$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8979840e-82a9-441b-924a-93b9c7ea006b.roa File: 8979840e-82a9-441b-924a-93b9c7ea006b.roa (raw, json) Hash identifier: FMqf+ar8MItCGecNxR9S5378KEBOizlKv3i2GLVo2pA= Subject key identifier: 79:37:55:37:06:9F:51:C8:BF:F0:F1:FF:07:C8:6E:16:47:0E:C4:70 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3025C8DE3FCB015FEA55618D7A62F109416363DD Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8979840e-82a9-441b-924a-93b9c7ea006b.roa Signing time: Tue 21 Oct 2025 12:50:05 +0000 ROA not before: Tue 21 Oct 2025 12:50:05 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:25:c8:de:3f:cb:01:5f:ea:55:61:8d:7a:62:f1:09:41:63:63:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:05 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=4852a63dde414bf49d92e6c792c88e2ab4c3e513d2eadea9383562e81bf78d48, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:46:66:51:9e:b4:82:a9:33:e6:60:11:31:3b: b4:76:88:c1:b6:cd:44:f2:d5:7b:e9:11:1d:cf:8e: 5b:26:86:df:8e:9b:78:47:b3:c1:5b:7a:6e:88:88: b1:2c:6b:43:09:fd:18:a4:41:9c:f3:1a:56:9a:2d: 36:8f:66:2b:3a:5e:9b:a3:30:b3:bf:c5:68:af:1c: 0e:6c:f7:c7:5e:c8:3a:c0:6a:c7:0c:cf:df:0f:bb: 70:e1:26:50:06:cc:08:8e:6f:f5:1b:9f:7c:0e:ff: b3:52:2a:14:6a:f3:23:a4:54:4a:77:8d:9c:6a:b8: 3e:b9:c4:92:45:47:82:7a:c8:62:53:c9:c3:55:a6: 7a:d1:ea:62:4f:77:a5:85:81:b2:26:2c:2f:46:1a: e2:7c:fd:5b:47:f2:5a:ab:26:89:e0:e8:e7:7e:ad: 4c:80:03:29:36:28:86:1c:04:3c:c7:9f:6d:5d:ed: 47:10:f6:21:9f:06:29:60:a9:35:a9:c2:e2:68:06: 65:d5:b0:a8:91:9f:39:36:b3:68:04:76:22:9d:0c: 05:f0:aa:77:28:6e:5b:ab:e3:4a:d0:d3:d4:d1:ce: 5e:c0:a5:00:ad:e9:39:5a:5b:c9:e4:80:07:f5:c5: b3:c3:a4:77:cc:7e:be:a4:1d:46:f8:45:b8:77:92: 43:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:37:55:37:06:9F:51:C8:BF:F0:F1:FF:07:C8:6E:16:47:0E:C4:70 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8979840e-82a9-441b-924a-93b9c7ea006b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:2::/48 Signature Algorithm: sha256WithRSAEncryption 05:64:bc:82:33:cb:7c:c4:17:d0:bb:2e:63:35:5e:c2:e1:db: 61:4c:a8:23:4f:99:33:a2:ce:ff:73:a2:e2:0f:56:67:98:03: 6f:22:f1:e5:f0:64:01:5a:00:f6:e0:2d:29:f3:2f:c6:e0:26: 90:a4:b7:ee:a2:dd:a3:1e:4f:89:5a:44:2e:ee:ba:5b:25:a3: 6e:cf:cc:fe:c1:26:b0:6a:6b:ac:4e:90:f8:d5:bb:3a:4c:b3: 07:9e:95:4a:f8:6f:da:ee:e3:93:f5:e5:31:52:3e:d5:3c:ee: 29:6c:1a:1a:c2:3f:03:de:df:1f:21:84:57:b5:fa:31:31:2b: 64:ff:97:18:77:94:4f:2b:d2:b4:9b:3c:e6:37:1e:2c:5f:72: 1e:cd:19:4c:60:2c:71:70:42:4f:cf:f0:01:4e:62:13:07:3c: f9:e4:57:f3:df:98:85:6f:83:25:9b:57:f7:11:44:e3:69:f4: fc:1f:89:4f:81:09:f7:73:ed:0b:c4:f3:b9:4b:49:e7:e6:bb: 65:4a:b5:82:bf:47:47:f7:b6:98:a0:0e:21:08:99:a8:35:bf: 8c:bb:2b:51:d6:85:6f:92:fe:f2:44:f1:f3:7b:41:2e:50:00: 3d:c8:9d:6f:2c:02:8f:c3:d0:0f:1a:a7:10:af:1c:2a:90:03: be:07:fe:20 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMCXI3j/LAV/qVWGNemLxCUFjY90wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDA1WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ODUyYTYzZGRlNDE0YmY0OWQ5MmU2Yzc5MmM4OGUyYWI0 YzNlNTEzZDJlYWRlYTkzODM1NjJlODFiZjc4ZDQ4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdRmZRnrSCqTPmYBExO7R2iMG2zUTy1XvpER3Pjlsmht+O m3hHs8Fbem6IiLEsa0MJ/RikQZzzGlaaLTaPZis6XpujMLO/xWivHA5s98deyDrA ascMz98Pu3DhJlAGzAiOb/Ubn3wO/7NSKhRq8yOkVEp3jZxquD65xJJFR4J6yGJT ycNVpnrR6mJPd6WFgbImLC9GGuJ8/VtH8lqrJong6Od+rUyAAyk2KIYcBDzHn21d 7UcQ9iGfBilgqTWpwuJoBmXVsKiRnzk2s2gEdiKdDAXwqncoblur40rQ09TRzl7A pQCt6TlaW8nkgAf1xbPDpHfMfr6kHUb4Rbh3kkOfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUeTdVNwafUci/8PH/B8huFkcOxHAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzg5Nzk4NDBlLTgyYTktNDQxYi05MjRhLTkzYjljN2VhMDA2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAIwDQYJKoZIhvcNAQELBQADggEBAAVkvIIzy3zEF9C7LmM1XsLh 22FMqCNPmTOizv9zouIPVmeYA28i8eXwZAFaAPbgLSnzL8bgJpCkt+6i3aMeT4la RC7uulslo27PzP7BJrBqa6xOkPjVuzpMsweelUr4b9ru45P15TFSPtU87ilsGhrC PwPe3x8hhFe1+jExK2T/lxh3lE8r0rSbPOY3Hixfch7NGUxgLHFwQk/P8AFOYhMH PPnkV/PfmIVvgyWbV/cRRONp9PwfiU+BCfdz7QvE87lLSefmu2VKtYK/R0f3tpig DiEImag1v4y7K1HWhW+S/vJE8fN7QS5QAD3InW8sAo/D0A8apxCvHCqQA74H/iA= -----END CERTIFICATE-----Generated at Wed Nov 5 11:14:10 2025 by rpki-client