$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a0024e00-f937-4b63-91df-d45ce0a6a27d.roa File: a0024e00-f937-4b63-91df-d45ce0a6a27d.roa (raw, json) Hash identifier: Se8nXIf62XJK53tVZHkQpmuJSU2nOccbdBkcVA9i/g0= Subject key identifier: F1:1F:5E:49:FC:5A:97:84:F3:AD:F0:18:34:06:4D:23:19:01:44:71 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 459D4B55E57C3740386CDE1CB9FCFA7759D38F26 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a0024e00-f937-4b63-91df-d45ce0a6a27d.roa Signing time: Tue 21 Oct 2025 12:50:45 +0000 ROA not before: Tue 21 Oct 2025 12:50:45 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6010::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:9d:4b:55:e5:7c:37:40:38:6c:de:1c:b9:fc:fa:77:59:d3:8f:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:45 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=c118cc948d726f6fcd1a7a56efeac8ca675b9ed7123e25cf18b41de7b0296cd5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:30:a9:2f:89:26:f0:26:34:42:c2:8f:71:8e: f2:e0:db:01:5b:79:09:a8:b1:f0:39:b5:de:12:f4: c5:56:5f:7a:39:e1:ef:0b:74:41:9d:2b:43:e5:b5: 77:55:c7:0b:80:d4:67:c1:28:6a:bc:e5:b2:1c:29: e4:bf:d3:2b:46:cd:7d:73:28:ab:51:94:33:b7:9d: b5:ae:f3:f0:26:99:9d:d3:49:73:e7:9a:fe:09:f2: a5:42:4f:00:a3:b0:12:42:10:e6:bc:88:6d:8e:a9: 9d:03:a3:d7:70:e8:77:55:98:7b:0f:da:e0:de:ff: e3:72:1e:df:b6:a3:ce:ea:a8:dc:d7:66:f1:5e:ca: 91:fc:bb:9d:7f:ad:36:f2:78:3d:cb:9d:b5:8d:11: 14:ac:d0:78:90:0a:6d:6e:05:b1:42:61:55:1a:03: a0:72:47:50:62:16:f1:7f:80:20:c7:72:23:34:12: fa:3f:43:03:cd:f0:e1:55:fb:63:4b:35:96:0d:40: a2:71:c4:74:57:76:06:a1:9c:a0:da:97:bd:f1:9c: d4:ae:3e:8b:15:4e:01:84:5b:93:51:28:7f:5c:d5: 02:b1:5a:b8:3d:c6:d1:27:f7:f0:54:18:cc:05:f5: fe:9f:d4:ca:c8:fe:6b:5a:91:18:8f:ea:54:df:88: bf:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:1F:5E:49:FC:5A:97:84:F3:AD:F0:18:34:06:4D:23:19:01:44:71 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a0024e00-f937-4b63-91df-d45ce0a6a27d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6010::/44 Signature Algorithm: sha256WithRSAEncryption 58:7d:ec:a9:c2:8a:54:34:e3:ce:63:f7:93:fd:ce:af:96:94: ce:57:e6:ae:d6:69:67:8b:75:38:a1:b8:ac:5a:74:ef:bc:a0: 3d:04:d5:61:06:1b:12:82:44:cc:b6:6f:02:2a:4c:c1:57:eb: 16:51:50:b0:97:9e:81:d4:9c:3c:6b:5b:8b:88:33:da:88:65: ce:05:8e:76:50:0e:97:81:5d:25:63:32:20:c7:b8:be:5b:e6: 70:46:94:73:02:2b:e5:1d:88:95:fb:e6:6c:5c:e5:b3:f9:1e: ed:b9:7d:5c:ea:3e:ab:99:41:06:ca:30:79:0a:05:11:6c:54: a6:6f:ef:95:07:12:d7:cb:ff:0f:e0:6f:94:ca:e8:2c:79:21: 24:6b:9a:64:e1:8b:17:34:40:f2:43:50:1c:c4:17:26:0b:5a: 71:fa:b7:bf:18:4e:05:5f:12:53:cb:4c:88:aa:2c:d4:c7:76: ff:ec:30:21:77:91:65:da:0c:63:b6:1c:6b:62:bc:b2:6f:9f: b4:6f:a0:8c:29:0f:45:82:4a:8d:8f:61:a9:62:ab:4e:46:94: 89:ae:41:c4:0f:2d:af:20:44:6c:59:dc:80:f7:9c:c5:d3:5c: 65:ca:47:fd:84:f6:c7:23:da:61:1d:b6:16:e9:75:81:56:5e: f9:b7:f1:f3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURZ1LVeV8N0A4bN4cufz6d1nTjyYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDQ1WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMTE4Y2M5NDhkNzI2ZjZmY2QxYTdhNTZlZmVhYzhjYTY3 NWI5ZWQ3MTIzZTI1Y2YxOGI0MWRlN2IwMjk2Y2Q1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHMKkviSbwJjRCwo9xjvLg2wFbeQmosfA5td4S9MVWX3o5 4e8LdEGdK0PltXdVxwuA1GfBKGq85bIcKeS/0ytGzX1zKKtRlDO3nbWu8/AmmZ3T SXPnmv4J8qVCTwCjsBJCEOa8iG2OqZ0Do9dw6HdVmHsP2uDe/+NyHt+2o87qqNzX ZvFeypH8u51/rTbyeD3LnbWNERSs0HiQCm1uBbFCYVUaA6ByR1BiFvF/gCDHciM0 Evo/QwPN8OFV+2NLNZYNQKJxxHRXdgahnKDal73xnNSuPosVTgGEW5NRKH9c1QKx Wrg9xtEn9/BUGMwF9f6f1MrI/mtakRiP6lTfiL99AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8R9eSfxal4TzrfAYNAZNIxkBRHEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2EwMDI0ZTAwLWY5MzctNGI2My05MWRmLWQ0NWNlMGE2YTI3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwYBAwDQYJKoZIhvcNAQELBQADggEBAFh97KnCilQ0485j95P9zq+W lM5X5q7WaWeLdTihuKxadO+8oD0E1WEGGxKCRMy2bwIqTMFX6xZRULCXnoHUnDxr W4uIM9qIZc4FjnZQDpeBXSVjMiDHuL5b5nBGlHMCK+UdiJX75mxc5bP5Hu25fVzq PquZQQbKMHkKBRFsVKZv75UHEtfL/w/gb5TK6Cx5ISRrmmThixc0QPJDUBzEFyYL WnH6t78YTgVfElPLTIiqLNTHdv/sMCF3kWXaDGO2HGtivLJvn7RvoIwpD0WCSo2P Yaliq05GlImuQcQPLa8gRGxZ3ID3nMXTXGXKR/2E9scj2mEdthbpdYFWXvm38fM= -----END CERTIFICATE-----Generated at Wed Nov 5 05:42:17 2025 by rpki-client