$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/710c8ea0-f6b4-4fbe-9653-22174e063099.roa File: 710c8ea0-f6b4-4fbe-9653-22174e063099.roa (raw, json) Hash identifier: ul7+UjDRiCd2NAuhXMfoOaoIJ/JHgEEDv3FSCX6W66g= Subject key identifier: 59:76:1E:E9:38:82:07:C7:6F:9E:A6:7B:12:A6:5E:AC:D9:D7:F4:35 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 40140BC7518FEC9B30F5CCD50C77F480AC186DBC Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/710c8ea0-f6b4-4fbe-9653-22174e063099.roa Signing time: Sat 25 Oct 2025 00:10:05 +0000 ROA not before: Sat 25 Oct 2025 00:10:05 +0000 ROA not after: Sat 29 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:90::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:14:0b:c7:51:8f:ec:9b:30:f5:cc:d5:0c:77:f4:80:ac:18:6d:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 25 00:10:05 2025 GMT Not After : Nov 29 23:59:59 2025 GMT Subject: serialNumber=764cf32dcde1bc0513ff4e22319715fb5126bf42f3b24b289d094199dda164e6, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b8:73:cb:81:b3:77:b7:79:80:a3:ae:6b:9e: d0:94:02:1e:c2:60:ac:23:f4:74:4b:e8:31:e5:5f: 95:7f:8a:68:90:91:8d:7d:64:12:cb:28:d9:9f:bf: 3e:69:a1:ff:c4:ed:4e:38:87:94:8f:67:7b:01:a7: 99:99:91:c7:6c:3a:d0:bd:68:32:f6:72:c1:bf:10: 63:b1:3e:01:13:cc:45:94:5a:01:80:f3:d9:7b:1a: 1e:f7:07:17:c6:8a:cf:cd:7a:ca:d2:63:a1:29:57: 94:0d:a2:63:47:ce:b7:55:b1:c2:7d:46:7c:8b:1c: 73:c7:10:b3:58:7a:b0:e3:49:f6:36:47:4b:58:9e: 24:33:2d:41:4f:fa:b5:6f:34:ee:93:f4:e9:3f:ab: 74:f3:17:df:68:54:4b:58:b3:ea:5e:c2:d7:57:1d: 51:a0:5d:71:4d:e4:40:df:74:26:06:48:71:a6:0d: 7b:06:fb:3d:d9:1e:79:1a:2e:e5:15:87:76:72:8f: a9:0f:d2:21:d2:a0:dc:da:7d:1b:aa:ae:ba:56:b0: 90:6d:09:73:5d:ee:0f:cc:85:13:02:8a:87:56:eb: 25:7b:6d:5d:2d:a6:20:a0:c0:6e:08:76:62:e0:29: 0e:8c:99:1f:ef:eb:b7:5f:50:5a:21:15:7f:fc:f0: 63:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:76:1E:E9:38:82:07:C7:6F:9E:A6:7B:12:A6:5E:AC:D9:D7:F4:35 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/710c8ea0-f6b4-4fbe-9653-22174e063099.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:90::/44 Signature Algorithm: sha256WithRSAEncryption 24:82:76:f1:b2:13:c1:94:2e:3b:ef:53:f4:4a:62:67:21:42: d2:21:2f:94:35:7c:56:d1:69:2f:a1:85:c0:c1:62:57:b2:b1: c6:6a:ee:b8:48:43:9f:bf:e7:6c:2c:80:c8:01:a7:66:8e:e8: f6:50:eb:66:48:d1:89:f7:72:e1:d3:9f:d2:2a:78:0a:dd:06: b3:f0:a3:88:24:b4:9f:ee:94:32:ed:e6:49:4e:96:29:fe:7d: 1c:58:48:ab:cf:fd:a7:92:03:4e:ea:fe:98:e7:48:65:be:e3: d0:5c:27:3e:b5:6d:1c:23:85:53:86:51:78:2b:56:15:68:3c: ec:9b:6b:f0:e5:3a:43:74:ef:3f:76:ad:27:5c:5b:68:ea:d9: ce:1b:36:80:89:c7:0f:06:4b:86:bf:d6:0d:2a:91:a3:ab:8a: 49:bc:58:c3:2c:db:f1:a1:a2:80:c5:63:e3:54:de:8d:f8:84: b1:a7:f9:d4:7b:6b:22:8a:d9:bb:cf:a7:f2:fd:1d:46:7c:0c: 55:5a:69:b4:cb:c9:8e:9e:fc:eb:65:3f:88:53:6b:72:77:3d: dd:be:3c:c8:49:a8:40:f8:3a:2f:4f:3d:28:c6:00:0e:3c:14: 96:44:c3:9b:2b:fa:f5:5c:73:67:6a:b5:ab:03:7a:b6:b4:e0: d2:b2:5f:a6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQBQLx1GP7Jsw9czVDHf0gKwYbbwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDI1MDAxMDA1WhcNMjUxMTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NjRjZjMyZGNkZTFiYzA1MTNmZjRlMjIzMTk3MTVmYjUx MjZiZjQyZjNiMjRiMjg5ZDA5NDE5OWRkYTE2NGU2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvuHPLgbN3t3mAo65rntCUAh7CYKwj9HRL6DHlX5V/imiQ kY19ZBLLKNmfvz5pof/E7U44h5SPZ3sBp5mZkcdsOtC9aDL2csG/EGOxPgETzEWU WgGA89l7Gh73BxfGis/NesrSY6EpV5QNomNHzrdVscJ9RnyLHHPHELNYerDjSfY2 R0tYniQzLUFP+rVvNO6T9Ok/q3TzF99oVEtYs+pewtdXHVGgXXFN5EDfdCYGSHGm DXsG+z3ZHnkaLuUVh3Zyj6kP0iHSoNzafRuqrrpWsJBtCXNd7g/MhRMCiodW6yV7 bV0tpiCgwG4IdmLgKQ6MmR/v67dfUFohFX/88GNXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUWXYe6TiCB8dvnqZ7EqZerNnX9DUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcxMGM4ZWEwLWY2YjQtNGZiZS05NjUzLTIyMTc0ZTA2MzA5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAJAwDQYJKoZIhvcNAQELBQADggEBACSCdvGyE8GULjvvU/RKYmch QtIhL5Q1fFbRaS+hhcDBYleyscZq7rhIQ5+/52wsgMgBp2aO6PZQ62ZI0Yn3cuHT n9IqeArdBrPwo4gktJ/ulDLt5klOlin+fRxYSKvP/aeSA07q/pjnSGW+49BcJz61 bRwjhVOGUXgrVhVoPOyba/DlOkN07z92rSdcW2jq2c4bNoCJxw8GS4a/1g0qkaOr ikm8WMMs2/GhooDFY+NU3o34hLGn+dR7ayKK2bvPp/L9HUZ8DFVaabTLyY6e/Otl P4hTa3J3Pd2+PMhJqED4Oi9PPSjGAA48FJZEw5sr+vVcc2dqtasDera04NKyX6Y= -----END CERTIFICATE-----Generated at Wed Nov 5 10:08:22 2025 by rpki-client