$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8410a85c-071f-4042-83cd-ea1b9c6d3f8d.roa File: 8410a85c-071f-4042-83cd-ea1b9c6d3f8d.roa (raw, json) Hash identifier: r1lhTc9BNLekj84hXsvY0+TZOVjLIjC12w9S9/lxdUs= Subject key identifier: DC:53:28:65:42:B9:AA:07:8A:5F:4A:A8:90:50:40:49:37:82:62:0A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 44559BA7E1413B1342789A6CC2F83B06CD3AA5 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8410a85c-071f-4042-83cd-ea1b9c6d3f8d.roa Signing time: Fri 31 Oct 2025 01:50:43 +0000 ROA not before: Fri 31 Oct 2025 01:50:43 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6113::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:55:9b:a7:e1:41:3b:13:42:78:9a:6c:c2:f8:3b:06:cd:3a:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 31 01:50:43 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=13bedff739fb6316b46fd8bd347e2c0822077e745bde43e0eeeeda1cc02696fa, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:8b:5b:20:31:c4:12:f9:bb:fa:09:b5:73:11: fc:73:6b:20:71:03:28:e6:c1:04:93:04:f7:97:6b: 17:4c:39:6a:22:f5:60:7c:33:ea:fe:b5:9b:7f:63: 17:5c:ca:0d:94:b0:5f:f7:ed:cc:3c:36:b3:a3:0d: 3c:34:d4:d9:77:2a:75:51:71:91:d4:22:a5:84:48: 9e:ef:29:24:62:95:e9:99:5e:2e:cf:1d:ec:fb:4c: 5e:bc:82:cd:2f:d6:ae:5b:3b:63:80:1e:27:ec:1e: 39:31:f1:b9:5e:87:91:70:d4:05:90:a1:c7:b9:ae: 16:f7:a9:32:32:27:cf:d7:96:44:f6:aa:55:7a:be: be:79:d0:94:70:02:57:9e:b4:29:fb:5a:7a:d5:bc: 68:2c:d5:7b:94:0e:93:06:9c:59:7d:35:c1:1b:af: 26:80:e9:4a:dd:f1:6c:5e:40:a4:48:c4:90:bd:7b: e5:97:29:c8:55:4e:33:f9:ad:8a:37:54:95:18:07: c2:d4:a8:a8:6d:d0:59:57:eb:b2:ae:30:f5:5f:0a: c8:0e:f8:1f:6a:a4:9e:4e:8a:2b:30:6b:67:86:ad: ac:0c:74:82:46:6b:3a:06:87:7d:1e:44:53:ec:f1: 83:be:4c:0a:1d:2e:cf:2b:2a:a7:2f:5f:ad:cb:89: c8:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:53:28:65:42:B9:AA:07:8A:5F:4A:A8:90:50:40:49:37:82:62:0A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8410a85c-071f-4042-83cd-ea1b9c6d3f8d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6113::/48 Signature Algorithm: sha256WithRSAEncryption 65:f9:9d:5f:cc:0f:70:62:10:ba:50:ff:f3:92:0a:0e:88:89: b0:de:6f:d4:b9:87:ba:f0:9f:7f:bf:bf:0b:19:6e:f5:bd:5d: 51:88:98:0c:f8:40:b1:f1:e4:86:b3:32:87:5c:b1:be:ce:0e: 9c:ca:50:fe:e3:9f:f3:9d:5f:8d:f6:06:c7:30:6d:ee:db:8c: 89:2a:57:4c:56:bf:42:5a:92:90:5b:6c:83:c4:3b:e4:2e:28: a3:88:4e:02:40:38:e0:a8:1a:d5:69:e7:6b:ea:04:3f:83:87: d2:84:34:92:27:af:85:53:c2:73:08:7b:dd:46:ae:b1:a5:42: 3a:b2:65:a4:53:cb:56:3a:98:a3:aa:ba:e2:e4:91:89:a8:07: c6:2f:fa:02:07:96:e2:88:e3:16:9d:aa:57:35:ca:72:7b:ec: b1:71:73:3b:f1:a2:7b:ee:3c:25:0d:41:5a:4c:a4:ce:4b:cd: d2:8e:e8:e0:c5:70:0e:1f:83:5a:1c:08:57:1f:49:78:a8:c5: c8:e0:6a:43:9a:8b:56:b8:81:92:f5:e1:df:83:17:f6:18:7b: fa:0b:a4:13:a8:71:9e:b5:d1:94:03:b6:52:b7:f0:e3:8e:47: 9c:56:b7:dd:45:75:cb:f2:91:15:10:c1:6b:7a:dd:f4:2d:4b: 42:18:ac:c5 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgITRFWbp+FBOxNCeJpswvg7Bs06pTANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJiNTg0NWMzMDdkMGJmNjFiMTM0YjhhYjcxMTU0NTgyNmIx NzA3ZmQ1ZjBhZjg0ZGEwODAeFw0yNTEwMzEwMTUwNDNaFw0yNTEyMDUyMzU5NTla MHoxSTBHBgNVBAUTQDEzYmVkZmY3MzlmYjYzMTZiNDZmZDhiZDM0N2UyYzA4MjIw NzdlNzQ1YmRlNDNlMGVlZWVkYTFjYzAyNjk2ZmExLTArBgNVBAMTJGZiYjI3NTc2 LWNhYzItNDM4MS05YTUzLTZjMTVlMGRjMjZmZjCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAN+LWyAxxBL5u/oJtXMR/HNrIHEDKObBBJME95drF0w5aiL1 YHwz6v61m39jF1zKDZSwX/ftzDw2s6MNPDTU2XcqdVFxkdQipYRInu8pJGKV6Zle Ls8d7PtMXryCzS/Wrls7Y4AeJ+weOTHxuV6HkXDUBZChx7muFvepMjInz9eWRPaq VXq+vnnQlHACV560KftaetW8aCzVe5QOkwacWX01wRuvJoDpSt3xbF5ApEjEkL17 5ZcpyFVOM/mtijdUlRgHwtSoqG3QWVfrsq4w9V8KyA74H2qknk6KKzBrZ4atrAx0 gkZrOgaHfR5EU+zxg75MCh0uzysqpy9frcuJyFsCAwEAAaOCArQwggKwMB0GA1Ud DgQWBBTcUyhlQrmqB4pfSqiQUEBJN4JiCjAfBgNVHSMEGDAWgBQuGOIIoYJXGwl9 0iOnFp5A6+mJPTAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv NTIxZWIzM2YtOTY3Mi00Y2Q5LWFjY2UtMTM3MjI3ZTk3MWFjLzZhOTUzN2E4LWE2 ODUtNGI0OC05ZmE4LTgzNjJlNGZjNDdhZS9iNTg0NWMzMDdkMGJmNjFiMTM0Yjhh YjcxMTU0NTgyNmIxNzA3ZmQ1ZjBhZjg0ZGEwOC5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS81MTdmM2VkNy01OGI1LTQ3OTYtYmUzNy0xNGQ2 MmU0OGYwNTYvODQxMGE4NWMtMDcxZi00MDQyLTgzY2QtZWExYjljNmQzZjhkLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzct MTRkNjJlNDhmMDU2L0NfWWJFMHVLdHhGVVdDYXhjSF9WOEstRTJnZy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHACYA8PBhEzANBgkqhkiG9w0BAQsFAAOCAQEAZfmdX8wPcGIQulD/85IKDoiJ sN5v1LmHuvCff7+/Cxlu9b1dUYiYDPhAsfHkhrMyh1yxvs4OnMpQ/uOf851fjfYG xzBt7tuMiSpXTFa/QlqSkFtsg8Q75C4oo4hOAkA44Kga1Wnna+oEP4OH0oQ0kiev hVPCcwh73UausaVCOrJlpFPLVjqYo6q64uSRiagHxi/6AgeW4ojjFp2qVzXKcnvs sXFzO/Gie+48JQ1BWkykzkvN0o7o4MVwDh+DWhwIVx9JeKjFyOBqQ5qLVriBkvXh 34MX9hh7+gukE6hxnrXRlAO2Urfw445HnFa33UV1y/KRFRDBa3rd9C1LQhisxQ== -----END CERTIFICATE-----Generated at Wed Nov 5 12:57:22 2025 by rpki-client