$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/973e821c-8b2c-4c2b-93fc-2e00ef721fdc.roa File: 973e821c-8b2c-4c2b-93fc-2e00ef721fdc.roa (raw, json) Hash identifier: 9bBJvtnEANjFEoDqG7MWsVSQWGjgCYaH0LRqZvgMzUU= Subject key identifier: 96:03:1F:92:11:0A:EE:1F:F3:23:65:E1:84:24:82:16:41:3B:2E:F8 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 42AA27D4B86F12CC7B2C688FFEBD49ECDDF498EE Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/973e821c-8b2c-4c2b-93fc-2e00ef721fdc.roa Signing time: Fri 31 Oct 2025 01:50:11 +0000 ROA not before: Fri 31 Oct 2025 01:50:11 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6120::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:aa:27:d4:b8:6f:12:cc:7b:2c:68:8f:fe:bd:49:ec:dd:f4:98:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 31 01:50:11 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=05bc484b942b6dd5335438274211660332b5f74dbb91f680ea74246c01b40dd3, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:97:91:73:6e:05:f6:87:78:f1:df:00:c8:69: e3:00:e3:64:fc:8c:89:60:88:42:49:17:e3:d7:6f: 0e:32:e8:b0:c8:c5:ba:08:de:22:c1:23:cd:33:12: 1b:7a:29:73:4f:c2:78:83:3e:fe:53:8d:e4:80:08: f0:06:60:14:e0:9e:9e:23:41:b8:d4:4d:9b:ed:7a: 1f:24:63:4f:ad:e4:c4:79:8f:b1:bf:75:83:cb:5c: 03:3d:69:a1:1b:6b:00:00:e1:85:12:e6:d3:0c:e3: a9:9a:b0:97:c3:a2:08:ae:8e:28:24:4f:62:f6:01: 05:4f:93:5f:c2:26:62:1b:36:de:fb:06:5a:b0:de: 93:5b:49:a3:41:ca:76:d6:1b:20:84:70:db:64:6b: 68:bf:8f:7b:02:f0:3f:1f:b3:82:ca:0a:4e:9c:18: 77:a3:6b:e5:9e:06:9b:34:3a:5e:32:a8:bf:bc:3a: 60:32:3f:1f:74:53:9f:d1:81:9e:92:18:90:3b:46: c4:e0:95:86:59:ec:a0:c0:7c:c2:74:ee:9a:81:93: 53:7e:05:51:01:db:8b:74:ab:63:f8:c2:6e:56:09: 9a:68:20:aa:53:11:20:8b:00:e3:9a:e6:4c:6d:6e: e9:f2:79:a0:44:65:4d:b6:81:e0:aa:69:19:7e:29: 70:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:03:1F:92:11:0A:EE:1F:F3:23:65:E1:84:24:82:16:41:3B:2E:F8 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/973e821c-8b2c-4c2b-93fc-2e00ef721fdc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6120::/48 Signature Algorithm: sha256WithRSAEncryption 9e:c0:4f:75:46:08:c7:64:e7:c5:73:ab:6e:83:86:06:a6:e6: 6a:64:d3:53:e6:c8:9e:36:96:28:57:b4:2e:d5:87:4f:33:20: ed:0b:aa:8f:8f:b1:48:ef:4e:6a:9b:0d:b3:eb:2c:8c:01:e3: d4:32:b1:6b:3a:96:95:d8:ad:cd:97:81:3f:ed:94:ed:6c:69: 25:0d:38:36:2a:b4:47:fb:67:be:29:bb:32:52:04:b1:72:58: 8f:67:7f:bc:4c:8e:89:c3:2a:56:06:87:cb:38:12:e7:3f:5d: 2a:f2:21:60:3e:0a:e7:d5:d1:9d:1d:14:50:7c:1d:94:f6:35: 76:7c:0d:de:ad:30:e6:40:3c:11:1b:ab:87:98:0e:60:45:48: e4:04:4b:36:9a:ea:77:74:89:68:fb:34:18:8c:0a:e3:2a:ef: 0b:2a:df:7a:a2:76:24:81:9b:b1:25:d6:04:e8:ed:f9:91:c5: 6e:a9:05:b5:ca:54:3c:6a:f9:9a:8e:b7:ea:a1:b1:7c:91:de: ef:7b:90:48:a7:d4:43:78:32:f2:67:f4:56:96:47:31:2a:32: 52:f6:88:65:e6:08:87:84:e2:5e:83:8f:0a:31:b4:97:bc:0d: 5d:57:f5:5b:15:fb:f5:aa:d2:bc:2a:20:28:55:28:9a:aa:47: fc:d6:a4:9d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQqon1LhvEsx7LGiP/r1J7N30mO4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDMxMDE1MDExWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNWJjNDg0Yjk0MmI2ZGQ1MzM1NDM4Mjc0MjExNjYwMzMy YjVmNzRkYmI5MWY2ODBlYTc0MjQ2YzAxYjQwZGQzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/l5FzbgX2h3jx3wDIaeMA42T8jIlgiEJJF+PXbw4y6LDI xboI3iLBI80zEht6KXNPwniDPv5TjeSACPAGYBTgnp4jQbjUTZvteh8kY0+t5MR5 j7G/dYPLXAM9aaEbawAA4YUS5tMM46masJfDogiujigkT2L2AQVPk1/CJmIbNt77 Blqw3pNbSaNBynbWGyCEcNtka2i/j3sC8D8fs4LKCk6cGHeja+WeBps0Ol4yqL+8 OmAyPx90U5/RgZ6SGJA7RsTglYZZ7KDAfMJ07pqBk1N+BVEB24t0q2P4wm5WCZpo IKpTESCLAOOa5kxtbunyeaBEZU22geCqaRl+KXDjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUlgMfkhEK7h/zI2XhhCSCFkE7LvgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzk3M2U4MjFjLThiMmMtNGMyYi05M2ZjLTJlMDBlZjcyMWZkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYSAwDQYJKoZIhvcNAQELBQADggEBAJ7AT3VGCMdk58Vzq26Dhgam 5mpk01PmyJ42lihXtC7Vh08zIO0Lqo+PsUjvTmqbDbPrLIwB49QysWs6lpXYrc2X gT/tlO1saSUNODYqtEf7Z74puzJSBLFyWI9nf7xMjonDKlYGh8s4Euc/XSryIWA+ CufV0Z0dFFB8HZT2NXZ8Dd6tMOZAPBEbq4eYDmBFSOQESzaa6nd0iWj7NBiMCuMq 7wsq33qidiSBm7El1gTo7fmRxW6pBbXKVDxq+ZqOt+qhsXyR3u97kEin1EN4MvJn 9FaWRzEqMlL2iGXmCIeE4l6DjwoxtJe8DV1X9VsV+/Wq0rwqIChVKJqqR/zWpJ0= -----END CERTIFICATE-----Generated at Wed Nov 5 07:38:28 2025 by rpki-client