$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b863f23f-4426-4c77-a614-689e722bb8c6.roa File: b863f23f-4426-4c77-a614-689e722bb8c6.roa (raw, json) Hash identifier: 0hs46h+C08IGk13XzX0gOuIrz7itO5rWKTUwyuXa1eA= Subject key identifier: 1A:E5:65:9D:A3:8E:99:32:62:DD:B7:71:E8:DB:39:3F:88:C9:9E:E2 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 424BE512422610A099D4D59BA1FD2ACFD9AB2D5C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b863f23f-4426-4c77-a614-689e722bb8c6.roa Signing time: Fri 31 Oct 2025 01:50:12 +0000 ROA not before: Fri 31 Oct 2025 01:50:12 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6121::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:4b:e5:12:42:26:10:a0:99:d4:d5:9b:a1:fd:2a:cf:d9:ab:2d:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 31 01:50:12 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=562c73dd07edafe1e1cddf40e3c2f0874acc7761b26448b61c1902992934ef61, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:a5:77:6a:33:65:e8:b7:a3:59:f4:84:d2:da: 42:5a:1d:08:8d:28:62:33:88:8c:19:76:14:16:1a: 0a:04:db:f4:d0:bc:67:14:0e:5b:43:49:ea:52:98: 9b:57:a5:47:ca:0d:5a:e1:36:ee:5e:9e:c2:6a:97: 7a:27:d2:37:6f:88:a2:60:9d:ad:9c:fa:4b:1e:50: b5:9e:06:62:44:e5:b0:85:8e:aa:3f:63:86:3a:82: 63:39:66:bc:f1:1c:83:3c:19:37:3a:c7:30:78:d2: 0a:8d:f4:dd:a8:6c:44:bc:3c:7c:8f:08:17:1b:cd: a9:7a:9d:45:1f:43:e3:5c:46:da:19:68:2d:59:f3: 96:01:bd:14:31:0d:b1:5c:3b:76:cc:85:5c:ca:8c: e4:85:39:6a:0a:25:a5:55:fe:7d:ee:ff:0b:dc:62: 21:ce:e0:fa:f3:65:9f:bb:4a:ac:f7:ca:18:0a:a6: 86:e9:06:66:69:5e:1d:df:35:40:ad:67:26:7a:60: 6e:3e:32:ed:76:bd:d7:1a:66:e0:96:8b:37:c0:bb: 91:64:05:56:44:c4:5f:7d:1c:da:2b:69:da:e4:c3: 6c:4b:a1:80:52:f8:54:79:83:0e:ea:b8:27:b3:a8: b1:ec:58:e3:71:23:ec:29:cf:5b:c1:66:60:a4:73: 77:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:E5:65:9D:A3:8E:99:32:62:DD:B7:71:E8:DB:39:3F:88:C9:9E:E2 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b863f23f-4426-4c77-a614-689e722bb8c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6121::/48 Signature Algorithm: sha256WithRSAEncryption 05:09:75:43:c3:ad:d1:a4:8e:47:33:f2:d8:44:17:94:d8:95: 89:93:18:5c:6a:92:a9:65:7b:22:aa:9c:5a:71:cf:91:9b:7a: 9b:28:e2:cd:58:5d:67:8f:5e:64:0b:87:b6:76:1c:e8:ee:a3: 5e:4f:97:2c:9e:61:84:35:0a:28:72:47:8e:33:eb:81:e7:54: d4:38:94:fd:a3:96:26:4a:65:04:ad:64:2f:7b:45:e7:11:a0: 3a:4b:76:37:3e:68:b4:dd:4b:2b:0c:29:2f:f9:a5:36:1e:d5: 97:84:62:2b:39:dd:b6:1d:3f:46:98:9f:cd:f1:69:fa:73:89: 5d:11:cd:77:96:fc:2f:8f:c1:16:83:97:80:d3:37:38:2d:b2: 08:c1:a6:35:9b:c1:87:3c:ea:43:0c:09:46:53:6c:52:db:9f: d4:c8:68:98:0b:89:c7:ac:f5:56:a0:b1:9d:d2:bc:56:19:96: fe:bb:ee:5f:ca:da:82:02:ee:2c:7d:ce:d0:29:53:69:d8:75: b6:3f:c9:33:42:03:83:68:13:15:e2:19:f1:8d:4b:59:f2:ab: 19:72:03:24:6b:53:00:31:4e:18:5a:32:fb:8d:9e:43:f2:1e: 28:1c:f5:69:0e:2f:84:90:d2:94:97:06:3b:6e:95:7c:b0:e3: 10:27:52:7d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQkvlEkImEKCZ1NWbof0qz9mrLVwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDMxMDE1MDEyWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NjJjNzNkZDA3ZWRhZmUxZTFjZGRmNDBlM2MyZjA4NzRh Y2M3NzYxYjI2NDQ4YjYxYzE5MDI5OTI5MzRlZjYxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCFpXdqM2Xot6NZ9ITS2kJaHQiNKGIziIwZdhQWGgoE2/TQ vGcUDltDSepSmJtXpUfKDVrhNu5ensJql3on0jdviKJgna2c+kseULWeBmJE5bCF jqo/Y4Y6gmM5ZrzxHIM8GTc6xzB40gqN9N2obES8PHyPCBcbzal6nUUfQ+NcRtoZ aC1Z85YBvRQxDbFcO3bMhVzKjOSFOWoKJaVV/n3u/wvcYiHO4PrzZZ+7Sqz3yhgK pobpBmZpXh3fNUCtZyZ6YG4+Mu12vdcaZuCWizfAu5FkBVZExF99HNoradrkw2xL oYBS+FR5gw7quCezqLHsWONxI+wpz1vBZmCkc3dPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUGuVlnaOOmTJi3bdx6Ns5P4jJnuIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2I4NjNmMjNmLTQ0MjYtNGM3Ny1hNjE0LTY4OWU3MjJiYjhjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYSEwDQYJKoZIhvcNAQELBQADggEBAAUJdUPDrdGkjkcz8thEF5TY lYmTGFxqkqlleyKqnFpxz5Gbepso4s1YXWePXmQLh7Z2HOjuo15PlyyeYYQ1Cihy R44z64HnVNQ4lP2jliZKZQStZC97RecRoDpLdjc+aLTdSysMKS/5pTYe1ZeEYis5 3bYdP0aYn83xafpziV0RzXeW/C+PwRaDl4DTNzgtsgjBpjWbwYc86kMMCUZTbFLb n9TIaJgLices9VagsZ3SvFYZlv677l/K2oIC7ix9ztApU2nYdbY/yTNCA4NoExXi GfGNS1nyqxlyAyRrUwAxThhaMvuNnkPyHigc9WkOL4SQ0pSXBjtulXyw4xAnUn0= -----END CERTIFICATE-----Generated at Wed Nov 5 16:54:50 2025 by rpki-client