$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b51f360b-51dd-46ed-9df1-5d5b37dcb02b.roa File: b51f360b-51dd-46ed-9df1-5d5b37dcb02b.roa (raw, json) Hash identifier: Z/yUfJtJXeTelqmgCzaZQmjLgGtyvRMh3bLf20wqWtI= Subject key identifier: 8B:D9:6C:A3:D6:9B:47:74:A3:A4:20:40:32:E2:2D:1F:87:2B:28:EE Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 46091C5769AFDD2E85BD6AF298DF06FA08B3DB86 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b51f360b-51dd-46ed-9df1-5d5b37dcb02b.roa Signing time: Fri 31 Oct 2025 02:00:10 +0000 ROA not before: Fri 31 Oct 2025 02:00:10 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:611b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:09:1c:57:69:af:dd:2e:85:bd:6a:f2:98:df:06:fa:08:b3:db:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 31 02:00:10 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=a8ac1b1a39e2cd3602519ae05bb684427c3a64f66b578afe19e8a2401510813d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:db:c3:7f:0e:93:69:69:a5:0d:aa:d4:07:de: f0:e1:ae:46:65:de:d9:f2:8b:e6:f5:d7:3e:ae:db: 60:e5:b3:4e:b7:77:58:7c:a8:08:67:ec:73:33:b7: e0:f2:fb:7a:cc:0d:f7:83:99:0f:63:af:9e:88:59: 74:3f:1f:9a:a0:13:8e:8d:94:1b:68:16:97:1f:4c: fd:e3:e2:e0:6e:9d:77:72:f4:61:5d:43:2d:5a:8e: 19:f1:ec:82:f9:e0:ff:56:ee:9d:f0:c9:a6:42:45: 31:82:15:36:98:23:d7:6e:46:f1:5d:97:ff:89:33: 3f:24:3c:94:b9:d4:e3:34:02:31:4e:dc:ca:61:9a: 92:22:c5:74:cd:d1:7f:17:37:76:a5:70:86:b0:b6: 20:2b:1a:ff:b4:45:ec:bc:07:41:1c:1b:ba:bb:50: 6f:f1:41:b0:d9:0f:65:06:aa:50:9d:8d:6b:92:fe: f4:c1:87:36:ce:5b:e7:b5:70:a9:49:a6:d6:f5:42: a0:9f:ed:36:8d:b7:2f:cf:99:ac:f1:57:5e:ae:8a: 32:71:b9:93:cb:d2:6b:84:d6:ce:35:7d:c4:47:0a: 1a:5a:60:6a:f0:ff:0c:23:3c:f8:d5:e0:7d:f5:98: 9c:5c:23:e9:a1:21:9e:3c:f4:be:ee:bc:f1:b7:f8: b1:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:D9:6C:A3:D6:9B:47:74:A3:A4:20:40:32:E2:2D:1F:87:2B:28:EE X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b51f360b-51dd-46ed-9df1-5d5b37dcb02b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:611b::/48 Signature Algorithm: sha256WithRSAEncryption 27:8e:c6:52:a6:d6:f2:24:31:16:1b:79:77:1c:a0:6d:e0:16: cd:7c:35:c2:8f:0e:51:61:f4:ca:b8:65:4f:f1:2c:64:9f:b7: fe:8d:ec:de:b5:92:d3:f0:20:cf:a6:4e:80:ac:16:6c:e3:17: 6d:a8:c8:5a:3a:26:ef:d8:a3:4a:95:7b:a5:96:dd:81:6f:dc: e4:2f:7b:d7:98:d3:84:45:9c:71:68:75:e6:a5:39:76:44:9e: 93:ce:2e:b8:6e:60:bc:41:fa:72:2c:15:52:50:09:4e:d5:92: b0:fa:16:15:52:f8:9d:73:19:f5:cf:88:56:47:40:97:29:e2: d4:24:15:75:fa:30:01:a1:3b:51:8d:5a:97:83:16:0e:64:50: 20:d6:8e:ad:b3:cd:58:65:71:5c:77:67:9e:ad:5d:80:2a:3f: a4:9c:3b:6d:70:f8:c8:c5:55:d0:82:ba:fa:b7:17:e9:2a:e0: ef:a6:9c:2e:ec:b7:a8:73:01:74:00:53:7f:19:73:5a:71:cf: e7:ad:46:19:49:eb:f3:12:9f:91:dd:ec:bf:6f:4b:4c:57:53: bc:d5:e9:3a:12:08:8b:da:8f:44:83:1c:dc:07:16:c8:d7:7c: 39:b5:c3:c9:9c:0b:22:90:89:8b:fb:7b:0c:d4:57:4d:e6:0a: 7a:0c:9a:05 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURgkcV2mv3S6FvWrymN8G+giz24YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDMxMDIwMDEwWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhOGFjMWIxYTM5ZTJjZDM2MDI1MTlhZTA1YmI2ODQ0Mjdj M2E2NGY2NmI1NzhhZmUxOWU4YTI0MDE1MTA4MTNkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC528N/DpNpaaUNqtQH3vDhrkZl3tnyi+b11z6u22Dls063 d1h8qAhn7HMzt+Dy+3rMDfeDmQ9jr56IWXQ/H5qgE46NlBtoFpcfTP3j4uBunXdy 9GFdQy1ajhnx7IL54P9W7p3wyaZCRTGCFTaYI9duRvFdl/+JMz8kPJS51OM0AjFO 3MphmpIixXTN0X8XN3alcIawtiArGv+0Rey8B0EcG7q7UG/xQbDZD2UGqlCdjWuS /vTBhzbOW+e1cKlJptb1QqCf7TaNty/PmazxV16uijJxuZPL0muE1s41fcRHChpa YGrw/wwjPPjV4H31mJxcI+mhIZ489L7uvPG3+LE7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUi9lso9abR3SjpCBAMuItH4crKO4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2I1MWYzNjBiLTUxZGQtNDZlZC05ZGYxLTVkNWIzN2RjYjAyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRswDQYJKoZIhvcNAQELBQADggEBACeOxlKm1vIkMRYbeXccoG3g Fs18NcKPDlFh9Mq4ZU/xLGSft/6N7N61ktPwIM+mToCsFmzjF22oyFo6Ju/Yo0qV e6WW3YFv3OQve9eY04RFnHFodealOXZEnpPOLrhuYLxB+nIsFVJQCU7VkrD6FhVS +J1zGfXPiFZHQJcp4tQkFXX6MAGhO1GNWpeDFg5kUCDWjq2zzVhlcVx3Z56tXYAq P6ScO21w+MjFVdCCuvq3F+kq4O+mnC7st6hzAXQAU38Zc1pxz+etRhlJ6/MSn5Hd 7L9vS0xXU7zV6ToSCIvaj0SDHNwHFsjXfDm1w8mcCyKQiYv7ewzUV03mCnoMmgU= -----END CERTIFICATE-----Generated at Wed Nov 5 05:34:27 2025 by rpki-client