$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c8a22460-1c12-4314-8b13-6a586edac27c.roa File: c8a22460-1c12-4314-8b13-6a586edac27c.roa (raw, json) Hash identifier: LQR8k/Hz/BPIs2dZ/Wc4FCsPVtS06fXJWRDl2aMV6gQ= Subject key identifier: D7:78:6A:3D:BF:8F:4E:7B:7F:00:64:DD:FE:63:9B:0A:59:BC:58:6E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2F383C1AAC2B147884661A6FA2DFC92EDCD07779 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c8a22460-1c12-4314-8b13-6a586edac27c.roa Signing time: Tue 21 Oct 2025 12:50:14 +0000 ROA not before: Tue 21 Oct 2025 12:50:14 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ec00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:38:3c:1a:ac:2b:14:78:84:66:1a:6f:a2:df:c9:2e:dc:d0:77:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:14 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=49779eb02f26783bb90a5f347a5d35bd6bb8545c6af581569f05c419d82d95a4, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:19:86:a4:03:78:33:82:b6:94:17:2f:11:4f: 87:b6:be:da:ea:6d:5c:47:60:3c:00:da:bc:d9:40: b2:bd:13:eb:7c:06:ea:ff:aa:78:89:83:54:c8:51: 2d:34:da:33:fc:f6:86:ac:ad:e9:11:52:b2:ba:f3: 67:d2:6a:c4:8e:a6:8d:a4:69:04:b9:7c:c1:6e:9c: 55:86:60:6b:99:51:40:20:29:c5:93:45:42:75:9a: 2e:b4:86:6b:56:08:97:c9:51:d4:8f:c5:cb:61:91: 2a:be:a1:e0:ea:d0:b4:03:83:e3:65:f8:3c:85:d9: 0a:3b:93:b6:b0:3f:57:44:9f:98:e4:79:de:2f:d7: 1a:23:19:4c:90:db:0d:a0:36:4d:45:8a:98:d9:ac: 8d:70:3c:5e:82:cc:48:a4:db:e9:d3:fc:6e:03:3a: 67:80:a4:54:cb:13:7e:7a:11:ad:e1:c8:65:ff:60: ce:3b:9d:30:89:8b:d5:3e:9b:9f:0e:98:62:c1:15: 1d:39:88:47:6f:b2:37:4d:ae:9e:c7:84:b5:0c:f8: 9d:29:c0:60:0a:76:2d:6d:30:22:87:2f:42:73:84: 08:11:cf:75:b0:ec:88:b9:50:2d:ce:ea:73:19:9b: 1e:a4:54:4c:a6:70:ad:33:22:6b:ea:fa:b4:18:70: 95:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:78:6A:3D:BF:8F:4E:7B:7F:00:64:DD:FE:63:9B:0A:59:BC:58:6E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c8a22460-1c12-4314-8b13-6a586edac27c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ec00::/40 Signature Algorithm: sha256WithRSAEncryption 83:bc:e5:c7:8d:bf:10:2a:16:e1:e8:63:ec:ec:d9:ed:bf:1c: 75:37:e7:ad:84:2c:88:02:63:35:0d:9b:8a:9b:ee:ce:ba:18: a7:6b:87:59:31:2e:c3:f8:c9:03:54:36:4c:3f:8a:4c:1a:21: 78:ae:ec:03:30:12:42:40:be:23:79:89:01:47:b7:30:50:26: d3:6e:a2:5d:b5:f6:b5:f7:1e:34:52:f5:5a:1c:71:79:53:b6: 0b:78:c0:88:01:91:35:2e:f0:e3:bd:3a:dc:38:c4:3b:a3:88: 32:41:8f:9c:2e:b4:42:46:d7:03:7a:70:8d:2a:1a:7f:3f:c2: 70:4f:af:c7:0b:62:90:4c:ce:1c:4b:2a:64:ff:13:cc:26:a1: 7a:70:1a:4f:1c:00:04:0d:a6:6b:e7:b7:f4:c9:20:31:3e:41: 7d:e8:a8:e0:bb:2e:cf:c9:95:d3:ae:db:ff:16:67:ed:f9:a5: 96:55:d9:74:e5:a4:0f:59:24:a2:3d:50:d6:e1:bb:85:ae:1d: bd:43:33:b0:fd:c5:c8:30:d2:c7:ee:41:0a:29:6d:9e:ac:d6: 73:99:a3:8d:bb:71:71:7a:ab:54:82:bc:32:4b:bd:81:01:ba: 35:ee:d5:4b:98:4c:8c:b9:0e:a1:ad:48:48:27:ed:06:2c:ee: e9:ca:52:d7 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULzg8GqwrFHiEZhpvot/JLtzQd3kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDE0WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0OTc3OWViMDJmMjY3ODNiYjkwYTVmMzQ3YTVkMzViZDZi Yjg1NDVjNmFmNTgxNTY5ZjA1YzQxOWQ4MmQ5NWE0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZGYakA3gzgraUFy8RT4e2vtrqbVxHYDwA2rzZQLK9E+t8 Bur/qniJg1TIUS002jP89oasrekRUrK682fSasSOpo2kaQS5fMFunFWGYGuZUUAg KcWTRUJ1mi60hmtWCJfJUdSPxcthkSq+oeDq0LQDg+Nl+DyF2Qo7k7awP1dEn5jk ed4v1xojGUyQ2w2gNk1FipjZrI1wPF6CzEik2+nT/G4DOmeApFTLE356Ea3hyGX/ YM47nTCJi9U+m58OmGLBFR05iEdvsjdNrp7HhLUM+J0pwGAKdi1tMCKHL0JzhAgR z3Ww7Ii5UC3O6nMZmx6kVEymcK0zImvq+rQYcJVNAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU13hqPb+PTnt/AGTd/mObClm8WG4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M4YTIyNDYwLTFjMTItNDMxNC04YjEzLTZhNTg2ZWRhYzI3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD77DANBgkqhkiG9w0BAQsFAAOCAQEAg7zlx42/ECoW4ehj7OzZ7b8c dTfnrYQsiAJjNQ2bipvuzroYp2uHWTEuw/jJA1Q2TD+KTBoheK7sAzASQkC+I3mJ AUe3MFAm026iXbX2tfceNFL1WhxxeVO2C3jAiAGRNS7w47063DjEO6OIMkGPnC60 QkbXA3pwjSoafz/CcE+vxwtikEzOHEsqZP8TzCahenAaTxwABA2ma+e39MkgMT5B feio4Lsuz8mV067b/xZn7fmlllXZdOWkD1kkoj1Q1uG7ha4dvUMzsP3FyDDSx+5B CiltnqzWc5mjjbtxcXqrVIK8Mku9gQG6Ne7VS5hMjLkOoa1ISCftBizu6cpS1w== -----END CERTIFICATE-----Generated at Wed Nov 5 09:32:07 2025 by rpki-client