$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1f114b0-d940-4fa0-8376-bac93d2868fc.roa File: e1f114b0-d940-4fa0-8376-bac93d2868fc.roa (raw, json) Hash identifier: y+Mpr6OsQb1i37V2mbfzd540bcfe7nYDai5EQnwvwHM= Subject key identifier: F6:27:F9:19:E5:1B:7E:FC:9E:24:E3:43:14:44:9D:99:6E:06:77:00 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2E5CE538AE544D41E248E864ABC988F7DB958B46 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1f114b0-d940-4fa0-8376-bac93d2868fc.roa Signing time: Fri 24 Oct 2025 00:20:05 +0000 ROA not before: Fri 24 Oct 2025 00:20:05 +0000 ROA not after: Fri 28 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:5c:e5:38:ae:54:4d:41:e2:48:e8:64:ab:c9:88:f7:db:95:8b:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 24 00:20:05 2025 GMT Not After : Nov 28 23:59:59 2025 GMT Subject: serialNumber=624d957be1834202fb2c27a480cedf4d539c4613381e81a59e52b2d191cfb604, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:82:a7:23:16:a6:5b:58:ae:f9:ea:05:48:b9: 4d:3e:25:98:4d:d5:d3:d6:f7:6e:22:ff:bc:28:eb: 96:49:db:15:91:e3:a7:77:f0:04:47:0b:cc:9d:38: cd:34:20:53:32:7b:23:3b:96:8d:59:44:85:1b:f5: 81:c4:30:fc:14:b6:45:3c:05:ac:89:f4:ee:a1:b4: fc:ff:46:48:96:fb:25:23:d4:2d:12:7e:e8:da:b8: 8c:5a:07:49:05:f1:3d:5e:46:00:84:52:d0:5b:c7: f9:ac:72:40:ea:94:9f:36:c0:9c:2d:94:b3:93:42: 46:25:39:aa:47:d0:31:f7:c3:61:ff:9d:f7:6c:51: 4f:f5:9c:a8:5e:d8:bc:fb:2d:62:cf:24:46:fd:fd: e3:47:c0:cc:8a:3c:89:08:cc:ff:6b:1b:61:90:34: 32:ea:fc:ed:5a:38:2b:34:e3:10:20:34:8f:00:0b: 71:14:87:a9:6a:82:c7:b0:3f:39:ff:35:e1:4f:59: 29:ce:f3:d8:cc:f8:8e:7c:ff:17:9d:53:88:1f:43: e0:39:6b:1e:ac:1b:30:9f:35:9b:9c:d2:ad:7c:7a: 00:5b:e2:6d:54:1b:c0:2b:98:79:04:ce:84:7f:b5: b3:3c:32:28:36:99:be:07:d4:e1:72:a2:e8:62:1e: 44:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:27:F9:19:E5:1B:7E:FC:9E:24:E3:43:14:44:9D:99:6E:06:77:00 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1f114b0-d940-4fa0-8376-bac93d2868fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4100::/40 Signature Algorithm: sha256WithRSAEncryption 69:ac:42:05:07:8a:78:33:5b:a5:ae:b7:47:be:5d:cc:c4:84: 37:54:8d:c2:04:9d:cd:ba:26:94:11:5a:56:dc:de:c1:43:65: fa:b4:18:ae:b2:4c:3a:03:08:56:67:13:c8:34:94:15:df:8d: 9b:fb:69:b4:90:fe:8e:65:fd:34:01:fc:6b:ec:6e:ab:8c:55: c6:8c:a7:52:81:41:c9:c9:fa:cf:e3:6f:99:80:ea:d5:3d:f7: cf:b4:de:7e:9b:85:16:2f:42:f9:a9:7e:5f:34:14:77:4d:c4: c2:72:14:67:5b:6a:6f:94:80:3a:6e:02:9e:8a:40:4f:e3:91: 59:94:53:86:9e:fe:21:7b:9d:29:1f:8f:d2:a4:d8:ee:98:62: 58:12:9f:b5:5c:88:d7:9d:f3:f7:dd:55:54:c2:ac:19:31:f0: c0:06:b6:b8:b4:c8:8e:36:9a:ec:c1:22:57:00:03:94:a9:e7: 8b:ee:17:62:da:24:4c:7c:f7:18:c4:8e:f9:27:a1:74:dd:4e: 5c:f2:e3:0a:29:ad:39:b2:e8:38:b3:10:fa:96:b5:38:88:f1: 76:fa:4a:84:b2:0d:89:ec:53:1c:97:6e:08:0d:d4:cc:38:b0: c0:72:99:4b:d9:b3:d7:9e:ab:36:27:e5:ca:10:36:1a:81:d7: ef:ba:45:76 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULlzlOK5UTUHiSOhkq8mI99uVi0YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDI0MDAyMDA1WhcNMjUxMTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MjRkOTU3YmUxODM0MjAyZmIyYzI3YTQ4MGNlZGY0ZDUz OWM0NjEzMzgxZTgxYTU5ZTUyYjJkMTkxY2ZiNjA0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfgqcjFqZbWK756gVIuU0+JZhN1dPW924i/7wo65ZJ2xWR 46d38ARHC8ydOM00IFMyeyM7lo1ZRIUb9YHEMPwUtkU8BayJ9O6htPz/RkiW+yUj 1C0SfujauIxaB0kF8T1eRgCEUtBbx/msckDqlJ82wJwtlLOTQkYlOapH0DH3w2H/ nfdsUU/1nKhe2Lz7LWLPJEb9/eNHwMyKPIkIzP9rG2GQNDLq/O1aOCs04xAgNI8A C3EUh6lqgsewPzn/NeFPWSnO89jM+I58/xedU4gfQ+A5ax6sGzCfNZuc0q18egBb 4m1UG8ArmHkEzoR/tbM8Mig2mb4H1OFyouhiHkTzAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU9if5GeUbfvyeJONDFESdmW4GdwAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2UxZjExNGIwLWQ5NDAtNGZhMC04Mzc2LWJhYzkzZDI4NjhmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwQTANBgkqhkiG9w0BAQsFAAOCAQEAaaxCBQeKeDNbpa63R75dzMSE N1SNwgSdzbomlBFaVtzewUNl+rQYrrJMOgMIVmcTyDSUFd+Nm/tptJD+jmX9NAH8 a+xuq4xVxoynUoFBycn6z+NvmYDq1T33z7TefpuFFi9C+al+XzQUd03EwnIUZ1tq b5SAOm4CnopAT+ORWZRThp7+IXudKR+P0qTY7phiWBKftVyI153z991VVMKsGTHw wAa2uLTIjjaa7MEiVwADlKnni+4XYtokTHz3GMSO+SehdN1OXPLjCimtObLoOLMQ +pa1OIjxdvpKhLINiexTHJduCA3UzDiwwHKZS9mz156rNiflyhA2GoHX77pFdg== -----END CERTIFICATE-----Generated at Wed Nov 5 10:00:22 2025 by rpki-client