$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6939390a-b25d-45cf-aa34-f6ba281ea03a.roa File: 6939390a-b25d-45cf-aa34-f6ba281ea03a.roa (raw, json) Hash identifier: NtBH7IFWRumZRite+AdTFhP7uq4uoqekkykKOKoRxeE= Subject key identifier: 1E:F5:78:A2:EC:D0:57:14:68:3A:81:81:DB:CF:6E:98:EE:6F:33:5D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 70EA97AEF0F4179828A81D9A3C244B43A65A66A2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6939390a-b25d-45cf-aa34-f6ba281ea03a.roa Signing time: Fri 31 Oct 2025 01:50:42 +0000 ROA not before: Fri 31 Oct 2025 01:50:42 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6113::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:ea:97:ae:f0:f4:17:98:28:a8:1d:9a:3c:24:4b:43:a6:5a:66:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 31 01:50:42 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=04050fcd8c2ac0a02d5993748bedeb099dc598803d3ba6657e0804a9ba4651d1, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c3:84:fa:15:2a:95:d2:ab:bf:cc:5b:dd:45: d9:1a:55:dc:71:b4:fd:c4:23:2f:e3:bb:8c:20:a4: 53:d5:1e:17:29:47:a4:40:50:a6:20:fa:52:9f:58: 69:3b:c7:f0:5f:e3:33:95:20:99:d2:23:23:2a:77: 9c:58:8b:f0:e3:c1:fc:e7:67:ed:a3:2b:cd:a0:05: 90:bd:52:15:3d:20:ab:b8:45:b7:e1:e4:76:03:d9: a8:ea:7c:61:43:8b:59:e2:c7:32:5f:e8:ca:99:96: ed:21:95:cd:b0:00:68:13:02:7a:8e:a0:2f:6e:fd: c8:cd:19:15:2f:93:f0:68:a4:47:51:76:7b:3e:81: ea:53:a6:25:bb:2a:d7:3a:87:5b:96:37:2d:79:08: 02:07:bc:49:67:2c:a6:0f:f7:41:00:e3:24:bf:f3: f4:f7:d3:5d:e9:1e:f8:77:d6:56:13:b6:94:a5:f2: 06:27:25:26:b4:c3:5c:1e:1b:2e:14:14:8f:e1:49: 4b:41:36:4e:ef:2b:2b:86:0d:3c:b1:e0:61:dd:09: e5:d9:35:d1:00:cf:d8:85:4d:b7:bd:1e:1a:b4:52: 9d:aa:b3:bb:e7:38:dd:b0:da:38:38:e7:79:fa:4a: c6:7e:a0:6c:21:88:ab:89:5a:cc:88:73:5e:93:55: 8b:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:F5:78:A2:EC:D0:57:14:68:3A:81:81:DB:CF:6E:98:EE:6F:33:5D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6939390a-b25d-45cf-aa34-f6ba281ea03a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6113::/48 Signature Algorithm: sha256WithRSAEncryption 8d:3f:5b:10:5a:7f:25:5f:2d:19:fe:17:25:93:4a:f9:34:87: 83:c7:1b:af:e0:b1:bc:e0:80:fb:3f:36:73:e0:9a:4f:3d:c1: bc:84:d9:e3:39:76:71:66:1f:ca:cc:0a:ce:78:c3:0b:a9:f7: f8:5c:7e:1b:c5:86:48:55:36:4a:db:c5:ba:d2:a1:c3:94:ed: 03:07:bf:83:79:d3:26:11:83:ae:c4:f8:38:d4:bf:44:65:de: 19:44:e3:3a:46:e4:b9:ba:9b:18:b8:ea:d6:b5:09:cc:94:98: 61:b8:36:54:b2:2c:8d:a4:f2:00:74:b5:14:f3:30:bc:b5:b3: e0:46:e9:aa:f7:05:55:a7:0f:64:a4:54:ca:d1:79:b6:ec:a4: 92:a8:34:c9:ab:f0:b1:d7:3d:68:90:f9:25:23:3b:7a:01:50: e9:90:5b:5d:0f:8a:3f:83:f5:29:e3:d0:55:c2:9d:ca:27:32: 38:d5:3e:72:9b:1f:53:95:01:a9:e2:59:af:80:c5:a8:55:f6: bc:12:81:f4:3a:c4:5b:fb:b0:91:73:8b:31:0f:ee:4c:d2:7e: 77:50:40:ef:6d:76:d0:5f:84:b2:84:44:03:a1:cd:ae:bc:a5: e2:ba:2e:ad:6e:2a:d1:f6:77:a0:11:b5:7c:5d:ce:a8:85:4a: d4:e6:5c:51 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcOqXrvD0F5goqB2aPCRLQ6ZaZqIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDMxMDE1MDQyWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNDA1MGZjZDhjMmFjMGEwMmQ1OTkzNzQ4YmVkZWIwOTlk YzU5ODgwM2QzYmE2NjU3ZTA4MDRhOWJhNDY1MWQxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtw4T6FSqV0qu/zFvdRdkaVdxxtP3EIy/ju4wgpFPVHhcp R6RAUKYg+lKfWGk7x/Bf4zOVIJnSIyMqd5xYi/DjwfznZ+2jK82gBZC9UhU9IKu4 Rbfh5HYD2ajqfGFDi1nixzJf6MqZlu0hlc2wAGgTAnqOoC9u/cjNGRUvk/BopEdR dns+gepTpiW7Ktc6h1uWNy15CAIHvElnLKYP90EA4yS/8/T3013pHvh31lYTtpSl 8gYnJSa0w1weGy4UFI/hSUtBNk7vKyuGDTyx4GHdCeXZNdEAz9iFTbe9Hhq0Up2q s7vnON2w2jg453n6SsZ+oGwhiKuJWsyIc16TVYvzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUHvV4ouzQVxRoOoGB289umO5vM10wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzY5MzkzOTBhLWIyNWQtNDVjZi1hYTM0LWY2YmEyODFlYTAzYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRMwDQYJKoZIhvcNAQELBQADggEBAI0/WxBafyVfLRn+FyWTSvk0 h4PHG6/gsbzggPs/NnPgmk89wbyE2eM5dnFmH8rMCs54wwup9/hcfhvFhkhVNkrb xbrSocOU7QMHv4N50yYRg67E+DjUv0Rl3hlE4zpG5Lm6mxi46ta1CcyUmGG4NlSy LI2k8gB0tRTzMLy1s+BG6ar3BVWnD2SkVMrRebbspJKoNMmr8LHXPWiQ+SUjO3oB UOmQW10Pij+D9Snj0FXCnconMjjVPnKbH1OVAaniWa+AxahV9rwSgfQ6xFv7sJFz izEP7kzSfndQQO9tdtBfhLKERAOhza68peK6Lq1uKtH2d6ARtXxdzqiFStTmXFE= -----END CERTIFICATE-----Generated at Wed Nov 5 05:38:42 2025 by rpki-client