$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa File: 9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa (raw, json) Hash identifier: w9AEpVm9+YGX9zk+Red2mzwMRUMGtiCUaIMjve6gxTQ= Subject key identifier: 7D:94:84:91:B6:92:18:C8:39:5B:86:DF:70:B6:1E:C8:4D:B2:2E:54 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 164096376CA469E17124FFA845612E8B8B71C4AC Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa Signing time: Fri 31 Oct 2025 01:50:34 +0000 ROA not before: Fri 31 Oct 2025 01:50:34 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5503::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:40:96:37:6c:a4:69:e1:71:24:ff:a8:45:61:2e:8b:8b:71:c4:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 31 01:50:34 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=025ed10db96ca1bcab13b8e644dac3e668f8b3b7dfe853cceda2909a0dc8c226, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a5:40:01:df:44:3b:1e:d4:8f:0d:9f:d7:8d: d6:fc:c5:11:09:fb:94:03:74:53:9a:19:96:42:71: 10:d2:a6:84:96:50:45:6b:08:d9:5e:b7:cf:5f:e1: f4:4c:0a:ec:30:e1:99:ed:b9:95:98:e4:71:ef:70: 18:c1:16:45:ac:5d:71:ab:60:5c:72:5b:31:b1:51: 74:89:46:e6:3d:2a:10:e6:83:ab:33:d9:bc:77:f8: 76:94:9e:af:cf:76:a4:02:16:41:71:b3:dd:01:32: 25:da:ff:84:69:c9:67:55:cb:05:79:77:5e:ca:20: f1:18:04:71:ae:26:40:cb:d8:a8:5b:b6:50:50:e6: f7:da:ad:5e:cc:69:93:2f:2f:d2:15:66:d9:62:0a: 2c:db:c8:fe:55:16:90:6c:e8:b3:86:ef:b3:74:2a: 07:d9:3f:97:40:90:61:bf:81:f4:b5:7d:e7:c9:10: 77:35:f3:75:b2:db:0a:76:c2:52:fd:67:3f:ab:bd: 40:98:ad:0c:85:c4:18:d7:96:91:a0:10:5a:07:84: 67:b1:78:3e:7a:aa:59:35:4c:ac:45:9a:18:0f:65: 5d:5f:bb:54:4c:df:b2:78:20:d6:35:e3:ba:b0:80: e6:c1:b5:a7:1c:65:5a:a0:2b:75:82:f2:42:c1:48: 67:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:94:84:91:B6:92:18:C8:39:5B:86:DF:70:B6:1E:C8:4D:B2:2E:54 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5503::/48 Signature Algorithm: sha256WithRSAEncryption 82:e8:6a:c6:e8:32:cc:fd:8f:81:ff:cd:e9:14:97:31:c3:59: f7:15:e1:3d:9d:57:16:c4:89:ed:28:15:a9:bb:3d:68:c8:8b: 41:77:4c:62:db:95:2f:c2:bf:80:51:2e:70:f2:ef:c5:d6:b0: 43:e0:34:9a:56:b5:5d:5b:dc:cb:92:63:15:87:2b:0e:14:22: e8:b5:c8:a5:f9:27:e6:8d:11:9e:4f:4e:3e:4d:7e:4e:cd:6a: c6:74:92:6e:2e:0b:6e:0b:f2:56:76:67:23:3c:18:23:23:e6: 9d:69:63:0a:58:0a:c0:92:74:04:d1:83:c0:4f:a2:1b:ff:d3: b7:88:1f:00:3a:60:48:cf:ec:6d:df:b0:b6:c1:69:b5:0e:b3: 09:e7:24:2b:66:16:89:ab:07:42:a5:8c:6e:40:5b:f6:9c:b5: 3f:61:c5:d1:f0:22:17:3e:e8:c8:77:1c:fa:2a:18:0e:bd:46: 88:10:36:2f:e6:8d:34:34:2e:84:83:95:04:e7:d0:27:a4:60: 9d:b0:6c:24:a8:ea:cd:db:e2:fc:b5:bc:b1:3a:0a:83:ab:c8: 78:ad:69:3c:0f:f0:83:44:fc:5c:82:d9:d7:61:ee:73:3a:5a: f5:3c:9a:28:d4:72:49:a7:04:e9:0c:72:47:a9:ef:de:39:39: 4e:d8:51:c2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFkCWN2ykaeFxJP+oRWEui4txxKwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDMxMDE1MDM0WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMjVlZDEwZGI5NmNhMWJjYWIxM2I4ZTY0NGRhYzNlNjY4 ZjhiM2I3ZGZlODUzY2NlZGEyOTA5YTBkYzhjMjI2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMpUAB30Q7HtSPDZ/Xjdb8xREJ+5QDdFOaGZZCcRDSpoSW UEVrCNlet89f4fRMCuww4ZntuZWY5HHvcBjBFkWsXXGrYFxyWzGxUXSJRuY9KhDm g6sz2bx3+HaUnq/PdqQCFkFxs90BMiXa/4RpyWdVywV5d17KIPEYBHGuJkDL2Khb tlBQ5vfarV7MaZMvL9IVZtliCizbyP5VFpBs6LOG77N0KgfZP5dAkGG/gfS1fefJ EHc183Wy2wp2wlL9Zz+rvUCYrQyFxBjXlpGgEFoHhGexeD56qlk1TKxFmhgPZV1f u1RM37J4INY147qwgObBtaccZVqgK3WC8kLBSGdbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUfZSEkbaSGMg5W4bfcLYeyE2yLlQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzk3MzhiYjBkLTFhODQtNDYwMS1iYzZiLTI1YmE3ZjQ5YzcyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQMwDQYJKoZIhvcNAQELBQADggEBAILoasboMsz9j4H/zekUlzHD WfcV4T2dVxbEie0oFam7PWjIi0F3TGLblS/Cv4BRLnDy78XWsEPgNJpWtV1b3MuS YxWHKw4UIui1yKX5J+aNEZ5PTj5Nfk7NasZ0km4uC24L8lZ2ZyM8GCMj5p1pYwpY CsCSdATRg8BPohv/07eIHwA6YEjP7G3fsLbBabUOswnnJCtmFomrB0KljG5AW/ac tT9hxdHwIhc+6Mh3HPoqGA69RogQNi/mjTQ0LoSDlQTn0CekYJ2wbCSo6s3b4vy1 vLE6CoOryHitaTwP8INE/FyC2ddh7nM6WvU8mijUckmnBOkMckep7945OU7YUcI= -----END CERTIFICATE-----Generated at Wed Nov 5 05:41:11 2025 by rpki-client