$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a6c96c42-4344-44c8-a194-4c87f0ade3c9.roa File: a6c96c42-4344-44c8-a194-4c87f0ade3c9.roa (raw, json) Hash identifier: khxgNvdBw/Q8iW0brmNrRuSIYmdHJCwbhLQwNYVbCuw= Subject key identifier: 78:2D:52:F3:95:53:C5:40:53:19:07:FE:76:DF:61:5F:EA:58:82:8E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 25F7B587D19540049D10FD8AAC64A5D21D959409 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a6c96c42-4344-44c8-a194-4c87f0ade3c9.roa Signing time: Tue 21 Oct 2025 13:00:29 +0000 ROA not before: Tue 21 Oct 2025 13:00:29 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:eb00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:f7:b5:87:d1:95:40:04:9d:10:fd:8a:ac:64:a5:d2:1d:95:94:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:00:29 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=b127f976f87a44e4fb68ba36a85608b6b548715edff931d0507f7787d96b5bf2, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:a2:b4:4b:ae:d2:4c:64:f9:5f:82:7f:5d:aa: 6a:c3:f9:b8:4e:7c:13:b9:53:5f:0e:00:de:c7:ab: 2c:5c:e5:27:27:e8:cb:b1:48:6a:6f:7b:37:26:80: 83:11:87:fa:99:51:45:eb:67:31:89:70:04:02:41: 4e:bb:df:b4:10:70:9b:bd:b6:25:91:fd:01:8d:57: 29:68:71:a0:da:2a:f5:89:a8:bf:a1:11:54:22:12: 1a:ed:56:c1:51:68:10:40:da:b7:ef:79:0b:21:96: 1d:66:c8:b8:7c:de:ee:81:06:ba:a1:a7:ed:3b:86: b8:4a:e0:ae:3a:75:e2:56:df:88:c4:67:a2:cd:c9: 27:9d:d0:17:67:23:d3:67:a7:00:71:30:03:14:a1: 58:70:d2:5d:b8:2c:38:bb:44:54:be:61:e1:2a:c3: a4:4c:a2:0d:ee:9b:dd:71:77:ec:06:49:0a:08:d7: 3d:a3:24:40:db:78:7a:23:6f:c0:50:6f:a6:46:cb: 6e:06:e3:91:09:29:30:6e:92:4e:e8:11:4d:57:c9: e8:08:20:0a:dd:5b:94:38:fc:b0:6b:81:d9:3c:31: 1a:6f:72:5a:c8:98:4a:7f:3c:45:59:33:a3:51:0c: 82:f2:1d:88:86:41:d9:60:e8:03:c3:66:d5:7e:56: 5b:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:2D:52:F3:95:53:C5:40:53:19:07:FE:76:DF:61:5F:EA:58:82:8E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a6c96c42-4344-44c8-a194-4c87f0ade3c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:eb00::/42 Signature Algorithm: sha256WithRSAEncryption 63:50:a9:78:77:4b:ca:d3:b3:94:d8:0d:8f:00:ae:48:eb:ba: ea:e1:ae:67:76:c8:57:eb:1f:52:14:57:8b:a8:8d:d1:3c:f1: 3d:fe:70:db:e2:f4:d1:08:62:51:ec:40:dd:a6:76:b7:98:70: a1:6f:68:46:48:6b:81:eb:37:62:6f:96:d4:45:16:76:9c:53: e4:6f:65:0b:19:84:12:4d:54:2e:5b:b1:fa:1b:c9:40:e9:fd: 04:f5:f2:55:92:0a:73:56:16:7b:28:dd:66:d2:58:00:a9:c4: 02:a0:34:e8:fd:0e:59:d9:79:ca:8e:11:8b:ee:78:a4:4d:19: 5e:90:86:16:ec:a8:69:14:03:73:eb:07:73:28:c4:48:bf:97: ff:66:b3:56:7e:8c:65:65:b0:27:51:7b:d9:2c:4b:06:32:77: 3d:5d:61:ca:98:97:cf:84:7e:ba:b6:04:9f:fc:2e:db:60:f6: 89:3a:ed:91:2a:d7:80:9b:55:55:af:4f:d3:4d:ff:c8:dc:da: 2f:23:43:cb:d1:97:b7:46:f9:6f:74:a4:d3:b3:e4:46:ad:66: 71:36:d1:a2:ed:c9:6c:dc:b4:b6:d0:05:2e:69:f9:6f:a2:b3: b2:61:d7:eb:d9:a0:27:32:ea:04:df:ba:70:bd:c5:3b:6f:cc: b3:d8:9f:35 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJfe1h9GVQASdEP2KrGSl0h2VlAkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMwMDI5WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTI3Zjk3NmY4N2E0NGU0ZmI2OGJhMzZhODU2MDhiNmI1 NDg3MTVlZGZmOTMxZDA1MDdmNzc4N2Q5NmI1YmYyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDoorRLrtJMZPlfgn9dqmrD+bhOfBO5U18OAN7Hqyxc5Scn 6MuxSGpvezcmgIMRh/qZUUXrZzGJcAQCQU6737QQcJu9tiWR/QGNVylocaDaKvWJ qL+hEVQiEhrtVsFRaBBA2rfveQshlh1myLh83u6BBrqhp+07hrhK4K46deJW34jE Z6LNySed0BdnI9NnpwBxMAMUoVhw0l24LDi7RFS+YeEqw6RMog3um91xd+wGSQoI 1z2jJEDbeHojb8BQb6ZGy24G45EJKTBukk7oEU1XyegIIArdW5Q4/LBrgdk8MRpv clrImEp/PEVZM6NRDILyHYiGQdlg6APDZtV+VltXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUeC1S85VTxUBTGQf+dt9hX+pYgo4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E2Yzk2YzQyLTQzNDQtNDRjOC1hMTk0LTRjODdmMGFkZTNjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76wAwDQYJKoZIhvcNAQELBQADggEBAGNQqXh3S8rTs5TYDY8Arkjr uurhrmd2yFfrH1IUV4uojdE88T3+cNvi9NEIYlHsQN2mdreYcKFvaEZIa4HrN2Jv ltRFFnacU+RvZQsZhBJNVC5bsfobyUDp/QT18lWSCnNWFnso3WbSWACpxAKgNOj9 DlnZecqOEYvueKRNGV6QhhbsqGkUA3PrB3MoxEi/l/9ms1Z+jGVlsCdRe9ksSwYy dz1dYcqYl8+Efrq2BJ/8Lttg9ok67ZEq14CbVVWvT9NN/8jc2i8jQ8vRl7dG+W90 pNOz5EatZnE20aLtyWzctLbQBS5p+W+is7Jh1+vZoCcy6gTfunC9xTtvzLPYnzU= -----END CERTIFICATE-----Generated at Wed Nov 5 07:50:16 2025 by rpki-client