$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af93e150-9469-47eb-8185-3ff03d87db06.roa File: af93e150-9469-47eb-8185-3ff03d87db06.roa (raw, json) Hash identifier: abCDE8nffg6CfY1FYAPQKZ09x45LXQFSH7wAksk6bO4= Subject key identifier: 96:3D:BF:0F:86:BE:7E:A8:41:C6:39:EF:DA:39:C3:2D:FB:45:09:65 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6F0EC90F923AB9BC648DB6F29F244FA89CAD820D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af93e150-9469-47eb-8185-3ff03d87db06.roa Signing time: Fri 24 Oct 2025 00:20:09 +0000 ROA not before: Fri 24 Oct 2025 00:20:09 +0000 ROA not after: Fri 28 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:0e:c9:0f:92:3a:b9:bc:64:8d:b6:f2:9f:24:4f:a8:9c:ad:82:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 24 00:20:09 2025 GMT Not After : Nov 28 23:59:59 2025 GMT Subject: serialNumber=ae1ac96404ce88c91d53a5ba8fb0d9fa2e05c33edb7b966e896c7d1d8d62a7c8, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:dc:0c:c8:ce:35:cd:11:21:2c:ed:5e:b6:2a: f4:dc:b8:ab:f1:a1:22:34:f5:b4:75:e2:53:72:d1: 7c:1d:fe:15:62:cb:72:b9:1c:28:ce:b5:e5:d2:cb: b2:b8:28:7a:d8:d6:1a:b0:60:c9:29:8c:ff:f7:e5: a4:59:da:ce:6b:f3:ac:61:68:e4:11:82:7f:0a:33: 78:49:9b:69:81:1a:4b:79:b0:2a:a5:03:25:59:6e: f3:78:ee:87:51:dd:1f:7b:e9:91:aa:70:6f:50:8e: 47:84:3f:ee:f0:93:c5:67:f4:9c:37:ea:d6:06:4c: b0:53:41:b6:c8:79:b0:f6:18:c1:ad:6b:b2:3f:01: 2d:66:51:7d:f2:8a:0f:32:97:93:46:72:8d:6e:1b: b7:fa:d4:98:6d:93:a4:66:a7:3b:ff:1c:01:7b:6c: cd:c2:b2:9a:25:33:bd:55:b2:9e:24:27:dd:6a:08: 0d:1b:32:c3:0e:78:57:1e:72:fb:1f:e8:1f:a2:3a: 6f:2c:60:d1:da:68:bc:54:23:6e:96:63:9e:18:0e: 91:ce:a7:9b:b3:6e:96:2c:f6:09:d0:a7:17:7a:fb: 4e:a7:2b:3b:20:32:82:bf:44:32:88:82:f1:df:aa: 4e:5b:7d:4b:de:31:22:23:eb:4f:8e:e1:79:de:0a: c4:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:3D:BF:0F:86:BE:7E:A8:41:C6:39:EF:DA:39:C3:2D:FB:45:09:65 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af93e150-9469-47eb-8185-3ff03d87db06.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f000::/44 Signature Algorithm: sha256WithRSAEncryption 0f:d6:e9:78:e1:b4:2e:b9:21:f8:de:b4:21:24:1f:48:4c:a9: 78:10:cb:41:2e:37:73:c4:dd:06:4a:d7:ac:4b:2f:dd:f7:18: 06:39:6c:ba:8f:56:48:4b:11:ea:78:65:1f:5c:e0:10:ae:ee: 4e:17:ac:bf:76:f8:32:11:01:22:15:d5:a9:15:c0:1d:f4:48: d2:65:c1:8a:5d:b0:41:31:f3:29:55:d2:08:ce:f9:0e:7c:fe: 47:f9:b0:64:db:85:0f:a9:72:39:7a:a1:ea:7f:d2:6f:c2:0b: 48:18:fb:7a:4d:40:19:88:c4:25:71:14:f7:54:56:3d:af:2c: c9:1b:4f:6d:33:77:62:b8:e6:a7:00:97:2e:50:97:ca:3b:6e: 8a:1e:2a:55:8a:63:ce:e3:bc:7e:3c:bf:9b:dc:01:df:41:83: cd:60:50:8c:d7:b7:bd:53:a8:3f:68:ce:32:36:05:31:19:25: 79:00:2d:35:bb:74:81:63:38:29:51:e3:7c:de:3c:5f:0e:de: 52:b3:59:4c:6e:9e:84:c0:d8:8d:8f:32:2b:c3:dc:04:de:9b: 8a:c8:cd:5f:ac:c1:d7:27:cd:01:64:6b:4e:ff:90:c9:42:81: 7f:4e:3f:2e:5b:75:5d:6b:be:60:be:8a:a0:9c:63:e0:ee:a8: 51:4b:75:af -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbw7JD5I6ubxkjbbynyRPqJytgg0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDI0MDAyMDA5WhcNMjUxMTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZTFhYzk2NDA0Y2U4OGM5MWQ1M2E1YmE4ZmIwZDlmYTJl MDVjMzNlZGI3Yjk2NmU4OTZjN2QxZDhkNjJhN2M4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDH3AzIzjXNESEs7V62KvTcuKvxoSI09bR14lNy0Xwd/hVi y3K5HCjOteXSy7K4KHrY1hqwYMkpjP/35aRZ2s5r86xhaOQRgn8KM3hJm2mBGkt5 sCqlAyVZbvN47odR3R976ZGqcG9QjkeEP+7wk8Vn9Jw36tYGTLBTQbbIebD2GMGt a7I/AS1mUX3yig8yl5NGco1uG7f61Jhtk6Rmpzv/HAF7bM3CspolM71Vsp4kJ91q CA0bMsMOeFcecvsf6B+iOm8sYNHaaLxUI26WY54YDpHOp5uzbpYs9gnQpxd6+06n KzsgMoK/RDKIgvHfqk5bfUveMSIj60+O4XneCsR7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUlj2/D4a+fqhBxjnv2jnDLftFCWUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FmOTNlMTUwLTk0NjktNDdlYi04MTg1LTNmZjAzZDg3ZGIwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78AAwDQYJKoZIhvcNAQELBQADggEBAA/W6XjhtC65IfjetCEkH0hM qXgQy0EuN3PE3QZK16xLL933GAY5bLqPVkhLEep4ZR9c4BCu7k4XrL92+DIRASIV 1akVwB30SNJlwYpdsEEx8ylV0gjO+Q58/kf5sGTbhQ+pcjl6oep/0m/CC0gY+3pN QBmIxCVxFPdUVj2vLMkbT20zd2K45qcAly5Ql8o7booeKlWKY87jvH48v5vcAd9B g81gUIzXt71TqD9ozjI2BTEZJXkALTW7dIFjOClR43zePF8O3lKzWUxunoTA2I2P MivD3ATem4rIzV+swdcnzQFka07/kMlCgX9OPy5bdV1rvmC+iqCcY+DuqFFLda8= -----END CERTIFICATE-----Generated at Wed Nov 5 05:45:51 2025 by rpki-client