$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/828860c7-04d3-410e-a0e6-5d8782c6c573.roa File: 828860c7-04d3-410e-a0e6-5d8782c6c573.roa (raw, json) Hash identifier: zZkzC//5ky6eQ8PWX7q1d3laiYhl6VvHYDCUjLIuURg= Subject key identifier: 9E:E4:E2:86:DF:B0:A3:35:54:97:71:F0:AE:96:7B:6E:1A:E7:0C:72 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6809013231A5CEBDEF07E3E721F836D88824E436 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/828860c7-04d3-410e-a0e6-5d8782c6c573.roa Signing time: Fri 31 Oct 2025 01:50:01 +0000 ROA not before: Fri 31 Oct 2025 01:50:01 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:10a::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:09:01:32:31:a5:ce:bd:ef:07:e3:e7:21:f8:36:d8:88:24:e4:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 31 01:50:01 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=5f62c62fcba9d863d91cde112c51dd9d9dd6e3f89f17b0c1a77d8f69daabc42b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:cc:64:70:a7:5f:5e:b2:6c:eb:61:b1:51:f0: 97:ef:67:d7:d1:e4:85:d5:a4:74:e8:d7:7d:73:b4: 15:00:54:bb:5c:b6:7c:bb:3b:6c:69:36:c9:26:bf: 7b:84:7e:5c:0e:03:46:54:fd:ce:a3:cc:d0:79:91: ac:f1:0a:92:08:28:db:33:98:ff:27:86:8b:4f:35: 14:e5:d7:31:d6:fe:3a:78:09:96:18:8a:68:b9:78: c2:d0:9e:e0:c6:37:8d:ea:f9:20:7d:d1:08:3a:18: 37:5b:50:9d:a6:e6:0e:a3:2f:f2:bb:04:b5:7b:c6: 78:36:9b:b2:d3:1b:6f:69:9b:e4:5e:35:46:9d:eb: f5:3a:aa:42:e5:c3:31:8d:f5:f0:7e:c9:be:a0:4f: fd:b3:4b:39:b1:bb:38:0d:b9:41:bd:6e:81:8b:da: e4:c0:82:be:3c:d8:0d:4c:bf:e5:15:5e:7d:5b:bf: 12:7f:0e:e0:25:a0:9d:07:fd:0f:b0:ae:87:a7:6e: 87:0b:bb:10:9a:35:bd:0a:db:9c:22:e0:35:5e:cf: 2a:c5:4a:0c:d7:2d:05:7f:f5:91:36:a2:0f:22:75: 58:6c:c2:2e:4c:f9:58:b9:48:fe:98:28:ed:1f:d4: 0a:c3:9a:1d:7a:76:9e:e1:cf:98:81:a0:44:38:e8: 95:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:E4:E2:86:DF:B0:A3:35:54:97:71:F0:AE:96:7B:6E:1A:E7:0C:72 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/828860c7-04d3-410e-a0e6-5d8782c6c573.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:10a::/47 Signature Algorithm: sha256WithRSAEncryption 7b:9b:aa:5d:f2:f2:a6:51:d4:c8:d5:96:45:b4:82:8f:d5:8f: 8a:d0:1b:dc:f7:e2:9f:3f:27:e0:b7:ae:29:14:54:2e:2e:1c: 91:1f:cd:e8:fc:f0:9d:dd:d1:b6:b3:ab:e7:c6:54:c9:81:1a: 85:29:68:ad:f6:d9:94:54:0f:8f:0b:8d:ac:f8:05:77:45:f3: e6:27:d8:bc:2b:9c:d3:2c:93:8b:fd:08:47:62:a5:de:82:32: c2:21:04:8c:80:8b:fc:70:ed:d6:a0:31:ab:fa:63:2d:e8:06: 25:7d:e6:41:07:e7:3d:2b:f1:53:95:a6:bf:7a:2d:19:ba:1a: 39:44:7f:65:7e:79:c9:d4:c1:db:91:23:9b:d7:c5:da:e5:7e: 53:0d:cb:1c:6a:73:08:00:a7:bc:46:49:be:42:bd:a8:7b:15: ba:5a:2e:2d:b2:50:a3:da:bd:9b:3b:88:1c:85:6c:28:a7:da: 2f:ad:70:c6:a5:2d:d4:ad:f4:e3:91:ba:7d:7b:7b:84:01:8e: 79:01:8e:26:38:65:c2:cb:d1:d5:3e:84:72:f7:dc:cf:12:2f: ec:75:10:b6:2a:28:a1:55:09:f9:c5:b2:88:dd:18:cb:59:66: ae:62:fe:b2:74:16:b3:18:83:c8:17:9d:53:0a:31:28:c5:e5: 42:47:1f:59 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUaAkBMjGlzr3vB+PnIfg22Igk5DYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDMxMDE1MDAxWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZjYyYzYyZmNiYTlkODYzZDkxY2RlMTEyYzUxZGQ5ZDlk ZDZlM2Y4OWYxN2IwYzFhNzdkOGY2OWRhYWJjNDJiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8zGRwp19esmzrYbFR8JfvZ9fR5IXVpHTo131ztBUAVLtc tny7O2xpNskmv3uEflwOA0ZU/c6jzNB5kazxCpIIKNszmP8nhotPNRTl1zHW/jp4 CZYYimi5eMLQnuDGN43q+SB90Qg6GDdbUJ2m5g6jL/K7BLV7xng2m7LTG29pm+Re NUad6/U6qkLlwzGN9fB+yb6gT/2zSzmxuzgNuUG9boGL2uTAgr482A1Mv+UVXn1b vxJ/DuAloJ0H/Q+wroenbocLuxCaNb0K25wi4DVezyrFSgzXLQV/9ZE2og8idVhs wi5M+Vi5SP6YKO0f1ArDmh16dp7hz5iBoEQ46JX7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUnuTiht+wozVUl3HwrpZ7bhrnDHIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzgyODg2MGM3LTA0ZDMtNDEwZS1hMGU2LTVkODc4MmM2YzU3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAPDwAQowDQYJKoZIhvcNAQELBQADggEBAHubql3y8qZR1MjVlkW0go/V j4rQG9z34p8/J+C3rikUVC4uHJEfzej88J3d0bazq+fGVMmBGoUpaK322ZRUD48L jaz4BXdF8+Yn2LwrnNMsk4v9CEdipd6CMsIhBIyAi/xw7dagMav6Yy3oBiV95kEH 5z0r8VOVpr96LRm6GjlEf2V+ecnUwduRI5vXxdrlflMNyxxqcwgAp7xGSb5Cvah7 FbpaLi2yUKPavZs7iByFbCin2i+tcMalLdSt9OORun17e4QBjnkBjiY4ZcLL0dU+ hHL33M8SL+x1ELYqKKFVCfnFsojdGMtZZq5i/rJ0FrMYg8gXnVMKMSjF5UJHH1k= -----END CERTIFICATE-----Generated at Wed Nov 5 05:45:02 2025 by rpki-client