$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/644f882a-d42c-4c76-bb70-882838f6e3e0.roa File: 644f882a-d42c-4c76-bb70-882838f6e3e0.roa (raw, json) Hash identifier: zncqFZZOE0uiaTjGN7poyt53s+quFjrX5DFILOXdf2w= Subject key identifier: 42:94:D8:6B:D7:9B:CB:22:F5:3C:15:08:73:5F:15:89:17:CD:3F:FD Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0D9623EA43E4A393E46BCD7A780583B70BA7D494 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/644f882a-d42c-4c76-bb70-882838f6e3e0.roa Signing time: Tue 21 Oct 2025 12:50:48 +0000 ROA not before: Tue 21 Oct 2025 12:50:48 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e600::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:96:23:ea:43:e4:a3:93:e4:6b:cd:7a:78:05:83:b7:0b:a7:d4:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:48 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=39a40939f84e460cf5e740eddeb2c68a171243e7a13b34fb42f80faa62b3f18d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7c:44:e7:81:11:16:7a:14:da:b0:ca:b3:cd: a0:77:46:8a:d5:1e:de:79:c9:41:03:7b:fb:d2:3f: a0:a4:a9:b9:35:14:c4:62:47:30:ac:16:d5:04:53: f9:fd:fa:eb:29:55:5e:b5:f4:0e:40:56:d3:fd:de: 2e:97:10:95:31:77:99:7d:c2:e6:3a:7a:63:f8:79: 6e:31:f8:5f:b6:0c:4d:25:99:1a:6a:12:39:02:05: c4:62:71:fd:76:22:a9:87:2d:69:06:21:9a:25:8c: c8:c7:1b:56:73:d6:33:f2:1e:b6:d1:1a:72:5c:19: 7e:1b:6a:ac:30:86:c6:d0:36:ab:06:73:11:4b:58: d2:b4:5e:18:03:a8:1a:32:62:77:92:72:7d:75:8b: 99:0d:3f:9b:f6:b1:00:4a:c8:a8:c0:27:da:0a:d7: 30:b0:3d:a0:12:bc:a4:17:35:6a:9d:a4:43:d5:75: 99:b3:1a:4a:15:42:73:1d:5c:6d:ac:38:15:d5:cf: 82:43:11:fe:ba:5a:4a:ac:7b:58:19:1c:e1:87:22: b2:0d:12:71:3b:35:1c:a9:ed:8d:c7:f8:80:90:79: d4:a7:7e:6b:87:16:15:3b:bd:e4:25:bc:1f:d1:d9: 58:46:1c:5b:93:c2:a4:e0:5b:9e:98:cc:a6:4c:b2: 37:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:94:D8:6B:D7:9B:CB:22:F5:3C:15:08:73:5F:15:89:17:CD:3F:FD X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/644f882a-d42c-4c76-bb70-882838f6e3e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e600::/40 Signature Algorithm: sha256WithRSAEncryption 4f:b3:e2:4a:d1:51:40:79:01:3e:a1:85:83:68:f9:8a:fd:33: 74:74:3b:53:43:a4:35:97:53:37:d8:4e:e4:38:1c:d3:8a:21: 2a:17:db:1a:2f:8b:9c:c4:2d:81:5a:75:01:d6:19:ad:95:9a: f5:5f:0b:4b:ab:bd:78:e7:66:80:d9:c9:6a:4a:2b:df:a1:8b: cc:7a:af:94:43:d8:9a:d2:31:00:0b:2d:29:0b:35:36:26:81: eb:07:72:07:e9:4f:e2:00:9e:df:e3:a6:e1:52:48:64:16:af: 72:df:db:57:34:f3:be:99:89:21:51:4a:da:32:83:6d:1f:e7: aa:51:83:6d:ee:8a:77:c8:4d:3f:04:b8:77:63:c7:5f:7f:58: 58:6d:ca:42:b0:f9:8f:95:04:93:fc:e8:18:40:99:8f:81:c0: f4:e9:be:9c:c5:e0:c3:5d:f2:65:dd:66:65:e4:1b:09:8b:f7: 4f:14:57:09:84:45:ed:54:54:f0:95:27:32:1d:f1:00:de:9f: 5a:9e:08:b3:fe:96:d4:92:f2:03:19:30:b9:d6:af:8e:95:01: 78:28:2e:55:43:2a:85:83:00:5a:a0:9b:ce:30:ca:2c:5b:cb: a6:00:76:3a:d6:18:a3:aa:40:86:c0:75:bf:7f:af:c0:49:49: 7b:93:7c:b3 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUDZYj6kPko5Pka816eAWDtwun1JQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDQ4WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzOWE0MDkzOWY4NGU0NjBjZjVlNzQwZWRkZWIyYzY4YTE3 MTI0M2U3YTEzYjM0ZmI0MmY4MGZhYTYyYjNmMThkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzfETngREWehTasMqzzaB3RorVHt55yUEDe/vSP6Ckqbk1 FMRiRzCsFtUEU/n9+uspVV619A5AVtP93i6XEJUxd5l9wuY6emP4eW4x+F+2DE0l mRpqEjkCBcRicf12IqmHLWkGIZoljMjHG1Zz1jPyHrbRGnJcGX4baqwwhsbQNqsG cxFLWNK0XhgDqBoyYneScn11i5kNP5v2sQBKyKjAJ9oK1zCwPaASvKQXNWqdpEPV dZmzGkoVQnMdXG2sOBXVz4JDEf66Wkqse1gZHOGHIrINEnE7NRyp7Y3H+ICQedSn fmuHFhU7veQlvB/R2VhGHFuTwqTgW56YzKZMsjcjAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUQpTYa9ebyyL1PBUIc18ViRfNP/0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzY0NGY4ODJhLWQ0MmMtNGM3Ni1iYjcwLTg4MjgzOGY2ZTNlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD75jANBgkqhkiG9w0BAQsFAAOCAQEAT7PiStFRQHkBPqGFg2j5iv0z dHQ7U0OkNZdTN9hO5Dgc04ohKhfbGi+LnMQtgVp1AdYZrZWa9V8LS6u9eOdmgNnJ akor36GLzHqvlEPYmtIxAAstKQs1NiaB6wdyB+lP4gCe3+Om4VJIZBavct/bVzTz vpmJIVFK2jKDbR/nqlGDbe6Kd8hNPwS4d2PHX39YWG3KQrD5j5UEk/zoGECZj4HA 9Om+nMXgw13yZd1mZeQbCYv3TxRXCYRF7VRU8JUnMh3xAN6fWp4Is/6W1JLyAxkw udavjpUBeCguVUMqhYMAWqCbzjDKLFvLpgB2OtYYo6pAhsB1v3+vwElJe5N8sw== -----END CERTIFICATE-----Generated at Wed Nov 5 05:46:37 2025 by rpki-client