$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2d641cc-0376-4d82-897a-3d5596d61679.roa File: b2d641cc-0376-4d82-897a-3d5596d61679.roa (raw, json) Hash identifier: TkpXBaqZJbPO7dLiA4G3pXHGzxDT9T08oSFcQjkUOJM= Subject key identifier: 77:6B:75:57:A4:E7:28:94:54:DE:7E:B6:B9:25:26:D1:92:77:97:A8 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1FCBE575F351706F96856003F64FD3228FCA6010 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2d641cc-0376-4d82-897a-3d5596d61679.roa Signing time: Tue 28 Oct 2025 00:10:09 +0000 ROA not before: Tue 28 Oct 2025 00:10:09 +0000 ROA not after: Tue 02 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f2:7101::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:cb:e5:75:f3:51:70:6f:96:85:60:03:f6:4f:d3:22:8f:ca:60:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 28 00:10:09 2025 GMT Not After : Dec 2 23:59:59 2025 GMT Subject: serialNumber=2d3de0ce376fda5f9449890e4522311a4370a6c3c4f26f7932a5dd4f63471f4b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:06:69:69:bd:a4:98:bf:4c:79:d3:2e:2c:29: cd:1a:0f:f4:8f:61:04:4c:d9:4b:82:14:ca:d6:8e: 08:53:06:c3:ce:fe:d7:65:58:f7:de:d9:cf:90:c5: 0a:a2:ed:0b:9a:4c:16:d6:79:2d:b3:2f:99:0d:f9: ab:95:84:ea:29:a9:7e:99:a8:e7:0a:d2:5f:ae:99: aa:77:44:ca:a1:68:ac:92:f4:23:97:8d:8f:77:d1: d4:de:4c:7a:a2:c9:5f:d0:49:c3:8c:71:38:91:e6: 1f:43:9c:19:da:9c:ac:de:17:c2:db:2c:55:01:f2: 88:58:c8:23:75:a8:76:3a:cd:ce:89:4b:d9:d6:fb: 92:7c:15:41:00:12:d5:45:3c:d2:3a:d9:00:d4:84: 16:72:5f:8f:93:79:d6:e2:ae:50:58:3d:a5:ec:bf: 9d:9b:53:15:4b:8d:bd:8e:17:03:fc:8f:46:df:0f: 2f:5f:21:41:26:17:c2:2f:c3:32:02:c9:8d:a8:5b: 78:3e:73:2c:da:85:76:fb:a5:e1:84:cd:72:3d:f1: ec:0e:ad:ad:47:37:ce:08:33:3c:c6:29:3e:03:f4: 64:d6:03:2f:59:b8:98:66:3a:e9:a2:ff:37:3c:26: e0:00:ef:65:7c:a0:7c:fc:f5:31:ec:a1:d2:18:fb: ca:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:6B:75:57:A4:E7:28:94:54:DE:7E:B6:B9:25:26:D1:92:77:97:A8 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2d641cc-0376-4d82-897a-3d5596d61679.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7101::/48 Signature Algorithm: sha256WithRSAEncryption 56:42:94:40:35:b7:76:d4:25:dc:a2:8b:5b:8c:dd:a6:2a:1e: 76:28:b4:2b:eb:13:f6:d7:d3:94:59:e5:04:d8:42:e7:0a:95: 64:7c:e8:37:21:22:7b:f5:91:5b:72:2c:32:5e:17:b3:33:53: c9:9e:63:af:ce:b8:01:4a:0d:2e:ba:bd:3d:19:5f:e1:6c:a6: 6a:3d:5b:ea:7d:05:92:5d:86:ce:ec:b9:08:61:5c:f4:1c:b6: bf:79:5b:d6:ad:1c:a7:85:0a:a7:58:68:e3:5a:d5:da:65:11: 5d:bf:c1:b9:8b:21:ab:f5:fd:9c:d9:3b:61:c5:69:dc:67:e7: ce:74:92:5b:35:7c:51:61:ce:83:38:1a:65:85:a4:73:51:1c: 01:e8:7a:b1:47:2a:40:8e:1e:d4:3c:53:d8:c8:8d:62:be:03: 7b:47:7f:79:ee:22:44:1b:20:f2:3f:f5:3d:99:0f:27:90:06: b9:00:38:58:2f:db:77:97:f0:44:c7:4f:97:d1:ee:ea:a4:ac: be:fc:36:cc:14:cf:50:44:b7:77:15:48:df:a4:26:63:c7:b1: 47:6a:18:fc:7e:61:26:ad:c7:39:c7:00:9e:ee:e7:f2:95:e4: 03:59:01:68:ee:aa:3b:bd:d1:65:0f:3d:ce:81:32:b8:c3:1a: 3b:ba:98:d0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUH8vldfNRcG+WhWAD9k/TIo/KYBAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDI4MDAxMDA5WhcNMjUxMjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZDNkZTBjZTM3NmZkYTVmOTQ0OTg5MGU0NTIyMzExYTQz NzBhNmMzYzRmMjZmNzkzMmE1ZGQ0ZjYzNDcxZjRiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPBmlpvaSYv0x50y4sKc0aD/SPYQRM2UuCFMrWjghTBsPO /tdlWPfe2c+QxQqi7QuaTBbWeS2zL5kN+auVhOopqX6ZqOcK0l+umap3RMqhaKyS 9COXjY930dTeTHqiyV/QScOMcTiR5h9DnBnanKzeF8LbLFUB8ohYyCN1qHY6zc6J S9nW+5J8FUEAEtVFPNI62QDUhBZyX4+TedbirlBYPaXsv52bUxVLjb2OFwP8j0bf Dy9fIUEmF8IvwzICyY2oW3g+cyzahXb7peGEzXI98ewOra1HN84IMzzGKT4D9GTW Ay9ZuJhmOumi/zc8JuAA72V8oHz89THsodIY+8qXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUd2t1V6TnKJRU3n62uSUm0ZJ3l6gwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2IyZDY0MWNjLTAzNzYtNGQ4Mi04OTdhLTNkNTU5NmQ2MTY3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDycQEwDQYJKoZIhvcNAQELBQADggEBAFZClEA1t3bUJdyii1uM3aYq HnYotCvrE/bX05RZ5QTYQucKlWR86DchInv1kVtyLDJeF7MzU8meY6/OuAFKDS66 vT0ZX+Fspmo9W+p9BZJdhs7suQhhXPQctr95W9atHKeFCqdYaONa1dplEV2/wbmL Iav1/ZzZO2HFadxn5850kls1fFFhzoM4GmWFpHNRHAHoerFHKkCOHtQ8U9jIjWK+ A3tHf3nuIkQbIPI/9T2ZDyeQBrkAOFgv23eX8ETHT5fR7uqkrL78NswUz1BEt3cV SN+kJmPHsUdqGPx+YSatxznHAJ7u5/KV5ANZAWjuqju90WUPPc6BMrjDGju6mNA= -----END CERTIFICATE-----Generated at Wed Nov 5 07:49:00 2025 by rpki-client