$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1ddf06f-fa7b-4d9a-969b-553930838905.roa File: c1ddf06f-fa7b-4d9a-969b-553930838905.roa (raw, json) Hash identifier: Sxkk75HLQu9MgZnOZaihn2Xm5MvDon7WSpXcXLTmpQE= Subject key identifier: 2E:84:78:34:97:35:A5:BC:C3:EE:44:B4:3E:BD:36:8B:7A:AD:96:14 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 53448BA54FB17C99B7F59044F7E58F37AC9892F4 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1ddf06f-fa7b-4d9a-969b-553930838905.roa Signing time: Fri 31 Oct 2025 01:50:08 +0000 ROA not before: Fri 31 Oct 2025 01:50:08 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6119::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:44:8b:a5:4f:b1:7c:99:b7:f5:90:44:f7:e5:8f:37:ac:98:92:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 31 01:50:08 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=60cca5fed46bfaae74657c70afe313df1cf377f38dbaff2fc64cf14191b8c519, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:38:9d:7a:e6:90:20:df:ed:81:8e:4f:5d:e3: 54:5d:0b:04:25:ff:42:c9:9d:27:60:d0:ae:9e:e5: d1:4b:da:23:ed:94:c7:4e:08:5a:6a:6c:41:06:4b: eb:94:b5:b5:fa:3a:8b:70:aa:82:53:25:8b:b1:60: 32:7e:78:66:6f:07:9d:ba:16:ab:0c:32:e1:0e:7a: 22:66:b2:d8:cd:d4:40:f3:f6:35:fa:6d:75:45:52: 7b:53:ab:2d:85:95:59:ea:16:7e:5b:b8:90:78:a1: 7e:49:66:db:23:cc:34:06:53:9f:bc:b9:a7:f5:92: a3:7d:24:61:dd:44:6d:92:45:ba:eb:0a:66:f2:8e: 1c:a3:a7:f9:b9:61:f1:fc:01:07:e6:29:9d:b2:14: d2:fc:be:03:45:1f:8f:65:c4:ff:6f:a6:52:c1:b5: 66:68:6a:22:95:ce:2b:09:fe:c2:63:58:86:f6:b7: fb:80:fb:cb:08:fb:bc:93:6c:45:12:b4:fb:64:b6: 30:ad:23:65:67:33:a5:5e:a3:10:f7:7a:43:25:5c: 88:38:f9:16:90:2b:ae:b4:10:0e:65:05:42:5d:ff: f7:17:e4:99:2c:17:c3:79:01:8f:a3:30:a9:54:d5: 2a:18:35:14:f6:ec:56:27:fc:da:11:6f:22:1c:73: de:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:84:78:34:97:35:A5:BC:C3:EE:44:B4:3E:BD:36:8B:7A:AD:96:14 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1ddf06f-fa7b-4d9a-969b-553930838905.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6119::/48 Signature Algorithm: sha256WithRSAEncryption 5a:99:75:40:b3:6e:22:bf:56:95:76:a6:db:29:0d:78:40:d7: a1:1c:5f:17:41:a2:22:ea:cd:31:90:25:2e:93:66:26:37:6a: 4f:8e:85:d0:98:c3:fe:68:a3:d4:47:07:3f:a6:e6:cc:f7:c1: 77:f9:72:69:06:4c:09:b2:f3:fb:7d:56:c9:52:d2:4f:12:45: c0:2a:7f:3c:bf:f1:34:17:74:fa:ee:62:9c:7a:56:e9:0d:e8: df:18:da:46:31:5c:25:1d:8a:de:d5:b6:2f:46:6c:64:d0:b4: b6:ef:fc:38:77:ec:8f:b7:83:f7:1d:2a:d0:bf:c9:cf:1a:de: bb:a0:f4:f4:c0:94:86:9b:92:73:a8:4d:d8:03:a2:95:fe:e2: a3:9b:50:ab:6f:ac:01:1b:74:33:ef:73:f5:1a:c3:12:73:2f: 6b:7e:64:34:80:37:51:93:9a:9c:23:fc:1d:23:7c:58:cd:e5: c1:95:c5:f4:6c:af:f2:41:a8:4e:bb:01:fe:2e:ec:83:28:cb: 68:13:b7:cb:b9:81:a8:2e:f4:de:ef:df:67:f8:c3:e4:83:e7: 84:95:d3:4b:aa:e1:01:fe:db:5c:7c:d2:b8:cb:31:30:a9:46: 5e:b8:ae:9e:c9:00:d6:e5:ab:47:4e:bb:c4:6f:36:9d:bd:87: 00:a6:3d:ee -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUU0SLpU+xfJm39ZBE9+WPN6yYkvQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDMxMDE1MDA4WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MGNjYTVmZWQ0NmJmYWFlNzQ2NTdjNzBhZmUzMTNkZjFj ZjM3N2YzOGRiYWZmMmZjNjRjZjE0MTkxYjhjNTE5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXOJ165pAg3+2Bjk9d41RdCwQl/0LJnSdg0K6e5dFL2iPt lMdOCFpqbEEGS+uUtbX6OotwqoJTJYuxYDJ+eGZvB526FqsMMuEOeiJmstjN1EDz 9jX6bXVFUntTqy2FlVnqFn5buJB4oX5JZtsjzDQGU5+8uaf1kqN9JGHdRG2SRbrr Cmbyjhyjp/m5YfH8AQfmKZ2yFNL8vgNFH49lxP9vplLBtWZoaiKVzisJ/sJjWIb2 t/uA+8sI+7yTbEUStPtktjCtI2VnM6VeoxD3ekMlXIg4+RaQK660EA5lBUJd//cX 5JksF8N5AY+jMKlU1SoYNRT27FYn/NoRbyIcc96XAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQULoR4NJc1pbzD7kS0Pr02i3qtlhQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2MxZGRmMDZmLWZhN2ItNGQ5YS05NjliLTU1MzkzMDgzODkwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRkwDQYJKoZIhvcNAQELBQADggEBAFqZdUCzbiK/VpV2ptspDXhA 16EcXxdBoiLqzTGQJS6TZiY3ak+OhdCYw/5oo9RHBz+m5sz3wXf5cmkGTAmy8/t9 VslS0k8SRcAqfzy/8TQXdPruYpx6VukN6N8Y2kYxXCUdit7Vti9GbGTQtLbv/Dh3 7I+3g/cdKtC/yc8a3rug9PTAlIabknOoTdgDopX+4qObUKtvrAEbdDPvc/UawxJz L2t+ZDSAN1GTmpwj/B0jfFjN5cGVxfRsr/JBqE67Af4u7IMoy2gTt8u5gagu9N7v 32f4w+SD54SV00uq4QH+21x80rjLMTCpRl64rp7JANblq0dOu8RvNp29hwCmPe4= -----END CERTIFICATE-----Generated at Wed Nov 5 05:38:45 2025 by rpki-client