$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa File: ec42dc47-0cc9-474a-9470-19700f756d36.roa (raw, json) Hash identifier: Jnx4CW9S+9M49IThj92lVbYNQtdi4PakSpoRbdfCZak= Subject key identifier: 54:C1:1C:84:29:A6:AC:36:6C:06:AD:E0:70:20:78:88:28:27:C9:35 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 384209FC5A8C7B3E024BEF96DE9F4FB72CD4B618 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa Signing time: Tue 21 Oct 2025 12:50:44 +0000 ROA not before: Tue 21 Oct 2025 12:50:44 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:551c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:42:09:fc:5a:8c:7b:3e:02:4b:ef:96:de:9f:4f:b7:2c:d4:b6:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:44 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=b05b8039fcfa52c6923f206ceac6033be7c5ad3fa77353d3b542c8ca61776c4e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:28:ef:7e:cc:39:50:91:ce:e1:b2:4e:3b:9c: f0:f0:43:0f:81:bc:7d:09:fd:6b:a8:c8:c5:da:c6: 8e:07:9a:11:5a:3b:0f:91:de:a1:85:d6:2a:72:ec: 21:d7:f4:6b:51:87:19:8e:5d:6e:e9:2d:f1:2d:ce: 7a:21:8a:2f:06:3f:15:5b:b6:3f:4d:97:4f:7e:e5: df:9b:8c:ff:55:cd:90:ab:22:cf:1e:89:b8:73:28: ef:d1:83:be:15:3b:7f:dc:8b:df:3e:53:44:5b:15: 09:3f:70:75:c9:f3:ad:24:28:ef:b6:6f:6b:3a:e7: bb:15:5c:22:80:3e:23:0e:a2:42:48:15:dc:50:62: df:85:b8:b7:ac:e2:66:19:d8:ea:b5:7d:1a:44:cb: 93:cf:71:00:be:9e:8c:ff:02:71:73:2b:4e:20:74: fe:6c:f5:54:41:e0:b6:1e:06:d6:23:7f:4a:5a:e5: ba:bb:af:10:3a:2f:3d:a8:6a:53:61:cc:ab:e0:af: 57:a0:84:40:d6:c6:3a:9c:09:25:3a:52:70:c3:0b: 04:c3:4f:67:39:96:09:77:63:30:51:2a:63:91:ed: 62:eb:2b:e9:0e:c4:41:ce:b2:b8:17:6b:95:0f:fe: c2:76:f3:20:a1:2e:b1:31:90:6c:d8:e3:0e:82:75: 19:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:C1:1C:84:29:A6:AC:36:6C:06:AD:E0:70:20:78:88:28:27:C9:35 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551c::/48 Signature Algorithm: sha256WithRSAEncryption 0a:26:6d:b7:f5:2a:4a:85:9f:3c:0e:3b:77:fa:35:c8:03:fb: 05:fc:9f:30:87:68:5e:c8:2c:fd:01:67:a4:44:ed:64:87:74: d2:64:b3:10:f3:8a:b1:89:a0:29:92:f4:b4:50:a7:2d:85:b5: 43:75:b3:46:90:16:a5:77:44:0e:b9:54:9f:79:cd:2d:4f:20: 72:c6:7b:90:c5:6e:10:a3:2e:12:e2:c3:36:c8:b6:2b:4f:5a: 84:3e:77:66:f9:a8:27:bf:d6:2e:f1:15:40:a9:1d:ef:2b:2a: fb:67:b8:c9:c3:4c:69:9d:fa:2c:7e:c5:0d:0f:93:37:b9:49: 67:d6:99:24:b6:1d:21:0f:2f:0a:bc:28:b9:5f:f7:f5:83:4f: c4:4a:05:42:84:53:be:c7:d4:f7:24:d8:76:07:b4:e0:4d:7d: a2:8c:4a:ca:53:cf:66:b1:d7:c2:a8:57:e4:b4:9d:7c:d3:32: f4:9f:0f:7b:51:6e:6c:4e:56:45:ee:7e:24:43:28:9c:67:93: f3:92:c5:46:22:eb:ef:75:fc:9e:62:9f:d5:0b:d8:f2:6a:04: 5a:f2:55:c1:f7:33:c1:6b:0b:df:c2:dd:90:60:f7:54:0b:a5: 15:a3:ef:51:83:2b:98:b7:96:3e:11:5a:66:f8:82:70:55:3e: 92:c7:58:f2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOEIJ/FqMez4CS++W3p9PtyzUthgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDQ0WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMDViODAzOWZjZmE1MmM2OTIzZjIwNmNlYWM2MDMzYmU3 YzVhZDNmYTc3MzUzZDNiNTQyYzhjYTYxNzc2YzRlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUKO9+zDlQkc7hsk47nPDwQw+BvH0J/WuoyMXaxo4HmhFa Ow+R3qGF1ipy7CHX9GtRhxmOXW7pLfEtznohii8GPxVbtj9Nl09+5d+bjP9VzZCr Is8eibhzKO/Rg74VO3/ci98+U0RbFQk/cHXJ860kKO+2b2s657sVXCKAPiMOokJI FdxQYt+FuLes4mYZ2Oq1fRpEy5PPcQC+noz/AnFzK04gdP5s9VRB4LYeBtYjf0pa 5bq7rxA6Lz2oalNhzKvgr1eghEDWxjqcCSU6UnDDCwTDT2c5lgl3YzBRKmOR7WLr K+kOxEHOsrgXa5UP/sJ28yChLrExkGzY4w6CdRn3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUVMEchCmmrDZsBq3gcCB4iCgnyTUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VjNDJkYzQ3LTBjYzktNDc0YS05NDcwLTE5NzAwZjc1NmQzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRwwDQYJKoZIhvcNAQELBQADggEBAAombbf1KkqFnzwOO3f6NcgD +wX8nzCHaF7ILP0BZ6RE7WSHdNJksxDzirGJoCmS9LRQpy2FtUN1s0aQFqV3RA65 VJ95zS1PIHLGe5DFbhCjLhLiwzbItitPWoQ+d2b5qCe/1i7xFUCpHe8rKvtnuMnD TGmd+ix+xQ0Pkze5SWfWmSS2HSEPLwq8KLlf9/WDT8RKBUKEU77H1Pck2HYHtOBN faKMSspTz2ax18KoV+S0nXzTMvSfD3tRbmxOVkXufiRDKJxnk/OSxUYi6+91/J5i n9UL2PJqBFryVcH3M8FrC9/C3ZBg91QLpRWj71GDK5i3lj4RWmb4gnBVPpLHWPI= -----END CERTIFICATE-----Generated at Wed Nov 5 11:34:23 2025 by rpki-client