$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a48ca006-b4f2-49da-b519-80bf4857d7e9.roa File: a48ca006-b4f2-49da-b519-80bf4857d7e9.roa (raw, json) Hash identifier: 4zGYeD7T3A5ab2JDd5ZMq/hyyu2mOs6lRgbB10RNaL4= Subject key identifier: 2F:0B:E7:EA:5A:D1:FE:83:D5:66:0E:E8:4E:67:9A:6F:D5:58:EA:60 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0CE4BD1BA3AEC505315868D38CA6DADE82AB6A68 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a48ca006-b4f2-49da-b519-80bf4857d7e9.roa Signing time: Sat 25 Oct 2025 00:10:07 +0000 ROA not before: Sat 25 Oct 2025 00:10:07 +0000 ROA not after: Sat 29 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f2:7140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:e4:bd:1b:a3:ae:c5:05:31:58:68:d3:8c:a6:da:de:82:ab:6a:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 25 00:10:07 2025 GMT Not After : Nov 29 23:59:59 2025 GMT Subject: serialNumber=3b50bfece4ff0f57c4724e592e8caf2e82ae5bbd63f3cef2add17b464666b2ab, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:43:08:1b:29:2f:63:7f:0a:ed:bd:8e:25:58: 19:2b:76:7f:e8:c4:06:13:31:79:77:8e:a2:8a:ef: e3:e1:96:02:57:3a:90:f0:e0:6c:6f:7b:d9:f2:41: 4c:37:9e:da:c5:53:71:90:ca:3a:d3:ce:ed:1e:32: 7f:e2:62:c3:11:47:0b:ae:37:2f:75:02:3a:2b:cb: ac:e7:25:87:44:88:b2:aa:2a:ec:17:da:2c:9b:5a: 6e:4e:44:ef:a1:bd:72:c3:51:10:45:db:04:85:9b: 2a:69:af:8c:fb:d7:06:c3:06:f4:33:28:89:86:a2: 97:1a:5a:a7:00:17:62:40:03:8c:5d:92:f3:fb:d8: c1:14:f7:89:72:d2:d7:e7:e5:e0:21:b9:80:03:6b: 7d:26:af:72:4b:b1:d5:bb:63:16:e8:65:b7:5f:be: 2e:25:a2:5f:b7:c1:e9:ee:a3:5d:f3:84:cf:31:07: d4:9a:9c:b7:2e:8a:bd:33:b4:39:79:d3:d0:e4:74: 0d:7a:3c:07:d9:92:c4:d6:f4:b3:de:36:12:c8:4f: f2:1c:ae:6e:73:e8:9c:c7:1b:4d:5d:7e:30:78:53: 2a:be:7e:85:66:9e:46:42:d8:d3:09:eb:65:db:3e: 84:59:8d:76:66:10:86:97:f5:51:5b:a7:e0:c7:35: 3b:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:0B:E7:EA:5A:D1:FE:83:D5:66:0E:E8:4E:67:9A:6F:D5:58:EA:60 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a48ca006-b4f2-49da-b519-80bf4857d7e9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7140::/48 Signature Algorithm: sha256WithRSAEncryption 4c:91:36:57:b5:de:97:0b:f4:36:27:7d:40:05:80:37:65:b5: bd:27:6f:b9:9f:80:83:2d:e8:21:c2:64:61:9f:eb:1a:cf:33: b4:2a:9a:08:9d:cf:a0:f2:59:dc:b3:21:08:e5:94:9f:8e:27: e4:6a:65:3d:c8:7f:aa:d0:d5:ad:77:43:15:c3:67:d8:24:e8: 86:d8:ff:33:43:2a:90:93:ba:45:cf:2f:11:b6:33:4d:96:38: 42:02:94:a9:d1:84:85:e4:64:e2:cd:f4:5f:eb:9c:06:47:ab: c2:89:98:d9:97:2f:47:c4:8c:1b:3e:8a:8f:3a:b9:c5:f1:aa: 10:26:ab:1f:a2:7d:1f:6a:3e:f1:36:92:75:db:a3:b5:6d:2b: 0e:2f:4d:f0:14:d9:fa:18:ae:d0:b4:98:42:6f:24:30:ea:92: 81:27:72:16:11:a9:46:c8:23:6c:6f:8b:95:98:7e:3a:3e:fe: bf:34:68:08:dd:2c:73:5a:4e:2f:5b:65:0d:c4:43:23:da:ce: fb:e8:56:82:41:39:d8:bd:93:85:7c:43:af:2b:34:ff:78:c8: d0:fc:66:00:24:ca:14:95:d1:eb:52:1a:cf:0f:9d:97:b9:90: f0:8a:e4:cd:8c:e8:14:2e:3e:56:41:69:95:bc:5e:1e:52:71: 77:c0:3c:59 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDOS9G6OuxQUxWGjTjKba3oKramgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDI1MDAxMDA3WhcNMjUxMTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYjUwYmZlY2U0ZmYwZjU3YzQ3MjRlNTkyZThjYWYyZTgy YWU1YmJkNjNmM2NlZjJhZGQxN2I0NjQ2NjZiMmFiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrQwgbKS9jfwrtvY4lWBkrdn/oxAYTMXl3jqKK7+PhlgJX OpDw4Gxve9nyQUw3ntrFU3GQyjrTzu0eMn/iYsMRRwuuNy91Ajory6znJYdEiLKq KuwX2iybWm5ORO+hvXLDURBF2wSFmyppr4z71wbDBvQzKImGopcaWqcAF2JAA4xd kvP72MEU94ly0tfn5eAhuYADa30mr3JLsdW7YxboZbdfvi4lol+3wenuo13zhM8x B9SanLcuir0ztDl509DkdA16PAfZksTW9LPeNhLIT/Icrm5z6JzHG01dfjB4Uyq+ foVmnkZC2NMJ62XbPoRZjXZmEIaX9VFbp+DHNTtZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQULwvn6lrR/oPVZg7oTmeab9VY6mAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E0OGNhMDA2LWI0ZjItNDlkYS1iNTE5LTgwYmY0ODU3ZDdlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDycUAwDQYJKoZIhvcNAQELBQADggEBAEyRNle13pcL9DYnfUAFgDdl tb0nb7mfgIMt6CHCZGGf6xrPM7Qqmgidz6DyWdyzIQjllJ+OJ+RqZT3If6rQ1a13 QxXDZ9gk6IbY/zNDKpCTukXPLxG2M02WOEIClKnRhIXkZOLN9F/rnAZHq8KJmNmX L0fEjBs+io86ucXxqhAmqx+ifR9qPvE2knXbo7VtKw4vTfAU2foYrtC0mEJvJDDq koEnchYRqUbII2xvi5WYfjo+/r80aAjdLHNaTi9bZQ3EQyPazvvoVoJBOdi9k4V8 Q68rNP94yND8ZgAkyhSV0etSGs8PnZe5kPCK5M2M6BQuPlZBaZW8Xh5ScXfAPFk= -----END CERTIFICATE-----Generated at Wed Nov 5 07:49:48 2025 by rpki-client