$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/77071dba-3d71-409d-bec3-e6ee4d8fc9dc.roa File: 77071dba-3d71-409d-bec3-e6ee4d8fc9dc.roa (raw, json) Hash identifier: vEp7s70TEIPeQ02mn+G4SVjqaIDyfXi17WDZEN54HaM= Subject key identifier: BC:84:90:86:A9:CC:9A:52:E3:E9:3B:40:AB:F5:78:78:79:31:61:A7 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7D8C3102273E80F95403F3DB9CE76C09C05A8F6A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/77071dba-3d71-409d-bec3-e6ee4d8fc9dc.roa Signing time: Tue 21 Oct 2025 12:50:49 +0000 ROA not before: Tue 21 Oct 2025 12:50:49 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e800::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:8c:31:02:27:3e:80:f9:54:03:f3:db:9c:e7:6c:09:c0:5a:8f:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:49 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=8964cdee86aaa5420a83d4d40904da17007a072f3d5a41f34ca9f067bda30747, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:88:65:20:31:6e:8a:d4:70:b9:e9:79:43:84: 27:c8:dd:04:82:a4:df:a7:33:14:17:38:1d:12:51: 6f:d3:f1:f6:bf:6d:b1:83:fc:7d:12:37:bb:25:c6: 05:9b:ed:79:e8:ad:c1:67:87:05:2a:8a:53:fe:bd: 14:7c:e1:ba:1e:d1:a5:00:aa:97:72:5e:71:11:35: 88:e7:fb:52:f6:1c:a5:f0:fa:96:17:fe:8e:c5:cc: 52:80:d4:2b:84:41:6d:00:49:ea:e1:f1:ed:e6:ca: 23:e2:c6:23:b9:ba:fe:0f:b9:e3:e4:af:29:6f:66: d5:05:d8:8d:8e:b7:4a:af:0e:c0:3e:2d:f2:ef:56: c0:4f:78:29:f0:58:f6:90:ba:cf:00:37:a3:aa:b7: c1:61:a4:df:46:fe:9c:ca:c9:9d:6f:09:70:04:f7: 78:ff:a9:e1:75:9d:39:3d:48:f1:10:94:6e:7f:f6: 43:d8:e2:48:26:5c:9f:ac:60:89:92:11:6a:c5:03: 02:b9:9c:12:ad:bc:39:0e:92:21:95:d0:d8:a1:c3: bf:08:25:aa:d3:b8:01:6d:65:ea:94:43:5f:dc:19: dc:bc:44:fb:f1:db:79:50:15:9b:9f:99:69:37:de: ce:16:3f:7f:8e:06:40:44:b8:f4:17:74:37:ce:4b: d9:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:84:90:86:A9:CC:9A:52:E3:E9:3B:40:AB:F5:78:78:79:31:61:A7 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/77071dba-3d71-409d-bec3-e6ee4d8fc9dc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e800::/42 Signature Algorithm: sha256WithRSAEncryption 3c:29:cf:23:bf:f6:03:1e:1e:43:be:12:ff:0c:78:e2:b7:56: 14:fe:03:33:fd:07:23:24:c4:59:8b:78:86:56:70:3f:d8:4e: e3:bb:46:a1:96:ed:4c:88:e3:4d:26:25:11:b9:5e:9b:e4:ee: db:55:2e:6e:64:43:2d:13:ef:da:14:40:57:f0:00:0d:61:ec: fe:71:4c:45:ee:39:21:b7:5d:38:d3:db:4a:1a:8e:64:68:3c: ca:21:77:cb:a0:78:f2:4f:4a:47:34:51:de:a1:dd:22:99:38: a8:c0:ca:94:f1:03:94:7a:14:b3:1a:8e:e6:18:ff:26:d7:b0: a9:86:2c:f5:84:66:8c:41:8d:aa:56:75:b0:04:12:cd:b6:98: 5f:f9:d0:b9:d2:46:2a:0c:eb:8b:e8:84:78:b1:8d:1d:29:1b: 7a:4b:df:9e:44:28:26:d7:c7:a9:cb:7a:f2:ed:1a:cc:e5:07: 4e:f7:b0:68:ed:cd:84:21:a1:4b:b6:e6:65:05:48:1e:59:a9: d7:b6:67:37:2c:44:10:32:1d:49:f0:85:58:ca:33:61:8b:8f: 22:7c:71:d5:28:cc:af:48:95:a9:b6:99:f0:b6:b1:6d:5c:1a: d8:8a:f8:d6:1d:a6:03:96:cc:24:55:60:44:22:32:31:ce:56: 06:f5:b3:d1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfYwxAic+gPlUA/PbnOdsCcBaj2owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDQ5WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4OTY0Y2RlZTg2YWFhNTQyMGE4M2Q0ZDQwOTA0ZGExNzAw N2EwNzJmM2Q1YTQxZjM0Y2E5ZjA2N2JkYTMwNzQ3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCFiGUgMW6K1HC56XlDhCfI3QSCpN+nMxQXOB0SUW/T8fa/ bbGD/H0SN7slxgWb7XnorcFnhwUqilP+vRR84boe0aUAqpdyXnERNYjn+1L2HKXw +pYX/o7FzFKA1CuEQW0ASerh8e3myiPixiO5uv4PuePkrylvZtUF2I2Ot0qvDsA+ LfLvVsBPeCnwWPaQus8AN6Oqt8FhpN9G/pzKyZ1vCXAE93j/qeF1nTk9SPEQlG5/ 9kPY4kgmXJ+sYImSEWrFAwK5nBKtvDkOkiGV0Nihw78IJarTuAFtZeqUQ1/cGdy8 RPvx23lQFZufmWk33s4WP3+OBkBEuPQXdDfOS9lFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUvISQhqnMmlLj6TtAq/V4eHkxYacwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzc3MDcxZGJhLTNkNzEtNDA5ZC1iZWMzLWU2ZWU0ZDhmYzlkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76AAwDQYJKoZIhvcNAQELBQADggEBADwpzyO/9gMeHkO+Ev8MeOK3 VhT+AzP9ByMkxFmLeIZWcD/YTuO7RqGW7UyI400mJRG5Xpvk7ttVLm5kQy0T79oU QFfwAA1h7P5xTEXuOSG3XTjT20oajmRoPMohd8ugePJPSkc0Ud6h3SKZOKjAypTx A5R6FLMajuYY/ybXsKmGLPWEZoxBjapWdbAEEs22mF/50LnSRioM64vohHixjR0p G3pL355EKCbXx6nLevLtGszlB073sGjtzYQhoUu25mUFSB5Zqde2ZzcsRBAyHUnw hVjKM2GLjyJ8cdUozK9Ilam2mfC2sW1cGtiK+NYdpgOWzCRVYEQiMjHOVgb1s9E= -----END CERTIFICATE-----Generated at Wed Nov 5 22:53:01 2025 by rpki-client