$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa File: aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa (raw, json) Hash identifier: Gt2V5ThHqKCXZunjUirt7Z+EqX8c/hrdt813bNVi1VQ= Subject key identifier: 97:EE:C8:6C:34:BE:E7:BD:E4:F6:C1:ED:8A:50:8D:D1:42:C2:9E:44 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1D8BC8E67262458C77552C4AC6DA68720B917CF8 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa Signing time: Tue 21 Oct 2025 12:50:11 +0000 ROA not before: Tue 21 Oct 2025 12:50:11 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e200::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:8b:c8:e6:72:62:45:8c:77:55:2c:4a:c6:da:68:72:0b:91:7c:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:11 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=6f4c1c3c7ed74639319889a376c3bdde0ab57aedc20603823be3ae64c6835114, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:2e:50:59:41:61:bf:14:30:e5:30:fb:e0:9c: 14:83:1e:13:c8:a9:3f:fa:59:43:95:93:d7:a0:98: 0f:2a:18:35:f5:b3:d2:ef:49:41:67:e6:49:fe:e4: 74:0e:df:2f:de:2b:98:11:27:38:ce:0d:98:98:d6: d9:ed:e6:67:26:ba:27:41:f4:ef:32:e1:d6:ac:45: 78:c0:8a:58:05:4b:ab:d0:9a:bc:9e:bc:27:b5:23: 83:e2:af:ca:26:0f:c6:2f:1f:eb:21:20:ec:1f:f1: 66:06:66:18:26:6d:15:51:d9:4f:b8:32:fa:a2:ff: 77:1d:1b:49:07:38:56:88:0a:75:cb:54:80:80:2b: f7:57:21:95:96:a8:5c:9b:dc:2a:0b:f2:ba:2e:5f: b8:85:fd:87:e0:92:15:4d:66:a8:c0:11:43:d4:3e: 06:7c:6e:eb:1c:e3:d7:b9:40:67:0a:89:27:55:19: a9:47:9f:fe:4c:cc:da:44:ac:ca:12:ae:d4:43:30: 66:ee:c0:37:85:5a:54:45:17:98:42:ed:56:e9:d2: 65:d8:c4:68:f5:8f:0e:1f:f4:1d:db:5a:6c:39:9e: e2:59:3c:63:c3:b0:2c:0f:e3:92:f3:3e:2c:d8:92: 9d:ae:4f:91:f1:f2:d1:bf:5b:31:30:fe:30:7d:95: 53:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:EE:C8:6C:34:BE:E7:BD:E4:F6:C1:ED:8A:50:8D:D1:42:C2:9E:44 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e200::/42 Signature Algorithm: sha256WithRSAEncryption 6c:5e:9d:82:2e:77:53:26:24:52:c5:00:30:6e:79:a8:e0:5f: 1b:e6:83:b3:7d:c0:bf:b6:b1:c9:ec:c1:7f:cb:5e:2f:89:3b: f7:79:b8:ad:c5:f4:e3:dc:48:32:d1:aa:99:48:58:3c:ad:23: 95:e3:72:78:76:b1:bc:b5:e7:3c:60:ca:2d:48:87:f0:85:03: 79:79:92:8d:32:29:89:a7:8f:c1:aa:b0:46:c4:8a:59:91:df: e9:2c:eb:fc:73:fb:d0:7c:67:23:db:8f:d6:f1:9b:e7:42:98: 2d:da:66:d9:ae:7a:e3:3f:fd:18:08:68:63:36:d3:47:43:61: e8:cf:64:62:20:d2:9e:26:48:94:4a:9b:f7:95:60:6c:77:66: db:22:52:34:49:5d:3e:64:33:b9:56:f1:44:0a:1e:89:ce:ae: 4b:1d:51:62:f2:45:fa:dc:4d:1b:4f:41:b4:6a:ff:9f:19:5f: 7b:d3:c5:e6:d7:11:99:db:36:65:0d:20:5c:eb:51:f1:ab:37: cb:18:da:82:f7:62:18:6c:74:d4:2a:a3:0e:70:ce:cc:3f:f4: 6a:27:cb:5b:7b:24:b1:3a:e6:7c:4c:64:48:de:f0:f2:ce:d1: bc:75:12:39:78:7b:49:36:bd:7f:da:46:4c:19:4d:64:e1:92: 74:1c:97:1e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHYvI5nJiRYx3VSxKxtpocguRfPgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDExWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZjRjMWMzYzdlZDc0NjM5MzE5ODg5YTM3NmMzYmRkZTBh YjU3YWVkYzIwNjAzODIzYmUzYWU2NGM2ODM1MTE0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbLlBZQWG/FDDlMPvgnBSDHhPIqT/6WUOVk9egmA8qGDX1 s9LvSUFn5kn+5HQO3y/eK5gRJzjODZiY1tnt5mcmuidB9O8y4dasRXjAilgFS6vQ mryevCe1I4Pir8omD8YvH+shIOwf8WYGZhgmbRVR2U+4Mvqi/3cdG0kHOFaICnXL VICAK/dXIZWWqFyb3CoL8rouX7iF/YfgkhVNZqjAEUPUPgZ8busc49e5QGcKiSdV GalHn/5MzNpErMoSrtRDMGbuwDeFWlRFF5hC7Vbp0mXYxGj1jw4f9B3bWmw5nuJZ PGPDsCwP45LzPizYkp2uT5Hx8tG/WzEw/jB9lVNzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUl+7IbDS+573k9sHtilCN0ULCnkQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FhZjUxNDAyLWYxYmYtNGU3Yi1iN2MzLTY1ZDkzZGVmNmJkNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD74gAwDQYJKoZIhvcNAQELBQADggEBAGxenYIud1MmJFLFADBueajg Xxvmg7N9wL+2scnswX/LXi+JO/d5uK3F9OPcSDLRqplIWDytI5Xjcnh2sby15zxg yi1Ih/CFA3l5ko0yKYmnj8GqsEbEilmR3+ks6/xz+9B8ZyPbj9bxm+dCmC3aZtmu euM//RgIaGM200dDYejPZGIg0p4mSJRKm/eVYGx3ZtsiUjRJXT5kM7lW8UQKHonO rksdUWLyRfrcTRtPQbRq/58ZX3vTxebXEZnbNmUNIFzrUfGrN8sY2oL3YhhsdNQq ow5wzsw/9Gony1t7JLE65nxMZEje8PLO0bx1Ejl4e0k2vX/aRkwZTWThknQclx4= -----END CERTIFICATE-----Generated at Wed Nov 5 07:49:01 2025 by rpki-client