$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e44f32b3-ff36-487e-b814-9b622650bde3.roa File: e44f32b3-ff36-487e-b814-9b622650bde3.roa (raw, json) Hash identifier: i7IjNzSPmiJkgF23ugGm3xe/fCBbjAI/FhH1oK9HFuY= Subject key identifier: C3:F9:37:9C:32:47:F1:71:50:A5:F2:82:4D:C2:EC:EA:8E:6B:00:CD Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 32213C62BF40B5F18A68EF152D7147D5AF58736F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e44f32b3-ff36-487e-b814-9b622650bde3.roa Signing time: Tue 04 Nov 2025 00:10:07 +0000 ROA not before: Tue 04 Nov 2025 00:10:07 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:1100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:21:3c:62:bf:40:b5:f1:8a:68:ef:15:2d:71:47:d5:af:58:73:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 4 00:10:07 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=139ca4e5594f0fcba66ed6b333a2456cf93758c5632c2b13c08bfd0628401551, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c3:95:03:bc:63:ef:39:d1:a9:0c:0b:c5:2e: 6a:cb:2c:ef:27:70:8f:c4:80:97:e7:8f:9d:08:0e: 37:89:62:20:4b:75:81:db:32:4d:4e:11:70:df:ff: 40:3c:40:27:d6:63:a1:9b:1b:31:3a:32:6a:9a:f6: be:54:bb:65:36:48:ef:d4:37:10:85:d1:7e:a1:20: a3:65:8d:fd:db:cf:5a:4d:a5:db:7f:9f:f2:b9:40: 92:9b:9c:56:6a:98:72:c8:95:d9:2e:ea:85:11:72: e7:83:d2:a7:b0:fa:83:c7:8d:1f:19:b9:8d:be:02: 1c:20:89:e1:a6:62:c8:98:00:16:cc:f3:e6:a7:65: 6c:2b:bf:04:e9:14:da:5a:d9:32:92:c7:a3:57:23: 6d:f1:18:31:6c:40:20:fe:74:02:f6:02:3d:dd:aa: 41:b3:c2:f0:4b:ec:93:27:37:bd:a4:4a:72:30:70: 6d:8b:7d:b3:da:7d:86:63:ad:eb:e5:17:e7:1a:11: 4b:dc:1b:6a:17:1a:d7:d4:34:3b:78:e3:a0:b5:59: 60:5e:4d:99:6a:1c:86:9e:87:78:a2:bf:4d:b0:25: cb:47:ac:b4:aa:22:96:31:5c:a6:da:ea:a2:6d:23: 57:18:48:90:b2:a5:76:f5:7c:c6:61:19:d7:07:06: b6:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:F9:37:9C:32:47:F1:71:50:A5:F2:82:4D:C2:EC:EA:8E:6B:00:CD X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e44f32b3-ff36-487e-b814-9b622650bde3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1100::/40 Signature Algorithm: sha256WithRSAEncryption 77:30:0a:03:3a:c7:e8:f4:0c:2d:cd:db:97:8f:51:b7:3d:33: 0c:19:20:3f:1f:14:f6:79:70:55:6f:29:97:c1:8f:f0:af:00: 0c:0d:be:1e:15:34:af:64:63:22:60:f6:32:69:2a:fc:21:3f: a8:65:d3:4c:3e:3d:8b:1c:3b:3f:ee:74:e0:14:f1:03:9d:97: a1:f8:f0:9e:94:22:8b:b3:54:8a:ef:a6:02:fe:e3:98:29:80: 56:77:e8:2e:b3:46:4c:44:23:43:82:79:d3:61:7f:bf:79:5c: 2e:2c:7a:d4:58:25:f4:6b:0a:a4:73:2f:81:ec:83:54:71:bd: ea:29:1e:c6:a4:3f:81:65:21:94:c7:df:af:34:c3:39:e7:92: 5e:b5:7b:66:bb:fa:11:bb:dc:f0:b8:27:8d:19:5f:b5:2b:9d: d6:6d:e5:e6:a0:70:a7:b0:77:23:c2:fe:f6:3e:5a:6b:d6:4e: fa:3e:87:95:4b:a4:6d:75:99:4e:de:72:f9:0e:6d:d1:34:27: 81:b3:9c:cc:24:35:36:37:50:62:c2:45:c7:17:80:ed:88:55: b1:36:1e:7f:c6:9c:84:a9:58:55:82:d3:f6:58:d4:62:46:dc: 88:68:68:36:37:25:08:ba:f2:5f:72:81:b2:5c:a7:54:06:d7: 54:f8:ec:2a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMiE8Yr9AtfGKaO8VLXFH1a9Yc28wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMTA0MDAxMDA3WhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMzljYTRlNTU5NGYwZmNiYTY2ZWQ2YjMzM2EyNDU2Y2Y5 Mzc1OGM1NjMyYzJiMTNjMDhiZmQwNjI4NDAxNTUxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzw5UDvGPvOdGpDAvFLmrLLO8ncI/EgJfnj50IDjeJYiBL dYHbMk1OEXDf/0A8QCfWY6GbGzE6Mmqa9r5Uu2U2SO/UNxCF0X6hIKNljf3bz1pN pdt/n/K5QJKbnFZqmHLIldku6oURcueD0qew+oPHjR8ZuY2+AhwgieGmYsiYABbM 8+anZWwrvwTpFNpa2TKSx6NXI23xGDFsQCD+dAL2Aj3dqkGzwvBL7JMnN72kSnIw cG2LfbPafYZjrevlF+caEUvcG2oXGtfUNDt446C1WWBeTZlqHIaeh3iiv02wJctH rLSqIpYxXKba6qJtI1cYSJCypXb1fMZhGdcHBrYbAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUw/k3nDJH8XFQpfKCTcLs6o5rAM0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2U0NGYzMmIzLWZmMzYtNDg3ZS1iODE0LTliNjIyNjUwYmRlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwETANBgkqhkiG9w0BAQsFAAOCAQEAdzAKAzrH6PQMLc3bl49Rtz0z DBkgPx8U9nlwVW8pl8GP8K8ADA2+HhU0r2RjImD2Mmkq/CE/qGXTTD49ixw7P+50 4BTxA52XofjwnpQii7NUiu+mAv7jmCmAVnfoLrNGTEQjQ4J502F/v3lcLix61Fgl 9GsKpHMvgeyDVHG96ikexqQ/gWUhlMffrzTDOeeSXrV7Zrv6Ebvc8LgnjRlftSud 1m3l5qBwp7B3I8L+9j5aa9ZO+j6HlUukbXWZTt5y+Q5t0TQngbOczCQ1NjdQYsJF xxeA7YhVsTYef8achKlYVYLT9ljUYkbciGhoNjclCLryX3KBslynVAbXVPjsKg== -----END CERTIFICATE-----Generated at Wed Nov 5 07:59:45 2025 by rpki-client