$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1a441b9-24e5-41e9-91e8-5e7d14fbdeff.roa File: e1a441b9-24e5-41e9-91e8-5e7d14fbdeff.roa (raw, json) Hash identifier: BGNO0lsADL0oPGyyJOPMviw3YpJpMboc9rgA/XXA59U= Subject key identifier: 92:21:15:76:39:B6:27:E1:F0:D3:A2:28:11:22:A0:42:64:A5:33:06 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 50ED5355E3C3653A80C3AAD00D074AE21C162B18 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1a441b9-24e5-41e9-91e8-5e7d14fbdeff.roa Signing time: Tue 04 Nov 2025 00:10:08 +0000 ROA not before: Tue 04 Nov 2025 00:10:08 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:ed:53:55:e3:c3:65:3a:80:c3:aa:d0:0d:07:4a:e2:1c:16:2b:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 4 00:10:08 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=ddd5f51e179f04d46c729400664bd28ca3b93d20ba1f7950ddb2befaf657256a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e0:f1:8a:77:56:27:68:17:a0:c6:94:dd:ff: c2:84:d8:83:95:80:d8:1c:d3:f7:38:4c:ed:00:38: 57:28:b5:21:77:04:a3:1a:d5:0f:be:09:7d:e9:ca: 77:b3:7c:99:07:78:06:04:31:0f:fe:a9:5b:f4:11: 2a:84:8b:de:68:77:62:be:97:bf:cd:6a:5f:7d:23: 3e:90:fa:aa:1a:04:d8:f7:f8:05:be:80:7d:77:b6: 1b:02:d9:b5:27:54:e3:fd:a8:14:9d:db:a0:2a:15: 98:88:48:7f:98:ab:70:ae:5e:b0:e9:16:a0:71:79: f1:5a:8d:0f:97:b5:83:4c:a1:9d:69:4d:7b:00:19: 8e:3e:80:a9:dc:49:1f:f4:dd:c2:12:a7:8d:20:89: 87:e1:e4:de:52:1e:81:e0:d2:5d:7c:45:c8:21:ef: fc:a4:ca:38:1d:e1:57:aa:b7:44:85:8d:9b:a7:19: b6:ff:6f:02:d5:7c:b8:2d:86:ca:a0:d6:39:5d:a6: 3c:d0:67:83:ce:c9:2d:af:16:5f:f1:b0:2d:0b:59: b0:f1:b7:58:e8:63:77:1b:c5:d5:cc:e4:9b:2c:3b: 82:25:cd:61:d8:08:e5:7d:ea:fa:c0:98:4b:dd:fd: 68:9f:d6:a0:99:d2:df:9c:72:09:d2:f4:33:a1:ed: 4a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:21:15:76:39:B6:27:E1:F0:D3:A2:28:11:22:A0:42:64:A5:33:06 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1a441b9-24e5-41e9-91e8-5e7d14fbdeff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5400::/40 Signature Algorithm: sha256WithRSAEncryption 6f:57:a9:35:1a:c9:e7:fb:ce:ab:0e:e5:98:81:96:b2:d4:ef: af:c9:ce:49:a5:aa:44:db:f0:80:b4:fc:96:9e:ae:84:6a:cc: ea:62:de:c2:1f:71:66:7a:20:e1:36:f7:b6:7f:46:78:b6:7c: 14:64:96:f7:cf:12:96:a6:aa:83:67:7c:77:84:eb:47:fd:cd: 62:e9:4f:9c:38:2d:6d:d5:15:ee:db:48:10:98:83:85:04:5d: 9f:37:ac:ef:6a:5f:10:71:3a:31:35:c5:93:81:9a:f2:0e:b3: 55:9e:b6:3f:89:a3:05:f6:1f:0e:72:a8:39:14:df:e9:a8:4f: 89:6e:77:e6:9e:55:f1:77:86:ce:4e:95:35:22:59:a9:ac:e7: da:14:38:a5:05:28:30:a9:ef:12:03:14:60:ff:cc:4b:34:64: ed:76:7d:b1:f0:ce:6e:5c:7c:01:d5:3a:7a:d4:c6:7e:1b:18: 2d:d6:bf:27:0a:7b:5e:b7:d5:03:ba:f6:f2:0f:40:67:c6:df: 7f:bd:47:36:13:21:12:2f:25:64:a0:5c:df:c5:3a:ab:fb:4f: 44:21:68:b1:a4:9f:91:a5:73:a1:60:2e:2d:a8:05:f7:72:a5: 94:e3:cc:64:5a:bc:12:b2:0f:e4:92:f1:b4:cf:58:0e:f7:b4: 78:8f:35:59 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUUO1TVePDZTqAw6rQDQdK4hwWKxgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMTA0MDAxMDA4WhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZGQ1ZjUxZTE3OWYwNGQ0NmM3Mjk0MDA2NjRiZDI4Y2Ez YjkzZDIwYmExZjc5NTBkZGIyYmVmYWY2NTcyNTZhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDT4PGKd1YnaBegxpTd/8KE2IOVgNgc0/c4TO0AOFcotSF3 BKMa1Q++CX3pynezfJkHeAYEMQ/+qVv0ESqEi95od2K+l7/Nal99Iz6Q+qoaBNj3 +AW+gH13thsC2bUnVOP9qBSd26AqFZiISH+Yq3CuXrDpFqBxefFajQ+XtYNMoZ1p TXsAGY4+gKncSR/03cISp40giYfh5N5SHoHg0l18Rcgh7/ykyjgd4Veqt0SFjZun Gbb/bwLVfLgthsqg1jldpjzQZ4POyS2vFl/xsC0LWbDxt1joY3cbxdXM5JssO4Il zWHYCOV96vrAmEvd/Wif1qCZ0t+ccgnS9DOh7UohAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUkiEVdjm2J+Hw06IoESKgQmSlMwYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2UxYTQ0MWI5LTI0ZTUtNDFlOS05MWU4LTVlN2QxNGZiZGVmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwVDANBgkqhkiG9w0BAQsFAAOCAQEAb1epNRrJ5/vOqw7lmIGWstTv r8nOSaWqRNvwgLT8lp6uhGrM6mLewh9xZnog4Tb3tn9GeLZ8FGSW988Slqaqg2d8 d4TrR/3NYulPnDgtbdUV7ttIEJiDhQRdnzes72pfEHE6MTXFk4Ga8g6zVZ62P4mj BfYfDnKoORTf6ahPiW535p5V8XeGzk6VNSJZqazn2hQ4pQUoMKnvEgMUYP/MSzRk 7XZ9sfDOblx8AdU6etTGfhsYLda/Jwp7XrfVA7r28g9AZ8bff71HNhMhEi8lZKBc 38U6q/tPRCFosaSfkaVzoWAuLagF93KllOPMZFq8ErIP5JLxtM9YDve0eI81WQ== -----END CERTIFICATE-----Generated at Wed Nov 5 07:44:22 2025 by rpki-client