$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a312ea2d-65f8-4e4e-8771-5e0f7a99cd4b.roa File: a312ea2d-65f8-4e4e-8771-5e0f7a99cd4b.roa (raw, json) Hash identifier: 0lRCTAz4dQGN//Pa1+Upf89ydJ51MFOJc6kvESmmbOk= Subject key identifier: AD:CE:91:F5:A4:DB:B6:DB:99:1C:84:37:FE:AA:2A:97:B9:D4:19:D5 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 62127E91B8918D27FB5211E689692016DD70895D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a312ea2d-65f8-4e4e-8771-5e0f7a99cd4b.roa Signing time: Fri 31 Oct 2025 01:50:44 +0000 ROA not before: Fri 31 Oct 2025 01:50:44 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6116::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:12:7e:91:b8:91:8d:27:fb:52:11:e6:89:69:20:16:dd:70:89:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 31 01:50:44 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=1e11e70841a121f2ff114f8d1c1985a4fb36f58f84a9e19c5375b37c1292d2dc, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:03:5b:c6:00:de:78:4a:72:c2:5a:ab:bb:df: 6f:64:1c:50:79:10:6e:53:20:ed:7f:7c:47:0b:3a: 7e:1d:f1:b9:9e:38:99:ab:14:19:28:56:a5:33:52: e3:6a:85:4c:fb:51:77:92:48:a8:99:48:08:e3:42: 7a:c9:9b:3d:a5:21:46:e8:20:45:9c:58:b5:33:fe: 2c:74:07:cc:df:95:70:8a:e5:1e:ce:94:78:aa:93: e5:90:ed:47:60:e6:8c:0d:28:ee:c8:6f:84:70:ba: 89:5f:b0:2c:89:78:58:9c:73:f1:e1:22:68:7b:b7: be:bf:d7:8f:16:73:be:bc:18:86:9b:f7:7d:23:94: bf:b8:08:14:c6:f6:3b:c4:6f:e4:2c:3e:57:a1:60: ba:1b:14:2f:41:d9:53:d2:52:94:f5:ae:b4:de:a7: 6e:5c:21:b9:d0:4a:b1:34:28:2f:1e:15:ff:ac:1f: 91:bf:4d:6a:8d:12:ed:04:a4:f0:28:9b:8b:21:37: 3e:ac:1d:76:df:72:5a:32:ef:67:a4:da:12:23:4c: e7:46:a4:5c:9d:14:f2:9d:48:91:c3:65:27:54:40: 63:dd:60:d6:25:11:df:f8:36:4c:c1:70:23:93:c4: ef:a9:f0:6d:a9:66:ae:b4:9e:61:84:68:6b:ff:5d: 19:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:CE:91:F5:A4:DB:B6:DB:99:1C:84:37:FE:AA:2A:97:B9:D4:19:D5 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a312ea2d-65f8-4e4e-8771-5e0f7a99cd4b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6116::/48 Signature Algorithm: sha256WithRSAEncryption a4:e8:70:5e:93:e6:77:fd:92:53:ba:17:81:9b:b5:d2:e6:a4: 3c:23:d6:49:1a:26:a0:2e:ed:29:23:4c:ca:ca:02:82:39:bc: d1:b8:b1:59:2b:43:41:24:d6:41:e7:89:c9:7b:c5:52:08:6e: 39:e2:ff:e5:8b:61:72:65:29:57:6f:12:13:08:c4:9b:b9:44: 4b:b8:55:4b:f9:20:e5:6f:2a:08:f9:52:c0:1d:f6:6a:93:83: c5:2a:e1:96:ae:69:55:5f:9f:91:56:22:7a:07:7e:26:ff:32: d8:0e:fd:e9:98:6f:92:29:f7:3e:59:b9:a9:3b:aa:5e:d8:9d: 8b:11:06:ff:20:8b:a8:ad:71:50:73:45:8b:85:e5:c8:3d:2f: 72:73:6b:98:fa:b8:c0:c6:9c:80:d3:fe:f4:7c:2b:3e:7f:90: b7:6c:aa:f3:6f:82:d8:5b:dd:93:ff:d8:90:2d:bd:ef:10:4c: b8:40:ce:69:80:3f:b0:ec:ba:f4:56:6a:67:cb:6e:56:01:57: 4f:8f:07:5f:67:75:5b:7a:42:36:db:d7:ad:25:0f:07:72:50: f5:88:50:cf:44:d6:80:1e:6b:35:08:4e:e6:c3:af:88:24:4c: b8:69:17:e7:8a:ff:a4:a9:4f:b3:c0:c1:32:44:e6:e2:59:2a: 1d:30:5b:10 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYhJ+kbiRjSf7UhHmiWkgFt1wiV0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDMxMDE1MDQ0WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZTExZTcwODQxYTEyMWYyZmYxMTRmOGQxYzE5ODVhNGZi MzZmNThmODRhOWUxOWM1Mzc1YjM3YzEyOTJkMmRjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmA1vGAN54SnLCWqu7329kHFB5EG5TIO1/fEcLOn4d8bme OJmrFBkoVqUzUuNqhUz7UXeSSKiZSAjjQnrJmz2lIUboIEWcWLUz/ix0B8zflXCK 5R7OlHiqk+WQ7Udg5owNKO7Ib4RwuolfsCyJeFicc/HhImh7t76/148Wc768GIab 930jlL+4CBTG9jvEb+QsPlehYLobFC9B2VPSUpT1rrTep25cIbnQSrE0KC8eFf+s H5G/TWqNEu0EpPAom4shNz6sHXbfcloy72ek2hIjTOdGpFydFPKdSJHDZSdUQGPd YNYlEd/4NkzBcCOTxO+p8G2pZq60nmGEaGv/XRkbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUrc6R9aTbttuZHIQ3/qoql7nUGdUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2EzMTJlYTJkLTY1ZjgtNGU0ZS04NzcxLTVlMGY3YTk5Y2Q0Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRYwDQYJKoZIhvcNAQELBQADggEBAKTocF6T5nf9klO6F4GbtdLm pDwj1kkaJqAu7SkjTMrKAoI5vNG4sVkrQ0Ek1kHnicl7xVIIbjni/+WLYXJlKVdv EhMIxJu5REu4VUv5IOVvKgj5UsAd9mqTg8Uq4ZauaVVfn5FWInoHfib/MtgO/emY b5Ip9z5Zuak7ql7YnYsRBv8gi6itcVBzRYuF5cg9L3Jza5j6uMDGnIDT/vR8Kz5/ kLdsqvNvgthb3ZP/2JAtve8QTLhAzmmAP7DsuvRWamfLblYBV0+PB19ndVt6Qjbb 160lDwdyUPWIUM9E1oAeazUITubDr4gkTLhpF+eK/6SpT7PAwTJE5uJZKh0wWxA= -----END CERTIFICATE-----Generated at Wed Nov 5 09:34:52 2025 by rpki-client