$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa File: 976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa (raw, json) Hash identifier: o+eBFhTTc82uDgwnUhtZI1rxSdc4xKRVnJAzAc7i98M= Subject key identifier: 77:0F:15:A1:8D:2B:61:F0:B7:EA:C3:F0:A9:08:31:B8:A1:3E:73:30 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 625AB8694B40DF66FF64B8DCBDF452933EFE7183 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa Signing time: Tue 21 Oct 2025 13:00:24 +0000 ROA not before: Tue 21 Oct 2025 13:00:24 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:5a:b8:69:4b:40:df:66:ff:64:b8:dc:bd:f4:52:93:3e:fe:71:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:00:24 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=817b33f6ab15859474a8fcc51b399ad592f99247e5c4f89a6454de22ded95b25, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:36:7e:95:3b:cc:3f:53:af:a6:c6:cd:6f:0d: 18:64:62:03:0c:9e:b4:49:91:62:16:13:43:50:55: cd:10:f6:b6:31:60:83:fa:90:c9:20:fb:9c:2a:0c: 2c:ce:fc:a4:7a:42:27:39:f4:92:04:24:2d:ca:6c: 79:37:33:71:c1:78:56:3c:02:62:2c:45:f9:61:3d: 96:0f:6d:f2:83:ad:2f:85:95:77:bd:99:d0:8e:81: 46:32:bd:99:76:5b:ce:1a:9c:f5:b3:2e:94:ba:81: fa:a0:61:7c:9c:ef:6d:21:54:8f:c3:b0:0f:d4:bd: 1b:90:e0:77:65:45:45:92:71:3d:cf:33:61:c6:e4: 77:32:c7:35:fa:06:12:22:6c:14:07:59:9c:da:f5: f4:1c:42:35:ab:8f:8a:4f:c5:e7:b4:58:18:15:bc: 97:9c:34:27:2b:2e:aa:0e:06:46:a4:a8:09:6b:24: 7e:9c:d5:3b:76:b0:80:82:b7:a3:55:68:48:50:9b: 76:25:72:41:b7:26:f3:7f:62:5a:ab:73:f1:43:be: 80:9b:d5:fb:e2:fc:08:fe:26:22:09:29:67:47:91: a9:d6:4e:d5:3a:1f:18:74:75:46:4f:2c:ea:53:b3: 7a:9a:35:e2:4f:0e:d7:05:33:b4:7b:2e:32:27:25: 9f:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:0F:15:A1:8D:2B:61:F0:B7:EA:C3:F0:A9:08:31:B8:A1:3E:73:30 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:f00::/48 Signature Algorithm: sha256WithRSAEncryption 3b:30:5e:eb:43:c4:63:4a:98:83:54:ad:58:39:1a:ea:12:58: b0:dc:5d:de:52:8b:8e:c6:05:20:d4:ad:5e:8a:d0:44:b1:a1: f3:81:ac:51:76:43:20:5f:24:6a:91:90:c5:68:41:77:f8:ec: 1e:17:03:43:2c:f4:72:fa:59:a4:77:83:87:79:0f:39:7a:f2: ae:0f:0f:90:16:2f:3e:8f:e3:22:e0:b6:19:e7:b1:2f:e4:ea: 57:e1:a7:5e:00:58:44:ae:d4:22:72:b0:74:e1:47:00:51:c4: cd:5e:da:ea:31:1c:de:3f:c8:54:d5:b1:87:0d:f8:5a:2d:72: b2:2b:c9:0b:90:4e:f8:05:e2:04:b6:5e:ab:d3:1d:66:a6:e4: 3a:2b:f2:eb:6c:c8:44:45:6d:07:69:d5:1a:f3:5b:9f:b6:86: 4f:2a:c1:d4:c1:01:79:b6:5d:e2:4e:37:74:b3:e4:90:29:e0: a8:51:54:16:67:48:48:68:3c:53:a1:96:4d:60:70:a3:01:2f: 56:00:ed:d8:e7:48:4a:6a:31:b9:16:c6:db:c9:9e:ff:70:d3: 5c:d5:57:df:f7:6f:a2:6f:84:9a:13:cd:96:82:0f:76:97:08: b0:a5:32:17:a1:32:d6:e0:12:ca:ec:90:5c:3c:eb:55:5a:2f: 58:3b:88:72 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYlq4aUtA32b/ZLjcvfRSkz7+cYMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMwMDI0WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MTdiMzNmNmFiMTU4NTk0NzRhOGZjYzUxYjM5OWFkNTky Zjk5MjQ3ZTVjNGY4OWE2NDU0ZGUyMmRlZDk1YjI1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2Nn6VO8w/U6+mxs1vDRhkYgMMnrRJkWIWE0NQVc0Q9rYx YIP6kMkg+5wqDCzO/KR6Qic59JIEJC3KbHk3M3HBeFY8AmIsRflhPZYPbfKDrS+F lXe9mdCOgUYyvZl2W84anPWzLpS6gfqgYXyc720hVI/DsA/UvRuQ4HdlRUWScT3P M2HG5HcyxzX6BhIibBQHWZza9fQcQjWrj4pPxee0WBgVvJecNCcrLqoOBkakqAlr JH6c1Tt2sICCt6NVaEhQm3YlckG3JvN/Ylqrc/FDvoCb1fvi/Aj+JiIJKWdHkanW TtU6Hxh0dUZPLOpTs3qaNeJPDtcFM7R7LjInJZ8TAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUdw8VoY0rYfC36sPwqQgxuKE+czAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzk3NjYyM2FkLTBiNWEtNGE1Zi1iNGEzLTYwNjgxZDJlYWM3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwDwAwDQYJKoZIhvcNAQELBQADggEBADswXutDxGNKmINUrVg5GuoS WLDcXd5Si47GBSDUrV6K0ESxofOBrFF2QyBfJGqRkMVoQXf47B4XA0Ms9HL6WaR3 g4d5Dzl68q4PD5AWLz6P4yLgthnnsS/k6lfhp14AWESu1CJysHThRwBRxM1e2uox HN4/yFTVsYcN+FotcrIryQuQTvgF4gS2XqvTHWam5Dor8utsyERFbQdp1RrzW5+2 hk8qwdTBAXm2XeJON3Sz5JAp4KhRVBZnSEhoPFOhlk1gcKMBL1YA7djnSEpqMbkW xtvJnv9w01zVV9/3b6JvhJoTzZaCD3aXCLClMhehMtbgEsrskFw861VaL1g7iHI= -----END CERTIFICATE-----Generated at Wed Nov 5 11:34:28 2025 by rpki-client