$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2754057-8887-4dfa-96d2-8349e00ea226.roa File: d2754057-8887-4dfa-96d2-8349e00ea226.roa (raw, json) Hash identifier: QVz076Nt9F4C/AaRJwZmpnQJDyXW63F0Y2LqTx2IpzU= Subject key identifier: B7:30:B2:8D:F1:4A:4C:1C:74:29:3A:60:4A:45:2F:FD:B8:DF:59:37 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0922C31C92677E1D60969AE526B889EEC6D886B2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2754057-8887-4dfa-96d2-8349e00ea226.roa Signing time: Fri 31 Oct 2025 01:50:36 +0000 ROA not before: Fri 31 Oct 2025 01:50:36 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6108::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:22:c3:1c:92:67:7e:1d:60:96:9a:e5:26:b8:89:ee:c6:d8:86:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 31 01:50:36 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=e5d13f71e9e387aec666ffcded6cc82f6b835e0126b64a6f39648eab50d3ee58, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a9:31:47:e2:6a:41:11:b7:3d:d6:3e:ef:ec: ca:59:93:69:ce:7f:36:53:c1:50:c3:ec:9a:09:41: 4c:e4:eb:56:8e:4f:5e:a3:c6:6f:8a:e8:c6:5e:fb: a2:00:51:be:d8:30:a7:d6:15:4d:ea:96:5e:2c:fc: eb:13:3b:89:11:e4:4b:b6:da:d5:ac:8e:a5:53:a5: 08:51:64:c3:4a:bb:1b:59:b6:f7:7e:a7:c2:3a:dd: 3b:76:4b:82:d6:e4:bd:42:1d:aa:57:13:bf:1e:ee: 63:f8:89:b6:6a:82:1a:fc:bd:50:b4:87:d4:39:5c: f3:df:cb:b7:8c:cb:58:c1:58:b1:f0:cf:6b:02:9b: 56:fb:71:c9:ec:86:c7:30:b0:b6:0b:d0:72:10:d5: 2d:87:9d:62:5b:ab:97:02:fb:3f:e1:65:c3:4e:f5: 72:7e:13:6c:49:8d:51:1b:a7:c3:41:4a:8f:b1:7e: 8a:fc:ad:73:19:41:e1:11:ad:64:29:85:a2:06:39: e2:43:9d:6d:0b:b9:4b:5e:14:f6:8e:cb:8c:5c:2b: 52:19:0d:ab:4a:42:c3:3a:ff:c5:cd:77:7f:6c:37: 22:20:51:dc:64:a5:0e:e5:ee:10:e5:d2:1d:7d:13: c1:1c:43:1e:a9:e7:fb:00:5f:bf:2a:8e:f5:c3:45: a2:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:30:B2:8D:F1:4A:4C:1C:74:29:3A:60:4A:45:2F:FD:B8:DF:59:37 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2754057-8887-4dfa-96d2-8349e00ea226.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6108::/48 Signature Algorithm: sha256WithRSAEncryption 6b:e7:4b:8c:ae:a7:f8:4b:03:87:75:53:09:00:c8:92:13:5f: 9d:70:81:4a:2e:88:cd:f9:a8:21:76:cb:f7:8d:b2:06:1f:57: 09:9e:e6:d0:b0:9a:41:4e:2e:8c:66:45:f1:4a:7a:85:ca:7e: 86:18:4c:5e:cc:a2:8f:8d:68:70:05:7a:8f:7d:b1:05:ea:46: d9:af:61:fa:f3:10:25:45:8b:65:31:c0:80:6a:34:44:5d:76: 97:36:14:d7:9a:2a:04:ce:6e:20:30:26:35:37:6b:da:40:9a: 89:ab:9a:3f:43:f1:f1:0b:fa:9a:6d:8b:6a:2f:05:3c:9a:89: 17:df:fa:87:19:4b:a1:43:e8:c8:31:c5:94:8a:a5:94:fc:ad: 2b:7e:d3:df:c1:1b:64:80:38:cc:18:35:0c:fa:4d:50:47:c6: 1b:be:8d:5d:01:66:dc:d7:6e:c1:73:bd:dd:00:0d:b2:19:5f: 44:6d:44:91:9c:e5:0c:76:b2:ff:3f:d4:21:48:d4:7d:43:70: e4:2c:fc:d3:34:e5:86:3a:5e:85:f5:8c:52:fe:52:33:c7:c8: ad:ac:da:78:ae:0d:15:7b:67:26:34:4b:78:e9:ee:b6:55:18: 8e:89:bf:fc:2a:23:bd:18:6f:23:77:47:23:af:0f:cb:31:33: 50:a7:73:55 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCSLDHJJnfh1glprlJriJ7sbYhrIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDMxMDE1MDM2WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNWQxM2Y3MWU5ZTM4N2FlYzY2NmZmY2RlZDZjYzgyZjZi ODM1ZTAxMjZiNjRhNmYzOTY0OGVhYjUwZDNlZTU4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/qTFH4mpBEbc91j7v7MpZk2nOfzZTwVDD7JoJQUzk61aO T16jxm+K6MZe+6IAUb7YMKfWFU3qll4s/OsTO4kR5Eu22tWsjqVTpQhRZMNKuxtZ tvd+p8I63Tt2S4LW5L1CHapXE78e7mP4ibZqghr8vVC0h9Q5XPPfy7eMy1jBWLHw z2sCm1b7ccnshscwsLYL0HIQ1S2HnWJbq5cC+z/hZcNO9XJ+E2xJjVEbp8NBSo+x for8rXMZQeERrWQphaIGOeJDnW0LuUteFPaOy4xcK1IZDatKQsM6/8XNd39sNyIg UdxkpQ7l7hDl0h19E8EcQx6p5/sAX78qjvXDRaLBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUtzCyjfFKTBx0KTpgSkUv/bjfWTcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2QyNzU0MDU3LTg4ODctNGRmYS05NmQyLTgzNDllMDBlYTIyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQgwDQYJKoZIhvcNAQELBQADggEBAGvnS4yup/hLA4d1UwkAyJIT X51wgUouiM35qCF2y/eNsgYfVwme5tCwmkFOLoxmRfFKeoXKfoYYTF7Moo+NaHAF eo99sQXqRtmvYfrzECVFi2UxwIBqNERddpc2FNeaKgTObiAwJjU3a9pAmomrmj9D 8fEL+ppti2ovBTyaiRff+ocZS6FD6MgxxZSKpZT8rSt+09/BG2SAOMwYNQz6TVBH xhu+jV0BZtzXbsFzvd0ADbIZX0RtRJGc5Qx2sv8/1CFI1H1DcOQs/NM05YY6XoX1 jFL+UjPHyK2s2niuDRV7ZyY0S3jp7rZVGI6Jv/wqI70YbyN3RyOvD8sxM1Cnc1U= -----END CERTIFICATE-----Generated at Wed Nov 5 05:38:14 2025 by rpki-client