$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ceacf551-02ee-4f40-8abd-053509a65c13.roa File: ceacf551-02ee-4f40-8abd-053509a65c13.roa (raw, json) Hash identifier: awX8Nfy3AwGD32+4jXljnkJcWU3e1CIegwPkPfXWlLU= Subject key identifier: 94:0C:FF:BE:5F:F1:9A:BF:F3:26:0B:1C:ED:06:AD:5B:E9:AD:E3:93 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6A2623E80198F389CB75436A7AFFFFA51982D8BA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ceacf551-02ee-4f40-8abd-053509a65c13.roa Signing time: Tue 21 Oct 2025 13:10:09 +0000 ROA not before: Tue 21 Oct 2025 13:10:09 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:ea00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:26:23:e8:01:98:f3:89:cb:75:43:6a:7a:ff:ff:a5:19:82:d8:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:10:09 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=5d2dadd5e8e786894471c98b3b9b1062ee70bf251f9af02837f667b332a86f13, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8e:17:08:0e:af:4b:b9:05:54:dc:4e:c5:49: 25:1e:74:69:c1:0e:c0:55:39:35:86:b4:d5:01:35: 79:e7:ba:c1:3a:1d:52:ad:3f:02:69:a5:23:f8:fd: c8:f3:9a:81:18:99:20:7e:89:91:c3:25:e0:d9:a7: ad:32:41:f3:c4:89:89:42:be:af:35:a4:90:68:bf: ba:79:42:d1:ba:7f:34:8a:95:76:8f:fb:1b:ca:f1: 9c:5d:15:08:26:9f:09:3f:24:6b:72:36:7a:3c:17: be:9f:36:df:39:be:81:a9:6e:85:04:eb:04:d4:b6: 96:9d:c2:4a:22:a1:2a:0b:be:ac:43:96:61:e0:1a: ad:20:4b:af:64:4e:4c:17:31:4a:a4:ac:d2:0c:df: 7c:60:df:e2:7d:84:ce:1a:bf:12:33:b0:fb:38:b4: 45:c6:99:ee:09:f1:d2:99:7f:f1:16:6f:10:71:f5: b4:0e:43:39:78:5a:24:d7:1d:4b:2f:71:54:03:d9: df:2c:16:15:9c:bb:9c:46:12:f1:cb:b4:67:9a:f1: 9e:fc:8e:7e:87:81:7b:d9:dd:4e:da:16:fd:9f:f3: 41:1d:88:fc:a2:00:fa:aa:0e:ac:59:3b:ea:c3:79: b8:b4:2a:d2:3c:d2:03:e1:86:7f:05:e4:4a:6c:d5: b1:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:0C:FF:BE:5F:F1:9A:BF:F3:26:0B:1C:ED:06:AD:5B:E9:AD:E3:93 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ceacf551-02ee-4f40-8abd-053509a65c13.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ea00::/42 Signature Algorithm: sha256WithRSAEncryption 41:b6:c2:d8:69:1a:f1:9a:33:14:30:3a:81:ab:28:c5:39:08: a0:4c:aa:22:5c:48:f3:98:a7:39:7e:0e:c0:67:45:41:f4:5b: ce:20:4e:fa:3a:6a:0d:81:f2:99:fb:6b:4a:5c:5b:2d:60:82: f9:a0:df:47:1e:6f:86:a9:53:6b:33:7a:96:10:11:08:af:65: dc:bf:6f:b1:4a:7a:4d:3c:55:ab:76:eb:93:c9:85:f7:e0:76: 34:3a:cd:61:17:1f:ec:97:a3:f8:5c:7f:d4:99:01:ee:1f:fa: 48:f9:07:d8:f5:aa:0b:65:de:4e:a3:7f:f2:00:76:44:18:67: 3f:aa:01:57:10:18:e0:fb:63:15:0b:30:38:63:b0:fd:d4:25: 5e:07:5b:a0:bb:f3:e0:65:c6:96:55:cc:c5:18:e7:5c:5a:5f: e5:55:43:7c:bb:c0:fb:dc:d9:3a:74:40:50:36:2b:50:58:af: 03:ce:37:ad:c5:a2:42:0e:db:6d:8f:1a:b2:39:84:ee:5f:d8: 5a:b0:24:ca:c7:dc:68:e6:42:c0:98:ce:16:69:c5:7b:53:7c: 07:92:7b:b2:33:57:bd:c8:34:94:a2:ce:5c:67:5c:68:78:75: 0c:1c:f6:77:a0:59:4f:ac:75:62:4f:85:a7:07:3a:fc:ab:c6: 09:eb:2f:48 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUaiYj6AGY84nLdUNqev//pRmC2LowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMxMDA5WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZDJkYWRkNWU4ZTc4Njg5NDQ3MWM5OGIzYjliMTA2MmVl NzBiZjI1MWY5YWYwMjgzN2Y2NjdiMzMyYTg2ZjEzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCljhcIDq9LuQVU3E7FSSUedGnBDsBVOTWGtNUBNXnnusE6 HVKtPwJppSP4/cjzmoEYmSB+iZHDJeDZp60yQfPEiYlCvq81pJBov7p5QtG6fzSK lXaP+xvK8ZxdFQgmnwk/JGtyNno8F76fNt85voGpboUE6wTUtpadwkoioSoLvqxD lmHgGq0gS69kTkwXMUqkrNIM33xg3+J9hM4avxIzsPs4tEXGme4J8dKZf/EWbxBx 9bQOQzl4WiTXHUsvcVQD2d8sFhWcu5xGEvHLtGea8Z78jn6HgXvZ3U7aFv2f80Ed iPyiAPqqDqxZO+rDebi0KtI80gPhhn8F5Eps1bFDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUlAz/vl/xmr/zJgsc7QatW+mt45MwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NlYWNmNTUxLTAyZWUtNGY0MC04YWJkLTA1MzUwOWE2NWMxMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76gAwDQYJKoZIhvcNAQELBQADggEBAEG2wthpGvGaMxQwOoGrKMU5 CKBMqiJcSPOYpzl+DsBnRUH0W84gTvo6ag2B8pn7a0pcWy1ggvmg30ceb4apU2sz epYQEQivZdy/b7FKek08Vat265PJhffgdjQ6zWEXH+yXo/hcf9SZAe4f+kj5B9j1 qgtl3k6jf/IAdkQYZz+qAVcQGOD7YxULMDhjsP3UJV4HW6C78+BlxpZVzMUY51xa X+VVQ3y7wPvc2Tp0QFA2K1BYrwPON63FokIO222PGrI5hO5f2FqwJMrH3GjmQsCY zhZpxXtTfAeSe7IzV73INJSizlxnXGh4dQwc9negWU+sdWJPhacHOvyrxgnrL0g= -----END CERTIFICATE-----Generated at Wed Nov 5 05:47:47 2025 by rpki-client