$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8a8b863b-298e-48a9-bced-202e80d98f01.roa File: 8a8b863b-298e-48a9-bced-202e80d98f01.roa (raw, json) Hash identifier: Jg073L5wVvHF5fprkCPZE2LL6S0bnQ0pkrj/BkThu68= Subject key identifier: 74:3D:6C:62:B6:5A:53:E0:07:07:B4:9C:A9:61:00:45:9A:E4:0A:B8 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1F4F40D11524275944F7AB8AFC20843C2FE501E5 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8a8b863b-298e-48a9-bced-202e80d98f01.roa Signing time: Tue 21 Oct 2025 13:00:30 +0000 ROA not before: Tue 21 Oct 2025 13:00:30 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ee00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:4f:40:d1:15:24:27:59:44:f7:ab:8a:fc:20:84:3c:2f:e5:01:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:00:30 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=89ed2f0e91b5c273183c1589fdcc7611b5c24ecb22b6e9360b01a37993e6b8d1, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:af:e9:3c:17:42:42:49:ce:9f:bc:43:74:63: d2:39:e6:6e:6a:07:e1:5b:72:4a:18:ce:97:70:f1: b5:89:ef:54:e0:a4:f6:b3:b6:4e:6c:9a:6a:09:63: 38:b6:a0:85:63:34:b3:6e:a6:dd:d3:40:af:98:11: aa:87:ab:c7:15:f9:b8:00:0f:d1:34:65:86:f1:22: b0:60:de:73:2e:18:40:15:d9:ce:e0:69:d9:a9:72: a0:b7:c2:ba:b9:d4:62:17:0a:8e:6b:33:74:01:b8: f1:d2:47:61:48:b6:5e:c9:06:59:57:46:8c:b9:77: dd:2f:b6:97:a3:84:9e:9a:00:90:f8:62:3a:7e:9b: 17:6d:ed:20:9f:87:5e:f9:4c:73:f0:37:a0:89:92: f1:13:b7:99:65:b3:9a:d3:9d:b4:46:06:d7:55:94: 23:6d:4a:2c:34:89:ee:64:02:59:14:0f:e4:f6:e0: cf:b1:38:74:fe:58:af:a1:36:e8:32:36:de:4f:27: 76:cf:0f:6e:5b:cf:bf:23:04:28:b2:92:80:c9:1f: 3b:f9:ae:28:db:18:eb:00:15:fe:5d:33:48:f4:62: df:3e:71:60:94:22:67:66:fd:c5:f5:48:ff:68:7d: 5a:57:87:4f:e7:70:80:f3:10:97:9d:03:59:be:ee: 39:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:3D:6C:62:B6:5A:53:E0:07:07:B4:9C:A9:61:00:45:9A:E4:0A:B8 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8a8b863b-298e-48a9-bced-202e80d98f01.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ee00::/40 Signature Algorithm: sha256WithRSAEncryption 23:68:83:4b:06:66:44:0a:4b:b0:8c:6b:61:31:21:46:1b:4c: da:a8:38:68:a1:b9:a2:40:1a:cb:38:6e:a1:df:2e:c4:b6:fa: 35:55:05:0f:6e:92:bd:bc:9e:89:40:39:2d:0a:f2:a2:7e:f2: 99:c9:b6:36:ec:76:84:44:ce:42:1b:26:01:7b:ff:cb:ce:62: 59:f2:87:96:42:57:55:2c:ff:c0:ff:4a:83:cb:6c:16:a7:65: 27:e4:70:7c:4b:1c:2f:98:e5:eb:c5:e6:2b:04:4b:1d:2f:26: 68:9d:94:df:58:6f:f7:a4:6f:63:ad:58:a4:1e:cb:21:6a:bf: 2b:e3:3d:f8:f1:d2:dd:90:d4:28:00:b3:09:db:55:3c:dd:fe: 53:fe:43:36:18:9e:f4:cc:6d:41:39:de:2a:e6:e4:3f:c3:99: 99:d5:5e:42:77:f5:2b:c2:21:87:9e:ae:72:07:e7:22:0d:01: 9f:05:94:f7:17:3a:c7:82:86:c3:37:50:d9:48:05:62:ae:d8: ac:fa:83:09:c5:3c:ee:13:95:f3:33:50:5c:58:19:0c:7b:db: 43:59:bf:71:30:03:83:12:34:fd:cf:13:5b:3d:2c:3d:07:c6: 77:0d:8a:5e:97:ed:22:62:19:47:13:a2:22:4e:e9:ea:51:2c: 49:e3:c6:3d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUH09A0RUkJ1lE96uK/CCEPC/lAeUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMwMDMwWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4OWVkMmYwZTkxYjVjMjczMTgzYzE1ODlmZGNjNzYxMWI1 YzI0ZWNiMjJiNmU5MzYwYjAxYTM3OTkzZTZiOGQxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGr+k8F0JCSc6fvEN0Y9I55m5qB+FbckoYzpdw8bWJ71Tg pPaztk5smmoJYzi2oIVjNLNupt3TQK+YEaqHq8cV+bgAD9E0ZYbxIrBg3nMuGEAV 2c7gadmpcqC3wrq51GIXCo5rM3QBuPHSR2FItl7JBllXRoy5d90vtpejhJ6aAJD4 Yjp+mxdt7SCfh175THPwN6CJkvETt5lls5rTnbRGBtdVlCNtSiw0ie5kAlkUD+T2 4M+xOHT+WK+hNugyNt5PJ3bPD25bz78jBCiykoDJHzv5rijbGOsAFf5dM0j0Yt8+ cWCUImdm/cX1SP9ofVpXh0/ncIDzEJedA1m+7jlDAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUdD1sYrZaU+AHB7ScqWEARZrkCrgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzhhOGI4NjNiLTI5OGUtNDhhOS1iY2VkLTIwMmU4MGQ5OGYwMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD77jANBgkqhkiG9w0BAQsFAAOCAQEAI2iDSwZmRApLsIxrYTEhRhtM 2qg4aKG5okAayzhuod8uxLb6NVUFD26SvbyeiUA5LQryon7ymcm2Nux2hETOQhsm AXv/y85iWfKHlkJXVSz/wP9Kg8tsFqdlJ+RwfEscL5jl68XmKwRLHS8maJ2U31hv 96RvY61YpB7LIWq/K+M9+PHS3ZDUKACzCdtVPN3+U/5DNhie9MxtQTneKubkP8OZ mdVeQnf1K8Ihh56ucgfnIg0BnwWU9xc6x4KGwzdQ2UgFYq7YrPqDCcU87hOV8zNQ XFgZDHvbQ1m/cTADgxI0/c8TWz0sPQfGdw2KXpftImIZRxOiIk7p6lEsSePGPQ== -----END CERTIFICATE-----Generated at Wed Nov 5 07:47:53 2025 by rpki-client