$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b4163a38-a8e2-48d9-855f-dd53ae7f6dcf.roa File: b4163a38-a8e2-48d9-855f-dd53ae7f6dcf.roa (raw, json) Hash identifier: UQwluYUvu+069/JiA7dPTpXZFpsUHe/eJsUlCYI+qBE= Subject key identifier: CA:D3:3F:36:E4:49:75:9B:CF:0C:D0:1D:40:AB:78:2A:C1:A7:62:1D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 11831F37E75434B23D7847B0C20F0387A9737758 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b4163a38-a8e2-48d9-855f-dd53ae7f6dcf.roa Signing time: Wed 22 Oct 2025 00:40:03 +0000 ROA not before: Wed 22 Oct 2025 00:40:03 +0000 ROA not after: Wed 26 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f1:8801::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:83:1f:37:e7:54:34:b2:3d:78:47:b0:c2:0f:03:87:a9:73:77:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 22 00:40:03 2025 GMT Not After : Nov 26 23:59:59 2025 GMT Subject: serialNumber=972029ac259363d94d1c495ac0415ad33d938bbec467c6694053790e3f212f42, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3b:a2:16:ee:97:35:47:0c:e3:37:46:1f:f7: 1b:b0:49:6a:7e:da:c7:d9:3b:99:2a:73:42:0a:b6: ec:87:9f:7d:11:9d:0d:b7:a0:73:58:47:d0:f0:b5: e9:19:9b:c2:95:90:c3:51:18:54:3f:d3:83:fa:49: 7c:7a:3a:37:41:cf:72:bc:a8:f0:9e:78:0e:25:ba: ae:f3:ae:07:0a:4c:b2:f0:b1:43:e1:6d:a8:9b:23: 5f:f6:bc:b4:a3:78:1f:21:56:94:cd:01:dc:f2:2d: 27:3e:35:0a:48:8b:db:8c:30:1b:dc:c5:c7:ca:6d: 14:53:fc:86:94:ca:52:b6:fb:d6:4e:0f:4f:95:a3: 10:c4:4f:11:51:68:59:f0:21:74:7b:64:35:0c:82: b8:9d:5c:c4:78:95:6a:49:77:1f:90:cc:19:30:65: fb:29:79:ef:cc:74:89:59:e6:df:4b:af:76:64:a0: e9:57:0a:c2:c9:ec:5d:cc:27:f1:c8:fb:9f:66:44: 28:ef:a7:44:19:ce:bd:31:37:14:24:b1:87:a0:c7: be:01:30:d6:20:8a:a9:9f:a0:7d:8b:1d:31:fd:d1: e2:bb:7e:9b:e3:b1:28:f7:2c:61:c7:a9:d8:43:21: 10:1f:9e:f3:ca:02:22:c7:6d:bb:51:72:32:58:e6: 0a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:D3:3F:36:E4:49:75:9B:CF:0C:D0:1D:40:AB:78:2A:C1:A7:62:1D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b4163a38-a8e2-48d9-855f-dd53ae7f6dcf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8801::/48 Signature Algorithm: sha256WithRSAEncryption 9c:36:c8:fd:88:f7:c5:15:d9:87:a0:6e:86:48:0a:18:c6:eb: 01:50:9b:b2:b9:6a:45:35:ff:9a:43:da:eb:e1:c9:61:59:ac: d3:13:a9:59:2c:49:b9:e7:67:d7:8e:91:b5:8c:29:b8:1d:47: b4:89:05:6e:2f:77:f4:2d:e3:08:1d:d0:1b:14:04:0d:6a:2b: b4:f2:09:42:ba:54:96:8a:94:3e:a3:0f:57:01:40:ee:67:8d: 7b:9e:2a:b3:5f:f4:ca:0f:a5:26:31:d6:cd:58:75:92:d9:94: 30:72:b5:25:8b:06:d3:ef:ed:93:c2:61:8a:3d:12:68:79:3c: 53:76:ec:d5:2e:16:a0:e3:19:a1:d8:68:db:a1:4d:70:4a:9c: dd:59:8c:c0:44:de:80:87:97:de:ad:85:d8:e3:18:9b:e4:2e: fe:47:e7:94:7a:0b:f0:06:98:13:2c:09:c0:1f:9b:2b:b9:ed: 59:ee:81:86:95:a5:fa:09:86:20:60:96:82:6d:83:01:b0:c3: f7:5c:20:5d:b9:74:ec:0e:53:41:69:51:a0:af:ff:bc:e1:7b: 7b:9e:a4:01:48:7c:d7:02:17:e6:c4:c5:2d:d3:08:fd:67:67: f5:3a:ee:ce:ed:05:aa:ba:e3:af:ec:16:1d:76:d2:16:4a:3b: 50:f0:6b:14 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEYMfN+dUNLI9eEewwg8Dh6lzd1gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIyMDA0MDAzWhcNMjUxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NzIwMjlhYzI1OTM2M2Q5NGQxYzQ5NWFjMDQxNWFkMzNk OTM4YmJlYzQ2N2M2Njk0MDUzNzkwZTNmMjEyZjQyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCO6IW7pc1RwzjN0Yf9xuwSWp+2sfZO5kqc0IKtuyHn30R nQ23oHNYR9DwtekZm8KVkMNRGFQ/04P6SXx6OjdBz3K8qPCeeA4luq7zrgcKTLLw sUPhbaibI1/2vLSjeB8hVpTNAdzyLSc+NQpIi9uMMBvcxcfKbRRT/IaUylK2+9ZO D0+VoxDETxFRaFnwIXR7ZDUMgridXMR4lWpJdx+QzBkwZfspee/MdIlZ5t9Lr3Zk oOlXCsLJ7F3MJ/HI+59mRCjvp0QZzr0xNxQksYegx74BMNYgiqmfoH2LHTH90eK7 fpvjsSj3LGHHqdhDIRAfnvPKAiLHbbtRcjJY5grtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUytM/NuRJdZvPDNAdQKt4KsGnYh0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2I0MTYzYTM4LWE4ZTItNDhkOS04NTVmLWRkNTNhZTdmNmRjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDxiAEwDQYJKoZIhvcNAQELBQADggEBAJw2yP2I98UV2YegboZIChjG 6wFQm7K5akU1/5pD2uvhyWFZrNMTqVksSbnnZ9eOkbWMKbgdR7SJBW4vd/Qt4wgd 0BsUBA1qK7TyCUK6VJaKlD6jD1cBQO5njXueKrNf9MoPpSYx1s1YdZLZlDBytSWL BtPv7ZPCYYo9Emh5PFN27NUuFqDjGaHYaNuhTXBKnN1ZjMBE3oCHl96thdjjGJvk Lv5H55R6C/AGmBMsCcAfmyu57VnugYaVpfoJhiBgloJtgwGww/dcIF25dOwOU0Fp UaCv/7zhe3uepAFIfNcCF+bExS3TCP1nZ/U67s7tBaq646/sFh120hZKO1DwaxQ= -----END CERTIFICATE-----Generated at Wed Nov 5 05:44:42 2025 by rpki-client