$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d87c0155-8519-40f6-b9d9-99e1ab6574d4.roa File: d87c0155-8519-40f6-b9d9-99e1ab6574d4.roa (raw, json) Hash identifier: Vy2HI7hTza2V7YDN4kCvJ6q25bgsqZrF3o5eNRthelg= Subject key identifier: 3B:3D:78:AE:88:51:5B:59:A9:E0:D4:CA:A6:91:74:E6:89:24:FD:FB Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6983221D09846CE9796570FD39B462883A653430 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d87c0155-8519-40f6-b9d9-99e1ab6574d4.roa Signing time: Fri 31 Oct 2025 01:50:46 +0000 ROA not before: Fri 31 Oct 2025 01:50:46 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:611c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:83:22:1d:09:84:6c:e9:79:65:70:fd:39:b4:62:88:3a:65:34:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 31 01:50:46 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=d8e0c784a14cf2bc64b3f158be8cc61546da27ef139703783b00e54870ed1e05, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:dd:70:8a:b9:e6:63:51:b6:4b:40:db:25:8b: b7:5e:15:1a:3e:f0:62:6c:70:ca:00:97:00:f1:58: e3:7a:27:d3:b9:77:01:76:4b:60:f1:bf:f1:1b:d7: 62:17:f6:c2:93:fc:e4:5e:8b:6d:06:7a:09:72:fe: af:da:c9:d1:0d:f9:ac:d1:8a:d5:73:6d:d9:ca:3c: 7d:f7:d6:d3:b5:76:60:ab:01:34:40:67:65:97:58: 32:9b:76:a8:38:4e:70:d0:e0:3e:d3:c6:78:f1:3e: e9:a5:f6:e1:ae:46:9a:c9:3c:fd:5d:a0:f3:3c:b9: 63:fe:8f:dd:c7:b7:a7:5c:5f:a5:d6:19:b4:26:fd: 86:98:53:1e:59:1e:f8:8b:4c:3d:f9:76:a4:8a:d2: fa:75:6b:5c:69:50:38:dc:68:6d:ba:fa:5e:ee:c6: 39:15:f8:1b:73:0d:ba:f3:7e:6b:2b:23:56:fe:cf: 84:ca:1e:58:f4:0e:06:02:da:74:5b:5d:8f:07:e1: 9f:aa:bd:45:d0:5e:1e:a0:09:e8:2c:3f:12:61:7e: 65:46:d6:c8:b6:0a:60:0c:c3:e4:dd:5d:18:4a:11: 82:2d:03:3f:df:01:3a:f5:43:a8:75:1e:7d:71:aa: 6c:e1:14:57:cb:06:d8:4c:7a:1c:91:cb:b7:bc:d0: 9b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:3D:78:AE:88:51:5B:59:A9:E0:D4:CA:A6:91:74:E6:89:24:FD:FB X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d87c0155-8519-40f6-b9d9-99e1ab6574d4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:611c::/48 Signature Algorithm: sha256WithRSAEncryption 99:64:70:48:91:a7:39:a1:32:1a:74:f0:72:a4:66:34:c2:ee: 14:9e:61:50:0c:f4:d8:29:a2:2c:4d:18:fe:f5:40:35:d0:b1: 20:47:01:b7:98:7a:7c:72:5c:04:ec:32:a6:2a:57:49:3b:04: 8a:a9:70:0a:6c:90:4e:2f:c6:2d:0a:f0:8c:b6:45:e4:a6:14: 1a:b6:f8:a7:10:92:d0:a2:43:e0:19:f3:89:e4:f0:02:80:49: 9a:de:79:26:c1:e7:ca:42:fd:66:f0:dd:a6:c8:d2:1f:d5:fe: 8c:e3:c5:79:c3:ee:45:20:af:be:52:6e:42:2b:fc:7d:36:eb: 98:be:87:60:a9:65:f2:df:5e:0d:6b:86:23:85:b5:63:94:67: 51:77:f5:ff:5d:91:16:56:5b:27:33:f9:eb:ef:b4:7d:3e:f5: 4f:63:14:29:27:57:2b:f6:4b:2e:f0:af:b9:2f:ca:1c:e7:39: ff:05:97:c0:af:1e:b6:20:b1:b2:47:08:54:fc:31:e7:e3:58: 09:10:6f:75:50:f1:63:0c:84:4b:e9:60:f6:18:06:15:e0:c1: 29:38:12:c7:b5:0c:de:c9:e4:a0:27:d1:c9:d2:dc:3e:dd:12: c6:c4:b9:72:3c:6f:68:6c:93:bd:f8:91:fa:d0:a6:03:a5:a3: 51:69:17:0a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUaYMiHQmEbOl5ZXD9ObRiiDplNDAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDMxMDE1MDQ2WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkOGUwYzc4NGExNGNmMmJjNjRiM2YxNThiZThjYzYxNTQ2 ZGEyN2VmMTM5NzAzNzgzYjAwZTU0ODcwZWQxZTA1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDx3XCKueZjUbZLQNsli7deFRo+8GJscMoAlwDxWON6J9O5 dwF2S2Dxv/Eb12IX9sKT/ORei20Gegly/q/aydEN+azRitVzbdnKPH331tO1dmCr ATRAZ2WXWDKbdqg4TnDQ4D7TxnjxPuml9uGuRprJPP1doPM8uWP+j93Ht6dcX6XW GbQm/YaYUx5ZHviLTD35dqSK0vp1a1xpUDjcaG26+l7uxjkV+BtzDbrzfmsrI1b+ z4TKHlj0DgYC2nRbXY8H4Z+qvUXQXh6gCegsPxJhfmVG1si2CmAMw+TdXRhKEYIt Az/fATr1Q6h1Hn1xqmzhFFfLBthMehyRy7e80Jt7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUOz14rohRW1mp4NTKppF05okk/fswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Q4N2MwMTU1LTg1MTktNDBmNi1iOWQ5LTk5ZTFhYjY1NzRkNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYRwwDQYJKoZIhvcNAQELBQADggEBAJlkcEiRpzmhMhp08HKkZjTC 7hSeYVAM9NgpoixNGP71QDXQsSBHAbeYenxyXATsMqYqV0k7BIqpcApskE4vxi0K 8Iy2ReSmFBq2+KcQktCiQ+AZ84nk8AKASZreeSbB58pC/Wbw3abI0h/V/ozjxXnD 7kUgr75SbkIr/H0265i+h2CpZfLfXg1rhiOFtWOUZ1F39f9dkRZWWycz+evvtH0+ 9U9jFCknVyv2Sy7wr7kvyhznOf8Fl8CvHrYgsbJHCFT8MefjWAkQb3VQ8WMMhEvp YPYYBhXgwSk4Ese1DN7J5KAn0cnS3D7dEsbEuXI8b2hsk734kfrQpgOlo1FpFwo= -----END CERTIFICATE-----Generated at Wed Nov 5 05:37:04 2025 by rpki-client