$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a4c99211-8489-4968-bb5b-fa10b298aaaf.roa File: a4c99211-8489-4968-bb5b-fa10b298aaaf.roa (raw, json) Hash identifier: FmkjuNU4Q9lYYbI8k15kkWulaFyezJfbeT5O4KLe1JM= Subject key identifier: A0:01:89:FC:87:A1:C8:E0:CB:BC:7D:39:38:C0:B8:FC:8F:7C:7F:D9 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0FE88B9238A4E5153FE1AD244BE111722AB0F25B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a4c99211-8489-4968-bb5b-fa10b298aaaf.roa Signing time: Fri 24 Oct 2025 00:20:09 +0000 ROA not before: Fri 24 Oct 2025 00:20:09 +0000 ROA not after: Fri 28 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:e8:8b:92:38:a4:e5:15:3f:e1:ad:24:4b:e1:11:72:2a:b0:f2:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 24 00:20:09 2025 GMT Not After : Nov 28 23:59:59 2025 GMT Subject: serialNumber=ce049c78b8c11f1d84f2172503b3ad2c0f3f7bf817c554edb2976bec269a9b9e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:01:f7:d0:22:e4:25:3c:88:bf:be:7c:37:1a: a2:2c:b3:e7:4d:3c:63:c5:3a:da:8e:c3:3c:03:8f: 86:54:65:87:c5:a7:f0:a2:bc:25:4f:8e:f8:87:ab: 5d:1c:5e:1a:9e:cc:ab:8b:e9:c7:c2:aa:01:f9:e7: 3a:2c:b6:c9:a5:2f:59:c9:d8:41:92:fd:19:19:26: c1:b8:66:7b:71:69:c1:3d:a3:10:b8:bd:d4:e7:94: 1a:99:dc:60:c6:01:83:46:20:e2:3c:0c:d4:0e:04: 68:85:e0:6d:a7:f9:fe:e7:a2:9e:c6:c9:eb:49:00: 85:53:d8:d2:d0:95:a6:0b:b8:b4:f7:33:6d:94:d2: 7d:2f:66:ad:82:4d:9e:51:ae:19:d8:52:e2:e6:9a: 29:88:4b:7a:06:61:30:bc:a5:97:c0:db:e2:e0:6a: 52:9f:fc:21:9a:c5:3a:26:22:aa:35:56:77:f9:1d: c1:ea:d3:15:37:86:26:6b:36:95:6d:20:4d:c3:0a: d3:4e:6b:3b:fb:6d:b7:0c:bc:46:ad:2d:6c:1b:cd: 65:6b:a3:84:b7:31:9d:23:8b:32:9a:b4:43:1b:d9: ac:f9:2b:e9:29:d9:2a:96:5e:d7:bc:ac:59:d6:a3: 4f:a9:18:c8:c9:97:05:fd:6d:da:85:99:d4:30:16: 2d:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:01:89:FC:87:A1:C8:E0:CB:BC:7D:39:38:C0:B8:FC:8F:7C:7F:D9 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a4c99211-8489-4968-bb5b-fa10b298aaaf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f000::/44 Signature Algorithm: sha256WithRSAEncryption 35:78:81:40:4b:44:26:27:1c:56:46:c8:0d:ba:db:35:bf:93: 2f:8e:10:f0:71:0c:0b:40:58:c5:03:79:6b:54:88:ef:4d:37: 6c:b0:83:50:78:90:4a:c1:9a:ca:9d:c8:6f:d2:bf:96:a0:8a: 9e:70:fd:ef:26:78:eb:65:60:2b:93:34:a2:81:71:b0:25:9a: 10:cb:f4:6e:74:17:aa:8a:2b:d6:a3:40:0a:f0:87:d1:c6:9e: a5:f5:78:99:0b:ed:16:cc:5c:52:56:c8:6b:cd:87:0a:03:95: 84:63:dc:da:0b:2b:dd:d7:2b:7a:ec:b5:2f:09:72:6d:49:8c: 50:1f:c2:33:e3:21:88:36:40:03:b9:af:49:9d:17:f9:af:34: 02:ca:18:fc:5c:8a:5d:31:30:57:91:92:0f:f5:87:4e:2e:87: 7b:d7:56:39:69:8c:d5:32:b4:2e:8a:be:30:54:fe:5f:90:ce: 39:8c:85:be:c9:37:0d:70:ee:9d:5f:5e:85:2a:15:f6:db:5d: 08:4a:4d:9a:5b:41:a9:2a:39:e2:18:c7:ff:70:74:c4:6b:b5: 86:8e:58:cc:c2:e1:4c:95:86:42:b7:9a:28:8d:a8:b8:20:63: fa:01:a0:a9:f8:cc:06:ab:d0:ff:0e:12:ae:cc:3f:f9:8c:28: 2b:2c:e6:4c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUD+iLkjik5RU/4a0kS+ERciqw8lswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDI0MDAyMDA5WhcNMjUxMTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZTA0OWM3OGI4YzExZjFkODRmMjE3MjUwM2IzYWQyYzBm M2Y3YmY4MTdjNTU0ZWRiMjk3NmJlYzI2OWE5YjllMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmAffQIuQlPIi/vnw3GqIss+dNPGPFOtqOwzwDj4ZUZYfF p/CivCVPjviHq10cXhqezKuL6cfCqgH55zostsmlL1nJ2EGS/RkZJsG4ZntxacE9 oxC4vdTnlBqZ3GDGAYNGIOI8DNQOBGiF4G2n+f7nop7GyetJAIVT2NLQlaYLuLT3 M22U0n0vZq2CTZ5RrhnYUuLmmimIS3oGYTC8pZfA2+LgalKf/CGaxTomIqo1Vnf5 HcHq0xU3hiZrNpVtIE3DCtNOazv7bbcMvEatLWwbzWVro4S3MZ0jizKatEMb2az5 K+kp2SqWXte8rFnWo0+pGMjJlwX9bdqFmdQwFi0jAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUoAGJ/IehyODLvH05OMC4/I98f9kwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E0Yzk5MjExLTg0ODktNDk2OC1iYjViLWZhMTBiMjk4YWFhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78AAwDQYJKoZIhvcNAQELBQADggEBADV4gUBLRCYnHFZGyA262zW/ ky+OEPBxDAtAWMUDeWtUiO9NN2ywg1B4kErBmsqdyG/Sv5agip5w/e8meOtlYCuT NKKBcbAlmhDL9G50F6qKK9ajQArwh9HGnqX1eJkL7RbMXFJWyGvNhwoDlYRj3NoL K93XK3rstS8Jcm1JjFAfwjPjIYg2QAO5r0mdF/mvNALKGPxcil0xMFeRkg/1h04u h3vXVjlpjNUytC6KvjBU/l+QzjmMhb7JNw1w7p1fXoUqFfbbXQhKTZpbQakqOeIY x/9wdMRrtYaOWMzC4UyVhkK3miiNqLggY/oBoKn4zAar0P8OEq7MP/mMKCss5kw= -----END CERTIFICATE-----Generated at Wed Nov 5 05:47:44 2025 by rpki-client