$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1083a01-360a-4b23-a3a3-630df82536fc.roa File: a1083a01-360a-4b23-a3a3-630df82536fc.roa (raw, json) Hash identifier: GfVgoFxafrO9QtFX7ByDjMeCt6MdIM2AIqYmYNTTmm0= Subject key identifier: 19:10:56:DF:35:DF:47:10:45:CC:D0:B9:3B:42:D5:80:A1:37:9F:D9 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1CE7912C215E160285A91B1AAB69938A2EECDA4F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1083a01-360a-4b23-a3a3-630df82536fc.roa Signing time: Tue 21 Oct 2025 12:50:09 +0000 ROA not before: Tue 21 Oct 2025 12:50:09 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:e7:91:2c:21:5e:16:02:85:a9:1b:1a:ab:69:93:8a:2e:ec:da:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:09 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=6d204006bfcdc7d4c9820f88b7123b4221217a2403a1c1bb3b687df27ce7995a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:21:d4:83:b6:61:6b:3a:87:e6:fd:25:23:04: c3:a8:15:60:24:b1:e9:f7:3e:f7:59:88:6f:db:71: c8:fe:b1:97:15:3b:b3:0c:37:82:24:2e:49:33:f7: 17:57:3a:84:7c:3f:19:d0:04:f6:18:32:f7:b0:fc: 35:d5:7e:ef:be:ba:14:d7:87:43:08:c5:74:81:18: 15:85:ca:91:68:15:9d:9e:ad:c4:32:e6:af:8d:82: ea:9e:c8:ea:d0:b4:99:77:01:b9:a7:6d:b9:7d:15: 42:9d:3c:67:a0:52:fd:47:f1:bc:c1:08:90:97:f5: d0:73:44:6b:ae:bf:1d:b8:78:9e:98:08:75:a5:cf: 62:e3:40:1b:de:30:cb:8d:ed:f3:8f:3a:a9:5d:02: f9:5d:12:f9:6c:a6:db:3d:de:a2:a5:7e:45:07:44: 0d:f0:55:c5:b9:11:4c:b1:56:ba:eb:f3:e9:92:9f: 74:c7:c0:fc:53:bd:e4:9b:af:62:f6:12:f7:41:a6: 19:76:f9:7e:d7:f9:77:df:b3:ed:2c:7a:0d:c8:8f: 15:9c:1b:f0:dd:99:98:e1:85:60:d2:b8:cb:5e:a8: da:b5:b2:57:9d:a7:0a:d0:f6:50:8c:d0:ee:6b:be: 78:3c:96:3a:af:15:e4:e4:d4:a8:c4:c9:c7:4c:1b: 56:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:10:56:DF:35:DF:47:10:45:CC:D0:B9:3B:42:D5:80:A1:37:9F:D9 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1083a01-360a-4b23-a3a3-630df82536fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:80::/48 Signature Algorithm: sha256WithRSAEncryption 85:a3:76:de:25:45:27:f4:31:ec:ee:44:df:82:61:9e:58:fb: cb:5f:e5:72:83:f5:31:ac:ad:3c:9a:19:b1:fa:bd:3e:80:1d: 32:f2:a6:51:39:fe:a3:76:07:96:9a:a9:ed:d7:a5:33:7a:12: 06:07:ee:c7:9e:b9:d2:1d:26:ff:cb:bd:70:f4:19:f9:a2:1e: a8:2b:f7:40:36:a2:b7:9d:c3:5b:27:af:73:e5:6c:e7:77:5f: c3:a9:e2:ff:78:4b:e3:c6:74:17:d1:d3:22:c8:e4:cf:4d:a0: 32:42:37:b5:ce:a7:65:f1:9b:68:b9:05:80:42:c1:21:26:c1: c6:15:aa:7a:6b:5e:13:36:c7:4b:b8:0c:d9:5b:91:38:a4:de: cf:53:fd:56:33:b7:78:3a:98:66:2a:c7:af:45:e8:37:8b:95: c4:fa:b2:76:4a:56:93:11:c0:d3:1f:fc:a5:57:4c:8d:40:69: cc:5f:88:c9:15:74:22:0e:7f:82:44:b3:9a:4e:9f:bc:46:ad: ca:0e:43:87:c9:5b:12:d0:33:0b:cd:17:6b:33:d5:86:54:a3: 4e:da:ca:43:f3:0c:fe:a6:9b:46:f9:ca:06:72:53:98:5d:15: fa:32:47:57:55:d8:a5:c1:04:c3:c4:a6:2c:da:0e:7b:11:de: c8:1e:68:7a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHOeRLCFeFgKFqRsaq2mTii7s2k8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDA5WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZDIwNDAwNmJmY2RjN2Q0Yzk4MjBmODhiNzEyM2I0MjIx MjE3YTI0MDNhMWMxYmIzYjY4N2RmMjdjZTc5OTVhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDhIdSDtmFrOofm/SUjBMOoFWAksen3PvdZiG/bccj+sZcV O7MMN4IkLkkz9xdXOoR8PxnQBPYYMvew/DXVfu++uhTXh0MIxXSBGBWFypFoFZ2e rcQy5q+NguqeyOrQtJl3Abmnbbl9FUKdPGegUv1H8bzBCJCX9dBzRGuuvx24eJ6Y CHWlz2LjQBveMMuN7fOPOqldAvldEvlspts93qKlfkUHRA3wVcW5EUyxVrrr8+mS n3THwPxTveSbr2L2EvdBphl2+X7X+Xffs+0seg3IjxWcG/DdmZjhhWDSuMteqNq1 sledpwrQ9lCM0O5rvng8ljqvFeTk1KjEycdMG1ZrAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUGRBW3zXfRxBFzNC5O0LVgKE3n9kwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ExMDgzYTAxLTM2MGEtNGIyMy1hM2EzLTYzMGRmODI1MzZmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAIAwDQYJKoZIhvcNAQELBQADggEBAIWjdt4lRSf0MezuRN+CYZ5Y +8tf5XKD9TGsrTyaGbH6vT6AHTLyplE5/qN2B5aaqe3XpTN6EgYH7seeudIdJv/L vXD0GfmiHqgr90A2oredw1snr3PlbOd3X8Op4v94S+PGdBfR0yLI5M9NoDJCN7XO p2Xxm2i5BYBCwSEmwcYVqnprXhM2x0u4DNlbkTik3s9T/VYzt3g6mGYqx69F6DeL lcT6snZKVpMRwNMf/KVXTI1AacxfiMkVdCIOf4JEs5pOn7xGrcoOQ4fJWxLQMwvN F2sz1YZUo07aykPzDP6mm0b5ygZyU5hdFfoyR1dV2KXBBMPEpizaDnsR3sgeaHo= -----END CERTIFICATE-----Generated at Wed Nov 5 05:44:32 2025 by rpki-client