$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b711b513-e0f0-4a59-a188-036dda4ade5a.roa File: b711b513-e0f0-4a59-a188-036dda4ade5a.roa (raw, json) Hash identifier: hrMaogjr2Cix4H18bsZpo9/ctTDsxjGgdRO7TjF/fkI= Subject key identifier: 0D:10:A9:9B:21:99:62:9B:82:31:2A:3D:E2:B2:96:44:B3:1E:4A:3E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 637E561755B52664A73B4A69D7280704D3CD9174 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b711b513-e0f0-4a59-a188-036dda4ade5a.roa Signing time: Tue 21 Oct 2025 13:10:10 +0000 ROA not before: Tue 21 Oct 2025 13:10:10 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ef00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:7e:56:17:55:b5:26:64:a7:3b:4a:69:d7:28:07:04:d3:cd:91:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:10:10 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=3dd4aca5f7d850bc13895c9fd9268911b9f99e235f2873f1f78ae7fb515769c5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f9:40:8f:ca:88:43:ef:f5:94:ee:cb:57:0f: 25:48:ad:7e:15:03:d7:c8:a1:cd:12:aa:01:71:ba: 59:27:d8:ff:e2:64:7b:3e:bf:de:fd:82:ac:ff:2e: aa:8f:db:4f:5b:8c:ef:53:c0:55:ca:06:00:d9:05: c0:a1:b1:4d:6f:7e:80:95:44:05:e2:c1:62:93:38: 9d:e3:cf:80:ea:b3:a4:0a:31:f6:7c:5e:39:33:c2: 55:9d:25:a8:11:56:32:10:76:0b:0f:de:c5:c2:93: c5:d2:7d:9c:fd:86:30:39:af:f9:70:dc:73:0d:2b: 0b:34:e3:59:d1:0b:d0:aa:ba:4f:c5:d9:3f:2b:06: 61:f7:c6:60:7a:3a:22:46:63:cb:0b:c0:46:5c:46: dc:d6:c3:33:8e:9f:5b:43:b7:d1:81:7b:07:36:fb: 71:bc:b4:20:98:39:d8:cd:2f:df:c8:77:5f:4a:8b: 28:5e:62:50:1e:89:e8:fe:f7:0a:34:18:a8:fb:f4: c7:c4:a3:93:fc:03:6a:da:9f:b4:ca:1e:11:ed:a8: d9:1c:3d:5c:be:d8:56:17:41:3b:fa:65:e1:57:69: 21:07:c5:95:e9:fc:90:d0:0c:a0:47:c7:45:b6:29: 2f:db:3d:f9:00:db:8f:b2:18:6d:12:28:65:bd:51: 84:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:10:A9:9B:21:99:62:9B:82:31:2A:3D:E2:B2:96:44:B3:1E:4A:3E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b711b513-e0f0-4a59-a188-036dda4ade5a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ef00::/40 Signature Algorithm: sha256WithRSAEncryption 0e:ec:df:ab:b3:49:bf:02:de:2c:54:24:ff:7f:15:bc:25:1a: aa:d8:62:28:7d:8c:03:e0:3c:9a:bc:16:42:45:3c:37:23:d0: 70:89:aa:16:55:25:a0:31:88:8e:13:64:44:53:56:6a:15:03: 8a:4f:a8:3a:76:c0:bf:dd:3f:c3:70:21:7b:0c:fb:52:5f:28: a7:3b:29:7e:43:f8:89:d7:c6:c8:83:ff:92:42:9f:6e:88:0e: 28:4f:54:b6:d2:d3:15:1a:98:5c:82:83:80:34:0f:12:d0:1a: 6e:6b:9e:d7:b1:55:0d:a2:84:e8:53:73:d7:64:1a:41:de:cf: 5a:69:83:2a:00:7b:94:ea:ef:c3:8d:0c:87:af:8a:ee:42:7c: 58:b6:19:a7:6a:d8:51:7e:0c:b0:fb:41:5e:be:f4:17:e2:02: a7:13:c3:3d:39:fa:ea:e6:54:2f:60:ec:04:0c:b3:ab:82:6e: 84:a4:cb:8f:47:fe:d3:c2:95:57:59:c5:43:92:a2:e3:4e:ec: b3:75:d6:44:44:60:8b:60:e2:53:4c:32:11:da:b3:92:6d:9f: 93:8c:52:13:04:f9:38:61:e0:0e:be:b6:47:43:49:1c:68:75: 4d:0c:65:10:3b:bb:76:8a:61:68:63:72:63:fd:2b:7a:21:7d: e8:8c:ea:ad -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUY35WF1W1JmSnO0pp1ygHBNPNkXQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMxMDEwWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZGQ0YWNhNWY3ZDg1MGJjMTM4OTVjOWZkOTI2ODkxMWI5 Zjk5ZTIzNWYyODczZjFmNzhhZTdmYjUxNTc2OWM1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDG+UCPyohD7/WU7stXDyVIrX4VA9fIoc0SqgFxulkn2P/i ZHs+v979gqz/LqqP209bjO9TwFXKBgDZBcChsU1vfoCVRAXiwWKTOJ3jz4Dqs6QK MfZ8XjkzwlWdJagRVjIQdgsP3sXCk8XSfZz9hjA5r/lw3HMNKws041nRC9Cquk/F 2T8rBmH3xmB6OiJGY8sLwEZcRtzWwzOOn1tDt9GBewc2+3G8tCCYOdjNL9/Id19K iyheYlAeiej+9wo0GKj79MfEo5P8A2ran7TKHhHtqNkcPVy+2FYXQTv6ZeFXaSEH xZXp/JDQDKBHx0W2KS/bPfkA24+yGG0SKGW9UYTrAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUDRCpmyGZYpuCMSo94rKWRLMeSj4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2I3MTFiNTEzLWUwZjAtNGE1OS1hMTg4LTAzNmRkYTRhZGU1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD77zANBgkqhkiG9w0BAQsFAAOCAQEADuzfq7NJvwLeLFQk/38VvCUa qthiKH2MA+A8mrwWQkU8NyPQcImqFlUloDGIjhNkRFNWahUDik+oOnbAv90/w3Ah ewz7Ul8opzspfkP4idfGyIP/kkKfbogOKE9UttLTFRqYXIKDgDQPEtAabmue17FV DaKE6FNz12QaQd7PWmmDKgB7lOrvw40Mh6+K7kJ8WLYZp2rYUX4MsPtBXr70F+IC pxPDPTn66uZUL2DsBAyzq4JuhKTLj0f+08KVV1nFQ5Ki407ss3XWRERgi2DiU0wy Edqzkm2fk4xSEwT5OGHgDr62R0NJHGh1TQxlEDu7dophaGNyY/0reiF96IzqrQ== -----END CERTIFICATE-----Generated at Wed Nov 5 17:51:31 2025 by rpki-client