$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef49247f-e1bb-4e0e-9df0-6edb97404f9e.roa File: ef49247f-e1bb-4e0e-9df0-6edb97404f9e.roa (raw, json) Hash identifier: ZiBYqB5FRfRWQ9nZgQu2G4pZyQJlWxGZ+Hcpct9A/S8= Subject key identifier: 2B:7A:37:7F:F2:CE:5E:EC:FA:55:48:CF:AF:CE:8D:7F:D1:B4:57:AF Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6D1B84806E873A0685D4FCA89680F5E5827274DD Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef49247f-e1bb-4e0e-9df0-6edb97404f9e.roa Signing time: Tue 21 Oct 2025 13:10:08 +0000 ROA not before: Tue 21 Oct 2025 13:10:08 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e300::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:1b:84:80:6e:87:3a:06:85:d4:fc:a8:96:80:f5:e5:82:72:74:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:10:08 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=74a2c0bf1c5b27a7e0f9d389f103457f75bd60a6da766f78279b92795746c65e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:81:95:95:ee:67:01:37:e1:b9:40:e8:cb:d7: aa:a7:73:ac:3b:a7:d4:39:0b:02:2b:74:24:cd:9b: b4:2e:de:c2:04:58:d3:4d:04:36:3d:e2:4c:1f:b6: e2:b0:08:c5:94:ec:35:11:96:31:a0:bb:36:6c:c3: 56:1e:98:16:2c:ac:a6:5a:e9:78:67:d0:07:20:55: a6:70:69:35:8d:eb:97:7e:a1:48:b0:4a:99:ff:6f: ef:80:7c:72:a7:8c:52:5f:de:84:98:3d:c4:e4:97: 66:69:70:85:54:ac:8f:b9:f5:fc:58:b3:94:f4:f0: 56:a1:3a:0b:4a:ef:f5:bb:b6:8e:d6:fb:95:61:0c: df:36:92:a2:c6:ec:6a:53:31:a7:15:ae:80:77:18: be:69:7f:50:ea:5f:71:bf:1c:99:af:42:d5:52:98: 30:1c:b6:3c:e3:1d:fd:5d:48:1f:97:80:69:7e:80: 4a:9f:f1:ae:09:d0:29:d4:b9:b8:e8:06:0e:b9:64: e7:40:70:67:c7:96:69:58:3f:a3:82:ea:30:2a:d3: 34:a6:5c:08:13:23:3c:36:32:58:39:dc:a1:5b:76: a4:27:a8:4d:a5:40:f0:a1:04:f1:92:bb:47:81:ec: d4:67:47:7f:4c:63:ca:3e:7b:ec:46:11:71:14:20: 56:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:7A:37:7F:F2:CE:5E:EC:FA:55:48:CF:AF:CE:8D:7F:D1:B4:57:AF X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ef49247f-e1bb-4e0e-9df0-6edb97404f9e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e300::/42 Signature Algorithm: sha256WithRSAEncryption 32:4b:c3:11:17:8a:06:a3:74:cb:e8:3d:87:ee:25:cf:e0:a7: 0e:e0:be:ce:10:81:1f:ad:fe:8c:51:47:7b:05:91:ac:d2:52: 31:62:47:f8:f0:b7:1c:0f:f8:3c:d9:35:96:f4:3d:15:5e:fb: f6:32:c3:33:cc:49:c2:0d:40:98:5b:22:16:9c:b7:32:ad:9e: 07:66:f4:27:11:18:9e:02:51:a3:e4:6f:ac:63:bc:ff:0a:ff: d8:18:36:f4:b3:63:e9:31:39:af:1c:cd:c5:0f:06:e7:54:3b: e9:8d:58:a6:2f:5a:bb:0f:4d:23:2e:3e:26:6b:de:28:c7:4b: a0:17:05:e6:9a:aa:48:c3:20:60:71:9f:18:19:24:14:4e:9d: 0b:90:da:14:a4:56:d8:9b:9f:0e:3c:c0:b4:66:67:06:11:eb: b5:da:6d:d8:1b:44:c0:8d:e9:87:d7:6c:57:67:dc:40:40:f8: f6:05:09:25:11:63:02:59:89:f3:9b:83:a1:e6:f7:95:4d:a4: 5c:ad:5d:1f:db:87:45:d6:30:0e:d9:ad:7d:77:48:4c:ac:24: cd:b8:bd:b5:47:ae:d0:c6:05:d7:b9:33:fd:f3:ce:cd:98:ac: ac:09:96:c2:a0:6d:6a:e9:c7:90:ea:ab:0a:20:c0:c8:d8:e4: 90:eb:2e:0f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbRuEgG6HOgaF1PyoloD15YJydN0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMxMDA4WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NGEyYzBiZjFjNWIyN2E3ZTBmOWQzODlmMTAzNDU3Zjc1 YmQ2MGE2ZGE3NjZmNzgyNzliOTI3OTU3NDZjNjVlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwgZWV7mcBN+G5QOjL16qnc6w7p9Q5CwIrdCTNm7Qu3sIE WNNNBDY94kwftuKwCMWU7DURljGguzZsw1YemBYsrKZa6Xhn0AcgVaZwaTWN65d+ oUiwSpn/b++AfHKnjFJf3oSYPcTkl2ZpcIVUrI+59fxYs5T08FahOgtK7/W7to7W +5VhDN82kqLG7GpTMacVroB3GL5pf1DqX3G/HJmvQtVSmDActjzjHf1dSB+XgGl+ gEqf8a4J0CnUubjoBg65ZOdAcGfHlmlYP6OC6jAq0zSmXAgTIzw2Mlg53KFbdqQn qE2lQPChBPGSu0eB7NRnR39MY8o+e+xGEXEUIFapAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUK3o3f/LOXuz6VUjPr86Nf9G0V68wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VmNDkyNDdmLWUxYmItNGUwZS05ZGYwLTZlZGI5NzQwNGY5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD74wAwDQYJKoZIhvcNAQELBQADggEBADJLwxEXigajdMvoPYfuJc/g pw7gvs4QgR+t/oxRR3sFkazSUjFiR/jwtxwP+DzZNZb0PRVe+/YywzPMScINQJhb IhactzKtngdm9CcRGJ4CUaPkb6xjvP8K/9gYNvSzY+kxOa8czcUPBudUO+mNWKYv WrsPTSMuPiZr3ijHS6AXBeaaqkjDIGBxnxgZJBROnQuQ2hSkVtibnw48wLRmZwYR 67XabdgbRMCN6YfXbFdn3EBA+PYFCSURYwJZifObg6Hm95VNpFytXR/bh0XWMA7Z rX13SEysJM24vbVHrtDGBde5M/3zzs2YrKwJlsKgbWrpx5DqqwogwMjY5JDrLg8= -----END CERTIFICATE-----Generated at Wed Nov 5 09:31:58 2025 by rpki-client