$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c4e52abf-4d7e-4707-bd4e-1ceba64e18cd.roa File: c4e52abf-4d7e-4707-bd4e-1ceba64e18cd.roa (raw, json) Hash identifier: IjohpwYz5od2pA9ELcxRmTRv3FlDBxF4HCYQ4D6D7/s= Subject key identifier: 8F:EB:DE:D3:F8:92:F3:37:52:A8:E5:FD:9A:B0:FF:06:5D:9C:3F:66 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 22B6D1A22F7C038F786A538E45A3D9CC1FE44C0E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c4e52abf-4d7e-4707-bd4e-1ceba64e18cd.roa Signing time: Tue 21 Oct 2025 13:00:25 +0000 ROA not before: Tue 21 Oct 2025 13:00:25 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e600::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:b6:d1:a2:2f:7c:03:8f:78:6a:53:8e:45:a3:d9:cc:1f:e4:4c:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:00:25 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=9cf8d12fc679f1f7e19fb8f0ad5fa37c6687020e818b1aac855402c4b38f7c4c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:56:58:e4:50:13:5b:45:50:70:9a:be:51:ce: 6d:6a:32:fa:b7:7a:95:3e:0b:24:2b:d8:2e:1a:82: c4:22:b0:ec:ff:6f:8e:e3:e4:be:31:c2:b1:e8:dd: 5c:8d:b0:1e:ab:f1:2a:4b:e1:0c:62:ad:4a:8d:64: 1c:c1:9e:f9:27:b2:34:69:39:c0:3c:07:13:a0:66: 26:77:a9:09:f2:22:ab:65:1a:1d:a5:81:f7:8b:9f: 6a:8f:bf:17:a4:df:35:6e:b7:c6:04:9a:9a:60:4d: f0:8a:70:a3:c1:c8:18:0d:61:41:97:b6:86:28:eb: 73:ea:72:ac:84:a5:69:52:a7:90:94:57:b6:0a:5e: 99:bf:d1:80:6e:66:31:62:4a:20:b2:31:58:36:1f: 6f:7e:6d:a3:95:c6:6e:62:a4:ae:99:69:25:38:dd: f4:e2:56:54:cf:1e:56:bf:6f:96:d4:99:4b:de:b1: a8:8a:c2:c4:a0:42:0c:28:7f:d9:c7:b9:be:c1:45: c6:0a:11:24:ed:18:4d:2b:24:7c:dc:d9:9e:83:47: 62:9c:dd:c3:b2:1b:8d:8d:ff:5d:26:26:c3:ca:fd: 76:e1:30:66:18:82:82:8f:e2:64:be:6e:43:e2:e7: d7:01:27:45:59:cb:85:b3:9f:0c:49:a1:73:ba:29: 82:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:EB:DE:D3:F8:92:F3:37:52:A8:E5:FD:9A:B0:FF:06:5D:9C:3F:66 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c4e52abf-4d7e-4707-bd4e-1ceba64e18cd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e600::/42 Signature Algorithm: sha256WithRSAEncryption 53:17:a0:b8:a6:57:97:17:95:ee:a7:8a:32:30:02:52:99:9d: b7:94:43:ae:5f:b9:b3:bd:9f:e0:6f:f4:45:7d:05:88:60:43: d1:42:05:57:be:b4:53:49:64:cc:c6:04:44:f1:f7:ec:69:ad: ed:de:fd:d7:6a:40:2e:c0:2e:07:e6:e4:0e:a7:3b:58:68:0a: b8:ee:5b:de:e5:ce:36:cb:95:2b:e2:07:2a:04:82:7f:83:0a: 8e:67:32:e3:05:5d:53:ca:46:27:78:74:d1:97:b7:82:f1:39: 12:0c:b4:f1:77:de:b3:a4:52:d9:c7:7b:3b:3e:5a:2e:d7:f0: 12:31:cd:f6:5a:55:4a:ab:cf:62:b4:d9:c5:df:17:96:e6:ff: 9d:21:e7:b1:70:83:02:21:a0:6e:0b:21:9e:0f:15:90:fc:e8: 06:9e:1b:95:67:72:10:7d:c0:96:05:77:db:ec:06:0e:8f:9b: ae:d8:aa:c3:ef:10:10:aa:c6:f3:0c:16:d7:0a:3c:47:34:76: 71:81:76:2e:22:73:52:12:23:a4:80:1a:e9:da:2d:cd:b7:91: cd:22:15:57:74:67:93:3f:99:b9:10:93:25:ea:8c:62:09:b7: 2b:7d:a4:9f:91:d2:e6:a0:af:8b:17:09:8a:fe:fc:fa:2b:e8: 70:70:8a:69 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIrbRoi98A494alOORaPZzB/kTA4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMwMDI1WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5Y2Y4ZDEyZmM2NzlmMWY3ZTE5ZmI4ZjBhZDVmYTM3YzY2 ODcwMjBlODE4YjFhYWM4NTU0MDJjNGIzOGY3YzRjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdVljkUBNbRVBwmr5Rzm1qMvq3epU+CyQr2C4agsQisOz/ b47j5L4xwrHo3VyNsB6r8SpL4QxirUqNZBzBnvknsjRpOcA8BxOgZiZ3qQnyIqtl Gh2lgfeLn2qPvxek3zVut8YEmppgTfCKcKPByBgNYUGXtoYo63PqcqyEpWlSp5CU V7YKXpm/0YBuZjFiSiCyMVg2H29+baOVxm5ipK6ZaSU43fTiVlTPHla/b5bUmUve saiKwsSgQgwof9nHub7BRcYKESTtGE0rJHzc2Z6DR2Kc3cOyG42N/10mJsPK/Xbh MGYYgoKP4mS+bkPi59cBJ0VZy4WznwxJoXO6KYILAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUj+ve0/iS8zdSqOX9mrD/Bl2cP2YwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M0ZTUyYWJmLTRkN2UtNDcwNy1iZDRlLTFjZWJhNjRlMThjZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD75gAwDQYJKoZIhvcNAQELBQADggEBAFMXoLimV5cXle6nijIwAlKZ nbeUQ65fubO9n+Bv9EV9BYhgQ9FCBVe+tFNJZMzGBETx9+xpre3e/ddqQC7ALgfm 5A6nO1hoCrjuW97lzjbLlSviByoEgn+DCo5nMuMFXVPKRid4dNGXt4LxORIMtPF3 3rOkUtnHezs+Wi7X8BIxzfZaVUqrz2K02cXfF5bm/50h57FwgwIhoG4LIZ4PFZD8 6AaeG5VnchB9wJYFd9vsBg6Pm67YqsPvEBCqxvMMFtcKPEc0dnGBdi4ic1ISI6SA GunaLc23kc0iFVd0Z5M/mbkQkyXqjGIJtyt9pJ+R0uagr4sXCYr+/Por6HBwimk= -----END CERTIFICATE-----Generated at Wed Nov 5 12:36:47 2025 by rpki-client