$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa File: c1547439-2593-48d5-aaf8-70d69e1a8163.roa (raw, json) Hash identifier: r4aO+cHExLuvC7N1GS3nzyj+Lg4UDbohudr8fhoN3DU= Subject key identifier: 92:1D:37:50:42:4B:0C:CD:85:6F:E7:24:CF:8F:5E:66:13:E6:96:DE Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 25105CF6BDF35A0D18582EC1E32F69CB751161A3 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa Signing time: Tue 04 Nov 2025 00:10:07 +0000 ROA not before: Tue 04 Nov 2025 00:10:07 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:10:5c:f6:bd:f3:5a:0d:18:58:2e:c1:e3:2f:69:cb:75:11:61:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 4 00:10:07 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=d65af8fd973a4968c10154dd19022ea2cb22b601323158738142e57ae02c9d14, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:5d:99:b9:ca:42:e9:30:16:50:78:f8:f3:28: 14:8d:ad:3f:d5:47:20:fa:5b:8b:93:66:37:2c:9a: 01:69:8c:92:0e:42:3c:63:98:97:22:23:a2:64:2d: 0d:70:32:5c:39:ff:94:7c:23:53:2a:fa:32:c0:b0: dc:ab:5b:83:81:be:1c:4b:84:36:6c:2e:2c:05:ba: e2:19:a5:30:6e:8e:e7:9e:46:eb:3c:3a:6b:f4:d4: fb:5a:d9:b0:7f:6e:fc:4b:20:10:23:b5:f5:a1:bd: d1:b4:cf:f0:2f:39:99:1a:23:24:d7:49:ee:5c:06: 24:b8:60:c5:d5:bc:53:3c:83:e4:cd:6b:f0:86:de: 86:14:9c:1c:6f:11:cb:e3:f3:1e:c1:e4:7b:f8:0b: aa:41:ad:d6:38:30:fd:91:ee:46:9d:79:01:a1:14: 2e:19:c7:7c:59:d1:31:b5:a6:b7:10:a7:97:2e:6f: b4:d6:9c:3a:4b:87:6f:e0:f5:a8:b5:b7:09:81:46: 05:1e:4a:95:1b:ca:bb:10:04:56:9a:d8:ea:a7:7e: a1:16:2a:67:13:3a:1b:4a:b7:a8:36:1a:74:12:b3: 64:8d:fe:82:31:8b:c8:78:86:81:17:59:10:33:03: db:92:e8:e4:ef:bf:3c:07:18:b5:36:08:96:47:30: 99:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:1D:37:50:42:4B:0C:CD:85:6F:E7:24:CF:8F:5E:66:13:E6:96:DE X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:11::/48 Signature Algorithm: sha256WithRSAEncryption 02:24:21:0d:8c:5b:2b:38:75:0a:67:73:ef:bf:23:7a:4a:3b: 73:04:fc:18:a1:3e:d1:c2:99:54:a3:ee:51:a7:f0:fb:ca:24: 27:87:f3:cb:bd:f8:af:7d:6d:bd:5f:35:2e:41:1a:0d:a1:a3: 41:97:9f:c6:6d:7e:96:fb:2d:1b:34:5c:7c:87:88:f7:6b:fd: 46:24:15:59:b8:33:7d:6f:fd:3f:b0:fa:c6:4c:9c:72:67:25: d8:f4:67:e3:2e:ec:a0:e9:d8:17:fc:bc:16:6c:b3:ee:da:b5: bb:dc:51:81:8f:7f:05:b4:51:a7:8b:3c:b0:90:49:36:10:76: fa:70:31:32:45:fe:c5:42:a7:71:08:a7:62:7d:c5:b1:b7:ab: c1:c7:c9:e2:9f:18:40:42:ff:f0:c0:ef:3b:b4:14:f4:a3:02: 89:78:e4:8c:04:a4:e7:77:99:2c:88:87:6b:ac:0b:cf:7c:94: 32:85:0c:78:ec:78:3d:e9:af:b6:48:5f:6f:a7:44:f2:6e:b7: 62:1d:91:a1:ef:1d:e5:5c:d0:72:6b:82:f9:b1:9e:94:ab:62: cc:04:b4:cb:0b:b4:8a:95:e8:b3:da:a7:ea:db:f5:32:df:67: 43:50:e0:cd:2a:a0:a0:bb:1a:59:2e:25:a6:ab:d5:87:d1:ab: 1e:20:5d:61 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJRBc9r3zWg0YWC7B4y9py3URYaMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMTA0MDAxMDA3WhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNjVhZjhmZDk3M2E0OTY4YzEwMTU0ZGQxOTAyMmVhMmNi MjJiNjAxMzIzMTU4NzM4MTQyZTU3YWUwMmM5ZDE0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdXZm5ykLpMBZQePjzKBSNrT/VRyD6W4uTZjcsmgFpjJIO QjxjmJciI6JkLQ1wMlw5/5R8I1Mq+jLAsNyrW4OBvhxLhDZsLiwFuuIZpTBujuee Rus8Omv01Pta2bB/bvxLIBAjtfWhvdG0z/AvOZkaIyTXSe5cBiS4YMXVvFM8g+TN a/CG3oYUnBxvEcvj8x7B5Hv4C6pBrdY4MP2R7kadeQGhFC4Zx3xZ0TG1prcQp5cu b7TWnDpLh2/g9ai1twmBRgUeSpUbyrsQBFaa2OqnfqEWKmcTOhtKt6g2GnQSs2SN /oIxi8h4hoEXWRAzA9uS6OTvvzwHGLU2CJZHMJnBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUkh03UEJLDM2Fb+ckz49eZhPmlt4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2MxNTQ3NDM5LTI1OTMtNDhkNS1hYWY4LTcwZDY5ZTFhODE2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwABEwDQYJKoZIhvcNAQELBQADggEBAAIkIQ2MWys4dQpnc++/I3pK O3ME/BihPtHCmVSj7lGn8PvKJCeH88u9+K99bb1fNS5BGg2ho0GXn8Ztfpb7LRs0 XHyHiPdr/UYkFVm4M31v/T+w+sZMnHJnJdj0Z+Mu7KDp2Bf8vBZss+7atbvcUYGP fwW0UaeLPLCQSTYQdvpwMTJF/sVCp3EIp2J9xbG3q8HHyeKfGEBC//DA7zu0FPSj Aol45IwEpOd3mSyIh2usC898lDKFDHjseD3pr7ZIX2+nRPJut2IdkaHvHeVc0HJr gvmxnpSrYswEtMsLtIqV6LPap+rb9TLfZ0NQ4M0qoKC7GlkuJaar1YfRqx4gXWE= -----END CERTIFICATE-----Generated at Wed Nov 5 11:35:36 2025 by rpki-client