$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab860450-a818-47f3-a42f-5570594471c3.roa File: ab860450-a818-47f3-a42f-5570594471c3.roa (raw, json) Hash identifier: ONPn8BplEvD12u3Ah5IvNBRU8/P0NXkV86Dvv6G5Iuc= Subject key identifier: 97:8D:63:83:04:D4:1F:5E:D3:3D:34:6C:CC:5F:E3:91:F2:48:FC:4E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3C69C25910081E26992D740573FFFFEB528019ED Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab860450-a818-47f3-a42f-5570594471c3.roa Signing time: Tue 21 Oct 2025 13:00:28 +0000 ROA not before: Tue 21 Oct 2025 13:00:28 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e900::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:69:c2:59:10:08:1e:26:99:2d:74:05:73:ff:ff:eb:52:80:19:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:00:28 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=6ce83348a12f0f2b6ce8a3adff55aa86650a978cacc6443874a69bc908a490ab, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:46:e0:d6:e4:25:43:64:4b:3d:d8:15:3b:56: f8:94:60:a6:11:95:a4:72:21:ec:40:19:f4:49:d5: 28:3b:2f:e2:35:b7:48:1c:0b:e0:1e:71:2e:e9:f8: e7:4d:0f:b8:33:a0:b1:77:7e:88:39:a4:a8:03:ee: 0e:a8:ed:26:fc:1a:05:81:71:3a:eb:d3:d5:fd:92: d3:2d:5e:c8:92:24:70:4c:c7:82:65:5c:3c:8b:5c: 80:8f:55:93:eb:f5:3d:f1:e5:51:58:12:df:28:7a: 56:96:65:1a:76:32:08:40:50:d2:af:b1:bd:a3:2f: 35:35:1a:53:db:82:dd:11:f0:f3:58:0d:c0:1a:f1: ad:98:9b:4c:1e:72:0a:5f:7b:06:a7:e0:0c:43:de: 9b:00:a1:15:b5:15:5b:c7:bc:7c:ad:f6:11:4c:4c: fe:1c:a3:b4:62:a5:5c:f7:56:b4:37:5e:a4:72:14: 44:67:20:48:90:14:84:57:51:d5:18:28:27:23:d8: 20:21:e4:6e:59:2a:39:8f:b7:6d:0c:eb:61:4e:e6: 66:7f:69:6b:2d:2f:87:32:e0:a2:78:e9:f0:b6:ea: 5a:f5:96:70:41:e6:42:ad:2a:9a:79:d4:a7:15:46: 7e:4d:50:c7:03:f2:db:f3:41:14:86:71:8c:1f:95: 31:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:8D:63:83:04:D4:1F:5E:D3:3D:34:6C:CC:5F:E3:91:F2:48:FC:4E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab860450-a818-47f3-a42f-5570594471c3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e900::/42 Signature Algorithm: sha256WithRSAEncryption 6b:bb:8f:9a:19:48:d1:ed:c6:bd:ff:d7:00:4d:73:58:34:20: 0e:46:f9:01:7c:ff:3d:dc:f2:01:0d:fe:cb:0c:12:06:71:b7: 55:3d:b1:4b:41:ae:82:73:cc:28:55:e3:e7:42:24:c6:c5:c3: a5:aa:7d:ea:d1:0c:3b:75:70:3d:d1:7b:f6:c6:62:21:7f:3b: 25:05:15:b8:c6:7a:d3:c7:0c:4a:9e:8c:7d:4a:77:76:f6:05: 1b:ed:65:9a:8a:c5:98:99:1b:d9:60:13:2f:72:55:cf:2d:af: 27:44:e8:35:15:0d:db:7d:4c:8d:f2:62:41:0b:6c:7c:30:5c: 83:2a:99:f4:4b:c2:a7:97:0c:90:05:94:5e:c3:a4:29:a9:ab: 67:b8:bf:cf:0b:76:c1:f1:6c:a8:74:10:81:85:fd:ef:d7:43: 6a:2f:51:c7:20:bb:08:c3:31:51:a7:ad:a5:30:98:23:45:af: 3f:49:85:27:87:46:94:3a:1f:8c:bf:a2:6c:67:8f:2c:76:a2: 17:7a:82:70:f3:18:45:1d:4f:bf:e5:2a:55:a3:61:76:37:29: dc:e0:95:c0:2e:57:c1:68:50:6a:b1:7e:f4:99:ab:94:53:94: bc:6a:25:ab:20:6e:e8:e9:74:59:56:80:aa:d6:44:b0:d6:93: 08:fa:b7:ff -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPGnCWRAIHiaZLXQFc///61KAGe0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMwMDI4WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2Y2U4MzM0OGExMmYwZjJiNmNlOGEzYWRmZjU1YWE4NjY1 MGE5NzhjYWNjNjQ0Mzg3NGE2OWJjOTA4YTQ5MGFiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGRuDW5CVDZEs92BU7VviUYKYRlaRyIexAGfRJ1Sg7L+I1 t0gcC+AecS7p+OdND7gzoLF3fog5pKgD7g6o7Sb8GgWBcTrr09X9ktMtXsiSJHBM x4JlXDyLXICPVZPr9T3x5VFYEt8oelaWZRp2MghAUNKvsb2jLzU1GlPbgt0R8PNY DcAa8a2Ym0wecgpfewan4AxD3psAoRW1FVvHvHyt9hFMTP4co7RipVz3VrQ3XqRy FERnIEiQFIRXUdUYKCcj2CAh5G5ZKjmPt20M62FO5mZ/aWstL4cy4KJ46fC26lr1 lnBB5kKtKpp51KcVRn5NUMcD8tvzQRSGcYwflTHBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUl41jgwTUH17TPTRszF/jkfJI/E4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FiODYwNDUwLWE4MTgtNDdmMy1hNDJmLTU1NzA1OTQ0NzFjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76QAwDQYJKoZIhvcNAQELBQADggEBAGu7j5oZSNHtxr3/1wBNc1g0 IA5G+QF8/z3c8gEN/ssMEgZxt1U9sUtBroJzzChV4+dCJMbFw6WqferRDDt1cD3R e/bGYiF/OyUFFbjGetPHDEqejH1Kd3b2BRvtZZqKxZiZG9lgEy9yVc8trydE6DUV Ddt9TI3yYkELbHwwXIMqmfRLwqeXDJAFlF7DpCmpq2e4v88LdsHxbKh0EIGF/e/X Q2ovUccguwjDMVGnraUwmCNFrz9JhSeHRpQ6H4y/omxnjyx2ohd6gnDzGEUdT7/l KlWjYXY3KdzglcAuV8FoUGqxfvSZq5RTlLxqJasgbujpdFlWgKrWRLDWkwj6t/8= -----END CERTIFICATE-----Generated at Wed Nov 5 05:48:44 2025 by rpki-client