$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8c0e65e5-4314-4c25-95ea-bd728ba417ff.roa File: 8c0e65e5-4314-4c25-95ea-bd728ba417ff.roa (raw, json) Hash identifier: 9LJCTXs1yu6OpD0SNxkKRk+quDT9vyZkGR/PUtUm3LQ= Subject key identifier: C1:7D:B1:2E:3D:1E:17:2F:FD:45:19:F3:16:7B:C3:94:62:D6:58:57 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4EEF8D75B40E68A2AE8E75CBC8F63B9C08C9D6DA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8c0e65e5-4314-4c25-95ea-bd728ba417ff.roa Signing time: Fri 31 Oct 2025 02:00:12 +0000 ROA not before: Fri 31 Oct 2025 02:00:12 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f020::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:ef:8d:75:b4:0e:68:a2:ae:8e:75:cb:c8:f6:3b:9c:08:c9:d6:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 31 02:00:12 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=63d90f5727544c79cce1c7d37ef1a0916dff3bf4c56236f060a0da495aa7266a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:35:f2:e5:0a:dd:b2:1c:ae:38:f4:c9:6f:37: a6:10:a5:38:db:80:ae:29:99:f1:e0:45:ee:f3:00: bb:e9:37:30:10:4a:5a:c3:87:10:83:ac:e5:fd:a9: a4:20:74:b6:c8:29:b5:8c:f1:db:3e:cc:a3:08:e5: 40:bf:68:af:fb:b3:52:be:e1:64:16:ce:78:a6:3c: 91:61:e4:27:10:d9:cd:2d:ff:1b:f8:b9:b6:d8:46: 2d:93:44:01:d8:94:87:32:14:2b:82:de:25:20:b0: cd:ea:30:6a:98:59:78:07:92:e1:6f:5f:e5:ba:cd: 53:20:64:69:b8:6f:d6:32:a5:68:14:b1:ee:7a:6a: e6:cc:00:38:9a:1d:db:5c:bf:98:fd:82:74:36:6b: ef:12:7b:9f:cb:b6:bd:20:05:67:e6:90:7c:3f:3e: 4e:16:07:81:9c:3a:a6:98:3a:c7:aa:de:c4:c8:e1: 2c:0f:b2:f1:8a:2d:8a:dd:37:0d:09:77:f6:9a:da: 2d:82:dd:ef:5d:70:8e:be:2e:b5:9e:13:5d:3a:26: 19:53:b9:a8:bc:cc:21:68:a0:a3:7b:6b:f0:87:10: 2d:45:b2:a8:6e:cf:84:a7:77:cd:1e:72:30:c6:01: fc:6b:40:a8:96:ba:94:02:6a:fb:6f:27:fe:f2:32: f9:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:7D:B1:2E:3D:1E:17:2F:FD:45:19:F3:16:7B:C3:94:62:D6:58:57 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8c0e65e5-4314-4c25-95ea-bd728ba417ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f020::/44 Signature Algorithm: sha256WithRSAEncryption 31:36:ab:b5:a2:c5:5f:74:29:58:86:92:dd:fa:05:29:88:dc: d5:87:dd:ef:f1:b5:53:bd:ec:34:a9:15:56:4d:09:29:ec:a5: 36:fd:42:a8:4f:af:13:ef:2a:d4:fc:39:ff:4c:cf:70:11:96: a5:3a:0e:36:46:9d:b0:39:9d:c6:90:0e:6a:ed:cb:5c:98:19: c5:92:c6:2a:15:a3:aa:68:6f:73:b1:4c:7c:cc:09:95:7f:1b: 9f:42:5c:e3:0a:70:85:0e:dd:69:88:27:bf:50:f5:3b:9d:44: 4c:8e:b5:33:9d:32:73:1a:39:bb:c8:ed:50:bc:2e:69:1d:f6: b7:71:11:8a:f4:a6:66:44:44:cb:3a:a5:ea:9f:ec:f3:bc:aa: dc:9c:2c:bb:52:14:81:95:b2:d2:74:15:0e:4f:01:2a:4d:ce: 68:c9:49:32:05:c6:08:cd:2c:19:64:c8:e3:9b:18:bc:b5:28: 31:2f:9a:75:5e:35:fa:3d:9f:22:e4:ed:b8:ef:38:30:c3:2c: 1c:12:5b:1a:43:5f:ef:dc:df:c9:0f:df:66:2a:9c:80:9f:df: fa:cb:97:f1:0e:67:e5:81:ed:2f:4e:f1:21:9a:9f:af:1d:ba: 45:fc:1f:52:a2:74:00:70:44:27:64:49:70:68:51:c2:13:52: 51:e5:89:6f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTu+NdbQOaKKujnXLyPY7nAjJ1towDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDMxMDIwMDEyWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2M2Q5MGY1NzI3NTQ0Yzc5Y2NlMWM3ZDM3ZWYxYTA5MTZk ZmYzYmY0YzU2MjM2ZjA2MGEwZGE0OTVhYTcyNjZhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDONfLlCt2yHK449MlvN6YQpTjbgK4pmfHgRe7zALvpNzAQ SlrDhxCDrOX9qaQgdLbIKbWM8ds+zKMI5UC/aK/7s1K+4WQWznimPJFh5CcQ2c0t /xv4ubbYRi2TRAHYlIcyFCuC3iUgsM3qMGqYWXgHkuFvX+W6zVMgZGm4b9YypWgU se56aubMADiaHdtcv5j9gnQ2a+8Se5/Ltr0gBWfmkHw/Pk4WB4GcOqaYOseq3sTI 4SwPsvGKLYrdNw0Jd/aa2i2C3e9dcI6+LrWeE106JhlTuai8zCFooKN7a/CHEC1F sqhuz4Snd80ecjDGAfxrQKiWupQCavtvJ/7yMvnVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUwX2xLj0eFy/9RRnzFnvDlGLWWFcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzhjMGU2NWU1LTQzMTQtNGMyNS05NWVhLWJkNzI4YmE0MTdmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78CAwDQYJKoZIhvcNAQELBQADggEBADE2q7WixV90KViGkt36BSmI 3NWH3e/xtVO97DSpFVZNCSnspTb9QqhPrxPvKtT8Of9Mz3ARlqU6DjZGnbA5ncaQ Dmrty1yYGcWSxioVo6pob3OxTHzMCZV/G59CXOMKcIUO3WmIJ79Q9TudREyOtTOd MnMaObvI7VC8Lmkd9rdxEYr0pmZERMs6peqf7PO8qtycLLtSFIGVstJ0FQ5PASpN zmjJSTIFxgjNLBlkyOObGLy1KDEvmnVeNfo9nyLk7bjvODDDLBwSWxpDX+/c38kP 32YqnICf3/rLl/EOZ+WB7S9O8SGan68dukX8H1KidABwRCdkSXBoUcITUlHliW8= -----END CERTIFICATE-----Generated at Wed Nov 5 05:44:48 2025 by rpki-client