$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d17966f5-59b2-4e40-9068-579a0f07eb22.roa File: d17966f5-59b2-4e40-9068-579a0f07eb22.roa (raw, json) Hash identifier: sHyrJ1fA3cUGlzWgfAME+TXQ+TRfYplGkrh1Z2uClPs= Subject key identifier: 9F:CE:40:82:14:1E:37:B6:CB:3D:F7:68:9E:94:5F:6E:AA:9D:60:79 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 74050B7D6C83822499C56C4B40813FD6E8B519BF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d17966f5-59b2-4e40-9068-579a0f07eb22.roa Signing time: Fri 17 Oct 2025 20:10:18 +0000 ROA not before: Fri 17 Oct 2025 20:10:18 +0000 ROA not after: Fri 21 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8b00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:05:0b:7d:6c:83:82:24:99:c5:6c:4b:40:81:3f:d6:e8:b5:19:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 17 20:10:18 2025 GMT Not After : Nov 21 23:59:59 2025 GMT Subject: serialNumber=d8a83342389bdc09987925a9d4f2c786d02ef91cf37ba19ccd64d9c8159d93fd, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:e4:d8:a7:4d:22:84:9f:ed:bc:94:59:c5:d7: 7f:a1:86:cd:70:05:83:a0:50:76:7f:12:01:ef:f1: e2:af:b0:6e:54:e9:95:8c:0c:a6:9c:30:f5:23:32: 82:54:dd:5f:bb:1e:4b:6e:13:e0:b0:05:bb:7c:09: 24:8b:c2:24:2f:d8:25:3f:40:86:04:dc:0a:d6:ea: 35:6c:42:4a:1a:d0:3e:e1:bf:10:7d:2c:e2:f3:df: 19:9d:6c:c9:d8:28:28:4d:2b:ba:4e:78:70:66:97: 62:da:5b:d0:c9:45:ef:f1:3e:bf:8f:73:ec:3e:25: aa:30:4f:7f:8a:64:4a:5f:aa:24:2f:e4:4f:ed:f0: eb:0a:8e:8c:e7:21:83:c1:0d:14:b3:c9:76:9f:aa: db:8c:91:d2:b4:f1:85:7c:45:97:ec:dd:a6:28:19: 7f:0e:88:d6:30:7c:a9:73:29:d9:e3:8d:59:ef:91: 49:38:63:42:e1:ee:a3:55:d8:79:7f:89:ca:c2:a3: df:33:66:1a:b4:59:d2:35:f1:7c:c6:b9:d4:33:23: 99:9c:bb:c2:a5:80:6e:7a:cd:c8:f9:2d:27:64:5b: 82:62:23:91:3e:86:a0:e0:ed:9e:d9:43:23:72:2d: e7:d1:0d:9c:8b:dc:f0:99:22:a2:ce:8e:b9:73:46: 28:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:CE:40:82:14:1E:37:B6:CB:3D:F7:68:9E:94:5F:6E:AA:9D:60:79 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d17966f5-59b2-4e40-9068-579a0f07eb22.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8b00::/48 Signature Algorithm: sha256WithRSAEncryption 8a:46:dc:fa:e5:9d:65:ad:e6:3d:2c:2a:1c:8f:ef:c1:6f:f6: ef:e4:e5:a0:6e:27:40:85:fb:1d:3a:76:b2:c6:04:ba:a5:9f: f9:dd:b9:db:72:29:b0:9c:88:61:23:35:17:c0:90:f9:6b:91: 50:a6:9b:33:24:36:b7:1a:51:26:1a:f3:5e:96:c6:79:26:0c: 8f:90:ec:f4:38:26:a8:b1:26:29:4a:e9:50:54:6a:e3:49:63: 2b:b3:c7:1e:f2:c8:dc:60:fb:c4:75:e8:42:8e:ef:24:d3:ef: 00:cb:6f:27:fb:ca:0c:66:ba:11:39:6d:b0:64:c6:a6:9f:7f: 72:02:f2:f0:64:c3:63:4e:c3:9d:5b:61:34:ad:35:6e:5b:1d: dd:76:f5:b3:a2:6c:2b:c5:4d:37:05:63:f5:c8:25:03:11:c6: 85:86:52:df:34:35:55:8d:45:01:1f:84:e2:4d:ea:97:04:6d: 91:c0:b9:66:17:8c:07:65:20:92:7d:fd:34:b7:55:b2:a4:85: e6:86:42:e0:50:90:0e:03:df:00:08:da:39:99:ed:14:c0:1c: d7:f2:6e:17:c6:9d:47:f2:3a:59:44:06:52:36:23:11:28:9c: eb:79:09:e8:39:40:55:5c:2d:ef:72:ab:a0:ec:65:d0:38:19: 4b:3a:33:79 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdAULfWyDgiSZxWxLQIE/1ui1Gb8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDE3MjAxMDE4WhcNMjUxMTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkOGE4MzM0MjM4OWJkYzA5OTg3OTI1YTlkNGYyYzc4NmQw MmVmOTFjZjM3YmExOWNjZDY0ZDljODE1OWQ5M2ZkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCT5NinTSKEn+28lFnF13+hhs1wBYOgUHZ/EgHv8eKvsG5U 6ZWMDKacMPUjMoJU3V+7HktuE+CwBbt8CSSLwiQv2CU/QIYE3ArW6jVsQkoa0D7h vxB9LOLz3xmdbMnYKChNK7pOeHBml2LaW9DJRe/xPr+Pc+w+JaowT3+KZEpfqiQv 5E/t8OsKjoznIYPBDRSzyXafqtuMkdK08YV8RZfs3aYoGX8OiNYwfKlzKdnjjVnv kUk4Y0Lh7qNV2Hl/icrCo98zZhq0WdI18XzGudQzI5mcu8KlgG56zcj5LSdkW4Ji I5E+hqDg7Z7ZQyNyLefRDZyL3PCZIqLOjrlzRiifAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUn85AghQeN7bLPfdonpRfbqqdYHkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2QxNzk2NmY1LTU5YjItNGU0MC05MDY4LTU3OWEwZjA3ZWIyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDxiwAwDQYJKoZIhvcNAQELBQADggEBAIpG3PrlnWWt5j0sKhyP78Fv 9u/k5aBuJ0CF+x06drLGBLqln/ndudtyKbCciGEjNRfAkPlrkVCmmzMkNrcaUSYa 816WxnkmDI+Q7PQ4JqixJilK6VBUauNJYyuzxx7yyNxg+8R16EKO7yTT7wDLbyf7 ygxmuhE5bbBkxqaff3IC8vBkw2NOw51bYTStNW5bHd129bOibCvFTTcFY/XIJQMR xoWGUt80NVWNRQEfhOJN6pcEbZHAuWYXjAdlIJJ9/TS3VbKkheaGQuBQkA4D3wAI 2jmZ7RTAHNfybhfGnUfyOllEBlI2IxEonOt5Ceg5QFVcLe9yq6DsZdA4GUs6M3k= -----END CERTIFICATE-----Generated at Wed Nov 5 05:45:54 2025 by rpki-client