$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2bd076f-38fe-414c-adae-9c6f359542b7.roa File: b2bd076f-38fe-414c-adae-9c6f359542b7.roa (raw, json) Hash identifier: Y1AhrsobdPktwiVQouAIi29PsNV605tiqZynCT4TZJM= Subject key identifier: 73:B4:5E:A6:FE:20:FE:DC:BA:FD:03:36:42:A5:35:73:EA:6B:D4:B2 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 59C5158144EC30DF798AC6FEF910BE0B398DBF15 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2bd076f-38fe-414c-adae-9c6f359542b7.roa Signing time: Tue 21 Oct 2025 12:50:47 +0000 ROA not before: Tue 21 Oct 2025 12:50:47 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:c5:15:81:44:ec:30:df:79:8a:c6:fe:f9:10:be:0b:39:8d:bf:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:47 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=54fd7fe1c982423d62e6b99e31371d5874707a1916d8851f9475e965959b4945, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:f0:73:e5:b8:82:c6:59:d8:0a:fa:88:71:3f: 84:11:62:84:32:27:c5:ab:c3:8d:eb:85:e2:76:a5: 40:23:fe:8c:19:ba:bd:73:1e:e1:41:bd:32:49:4c: 28:be:81:08:0b:ef:4a:b6:5c:8b:54:f5:63:8a:f8: c4:93:55:ce:ab:a0:6d:3c:a7:14:d0:7d:6b:27:16: c3:ef:0c:33:c4:29:3f:76:67:36:20:f4:cb:04:39: eb:4f:87:5d:97:65:c3:5e:91:22:8a:2f:0b:32:1f: 41:46:e6:28:a7:c7:f9:97:47:85:07:c9:85:a5:74: a0:4f:91:ea:4e:60:05:25:cc:0c:c2:8c:db:14:71: c5:a3:3a:d7:77:26:16:6a:a9:20:c1:46:ae:63:63: 47:95:ad:78:83:03:94:f5:d2:97:d3:51:6e:c9:5c: 12:de:a5:37:ff:e6:43:9f:20:00:9b:9d:44:f5:0f: 50:bf:a4:2b:09:53:c3:93:d9:b0:63:d4:d3:fe:0e: d2:29:04:ee:ad:84:04:2f:0a:a4:a0:3e:ea:3f:e9: e3:45:04:cf:33:7e:40:c2:bc:73:58:60:2f:7f:95: 82:a6:37:5d:80:e9:dc:73:9a:db:69:81:6b:22:67: 21:93:76:c6:8b:4b:97:39:b9:6e:ab:27:21:cb:f5: 64:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:B4:5E:A6:FE:20:FE:DC:BA:FD:03:36:42:A5:35:73:EA:6B:D4:B2 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2bd076f-38fe-414c-adae-9c6f359542b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e300::/40 Signature Algorithm: sha256WithRSAEncryption 2e:38:ec:0d:f6:d1:cc:10:03:39:53:ae:b4:c2:3d:70:35:80: e3:55:64:9d:87:3f:09:cf:66:34:d4:c9:c3:76:12:7e:d6:c8: a0:bc:66:3d:85:2c:82:f7:aa:42:9f:9d:5e:3c:aa:e5:37:0a: 5b:d8:f1:6a:f5:26:c6:f2:25:01:39:e5:97:7d:4f:89:78:0a: 75:5a:82:ba:75:5d:d6:f1:6c:98:1e:1b:91:02:2f:f8:0c:05: e3:10:be:4a:82:b7:a7:1e:ea:dc:59:46:f4:f6:7e:0a:4a:17: 8d:af:c5:91:5c:20:f2:be:e7:07:ee:8e:a3:80:d1:f9:84:08: e7:1d:77:78:d9:e3:c0:a8:53:40:0e:4f:14:93:c0:fb:c3:ff: 81:de:ce:f4:71:d0:8e:6f:74:77:fc:23:69:45:10:4b:37:80: 7c:ed:6f:82:6b:5c:b6:c9:14:80:27:d7:a0:1b:0d:5d:2d:f8: ad:73:d4:e8:8c:0f:d4:5d:12:fb:fa:0c:e0:bc:de:23:f1:90: fb:77:3d:fa:85:c4:f2:2e:77:e0:be:c5:ec:70:ca:b2:30:c9: 9f:7c:06:82:97:1c:4e:5f:b9:1d:0d:d7:b8:e2:79:d1:1a:03: 6d:21:da:cb:31:dc:fe:ba:fa:c2:53:63:00:96:24:48:87:04: 10:81:50:86 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUWcUVgUTsMN95isb++RC+CzmNvxUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDQ3WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NGZkN2ZlMWM5ODI0MjNkNjJlNmI5OWUzMTM3MWQ1ODc0 NzA3YTE5MTZkODg1MWY5NDc1ZTk2NTk1OWI0OTQ1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCE8HPluILGWdgK+ohxP4QRYoQyJ8Wrw43rheJ2pUAj/owZ ur1zHuFBvTJJTCi+gQgL70q2XItU9WOK+MSTVc6roG08pxTQfWsnFsPvDDPEKT92 ZzYg9MsEOetPh12XZcNekSKKLwsyH0FG5iinx/mXR4UHyYWldKBPkepOYAUlzAzC jNsUccWjOtd3JhZqqSDBRq5jY0eVrXiDA5T10pfTUW7JXBLepTf/5kOfIACbnUT1 D1C/pCsJU8OT2bBj1NP+DtIpBO6thAQvCqSgPuo/6eNFBM8zfkDCvHNYYC9/lYKm N12A6dxzmttpgWsiZyGTdsaLS5c5uW6rJyHL9WSpAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUc7Repv4g/ty6/QM2QqU1c+pr1LIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2IyYmQwNzZmLTM4ZmUtNDE0Yy1hZGFlLTljNmYzNTk1NDJiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74zANBgkqhkiG9w0BAQsFAAOCAQEALjjsDfbRzBADOVOutMI9cDWA 41VknYc/Cc9mNNTJw3YSftbIoLxmPYUsgveqQp+dXjyq5TcKW9jxavUmxvIlATnl l31PiXgKdVqCunVd1vFsmB4bkQIv+AwF4xC+SoK3px7q3FlG9PZ+CkoXja/FkVwg 8r7nB+6Oo4DR+YQI5x13eNnjwKhTQA5PFJPA+8P/gd7O9HHQjm90d/wjaUUQSzeA fO1vgmtctskUgCfXoBsNXS34rXPU6IwP1F0S+/oM4LzeI/GQ+3c9+oXE8i534L7F 7HDKsjDJn3wGgpccTl+5HQ3XuOJ50RoDbSHayzHc/rr6wlNjAJYkSIcEEIFQhg== -----END CERTIFICATE-----Generated at Wed Nov 5 05:41:02 2025 by rpki-client