$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a5ad0a6c-878f-42f8-8a48-37426a6ee1ca.roa File: a5ad0a6c-878f-42f8-8a48-37426a6ee1ca.roa (raw, json) Hash identifier: Gm5Rajb1BaU8L2j3msL7feiivbsuY53UnID9F297Lrg= Subject key identifier: 09:FB:55:7C:73:03:8A:4F:C1:E3:8C:5D:02:AA:F5:ED:7E:BA:0A:93 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7CBB9F9668B27B6C1DDBEC722221649B5E6745CC Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a5ad0a6c-878f-42f8-8a48-37426a6ee1ca.roa Signing time: Tue 28 Oct 2025 00:10:06 +0000 ROA not before: Tue 28 Oct 2025 00:10:06 +0000 ROA not after: Tue 02 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6102::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:bb:9f:96:68:b2:7b:6c:1d:db:ec:72:22:21:64:9b:5e:67:45:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 28 00:10:06 2025 GMT Not After : Dec 2 23:59:59 2025 GMT Subject: serialNumber=8db768399e6e4ffbaa59f83564a20ee65a0b5057797f79167c932d890baa6551, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e9:80:37:e9:db:21:5a:92:55:63:49:c3:60: 2d:41:39:0c:39:d6:f0:48:af:3f:10:6b:92:e7:8c: 57:77:71:3d:fe:46:2b:c0:57:da:61:09:b1:31:d9: c9:59:4f:da:a6:45:8a:98:16:8c:7f:19:cf:3b:df: 6f:55:5c:b8:7d:cd:f5:5e:fa:b2:1a:a9:c8:eb:f2: 22:13:5c:bd:30:1c:72:98:31:60:4b:f4:ae:3b:ee: 01:b3:7e:47:04:06:6c:31:a1:79:e5:d8:04:c3:05: 32:12:f2:16:81:c2:f9:05:26:45:0c:76:e7:12:80: d2:a4:21:83:68:5d:0b:99:e6:5a:93:82:24:e6:64: 10:3f:b6:b9:22:ad:ca:16:61:9c:a7:f8:45:6f:4b: a2:ef:a0:e5:f1:25:8c:2a:b4:cb:c4:15:b3:c9:7f: ca:4c:2c:47:ef:05:b3:8b:70:4b:c2:b0:e3:6f:c7: a5:dd:c3:42:6b:4b:4b:fe:86:ea:01:c5:b9:86:34: 82:5b:c9:66:f5:31:1d:46:2e:09:4f:ef:ec:65:11: 46:56:94:26:9b:4a:a0:58:44:6e:fd:42:9a:f2:e6: d3:6e:cb:06:40:bc:2f:3d:7c:8f:d4:1f:55:67:2a: b5:cf:02:01:f8:96:95:f1:f8:77:21:36:5b:c1:4b: 65:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:FB:55:7C:73:03:8A:4F:C1:E3:8C:5D:02:AA:F5:ED:7E:BA:0A:93 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a5ad0a6c-878f-42f8-8a48-37426a6ee1ca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6102::/48 Signature Algorithm: sha256WithRSAEncryption 74:64:52:7a:ad:6b:1b:62:32:8b:62:97:44:b0:1d:99:8c:9a: 68:95:3f:de:e6:fa:ab:53:25:7e:a7:35:12:c8:71:38:ee:41: 02:cc:f1:7a:c6:d5:0b:3d:c5:4b:36:a1:96:a2:75:7b:77:6e: 63:e3:02:81:64:6e:28:13:fa:98:5d:fe:ec:49:da:4b:4b:1f: 67:19:21:42:1d:67:17:2c:84:eb:c8:a5:13:95:b3:6d:22:b0: 54:c0:f3:19:97:bb:22:84:cd:6f:10:b7:d6:2d:77:a5:28:47: d8:ef:e2:c6:75:27:a5:5f:19:8c:ad:9f:73:2f:3b:77:e9:85: ef:0a:08:e0:fa:a8:a6:43:2b:e5:0e:75:de:a9:ec:70:08:bf: 47:b7:15:c5:a3:fd:b7:a3:6d:cb:fb:98:60:eb:82:0a:97:82: 5e:49:e8:67:8f:15:5d:2f:ff:99:ed:81:0f:69:3d:72:d9:b1: 5e:c4:10:d9:40:58:a4:9d:c5:b9:37:45:59:e3:ac:69:2f:b2: b5:b7:f7:f0:bf:37:45:68:bc:17:6c:a8:5b:a1:aa:ff:f0:03: 4f:4a:3b:59:f8:b8:92:8a:f9:53:34:d6:f1:6c:01:1c:80:6e: a4:91:ce:6c:e9:96:9b:ff:f0:56:13:8a:b9:dd:11:a8:d0:10: 58:9d:89:b7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfLuflmiye2wd2+xyIiFkm15nRcwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDI4MDAxMDA2WhcNMjUxMjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZGI3NjgzOTllNmU0ZmZiYWE1OWY4MzU2NGEyMGVlNjVh MGI1MDU3Nzk3Zjc5MTY3YzkzMmQ4OTBiYWE2NTUxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/6YA36dshWpJVY0nDYC1BOQw51vBIrz8Qa5LnjFd3cT3+ RivAV9phCbEx2clZT9qmRYqYFox/Gc87329VXLh9zfVe+rIaqcjr8iITXL0wHHKY MWBL9K477gGzfkcEBmwxoXnl2ATDBTIS8haBwvkFJkUMducSgNKkIYNoXQuZ5lqT giTmZBA/trkircoWYZyn+EVvS6LvoOXxJYwqtMvEFbPJf8pMLEfvBbOLcEvCsONv x6Xdw0JrS0v+huoBxbmGNIJbyWb1MR1GLglP7+xlEUZWlCabSqBYRG79Qpry5tNu ywZAvC89fI/UH1VnKrXPAgH4lpXx+HchNlvBS2XXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUCftVfHMDik/B44xdAqr17X66CpMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E1YWQwYTZjLTg3OGYtNDJmOC04YTQ4LTM3NDI2YTZlZTFjYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQIwDQYJKoZIhvcNAQELBQADggEBAHRkUnqtaxtiMotil0SwHZmM mmiVP97m+qtTJX6nNRLIcTjuQQLM8XrG1Qs9xUs2oZaidXt3bmPjAoFkbigT+phd /uxJ2ktLH2cZIUIdZxcshOvIpROVs20isFTA8xmXuyKEzW8Qt9Ytd6UoR9jv4sZ1 J6VfGYytn3MvO3fphe8KCOD6qKZDK+UOdd6p7HAIv0e3FcWj/bejbcv7mGDrggqX gl5J6GePFV0v/5ntgQ9pPXLZsV7EENlAWKSdxbk3RVnjrGkvsrW39/C/N0VovBds qFuhqv/wA09KO1n4uJKK+VM01vFsARyAbqSRzmzplpv/8FYTirndEajQEFidibc= -----END CERTIFICATE-----Generated at Wed Nov 5 09:27:32 2025 by rpki-client