$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f1746927-d9c4-41c2-8abc-289ecb180bdc.roa File: f1746927-d9c4-41c2-8abc-289ecb180bdc.roa (raw, json) Hash identifier: oONuNtBZpMyy4pIzS8E/SGJnINSl8MZBqwQRkrQKdBw= Subject key identifier: 11:BE:47:DF:5E:1D:8B:E2:C5:E3:26:D2:FB:F0:60:3F:A6:B5:DC:92 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7AA51D2A874E87904557BDA803FA08802097D7F2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f1746927-d9c4-41c2-8abc-289ecb180bdc.roa Signing time: Tue 21 Oct 2025 12:50:12 +0000 ROA not before: Tue 21 Oct 2025 12:50:12 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e500::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:a5:1d:2a:87:4e:87:90:45:57:bd:a8:03:fa:08:80:20:97:d7:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:12 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=deef918c8b15ccdbdd35bef819d595e6fae81a8fbf81434877e4c36cc389166f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:2b:8a:09:52:03:f4:69:36:c8:69:f4:cc:5a: 97:bb:25:37:ae:2d:1a:ca:79:87:0f:13:fe:9b:d0: 3d:fb:16:01:30:2d:a4:d6:96:81:6c:e3:71:b5:e2: 02:90:d1:dd:9b:24:70:1d:4e:b2:9a:0f:ff:72:bf: 5b:21:de:d3:f9:f9:a1:08:a8:b5:f0:8d:0d:5c:39: 33:5d:21:ff:49:6d:08:08:40:d1:b0:7c:3f:ad:5d: 75:75:43:b7:a5:08:c6:38:c6:58:73:ff:9c:75:b2: fd:95:71:12:b2:d5:04:39:9e:14:26:35:1d:bd:ea: 3d:2a:ad:76:15:43:c2:7e:bc:5f:03:68:32:55:d9: 0d:58:dd:79:1d:73:32:86:fe:06:7a:dd:6f:62:55: 06:30:10:01:65:d2:0f:c2:9c:d0:ac:7b:ce:9a:c5: f0:08:50:ce:5b:be:47:4d:38:18:f2:a5:11:e4:1b: 28:9b:9e:6f:bc:2b:92:42:19:4d:76:ac:37:ad:0f: 49:26:de:58:af:77:99:fd:9a:48:8e:4e:8f:2b:79: 05:d2:f1:b8:3d:d8:b5:f9:39:ac:3d:0d:06:91:f4: 37:cd:05:1f:7f:64:86:c9:3b:a3:0d:99:d0:9a:94: 48:00:be:07:f8:e7:5d:b6:d2:8b:d5:53:c9:a8:5a: 1a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:BE:47:DF:5E:1D:8B:E2:C5:E3:26:D2:FB:F0:60:3F:A6:B5:DC:92 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f1746927-d9c4-41c2-8abc-289ecb180bdc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e500::/40 Signature Algorithm: sha256WithRSAEncryption 86:ce:12:73:98:22:bb:63:fd:18:ad:c7:dc:be:ad:a5:6b:8a: 0f:40:7a:b7:d3:86:a8:4c:8d:36:29:57:9d:e6:f7:fd:8d:9c: 9c:df:06:00:74:f6:a2:66:19:6e:d2:b4:6e:97:e5:97:6d:82: a7:8e:f7:71:ec:3b:df:84:40:01:b1:21:f2:cf:27:6e:89:ff: 32:d0:4b:32:8e:8d:be:73:14:99:69:64:db:46:10:be:ff:ac: 38:00:ed:a8:dc:21:20:9b:e5:5a:b2:9b:40:37:85:a5:d3:22: af:45:1d:d7:89:82:e7:e0:f6:d9:65:be:a9:45:cf:b1:23:6f: cf:c3:35:55:cb:a3:fb:f8:1d:0b:07:66:19:7f:fe:bd:28:0d: 9e:9f:21:d2:bf:7a:f2:69:ee:71:07:dd:b4:41:3c:51:c1:20: 4e:6d:49:22:b2:50:ef:42:95:59:4d:5b:d7:21:d1:04:8c:31: ab:35:f7:17:17:cd:30:79:3d:4f:ff:1c:5e:ac:08:4c:74:5d: 2d:6b:18:7d:b2:6c:81:5d:63:f3:f6:2d:83:46:18:ed:20:b1: 68:54:ee:78:53:cf:72:2f:d7:e7:2b:eb:80:49:14:1b:f4:1a: 2f:74:a5:e6:e6:07:7d:23:31:57:96:0c:92:b4:d4:cf:f4:ca: 92:27:7f:20 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUeqUdKodOh5BFV72oA/oIgCCX1/IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDEyWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZWVmOTE4YzhiMTVjY2RiZGQzNWJlZjgxOWQ1OTVlNmZh ZTgxYThmYmY4MTQzNDg3N2U0YzM2Y2MzODkxNjZmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpK4oJUgP0aTbIafTMWpe7JTeuLRrKeYcPE/6b0D37FgEw LaTWloFs43G14gKQ0d2bJHAdTrKaD/9yv1sh3tP5+aEIqLXwjQ1cOTNdIf9JbQgI QNGwfD+tXXV1Q7elCMY4xlhz/5x1sv2VcRKy1QQ5nhQmNR296j0qrXYVQ8J+vF8D aDJV2Q1Y3XkdczKG/gZ63W9iVQYwEAFl0g/CnNCse86axfAIUM5bvkdNOBjypRHk Gyibnm+8K5JCGU12rDetD0km3livd5n9mkiOTo8reQXS8bg92LX5Oaw9DQaR9DfN BR9/ZIbJO6MNmdCalEgAvgf451220ovVU8moWhrVAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUEb5H314di+LF4ybS+/BgP6a13JIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2YxNzQ2OTI3LWQ5YzQtNDFjMi04YWJjLTI4OWVjYjE4MGJkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD75TANBgkqhkiG9w0BAQsFAAOCAQEAhs4Sc5giu2P9GK3H3L6tpWuK D0B6t9OGqEyNNilXneb3/Y2cnN8GAHT2omYZbtK0bpfll22Cp473cew734RAAbEh 8s8nbon/MtBLMo6NvnMUmWlk20YQvv+sOADtqNwhIJvlWrKbQDeFpdMir0Ud14mC 5+D22WW+qUXPsSNvz8M1Vcuj+/gdCwdmGX/+vSgNnp8h0r968mnucQfdtEE8UcEg Tm1JIrJQ70KVWU1b1yHRBIwxqzX3FxfNMHk9T/8cXqwITHRdLWsYfbJsgV1j8/Yt g0YY7SCxaFTueFPPci/X5yvrgEkUG/QaL3Sl5uYHfSMxV5YMkrTUz/TKkid/IA== -----END CERTIFICATE-----Generated at Wed Nov 5 05:48:31 2025 by rpki-client