$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a243183f-74f0-4016-b61d-47b029a3c4e1.roa File: a243183f-74f0-4016-b61d-47b029a3c4e1.roa (raw, json) Hash identifier: 6C9tFNcEZbksI7r6ZvxpbL320wdj4bBBvwpKOqVGMjU= Subject key identifier: 32:57:D2:3C:F7:27:2D:27:2A:51:36:FB:C2:5D:9F:E5:2A:B1:8F:2B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 65AC05773D659BE0A047D64C67EF710026E5BD26 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a243183f-74f0-4016-b61d-47b029a3c4e1.roa Signing time: Tue 21 Oct 2025 13:10:07 +0000 ROA not before: Tue 21 Oct 2025 13:10:07 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e100::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:ac:05:77:3d:65:9b:e0:a0:47:d6:4c:67:ef:71:00:26:e5:bd:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:10:07 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=c65d392f426c0bf6df0132e21184063bff8d8ded551259bb000257e68a66c8f8, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8d:ce:58:b6:60:ab:3d:57:77:7f:d5:ca:a7: 8c:cc:a6:73:83:ff:d1:67:0a:33:a6:a9:04:e9:f3: 80:e6:3f:e7:e6:58:b7:20:db:6e:c7:0c:e1:30:67: 23:69:54:4d:df:47:03:b6:1c:81:dd:ba:96:39:ba: 7a:a5:59:df:61:b7:9e:f3:a3:ad:28:67:e5:8d:5d: 3b:cb:23:d5:70:ad:89:8a:9b:80:37:11:c9:c3:31: 6e:e4:e7:fc:82:9c:9c:4a:2e:f9:6f:ea:71:7b:7e: a0:41:cd:00:3a:07:cd:54:5c:fd:62:51:21:ea:1c: 85:5e:7a:48:ed:66:93:ae:a8:50:3c:a6:68:5f:f7: f8:e6:9f:b9:eb:b3:3c:3b:65:2a:1c:03:c3:d7:ca: 72:b7:76:c1:fe:1e:07:9d:6f:52:11:a0:3e:1d:5f: 8f:76:4b:c5:01:6d:07:b8:92:ca:9b:b9:6a:bd:4f: bf:b6:d8:76:95:d9:93:f5:95:51:85:f0:87:0e:67: c1:75:29:1d:25:35:61:3a:e1:1d:b5:1b:b6:d0:d1: b5:b6:9d:75:65:f0:31:ab:9d:6c:1c:32:89:58:a8: 8c:db:ff:d1:c3:f5:dc:9c:ed:68:f5:c1:30:0c:96: 0d:5b:13:9d:b7:8e:ff:28:14:9a:a6:de:0d:e6:c5: f5:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:57:D2:3C:F7:27:2D:27:2A:51:36:FB:C2:5D:9F:E5:2A:B1:8F:2B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a243183f-74f0-4016-b61d-47b029a3c4e1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e100::/42 Signature Algorithm: sha256WithRSAEncryption 9e:07:a7:af:c5:90:2a:38:78:30:69:b3:93:12:3f:3e:cd:c3: 03:eb:6c:bc:c5:cd:53:66:2a:7c:92:12:33:9e:68:1f:22:12: 07:d9:4d:d0:6c:ea:56:76:4f:dc:6b:b8:91:50:d4:95:f5:e8: cc:b4:ff:b1:e0:98:ab:77:19:d2:f3:f6:3c:ab:98:1c:cc:f7: 54:de:ff:40:a7:6a:19:97:59:26:b5:fc:8b:36:c0:06:8b:55: 31:2f:83:90:5f:ae:11:46:d6:59:88:2e:4d:54:82:a7:35:ed: 44:49:82:a5:60:bc:8c:cd:13:1e:f6:fe:59:ba:6d:c2:7b:d5: 2c:27:ec:bd:3d:71:ad:04:8a:d3:ab:18:62:fb:f8:24:c3:18: 1e:72:96:2b:05:48:f8:10:3c:49:e6:3f:40:19:d7:76:0e:1a: c2:40:ef:35:7f:77:28:03:4a:6f:55:65:45:90:7d:51:76:d2: b4:ba:ac:91:9c:00:74:28:11:bd:a9:fd:92:70:75:ac:c0:5d: 1a:9b:5d:db:06:5a:db:56:63:35:2a:41:93:7d:d9:b5:23:bd: 5f:37:d3:a2:1b:26:8a:f8:c8:aa:ac:1e:cf:98:09:74:a7:f6: 4d:58:c6:70:9c:1f:96:7c:c9:c3:d9:9a:e6:8a:84:a8:fc:f8: 0c:57:87:21 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZawFdz1lm+CgR9ZMZ+9xACblvSYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMxMDA3WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNjVkMzkyZjQyNmMwYmY2ZGYwMTMyZTIxMTg0MDYzYmZm OGQ4ZGVkNTUxMjU5YmIwMDAyNTdlNjhhNjZjOGY4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTjc5YtmCrPVd3f9XKp4zMpnOD/9FnCjOmqQTp84DmP+fm WLcg227HDOEwZyNpVE3fRwO2HIHdupY5unqlWd9ht57zo60oZ+WNXTvLI9VwrYmK m4A3EcnDMW7k5/yCnJxKLvlv6nF7fqBBzQA6B81UXP1iUSHqHIVeekjtZpOuqFA8 pmhf9/jmn7nrszw7ZSocA8PXynK3dsH+Hgedb1IRoD4dX492S8UBbQe4ksqbuWq9 T7+22HaV2ZP1lVGF8IcOZ8F1KR0lNWE64R21G7bQ0bW2nXVl8DGrnWwcMolYqIzb /9HD9dyc7Wj1wTAMlg1bE523jv8oFJqm3g3mxfXnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUMlfSPPcnLScqUTb7wl2f5SqxjyswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2EyNDMxODNmLTc0ZjAtNDAxNi1iNjFkLTQ3YjAyOWEzYzRlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD74QAwDQYJKoZIhvcNAQELBQADggEBAJ4Hp6/FkCo4eDBps5MSPz7N wwPrbLzFzVNmKnySEjOeaB8iEgfZTdBs6lZ2T9xruJFQ1JX16My0/7HgmKt3GdLz 9jyrmBzM91Te/0CnahmXWSa1/Is2wAaLVTEvg5BfrhFG1lmILk1Ugqc17URJgqVg vIzNEx72/lm6bcJ71Swn7L09ca0EitOrGGL7+CTDGB5ylisFSPgQPEnmP0AZ13YO GsJA7zV/dygDSm9VZUWQfVF20rS6rJGcAHQoEb2p/ZJwdazAXRqbXdsGWttWYzUq QZN92bUjvV8306IbJor4yKqsHs+YCXSn9k1YxnCcH5Z8ycPZmuaKhKj8+AxXhyE= -----END CERTIFICATE-----Generated at Wed Nov 5 05:49:01 2025 by rpki-client