$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/765dfa6c-35d1-42cf-ba89-eaf88577e4f6.roa File: 765dfa6c-35d1-42cf-ba89-eaf88577e4f6.roa (raw, json) Hash identifier: KnS6xX/CihjZ8sqWUVqJkYK/qMP2FtSvO46j2JqGHnA= Subject key identifier: 78:60:D2:F6:88:50:52:F9:A9:F6:C0:00:8F:AD:CE:2C:20:D4:AB:6F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0B2CEE0EFBE51CA35D3F2966EC176DD363E133E4 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/765dfa6c-35d1-42cf-ba89-eaf88577e4f6.roa Signing time: Tue 21 Oct 2025 13:10:04 +0000 ROA not before: Tue 21 Oct 2025 13:10:04 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:2c:ee:0e:fb:e5:1c:a3:5d:3f:29:66:ec:17:6d:d3:63:e1:33:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:10:04 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=7f86e6be09607d374fa44eb2f8bc142860a047e9a01eebefd8d3d944fd5737e2, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c9:38:ae:28:48:8b:3a:96:ed:29:84:e1:52: da:4d:17:84:7a:49:e5:d4:22:ba:5b:bf:cd:c0:1d: 1c:3b:2f:76:53:76:88:3f:9b:1a:8c:3b:f7:5b:3a: 0e:ab:a9:b1:ed:76:30:d3:bb:18:b6:bd:f5:83:a6: b5:fb:1b:f7:9f:ca:94:a1:1d:0d:e8:ec:af:85:fc: 71:77:00:75:b1:d0:f9:31:51:e6:e3:f6:9d:36:36: fb:1c:11:be:df:73:a7:ff:f9:a1:98:b9:7a:05:05: 59:8b:22:0b:7e:6c:76:36:ec:67:0d:68:ae:c0:aa: 5a:b9:8f:4e:b4:33:56:e5:95:e3:25:80:4d:92:ae: 8a:73:f2:c7:6d:6c:30:7a:1a:24:cd:59:ed:8e:f3: 5f:b9:44:e5:89:65:0d:d3:ad:49:54:72:48:c9:a1: c3:04:7d:c6:e0:c6:80:3e:b1:7a:dc:a9:83:89:5f: 6b:34:06:6f:aa:27:6e:f0:91:1e:ae:36:e0:d7:7a: 77:f7:54:c9:30:26:88:f5:aa:a1:53:12:b7:67:9f: 3a:3f:a4:8e:7e:92:e0:85:82:e0:b5:27:2c:0b:2a: ff:61:6c:aa:86:2a:e4:39:34:3b:43:ed:38:db:4a: 9c:74:88:7e:6c:eb:6b:df:af:8a:ee:17:bd:eb:7b: dd:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:60:D2:F6:88:50:52:F9:A9:F6:C0:00:8F:AD:CE:2C:20:D4:AB:6F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/765dfa6c-35d1-42cf-ba89-eaf88577e4f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:8::/48 Signature Algorithm: sha256WithRSAEncryption 4e:7c:e3:28:11:ae:f3:0e:7d:70:a7:28:31:f0:00:ee:fc:c7: 43:f1:34:31:64:f6:5b:71:4e:59:13:c8:38:01:5b:04:d6:f0: ff:dc:e9:85:5b:0c:9b:09:97:31:d6:68:92:4b:6d:0e:9b:36: 27:1c:22:05:68:a5:ae:8d:88:57:94:c4:af:70:d4:16:c6:55: f6:61:2e:d3:25:9b:94:6b:cf:34:ae:10:87:0b:d7:d3:6f:38: a9:6d:d4:12:bd:dc:cd:a0:18:35:6f:c5:d6:8d:00:ec:4e:9e: 97:6c:26:02:42:f7:36:d9:a5:86:65:53:81:c5:d0:5a:ea:73: 74:ae:76:97:82:23:da:11:04:01:06:a0:eb:eb:9c:93:b4:18: 0a:d7:93:cc:47:81:b0:14:1c:3e:cd:49:a8:2e:15:83:21:39: a6:96:17:52:30:a3:8b:59:87:5b:21:1c:11:b4:99:b8:3e:19: b4:62:17:14:0a:f8:c0:62:78:a2:74:81:ca:d6:12:ad:67:25: 57:ce:75:67:52:14:3a:bf:42:66:3c:51:55:4f:d8:35:0a:8c: 98:f7:5b:a5:31:20:df:88:a9:7b:06:e7:98:a6:e2:6e:e3:b4: 40:ab:6d:61:13:89:7a:f4:93:74:38:b7:05:f5:fa:ea:0e:fc: a8:92:d5:db -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCyzuDvvlHKNdPylm7Bdt02PhM+QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMxMDA0WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3Zjg2ZTZiZTA5NjA3ZDM3NGZhNDRlYjJmOGJjMTQyODYw YTA0N2U5YTAxZWViZWZkOGQzZDk0NGZkNTczN2UyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyyTiuKEiLOpbtKYThUtpNF4R6SeXUIrpbv83AHRw7L3ZT dog/mxqMO/dbOg6rqbHtdjDTuxi2vfWDprX7G/efypShHQ3o7K+F/HF3AHWx0Pkx Uebj9p02NvscEb7fc6f/+aGYuXoFBVmLIgt+bHY27GcNaK7Aqlq5j060M1blleMl gE2Sropz8sdtbDB6GiTNWe2O81+5ROWJZQ3TrUlUckjJocMEfcbgxoA+sXrcqYOJ X2s0Bm+qJ27wkR6uNuDXenf3VMkwJoj1qqFTErdnnzo/pI5+kuCFguC1JywLKv9h bKqGKuQ5NDtD7TjbSpx0iH5s62vfr4ruF73re90HAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUeGDS9ohQUvmp9sAAj63OLCDUq28wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzc2NWRmYTZjLTM1ZDEtNDJjZi1iYTg5LWVhZjg4NTc3ZTRmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAgwDQYJKoZIhvcNAQELBQADggEBAE584ygRrvMOfXCnKDHwAO78 x0PxNDFk9ltxTlkTyDgBWwTW8P/c6YVbDJsJlzHWaJJLbQ6bNiccIgVopa6NiFeU xK9w1BbGVfZhLtMlm5RrzzSuEIcL19NvOKlt1BK93M2gGDVvxdaNAOxOnpdsJgJC 9zbZpYZlU4HF0Frqc3SudpeCI9oRBAEGoOvrnJO0GArXk8xHgbAUHD7NSaguFYMh OaaWF1Iwo4tZh1shHBG0mbg+GbRiFxQK+MBieKJ0gcrWEq1nJVfOdWdSFDq/QmY8 UVVP2DUKjJj3W6UxIN+IqXsG55im4m7jtECrbWETiXr0k3Q4twX1+uoO/KiS1ds= -----END CERTIFICATE-----Generated at Wed Nov 5 10:00:01 2025 by rpki-client