$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cdcc47d5-338b-4adc-9bc7-703261ddd214.roa File: cdcc47d5-338b-4adc-9bc7-703261ddd214.roa (raw, json) Hash identifier: TxkGeCiGi/2G/iUrhD6Y+b0bWOrAOUakqkK6pN/0Pck= Subject key identifier: 25:39:4C:75:91:BD:63:BE:3D:B6:9A:C1:D7:9C:43:22:41:72:11:12 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 781C00420A158DC786950D06BF44F1DA223BD621 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cdcc47d5-338b-4adc-9bc7-703261ddd214.roa Signing time: Tue 21 Oct 2025 12:50:08 +0000 ROA not before: Tue 21 Oct 2025 12:50:08 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:1c:00:42:0a:15:8d:c7:86:95:0d:06:bf:44:f1:da:22:3b:d6:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:08 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=4725e1c19cfb23a9556a882becaf77c90e5b1b7bfad47b05c0d08116a536bc3d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:50:7e:3b:98:1c:9e:73:0a:6f:25:99:26:0e: a4:eb:09:ad:57:ba:5e:ca:40:73:0f:e8:47:b9:2a: 40:24:a0:fb:9c:68:ad:ad:0b:6e:85:6e:77:3d:03: 6e:1f:67:c6:76:69:72:bd:97:1f:9d:27:cf:bb:a0: 8d:bc:a2:d1:a1:6b:9f:bc:51:98:77:51:ad:b3:61: a9:f5:c3:2f:6d:49:99:cd:8b:7d:88:b5:3a:8e:20: 59:7e:28:af:18:d4:d1:cf:08:28:3b:f9:ec:3f:18: be:8b:62:c8:a8:cc:c1:10:2b:65:88:f6:b5:30:58: 2f:ba:39:e6:9c:f9:81:ba:e9:1f:96:91:44:dd:5e: 2f:c0:f9:9b:bf:cb:20:19:39:fe:16:b7:33:dc:48: 09:c9:74:7d:85:69:1a:b4:96:d6:79:2e:3c:2a:28: 29:31:c3:f6:36:cb:13:3d:e8:9b:13:79:d6:4e:17: ac:c4:2d:13:fe:a4:80:e3:76:32:35:a2:e3:b6:84: d0:db:34:27:a3:02:c7:8b:d8:06:f1:5c:38:c5:43: 78:e2:ea:55:7e:6e:3f:67:c1:98:c2:f9:16:64:16: b6:71:d4:76:9b:3e:83:78:30:69:c3:f5:6d:35:d4: 84:0d:4f:d8:1e:75:35:d5:a5:d6:30:ba:46:7d:06: 8d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:39:4C:75:91:BD:63:BE:3D:B6:9A:C1:D7:9C:43:22:41:72:11:12 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cdcc47d5-338b-4adc-9bc7-703261ddd214.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6000::/44 Signature Algorithm: sha256WithRSAEncryption 29:5e:38:ea:89:83:bc:96:1a:7f:95:c4:7c:12:27:88:b4:e9: ef:bd:11:ec:81:5b:0d:d6:9f:47:d7:8c:ee:7c:27:1a:ba:48: 90:b9:e4:8b:50:33:d7:eb:d2:c7:cb:e1:bc:79:4b:27:0a:00: d9:23:71:f2:d2:ee:53:4e:cc:3f:85:1f:95:7c:c3:17:22:a9: b4:cd:7d:9e:63:65:28:74:d6:07:93:85:2d:7b:39:86:19:52: 36:3d:56:06:05:3e:6b:c1:9c:3f:43:2a:24:89:0f:b8:dc:9f: e7:d7:3e:f6:8c:9c:aa:07:15:54:27:96:dc:83:a2:d4:ff:c8: 12:df:bc:39:91:c0:7a:68:27:2e:1f:b8:7c:27:52:e0:91:5a: 6a:c1:5c:53:10:93:1a:a0:bb:4b:1d:a3:18:44:b2:34:4f:6b: 67:13:b1:b1:ab:89:d4:5f:1a:2b:ac:b0:36:3a:4c:9c:d5:2d: fb:a8:41:f4:4f:dd:a1:65:4f:29:e2:a7:05:5f:a4:75:56:4e: 52:eb:f3:af:b3:03:a9:b0:d3:a0:4b:28:af:e0:15:72:3e:98: a1:22:47:82:ae:a9:98:9d:bb:72:21:cf:f1:ca:2a:7b:5b:c3: db:04:d2:56:e6:fb:68:67:01:11:0d:1e:90:e6:9d:35:12:6d: 9c:d1:1d:d0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUeBwAQgoVjceGlQ0Gv0Tx2iI71iEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDA4WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NzI1ZTFjMTljZmIyM2E5NTU2YTg4MmJlY2FmNzdjOTBl NWIxYjdiZmFkNDdiMDVjMGQwODExNmE1MzZiYzNkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuUH47mByecwpvJZkmDqTrCa1Xul7KQHMP6Ee5KkAkoPuc aK2tC26Fbnc9A24fZ8Z2aXK9lx+dJ8+7oI28otGha5+8UZh3Ua2zYan1wy9tSZnN i32ItTqOIFl+KK8Y1NHPCCg7+ew/GL6LYsiozMEQK2WI9rUwWC+6Oeac+YG66R+W kUTdXi/A+Zu/yyAZOf4WtzPcSAnJdH2FaRq0ltZ5LjwqKCkxw/Y2yxM96JsTedZO F6zELRP+pIDjdjI1ouO2hNDbNCejAseL2AbxXDjFQ3ji6lV+bj9nwZjC+RZkFrZx 1HabPoN4MGnD9W011IQNT9gedTXVpdYwukZ9Bo3XAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUJTlMdZG9Y749tprB15xDIkFyERIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NkY2M0N2Q1LTMzOGItNGFkYy05YmM3LTcwMzI2MWRkZDIxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwYAAwDQYJKoZIhvcNAQELBQADggEBACleOOqJg7yWGn+VxHwSJ4i0 6e+9EeyBWw3Wn0fXjO58Jxq6SJC55ItQM9fr0sfL4bx5SycKANkjcfLS7lNOzD+F H5V8wxciqbTNfZ5jZSh01geThS17OYYZUjY9VgYFPmvBnD9DKiSJD7jcn+fXPvaM nKoHFVQnltyDotT/yBLfvDmRwHpoJy4fuHwnUuCRWmrBXFMQkxqgu0sdoxhEsjRP a2cTsbGridRfGiussDY6TJzVLfuoQfRP3aFlTynipwVfpHVWTlLr86+zA6mw06BL KK/gFXI+mKEiR4KuqZidu3Ihz/HKKntbw9sE0lbm+2hnARENHpDmnTUSbZzRHdA= -----END CERTIFICATE-----Generated at Wed Nov 5 07:59:46 2025 by rpki-client