$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa File: 7fef00dc-1a9a-497c-b857-792da38e532f.roa (raw, json) Hash identifier: NAM4C4vNkyC5vx4s6N+m2ybueN62Jvm6xT2vb+zU2Ug= Subject key identifier: 58:3F:C3:CB:92:49:00:69:37:09:2B:A1:C0:BD:8C:2D:A2:A1:79:D4 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 668D068C4EA04E45BC289FE41D5501FA41B7F645 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa Signing time: Wed 22 Oct 2025 00:50:03 +0000 ROA not before: Wed 22 Oct 2025 00:50:03 +0000 ROA not after: Wed 26 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:8d:06:8c:4e:a0:4e:45:bc:28:9f:e4:1d:55:01:fa:41:b7:f6:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 22 00:50:03 2025 GMT Not After : Nov 26 23:59:59 2025 GMT Subject: serialNumber=656b95a10f86bc4007f6bca8727bf76f220818e71a28862d4aa6636964c95754, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:69:69:b8:e0:d6:83:ad:e2:24:95:4f:8a:7d: 07:4e:a3:be:17:ff:06:5e:15:05:09:53:18:a7:e3: e4:89:b9:26:9d:15:05:8f:78:34:c0:9b:26:f4:e3: 8e:3e:3a:01:ec:ba:4e:25:aa:77:92:76:5d:24:37: 0e:b8:c0:89:ac:49:c6:7e:83:83:3b:c3:e4:4f:d2: 6a:35:f2:e9:6a:ff:43:f4:1d:a9:48:9e:77:92:49: b7:2b:cb:a9:c3:34:7d:58:b6:ad:de:19:40:b0:2f: 8c:99:89:22:16:78:e9:f3:86:7b:f8:a1:81:c7:9b: 50:de:f6:52:ab:71:e2:c0:0c:72:00:22:b8:dc:f7: a2:40:ce:3d:f2:4c:36:a3:a3:1f:be:3a:31:13:76: 01:86:28:fd:96:27:13:39:7f:fc:47:a5:1a:4c:53: 3f:13:f1:f0:64:a0:4c:2b:cc:55:d7:fb:a2:25:37: 65:64:6a:63:d0:48:7e:0d:00:59:90:f2:c5:bb:19: c2:92:27:74:8d:6e:68:6f:b9:31:fa:ae:7a:bc:93: 8c:24:e0:17:71:f7:8a:0f:6f:df:54:80:e6:47:93: 22:9f:d2:ce:14:98:0f:d4:40:d7:55:75:3d:62:ad: 41:6f:94:84:40:fc:bc:e5:d1:6b:3d:11:cd:9d:ea: 69:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:3F:C3:CB:92:49:00:69:37:09:2B:A1:C0:BD:8C:2D:A2:A1:79:D4 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5500::/48 Signature Algorithm: sha256WithRSAEncryption 13:59:e0:9d:8b:d4:86:de:bd:11:ff:9b:33:42:5f:2e:ce:e8: af:12:24:17:44:09:28:ee:19:de:1a:03:67:6c:06:d2:e5:3b: c5:41:9c:6a:89:e1:43:41:c1:12:85:42:6b:8c:e7:3c:c2:51: ab:46:d7:6c:f4:93:18:f9:d9:13:7f:28:5c:14:e1:7d:06:24: b1:f1:b2:22:de:3f:86:6a:1c:eb:e0:3b:e8:eb:e1:3a:4f:ed: 32:f0:00:86:e4:03:49:3f:25:6d:02:e4:25:f9:12:94:69:78: c3:75:5b:b9:a9:6a:26:97:a3:80:23:c1:97:e8:c4:d2:ac:46: 89:ee:18:84:21:9a:99:c9:00:38:fd:c6:71:43:cc:61:37:c9: d0:ef:20:36:a9:40:20:77:22:76:71:38:81:fe:21:b7:c8:c6: c4:0f:9f:a3:dd:58:2f:dd:f7:1c:4e:c9:d3:58:70:89:50:09: 69:b3:cc:e1:8e:67:d5:46:af:d9:c8:12:4f:95:73:e9:c8:9c: 9c:f6:b3:50:d4:be:1e:cd:ff:66:b2:b1:c2:7d:5e:24:78:20: 2c:58:be:0a:e2:9c:34:51:94:37:48:ad:9c:0a:3f:60:bb:eb: 99:5d:c8:44:6f:87:de:16:73:ad:8e:78:ab:aa:e2:2c:63:22: 54:c6:c9:23 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZo0GjE6gTkW8KJ/kHVUB+kG39kUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIyMDA1MDAzWhcNMjUxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NTZiOTVhMTBmODZiYzQwMDdmNmJjYTg3MjdiZjc2ZjIy MDgxOGU3MWEyODg2MmQ0YWE2NjM2OTY0Yzk1NzU0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvaWm44NaDreIklU+KfQdOo74X/wZeFQUJUxin4+SJuSad FQWPeDTAmyb0444+OgHsuk4lqneSdl0kNw64wImsScZ+g4M7w+RP0mo18ulq/0P0 HalInneSSbcry6nDNH1Ytq3eGUCwL4yZiSIWeOnzhnv4oYHHm1De9lKrceLADHIA Irjc96JAzj3yTDajox++OjETdgGGKP2WJxM5f/xHpRpMUz8T8fBkoEwrzFXX+6Il N2VkamPQSH4NAFmQ8sW7GcKSJ3SNbmhvuTH6rnq8k4wk4Bdx94oPb99UgOZHkyKf 0s4UmA/UQNdVdT1irUFvlIRA/Lzl0Ws9Ec2d6mkTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUWD/Dy5JJAGk3CSuhwL2MLaKhedQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzdmZWYwMGRjLTFhOWEtNDk3Yy1iODU3LTc5MmRhMzhlNTMyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQAwDQYJKoZIhvcNAQELBQADggEBABNZ4J2L1IbevRH/mzNCXy7O 6K8SJBdECSjuGd4aA2dsBtLlO8VBnGqJ4UNBwRKFQmuM5zzCUatG12z0kxj52RN/ KFwU4X0GJLHxsiLeP4ZqHOvgO+jr4TpP7TLwAIbkA0k/JW0C5CX5EpRpeMN1W7mp aiaXo4AjwZfoxNKsRonuGIQhmpnJADj9xnFDzGE3ydDvIDapQCB3InZxOIH+IbfI xsQPn6PdWC/d9xxOydNYcIlQCWmzzOGOZ9VGr9nIEk+Vc+nInJz2s1DUvh7N/2ay scJ9XiR4ICxYvgrinDRRlDdIrZwKP2C765ldyERvh94Wc62OeKuq4ixjIlTGySM= -----END CERTIFICATE-----Generated at Wed Nov 5 07:47:40 2025 by rpki-client