$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2e3c99e-3e03-4115-856b-b25d7e97c4f3.roa File: d2e3c99e-3e03-4115-856b-b25d7e97c4f3.roa (raw, json) Hash identifier: PIX6vmevepu28AlFCDuIS5y0RwUsbeRXW8el9wpNrkI= Subject key identifier: 88:C4:10:FB:3D:13:E9:BE:3C:76:CC:98:62:08:80:DE:71:9B:61:4F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0903461EEEB226231C42E081E142C4837691065A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2e3c99e-3e03-4115-856b-b25d7e97c4f3.roa Signing time: Fri 24 Oct 2025 00:20:07 +0000 ROA not before: Fri 24 Oct 2025 00:20:07 +0000 ROA not after: Fri 28 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4141::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:03:46:1e:ee:b2:26:23:1c:42:e0:81:e1:42:c4:83:76:91:06:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 24 00:20:07 2025 GMT Not After : Nov 28 23:59:59 2025 GMT Subject: serialNumber=4cd3e7cc4a3f94896edc2caa859e54bed5d90e90fb354bcb4e8c11d5ede8f55d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b6:e1:40:39:e4:23:25:cf:31:a7:00:7b:cb: 16:d4:93:05:5c:e0:5c:f5:3b:03:7e:b6:63:42:27: a2:e4:ed:3b:42:f4:54:f8:c9:32:a0:aa:a0:ad:91: b9:0b:36:b7:b5:65:77:ab:9b:fd:f8:04:4c:44:7b: 2e:48:43:04:6b:04:5e:17:b2:cd:fa:3d:57:be:d9: f1:27:fa:35:6e:32:a3:8d:f3:ec:e6:46:f6:68:b5: b5:6e:33:39:a7:31:cc:9a:67:58:27:36:fe:a3:41: 81:a8:c9:6a:96:01:14:8a:11:6c:7a:90:72:52:b0: 49:1e:a2:3e:d2:16:39:06:b5:aa:b5:ca:bc:68:79: 70:61:59:01:38:9a:72:0e:22:77:fd:27:88:32:e0: 9c:a8:42:a1:c8:ff:c8:fe:90:a6:b0:cc:c0:23:cb: da:0c:d6:28:ca:c0:aa:3f:9d:6b:1e:0d:44:4a:d0: 00:af:51:28:a7:04:38:db:c3:ff:15:bf:ef:58:ae: 21:88:3d:30:f3:2f:14:70:40:8e:13:a6:36:2d:ae: 31:a7:fd:8a:6d:27:3a:16:5b:62:40:7a:20:51:d2: 8c:5f:3d:a7:c6:69:61:78:46:9d:d9:26:01:1a:6e: 47:ff:c0:db:1e:b3:73:75:e9:4c:7e:15:77:2e:b8: f9:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:C4:10:FB:3D:13:E9:BE:3C:76:CC:98:62:08:80:DE:71:9B:61:4F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2e3c99e-3e03-4115-856b-b25d7e97c4f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4141::/48 Signature Algorithm: sha256WithRSAEncryption 90:3d:92:30:60:0c:bd:7c:ec:3c:47:93:75:2a:cf:f9:5a:4b: 4d:58:c1:1c:b5:ac:46:d7:78:c0:b1:8b:61:81:c5:19:52:02: c8:c2:55:f9:c5:07:86:0d:5f:6c:8c:4d:8a:11:8d:d1:03:5b: a5:98:a1:c0:12:cd:f5:00:75:92:23:67:f6:b2:03:a0:87:44: 39:ff:67:bb:10:8e:65:d7:b9:f1:b5:1e:bc:47:3d:0c:fb:82: 31:c7:e0:29:4d:ee:42:a1:5e:d8:3d:62:97:13:3b:69:c1:d2: af:b6:19:b5:79:68:ca:c5:21:33:9f:9e:23:0b:a9:13:c0:80: 72:2a:51:9e:33:e9:1e:68:0d:70:76:28:2a:92:1b:f3:16:78: 02:e4:2d:4f:c0:5f:ec:03:33:0b:81:64:a6:44:e0:6d:4f:21: 93:fe:0f:fd:98:b1:27:f0:1c:6d:7c:64:5e:0e:7c:31:70:4e: 5e:a4:e3:d8:cf:87:8a:b3:a5:06:bf:99:a5:8f:c9:2b:31:5a: 48:2f:eb:6a:4c:4d:53:9a:f6:cb:ac:bb:5b:59:ac:ee:ff:34: 1b:0f:05:ff:74:87:19:18:ff:65:ef:b4:95:e9:e0:e6:94:df: b8:9a:ba:95:d0:10:91:75:b4:44:10:68:79:b7:63:d9:03:12: e6:dd:96:40 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCQNGHu6yJiMcQuCB4ULEg3aRBlowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDI0MDAyMDA3WhcNMjUxMTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0Y2QzZTdjYzRhM2Y5NDg5NmVkYzJjYWE4NTllNTRiZWQ1 ZDkwZTkwZmIzNTRiY2I0ZThjMTFkNWVkZThmNTVkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRtuFAOeQjJc8xpwB7yxbUkwVc4Fz1OwN+tmNCJ6Lk7TtC 9FT4yTKgqqCtkbkLNre1ZXerm/34BExEey5IQwRrBF4Xss36PVe+2fEn+jVuMqON 8+zmRvZotbVuMzmnMcyaZ1gnNv6jQYGoyWqWARSKEWx6kHJSsEkeoj7SFjkGtaq1 yrxoeXBhWQE4mnIOInf9J4gy4JyoQqHI/8j+kKawzMAjy9oM1ijKwKo/nWseDURK 0ACvUSinBDjbw/8Vv+9YriGIPTDzLxRwQI4TpjYtrjGn/YptJzoWW2JAeiBR0oxf PafGaWF4Rp3ZJgEabkf/wNses3N16Ux+FXcuuPnLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUiMQQ+z0T6b48dsyYYgiA3nGbYU8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2QyZTNjOTllLTNlMDMtNDExNS04NTZiLWIyNWQ3ZTk3YzRmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwQUEwDQYJKoZIhvcNAQELBQADggEBAJA9kjBgDL187DxHk3Uqz/la S01YwRy1rEbXeMCxi2GBxRlSAsjCVfnFB4YNX2yMTYoRjdEDW6WYocASzfUAdZIj Z/ayA6CHRDn/Z7sQjmXXufG1HrxHPQz7gjHH4ClN7kKhXtg9YpcTO2nB0q+2GbV5 aMrFITOfniMLqRPAgHIqUZ4z6R5oDXB2KCqSG/MWeALkLU/AX+wDMwuBZKZE4G1P IZP+D/2YsSfwHG18ZF4OfDFwTl6k49jPh4qzpQa/maWPySsxWkgv62pMTVOa9sus u1tZrO7/NBsPBf90hxkY/2XvtJXp4OaU37iaupXQEJF1tEQQaHm3Y9kDEubdlkA= -----END CERTIFICATE-----Generated at Wed Nov 5 09:33:46 2025 by rpki-client