$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8dc8b90b-7591-404d-b954-05b005230216.roa File: 8dc8b90b-7591-404d-b954-05b005230216.roa (raw, json) Hash identifier: D1fRoKPKUPa0RwQOzpocCTRL1P4BWrulfpNJ8hxrCNE= Subject key identifier: 7C:82:13:9C:7B:51:FC:57:F6:97:F3:30:DA:2C:00:D6:10:EB:B0:01 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 508B7E3996326706ECBD41393E4BFD55BEDC4A02 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8dc8b90b-7591-404d-b954-05b005230216.roa Signing time: Tue 21 Oct 2025 13:00:20 +0000 ROA not before: Tue 21 Oct 2025 13:00:20 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:8b:7e:39:96:32:67:06:ec:bd:41:39:3e:4b:fd:55:be:dc:4a:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:00:20 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=0794b924fd176e4ac3e9892262bd033cced6feb036b693d20453d17eb48472ee, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8c:a0:e1:54:44:d7:a8:4d:b8:0e:f9:ea:ab: cf:da:fc:22:30:96:6b:fc:ba:ec:0f:88:de:38:2b: 1f:5f:60:f6:a5:44:a1:1c:8e:62:3c:f2:c0:4b:76: 67:8d:61:ef:0f:79:83:59:0a:aa:db:4d:1e:c0:65: 3e:fc:3a:89:8e:98:24:f3:09:dc:5f:e7:3f:2f:c8: c9:69:16:7c:44:69:2f:4c:35:9b:4b:06:ca:8b:66: 01:1e:a4:87:54:fa:6c:24:88:0a:2e:53:a1:b4:72: f0:a9:fc:dc:23:4e:01:8f:3a:3d:d5:22:eb:e0:67: 30:45:3c:d4:94:e8:e7:90:3b:e0:6e:7e:54:76:a3: d9:67:ff:bb:4f:7b:08:a6:1a:78:a0:1d:55:16:cd: 80:aa:58:6c:1e:11:0b:bc:7a:18:3a:cb:d3:89:09: 1c:da:c1:fc:e1:b6:01:58:c7:c6:ea:0b:a6:cf:42: b1:5b:0e:ed:46:c7:61:0c:15:6f:c3:d9:75:83:54: 9c:19:b0:0e:f4:26:77:43:e1:c7:27:55:05:f6:cd: a2:09:ae:c3:64:53:23:68:e3:e0:58:3d:ca:80:55: ce:35:af:63:91:ba:96:67:fb:89:f7:13:f5:dc:27: 60:e9:db:7d:84:3f:4a:90:e7:b7:7b:a3:83:72:14: 98:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:82:13:9C:7B:51:FC:57:F6:97:F3:30:DA:2C:00:D6:10:EB:B0:01 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8dc8b90b-7591-404d-b954-05b005230216.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f000::/39 Signature Algorithm: sha256WithRSAEncryption 1c:6a:7c:c0:7c:f8:49:fb:17:f9:35:d9:5a:3d:f1:bd:d2:7f: 79:fb:b4:0d:9f:66:17:0c:9e:bf:17:21:0e:f8:88:1d:6c:cd: 5e:6a:06:a9:c9:be:35:86:c5:c3:cd:7b:1f:4a:f8:2d:79:ae: d3:f5:8b:21:21:15:6f:6b:8f:db:f8:b5:8a:38:e5:8a:3c:af: 24:ad:33:99:29:93:b9:60:6e:0b:78:0b:52:74:2a:a9:33:b8: 89:9b:3d:fb:f5:20:10:4b:0b:43:c0:44:2a:d1:42:41:c8:62: 04:4b:bc:2e:d6:5d:1a:79:8c:de:53:12:9d:26:47:d9:97:41: 03:a6:96:7e:66:28:3e:cb:81:d8:e8:5f:be:8d:b9:7f:3c:e3: c7:4a:fc:be:73:35:1e:67:67:6a:4b:ba:6c:2f:1b:f4:ac:cf: 44:bd:77:b8:11:63:bf:6d:c8:fd:6e:cb:be:a8:ef:c7:77:eb: 24:42:72:f8:66:1d:73:aa:61:9b:84:23:fd:2c:a1:9c:03:26: bd:fe:90:ee:7d:fe:8c:de:1e:13:ae:ce:25:0c:5e:2b:72:68: 94:73:cf:86:2e:75:6c:d6:28:27:f1:90:84:e7:73:91:b3:19: aa:89:69:82:a7:d0:14:75:85:d4:53:73:95:48:b6:f0:05:e1: 27:76:bb:e4 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUUIt+OZYyZwbsvUE5Pkv9Vb7cSgIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMwMDIwWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNzk0YjkyNGZkMTc2ZTRhYzNlOTg5MjI2MmJkMDMzY2Nl ZDZmZWIwMzZiNjkzZDIwNDUzZDE3ZWI0ODQ3MmVlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9jKDhVETXqE24Dvnqq8/a/CIwlmv8uuwPiN44Kx9fYPal RKEcjmI88sBLdmeNYe8PeYNZCqrbTR7AZT78OomOmCTzCdxf5z8vyMlpFnxEaS9M NZtLBsqLZgEepIdU+mwkiAouU6G0cvCp/NwjTgGPOj3VIuvgZzBFPNSU6OeQO+Bu flR2o9ln/7tPewimGnigHVUWzYCqWGweEQu8ehg6y9OJCRzawfzhtgFYx8bqC6bP QrFbDu1Gx2EMFW/D2XWDVJwZsA70JndD4ccnVQX2zaIJrsNkUyNo4+BYPcqAVc41 r2ORupZn+4n3E/XcJ2Dp232EP0qQ57d7o4NyFJjtAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUfIITnHtR/Ff2l/Mw2iwA1hDrsAEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzhkYzhiOTBiLTc1OTEtNDA0ZC1iOTU0LTA1YjAwNTIzMDIxNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAPAAADANBgkqhkiG9w0BAQsFAAOCAQEAHGp8wHz4SfsX+TXZWj3xvdJ/ efu0DZ9mFwyevxchDviIHWzNXmoGqcm+NYbFw817H0r4LXmu0/WLISEVb2uP2/i1 ijjlijyvJK0zmSmTuWBuC3gLUnQqqTO4iZs9+/UgEEsLQ8BEKtFCQchiBEu8LtZd GnmM3lMSnSZH2ZdBA6aWfmYoPsuB2Ohfvo25fzzjx0r8vnM1Hmdnaku6bC8b9KzP RL13uBFjv23I/W7Lvqjvx3frJEJy+GYdc6phm4Qj/SyhnAMmvf6Q7n3+jN4eE67O JQxeK3JolHPPhi51bNYoJ/GQhOdzkbMZqolpgqfQFHWF1FNzlUi28AXhJ3a75A== -----END CERTIFICATE-----Generated at Wed Nov 5 16:29:45 2025 by rpki-client