$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a37af6d7-0b31-4a46-b8d9-08efcf8fef53.roa File: a37af6d7-0b31-4a46-b8d9-08efcf8fef53.roa (raw, json) Hash identifier: add4fqAJpDwQoetzdk2P53N+WeCLqJadGsgnbKzpsU0= Subject key identifier: 28:9C:18:D1:40:A6:1B:C4:39:09:AD:5F:33:22:D0:14:1B:9B:57:6E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3037E62F9CA1433ABD821E4FC13D9DA61F687F9C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a37af6d7-0b31-4a46-b8d9-08efcf8fef53.roa Signing time: Tue 21 Oct 2025 13:00:26 +0000 ROA not before: Tue 21 Oct 2025 13:00:26 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e600::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:37:e6:2f:9c:a1:43:3a:bd:82:1e:4f:c1:3d:9d:a6:1f:68:7f:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:00:26 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=9f2be9be7e8545c9fc73397950c7a9f9506094bd0bb9457fb45c311430898139, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:d0:08:f9:7c:41:66:6e:c2:02:be:d6:d6:14: 07:1a:37:87:1a:3a:95:2f:71:b6:b5:8e:fd:74:30: c7:cb:a2:63:5d:9a:9a:7c:07:22:c2:19:11:c5:b1: 0f:fa:56:8b:5a:97:8a:6c:0d:8f:4f:80:ba:05:30: f3:68:de:50:b3:e3:34:23:a0:ca:4e:97:96:77:3f: 47:c9:cd:5d:4b:ac:07:5e:6b:76:59:2a:6b:8b:30: 4e:16:9f:d3:f4:46:13:b8:a3:17:46:5c:7a:0a:5a: 63:87:a6:d1:ea:fc:b5:3f:a4:6a:7e:0c:d8:39:56: e4:0d:09:34:d1:22:4b:3d:a5:46:2c:5c:0b:91:a0: d5:a0:37:9e:19:78:d3:21:fb:b5:c4:5c:21:d7:55: 7a:ec:b4:e2:23:a7:4d:58:7d:9a:7d:3d:95:7b:dd: 64:9b:8c:a2:30:31:be:3d:bc:7f:7f:27:93:bf:9b: 3d:c1:4e:3d:99:8b:f4:ce:db:18:e4:65:7e:11:30: 7b:2e:46:fe:22:fe:a5:ef:08:4f:fa:1e:45:14:1b: d0:63:f2:10:a1:ba:be:9f:6c:5d:09:7d:5a:7b:9e: 70:1d:52:2a:cd:2a:0c:48:60:6b:85:75:06:95:e9: b2:a0:d4:4d:3d:3b:a5:e1:91:0f:0a:c2:93:66:6a: 0a:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:9C:18:D1:40:A6:1B:C4:39:09:AD:5F:33:22:D0:14:1B:9B:57:6E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a37af6d7-0b31-4a46-b8d9-08efcf8fef53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e600::/42 Signature Algorithm: sha256WithRSAEncryption 8d:a3:29:db:e6:c9:5f:00:e6:a5:c6:e9:84:a3:f7:dd:9f:bf: 86:a4:9d:c9:6c:db:e0:2f:1f:c4:09:52:be:38:21:af:cb:03: a4:76:1d:2f:d7:27:65:52:63:7b:06:c7:29:a3:55:86:d9:56: 78:07:ee:b6:6e:15:14:fb:80:3d:8e:2e:67:e4:e0:c9:ca:5b: ec:ec:7b:cc:55:84:1a:f0:87:aa:92:3b:c9:57:9d:b9:43:2e: 53:e9:d0:d8:fe:c1:a2:97:d7:f5:39:94:2b:00:53:24:87:1b: a1:57:1c:19:20:4b:1f:aa:7b:3d:d7:46:ba:9b:6f:ee:a5:14: fc:a3:2d:14:76:6b:ae:e4:11:50:c4:37:5e:79:b4:2c:fb:40: 78:b4:a3:e0:15:f7:6d:1e:27:d8:de:74:a9:41:59:34:79:be: fb:04:68:d3:a7:a2:d3:e1:df:87:f5:fb:50:10:bd:2e:b7:81: 77:8d:c0:a6:8b:e1:c8:2a:58:45:5b:d1:ba:3e:3c:b8:53:5c: 2b:fb:f9:da:d5:66:96:28:07:e8:ab:69:75:2c:e7:17:34:94: 77:39:75:82:a9:6a:51:23:a4:95:be:7c:7e:a1:2f:88:56:da: 82:a6:bd:69:0e:a9:c6:77:2e:13:26:d4:d4:55:af:e2:6a:b2: 99:c6:36:4c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMDfmL5yhQzq9gh5PwT2dph9of5wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMwMDI2WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZjJiZTliZTdlODU0NWM5ZmM3MzM5Nzk1MGM3YTlmOTUw NjA5NGJkMGJiOTQ1N2ZiNDVjMzExNDMwODk4MTM5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDl0Aj5fEFmbsICvtbWFAcaN4caOpUvcba1jv10MMfLomNd mpp8ByLCGRHFsQ/6Votal4psDY9PgLoFMPNo3lCz4zQjoMpOl5Z3P0fJzV1LrAde a3ZZKmuLME4Wn9P0RhO4oxdGXHoKWmOHptHq/LU/pGp+DNg5VuQNCTTRIks9pUYs XAuRoNWgN54ZeNMh+7XEXCHXVXrstOIjp01YfZp9PZV73WSbjKIwMb49vH9/J5O/ mz3BTj2Zi/TO2xjkZX4RMHsuRv4i/qXvCE/6HkUUG9Bj8hChur6fbF0JfVp7nnAd UirNKgxIYGuFdQaV6bKg1E09O6XhkQ8KwpNmagrjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKJwY0UCmG8Q5Ca1fMyLQFBubV24wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2EzN2FmNmQ3LTBiMzEtNGE0Ni1iOGQ5LTA4ZWZjZjhmZWY1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD75gAwDQYJKoZIhvcNAQELBQADggEBAI2jKdvmyV8A5qXG6YSj992f v4akncls2+AvH8QJUr44Ia/LA6R2HS/XJ2VSY3sGxymjVYbZVngH7rZuFRT7gD2O Lmfk4MnKW+zse8xVhBrwh6qSO8lXnblDLlPp0Nj+waKX1/U5lCsAUySHG6FXHBkg Sx+qez3XRrqbb+6lFPyjLRR2a67kEVDEN155tCz7QHi0o+AV920eJ9jedKlBWTR5 vvsEaNOnotPh34f1+1AQvS63gXeNwKaL4cgqWEVb0bo+PLhTXCv7+drVZpYoB+ir aXUs5xc0lHc5dYKpalEjpJW+fH6hL4hW2oKmvWkOqcZ3LhMm1NRVr+JqspnGNkw= -----END CERTIFICATE-----Generated at Wed Nov 5 07:47:38 2025 by rpki-client