjJ8ka7mZ DVCb95TmyP1qvdEICDwOLT9UzIhCfhQVtCsmoVPkreH0OVXHytmV/Y4WKDjoq8av mTJt30V2YQ/QjKzTb/6bsNdNkG3abQ69ro77rBXuY2c+Y8cdZALEd5w/PpGxU+Y= -----END CERTIFICATE-----Generated at Wed Nov 5 05:48:49 2025 by rpki-client