$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/868fe5a3-3c18-4d2a-bf96-0e0a840118e0.roa File: 868fe5a3-3c18-4d2a-bf96-0e0a840118e0.roa (raw, json) Hash identifier: jmpjshu8UzYDWzrvVhJEU7jnQL//aC1sn0T4t/62kxI= Subject key identifier: 63:E1:AE:23:ED:35:9B:AF:F9:FB:48:50:00:11:93:A7:BF:5E:46:38 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7E2DD2D9AAA8EF65DAD692A4737F4146139A6DD4 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/868fe5a3-3c18-4d2a-bf96-0e0a840118e0.roa Signing time: Wed 22 Oct 2025 00:50:08 +0000 ROA not before: Wed 22 Oct 2025 00:50:08 +0000 ROA not after: Wed 26 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f105::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:2d:d2:d9:aa:a8:ef:65:da:d6:92:a4:73:7f:41:46:13:9a:6d:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 22 00:50:08 2025 GMT Not After : Nov 26 23:59:59 2025 GMT Subject: serialNumber=3644588b8016fa2a4e920fdce2961553fb9b2cee0529f94f3db02a887c2938e5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:40:9b:08:bc:57:9c:ef:e4:bf:97:66:45:9e: aa:73:3d:20:e5:c8:2d:74:70:ce:12:34:6c:44:d4: 8d:bb:ef:6b:64:41:32:2a:a4:c4:9f:47:79:37:15: 0a:cf:d1:fb:d5:3c:91:a5:48:91:36:bf:57:e3:4b: 14:e8:fc:9d:49:fe:be:11:f5:a8:d8:03:80:71:c7: 27:35:0d:51:04:15:1c:96:6a:1c:a8:ee:15:1b:93: 68:1b:49:bc:2b:83:2b:52:b1:f2:c1:01:d8:4f:17: 1f:35:cf:c5:e7:aa:1b:30:01:3a:8c:b5:22:b0:37: fa:ee:3b:d5:27:ae:9d:33:b1:ee:47:5b:22:30:a5: cb:5a:6a:cd:d5:0d:e0:69:9b:7e:20:b6:5e:a6:29: 7b:3c:b4:c6:e3:fd:ca:0b:25:31:a2:73:fb:f4:44: 24:b2:65:fd:22:d8:a0:b7:d8:c4:0e:1c:31:f9:84: 76:47:c4:51:83:5f:7f:41:30:15:8a:af:aa:b9:17: 63:3e:20:40:c8:3b:2f:c3:d4:a3:07:76:d2:e2:04: 19:1e:a9:07:f2:c8:c5:d1:95:b4:a4:81:af:cc:f7: 0a:0c:cb:ba:05:b2:7c:ad:fb:29:a8:74:56:c7:ea: e6:a0:1a:04:c6:c6:a0:a6:ac:d4:5c:77:e8:0e:9a: 28:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:E1:AE:23:ED:35:9B:AF:F9:FB:48:50:00:11:93:A7:BF:5E:46:38 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/868fe5a3-3c18-4d2a-bf96-0e0a840118e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f105::/48 Signature Algorithm: sha256WithRSAEncryption 5b:e4:21:5c:55:2e:9c:c3:67:b3:7e:27:b6:86:a7:b3:dc:52: 9f:c3:4a:ea:a7:0e:42:fd:af:5d:46:66:f2:bf:a2:9a:5a:ab: 63:27:bc:d3:b8:19:b8:22:20:58:1d:3b:e3:c9:f7:dd:df:45: d6:85:78:80:05:f3:69:38:a5:1d:92:e7:ff:da:f1:bd:7d:9b: 3d:3f:12:e6:6f:e4:53:07:cc:de:3a:e6:18:5c:1c:a7:ea:4a: 62:cd:cb:60:fd:a8:97:bc:32:e4:ce:24:42:47:92:02:03:18: cc:f6:c1:ee:86:8c:33:d5:a9:88:6f:ca:26:af:5c:16:cd:b8: cb:90:7d:7a:24:07:ab:95:7e:41:60:cf:e6:23:3a:a3:83:b0: 0b:f6:d6:24:64:da:83:6f:b0:ce:43:59:7f:b0:85:45:32:5a: 71:7a:20:b1:f5:57:8b:b0:d5:0f:05:47:0e:61:eb:b6:d2:c5: bc:05:e4:50:40:bc:17:03:74:c2:6a:23:7d:29:34:72:42:e3: 06:fe:7d:84:e3:21:5d:47:86:0e:21:76:ef:fa:6a:57:dd:55: b7:24:44:06:0f:74:d1:d6:da:62:ed:e7:db:42:ae:1e:b7:fb: 1f:f6:e1:44:29:39:85:20:dc:f9:0b:d6:ce:da:6d:94:0e:11: 10:93:6f:ae -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfi3S2aqo72Xa1pKkc39BRhOabdQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIyMDA1MDA4WhcNMjUxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNjQ0NTg4YjgwMTZmYTJhNGU5MjBmZGNlMjk2MTU1M2Zi OWIyY2VlMDUyOWY5NGYzZGIwMmE4ODdjMjkzOGU1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4QJsIvFec7+S/l2ZFnqpzPSDlyC10cM4SNGxE1I2772tk QTIqpMSfR3k3FQrP0fvVPJGlSJE2v1fjSxTo/J1J/r4R9ajYA4Bxxyc1DVEEFRyW ahyo7hUbk2gbSbwrgytSsfLBAdhPFx81z8XnqhswATqMtSKwN/ruO9Unrp0zse5H WyIwpctaas3VDeBpm34gtl6mKXs8tMbj/coLJTGic/v0RCSyZf0i2KC32MQOHDH5 hHZHxFGDX39BMBWKr6q5F2M+IEDIOy/D1KMHdtLiBBkeqQfyyMXRlbSkga/M9woM y7oFsnyt+ymodFbH6uagGgTGxqCmrNRcd+gOmijPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUY+GuI+01m6/5+0hQABGTp79eRjgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzg2OGZlNWEzLTNjMTgtNGQyYS1iZjk2LTBlMGE4NDAxMThlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QUwDQYJKoZIhvcNAQELBQADggEBAFvkIVxVLpzDZ7N+J7aGp7Pc Up/DSuqnDkL9r11GZvK/oppaq2MnvNO4GbgiIFgdO+PJ993fRdaFeIAF82k4pR2S 5//a8b19mz0/EuZv5FMHzN465hhcHKfqSmLNy2D9qJe8MuTOJEJHkgIDGMz2we6G jDPVqYhvyiavXBbNuMuQfXokB6uVfkFgz+YjOqODsAv21iRk2oNvsM5DWX+whUUy WnF6ILH1V4uw1Q8FRw5h67bSxbwF5FBAvBcDdMJqI30pNHJC4wb+fYTjIV1Hhg4h du/6alfdVbckRAYPdNHW2mLt59tCrh63+x/24UQpOYUg3PkL1s7abZQOERCTb64= -----END CERTIFICATE-----Generated at Wed Nov 5 07:42:19 2025 by rpki-client