$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6a919a63-0d22-4f29-acd1-5dd71f681c7a.roa File: 6a919a63-0d22-4f29-acd1-5dd71f681c7a.roa (raw, json) Hash identifier: i9ygSMe+zEOL4aFrrmCHpfm02a9YK39ONHXqH3a1bm0= Subject key identifier: B0:AD:10:E5:9B:7D:71:19:AC:72:17:A4:BF:52:B3:26:FB:33:20:69 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 765843B56F826DD187CEEAE1CA4D0F766596F3B7 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6a919a63-0d22-4f29-acd1-5dd71f681c7a.roa Signing time: Wed 22 Oct 2025 00:50:09 +0000 ROA not before: Wed 22 Oct 2025 00:50:09 +0000 ROA not after: Wed 26 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f108::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:58:43:b5:6f:82:6d:d1:87:ce:ea:e1:ca:4d:0f:76:65:96:f3:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 22 00:50:09 2025 GMT Not After : Nov 26 23:59:59 2025 GMT Subject: serialNumber=0970331751ae3cea6d4875b2663a3755da1d1e6ece1fc461951475469165b31d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:4b:4f:3c:f4:36:0d:63:65:0e:08:07:cc:c3: 95:35:2a:9d:a3:66:d3:03:bc:08:23:c9:67:49:bd: 27:23:fa:da:30:17:96:d9:45:e0:bb:05:56:d8:58: ba:bf:1a:d8:f8:d7:af:0a:78:24:7a:c1:7d:61:50: a4:ec:15:b9:c6:85:2b:43:d0:72:fa:da:9b:04:ae: 0b:f3:e3:e1:2d:13:b4:ab:6e:65:9e:cc:5d:7c:59: 5a:9c:1a:92:83:78:b9:ee:b8:08:7a:13:38:67:b4: 68:db:e8:e9:76:3d:a3:91:2b:8e:02:62:24:fd:64: ca:4d:30:2e:5c:4c:4a:95:b9:46:22:94:3d:c2:b1: 6d:75:d3:59:81:44:54:a9:4e:f7:88:59:79:6b:f0: 7b:33:cb:e2:9e:76:50:ef:d8:0e:34:9a:51:93:c1: 77:4a:0f:45:8d:c6:ff:93:48:64:9a:84:69:38:35: 94:c1:64:43:fc:a1:df:ef:c0:3e:dc:6a:73:07:96: f9:75:27:e5:43:ab:2c:0e:ca:8e:3f:97:71:39:96: 3c:5e:9e:80:05:7a:73:e3:b3:f4:9b:28:f7:20:aa: d3:d4:ef:db:10:82:73:92:de:4e:ee:ae:50:68:9e: 01:bf:1f:da:77:4d:ce:5c:52:af:43:a3:91:12:8e: 1f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:AD:10:E5:9B:7D:71:19:AC:72:17:A4:BF:52:B3:26:FB:33:20:69 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6a919a63-0d22-4f29-acd1-5dd71f681c7a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f108::/48 Signature Algorithm: sha256WithRSAEncryption 4b:1a:7c:e2:78:f7:77:ec:ea:d2:63:a9:30:95:bb:59:03:55: 3d:60:d9:5e:28:83:07:a9:03:c0:03:43:24:25:bf:24:44:b1: 64:72:54:95:f7:e1:67:1a:fd:40:e7:c7:38:b0:4d:44:8c:96: e4:d2:62:b1:69:5c:51:01:27:2f:1e:05:d4:54:71:1e:e6:7c: d3:4c:c6:3a:3b:97:b4:49:10:8b:18:dc:75:dc:0a:64:03:e1: 1e:8a:b5:0c:7f:e3:7c:75:10:23:d1:19:69:bd:c6:61:dd:96: b1:a3:81:23:81:a1:e5:c6:a5:66:f7:97:db:52:54:9b:cb:20: 3c:56:26:e7:30:23:cb:c8:5b:0b:ff:63:9b:9a:8f:c6:59:c7: b3:b3:2a:db:b2:9f:29:2f:15:b2:d8:74:0b:e9:8c:4d:9c:f9: df:30:da:d6:90:4e:67:e2:85:33:97:98:07:b0:e6:ec:af:dd: 16:82:97:0c:be:e2:40:ee:e4:91:d0:c3:e4:0c:f7:2c:9f:2d: 9b:f8:87:d0:7e:3b:e0:40:79:1e:df:3b:f7:5b:b1:c2:2c:4b: 24:12:16:5c:31:9d:d7:f7:fb:c4:74:e4:33:99:b2:60:14:e2: e8:50:ea:bc:73:f5:b9:e5:ba:19:69:e6:fa:30:0a:5d:69:c4: fa:0e:99:18 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdlhDtW+CbdGHzurhyk0PdmWW87cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIyMDA1MDA5WhcNMjUxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOTcwMzMxNzUxYWUzY2VhNmQ0ODc1YjI2NjNhMzc1NWRh MWQxZTZlY2UxZmM0NjE5NTE0NzU0NjkxNjViMzFkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwS0889DYNY2UOCAfMw5U1Kp2jZtMDvAgjyWdJvScj+tow F5bZReC7BVbYWLq/Gtj4168KeCR6wX1hUKTsFbnGhStD0HL62psErgvz4+EtE7Sr bmWezF18WVqcGpKDeLnuuAh6EzhntGjb6Ol2PaORK44CYiT9ZMpNMC5cTEqVuUYi lD3CsW1101mBRFSpTveIWXlr8Hszy+KedlDv2A40mlGTwXdKD0WNxv+TSGSahGk4 NZTBZEP8od/vwD7canMHlvl1J+VDqywOyo4/l3E5ljxenoAFenPjs/SbKPcgqtPU 79sQgnOS3k7urlBongG/H9p3Tc5cUq9Do5ESjh8fAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUsK0Q5Zt9cRmschekv1KzJvszIGkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzZhOTE5YTYzLTBkMjItNGYyOS1hY2QxLTVkZDcxZjY4MWM3YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QgwDQYJKoZIhvcNAQELBQADggEBAEsafOJ493fs6tJjqTCVu1kD VT1g2V4ogwepA8ADQyQlvyREsWRyVJX34Wca/UDnxziwTUSMluTSYrFpXFEBJy8e BdRUcR7mfNNMxjo7l7RJEIsY3HXcCmQD4R6KtQx/43x1ECPRGWm9xmHdlrGjgSOB oeXGpWb3l9tSVJvLIDxWJucwI8vIWwv/Y5uaj8ZZx7OzKtuynykvFbLYdAvpjE2c +d8w2taQTmfihTOXmAew5uyv3RaClwy+4kDu5JHQw+QM9yyfLZv4h9B+O+BAeR7f O/dbscIsSyQSFlwxndf3+8R05DOZsmAU4uhQ6rxz9bnluhlp5vowCl1pxPoOmRg= -----END CERTIFICATE-----Generated at Wed Nov 5 09:34:44 2025 by rpki-client