$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef295804-89a7-4ec3-826e-73e32733dc02.roa File: ef295804-89a7-4ec3-826e-73e32733dc02.roa (raw, json) Hash identifier: y1QsR8NXPBRUOEllUhlgUDSJOs2heCCyL0aHqPXlj3A= Subject key identifier: 72:A8:23:5E:02:AC:8B:90:06:6C:7D:38:1B:D5:9A:D3:52:A6:D5:E2 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 156F21E3029693C9B8339B9C8A38349F082F8C45 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef295804-89a7-4ec3-826e-73e32733dc02.roa Signing time: Tue 21 Oct 2025 13:00:06 +0000 ROA not before: Tue 21 Oct 2025 13:00:06 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:551d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:6f:21:e3:02:96:93:c9:b8:33:9b:9c:8a:38:34:9f:08:2f:8c:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:00:06 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=0afd48ece4305a37f42507a9c29dbba98963884c1cc19871fd5aed92501916cd, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:17:41:96:38:27:1c:66:85:1e:fa:f4:48:08: cc:f3:bb:2e:6f:fe:b8:34:4b:4a:5b:3c:a1:76:9e: 3d:83:db:65:a7:e1:47:01:ab:a2:0b:09:cb:db:91: b1:7d:eb:35:5b:7b:ed:4d:d8:5f:c9:2e:3d:5a:f9: 1e:0d:40:95:27:a4:72:81:92:05:d4:ec:2a:a6:47: c7:6d:8b:36:98:81:63:85:06:eb:38:09:ce:00:d4: 57:5a:bd:6e:ff:f2:f9:b8:8c:43:d3:f2:c8:77:90: 48:8f:e6:72:57:ed:0a:56:ec:55:7d:4e:c2:72:26: 66:27:41:57:ce:a6:54:5c:e9:1e:b9:7e:ac:c9:c4: 0c:ab:32:0b:5d:5f:86:81:0d:67:8f:b6:f0:c5:f1: fc:20:ff:a3:14:38:69:0f:69:3e:38:7b:04:34:1c: 76:69:b5:35:e0:c8:b7:59:42:a1:20:55:a0:b0:95: a5:bf:92:cf:f3:9b:11:35:91:31:91:ae:4d:41:c8: e5:b6:65:18:3d:e4:03:17:e1:7b:af:e0:86:53:b3: 11:e7:1d:26:da:2f:48:0d:8b:ce:d5:27:d6:9c:5a: 33:dc:cd:c0:d5:08:99:a9:30:e2:1f:5c:97:41:d8: 5e:9a:41:14:85:f0:42:e6:55:86:f1:6b:f3:5c:33: 85:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:A8:23:5E:02:AC:8B:90:06:6C:7D:38:1B:D5:9A:D3:52:A6:D5:E2 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef295804-89a7-4ec3-826e-73e32733dc02.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551d::/48 Signature Algorithm: sha256WithRSAEncryption a7:5f:5c:36:2d:8c:54:a7:a2:f9:65:1c:3a:14:bf:e5:36:ef: 92:a0:9a:0f:6f:16:c5:9a:21:bd:d8:ff:db:55:18:50:37:0c: 8e:41:3b:ef:86:f0:94:7d:b8:96:e4:f6:f9:f6:6c:61:77:e3: f8:6d:30:f4:fa:78:95:c7:60:cc:a3:73:81:97:cf:7f:71:3c: e8:d0:b4:8b:7f:20:c5:4f:0e:b4:fd:c4:d0:4b:81:79:c9:f6: f6:90:e6:1d:b2:27:4a:8d:1d:b9:75:28:a1:84:5f:46:46:b2: af:49:a4:3c:f1:17:12:0c:df:1a:33:f3:ce:00:9e:08:93:5d: 89:a2:8e:c6:e8:33:1a:7b:d1:b1:7d:0b:f6:23:27:55:80:74: 5f:a9:7a:b6:d8:68:6e:03:c5:3a:06:1f:df:e5:e9:c6:ac:63: 83:5a:3f:4c:b4:96:08:2f:06:1a:22:fb:08:84:c7:3b:14:cd: 07:d0:7d:bd:d7:69:dd:11:b0:c4:1c:ff:55:11:9a:dc:f4:f9: eb:ca:ad:15:38:22:2b:27:17:38:31:ae:3d:5a:cf:e6:6f:46: 45:46:e8:b7:b0:8b:6e:0b:f9:00:64:61:62:0f:de:45:14:be: b0:90:14:fd:e6:0a:51:02:bd:22:6e:b9:bc:08:0f:d5:a9:02: e6:0e:81:81 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFW8h4wKWk8m4M5ucijg0nwgvjEUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMwMDA2WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYWZkNDhlY2U0MzA1YTM3ZjQyNTA3YTljMjlkYmJhOTg5 NjM4ODRjMWNjMTk4NzFmZDVhZWQ5MjUwMTkxNmNkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfF0GWOCccZoUe+vRICMzzuy5v/rg0S0pbPKF2nj2D22Wn 4UcBq6ILCcvbkbF96zVbe+1N2F/JLj1a+R4NQJUnpHKBkgXU7CqmR8dtizaYgWOF Bus4Cc4A1FdavW7/8vm4jEPT8sh3kEiP5nJX7QpW7FV9TsJyJmYnQVfOplRc6R65 fqzJxAyrMgtdX4aBDWePtvDF8fwg/6MUOGkPaT44ewQ0HHZptTXgyLdZQqEgVaCw laW/ks/zmxE1kTGRrk1ByOW2ZRg95AMX4Xuv4IZTsxHnHSbaL0gNi87VJ9acWjPc zcDVCJmpMOIfXJdB2F6aQRSF8ELmVYbxa/NcM4XVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcqgjXgKsi5AGbH04G9Wa01Km1eIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VmMjk1ODA0LTg5YTctNGVjMy04MjZlLTczZTMyNzMzZGMwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVR0wDQYJKoZIhvcNAQELBQADggEBAKdfXDYtjFSnovllHDoUv+U2 75Kgmg9vFsWaIb3Y/9tVGFA3DI5BO++G8JR9uJbk9vn2bGF34/htMPT6eJXHYMyj c4GXz39xPOjQtIt/IMVPDrT9xNBLgXnJ9vaQ5h2yJ0qNHbl1KKGEX0ZGsq9JpDzx FxIM3xoz884AngiTXYmijsboMxp70bF9C/YjJ1WAdF+perbYaG4DxToGH9/l6cas Y4NaP0y0lggvBhoi+wiExzsUzQfQfb3Xad0RsMQc/1URmtz0+evKrRU4IisnFzgx rj1az+ZvRkVG6Lewi24L+QBkYWIP3kUUvrCQFP3mClECvSJuubwID9WpAuYOgYE= -----END CERTIFICATE-----Generated at Wed Nov 5 05:48:41 2025 by rpki-client