$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6334ad8-04a1-4b1e-af68-368584971f2f.roa File: f6334ad8-04a1-4b1e-af68-368584971f2f.roa (raw, json) Hash identifier: ctJke2i1cVXzM5NZkiUgp+e+B343c70tsPH7PlMtmTg= Subject key identifier: 9C:96:74:C5:1C:B9:55:2D:7E:DE:63:34:0C:09:BA:2B:A2:8A:09:B0 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 684AEA5DA494729B8957B5DD6F4FF4A3E228E803 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6334ad8-04a1-4b1e-af68-368584971f2f.roa Signing time: Tue 21 Oct 2025 12:50:47 +0000 ROA not before: Tue 21 Oct 2025 12:50:47 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:4a:ea:5d:a4:94:72:9b:89:57:b5:dd:6f:4f:f4:a3:e2:28:e8:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:47 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=93fef674125b9e623acfd5aea91a195e6735ae2fdbcb8d9a591495cad622db62, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:55:a7:c8:90:39:08:64:02:e1:2f:ef:7e:c6: 37:2c:58:e0:17:eb:1b:2f:3b:69:94:20:1b:ea:f2: 50:2b:48:78:97:f1:7f:ee:b3:e1:e8:dc:ea:e5:57: ec:bf:9e:86:2f:de:c2:3b:9b:5d:10:b9:5e:89:14: db:ac:17:32:10:bc:22:3d:44:0f:12:ad:ad:35:e2: a2:d0:fc:b1:2f:2a:c0:72:6c:fd:09:5e:22:db:d7: 7d:ca:bc:95:25:11:12:f6:28:cf:1c:f3:75:f1:be: 15:4c:c3:d7:3d:69:ad:95:1d:b3:50:15:21:3b:47: c4:c3:09:fb:bb:2b:c6:8f:c7:e5:c7:de:93:a3:39: 76:fa:6e:e5:88:43:2b:5c:25:88:cd:4d:d2:74:78: 5d:cc:e5:f7:a4:72:44:6a:92:e4:c6:60:43:79:a2: ac:ec:02:70:10:ce:76:8a:6e:0d:c5:68:e4:a9:9e: d0:6d:ed:dd:cc:f4:09:cc:f7:e9:94:09:b8:93:91: 46:47:d4:b0:69:ba:6c:73:2d:3d:3a:fa:0a:63:2d: 0e:fa:61:b7:4e:e0:b5:7a:71:37:b1:24:f5:0b:d8: 28:1e:43:76:01:8b:84:54:34:57:2b:58:17:79:f0: 18:2a:5a:78:7a:e5:72:0d:ba:ce:9a:0f:fb:46:a1: 2f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:96:74:C5:1C:B9:55:2D:7E:DE:63:34:0C:09:BA:2B:A2:8A:09:B0 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6334ad8-04a1-4b1e-af68-368584971f2f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e300::/40 Signature Algorithm: sha256WithRSAEncryption 23:9c:1a:c3:3b:bf:d5:b6:7d:99:db:26:ae:4c:2c:60:b2:e1: a5:f0:dd:33:c6:d9:a2:ae:0a:7f:09:d7:06:c8:3a:30:bb:e5: 07:c2:52:5a:5a:38:ef:c9:5c:bc:a6:47:a6:47:7d:57:28:18: db:d0:a3:e9:0e:c4:26:63:b1:34:c6:85:cd:70:02:ce:67:c4: a1:f5:fc:1a:61:d3:9d:c4:e7:d0:88:01:2c:af:37:93:c6:e5: 9c:98:19:e0:57:95:17:00:29:61:80:33:33:0e:a7:80:c5:bb: 3c:5c:56:f9:33:7e:5c:a5:4d:ee:25:6a:ee:e3:40:39:f0:82: d9:1f:c3:8c:e7:1e:f2:88:73:48:b6:2f:ed:8b:d6:d8:79:ef: 8f:30:b0:18:e2:47:cc:80:10:f5:16:30:0c:db:ed:51:cc:d9: 77:14:13:c8:1f:b8:e3:d3:ba:9a:dc:71:cf:36:80:9e:f1:fa: 51:70:ab:fc:33:5b:44:8e:aa:79:ef:94:ac:0b:bc:4c:96:36: 2f:0a:56:ff:e3:11:6f:d3:88:44:1c:0f:cc:5f:4d:4e:34:03: 1b:c4:8c:f0:8e:0d:75:02:72:d4:51:d2:31:22:2f:ce:9f:b1: 5c:51:cf:7e:01:ec:e9:2e:24:df:68:ad:83:f3:c0:d7:b0:7d: 52:88:6c:03 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUaErqXaSUcpuJV7Xdb0/0o+Io6AMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDQ3WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5M2ZlZjY3NDEyNWI5ZTYyM2FjZmQ1YWVhOTFhMTk1ZTY3 MzVhZTJmZGJjYjhkOWE1OTE0OTVjYWQ2MjJkYjYyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpVafIkDkIZALhL+9+xjcsWOAX6xsvO2mUIBvq8lArSHiX 8X/us+Ho3OrlV+y/noYv3sI7m10QuV6JFNusFzIQvCI9RA8Sra014qLQ/LEvKsBy bP0JXiLb133KvJUlERL2KM8c83XxvhVMw9c9aa2VHbNQFSE7R8TDCfu7K8aPx+XH 3pOjOXb6buWIQytcJYjNTdJ0eF3M5fekckRqkuTGYEN5oqzsAnAQznaKbg3FaOSp ntBt7d3M9AnM9+mUCbiTkUZH1LBpumxzLT06+gpjLQ76YbdO4LV6cTexJPUL2Cge Q3YBi4RUNFcrWBd58BgqWnh65XINus6aD/tGoS+/AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUnJZ0xRy5VS1+3mM0DAm6K6KKCbAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y2MzM0YWQ4LTA0YTEtNGIxZS1hZjY4LTM2ODU4NDk3MWYyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74zANBgkqhkiG9w0BAQsFAAOCAQEAI5wawzu/1bZ9mdsmrkwsYLLh pfDdM8bZoq4KfwnXBsg6MLvlB8JSWlo478lcvKZHpkd9VygY29Cj6Q7EJmOxNMaF zXACzmfEofX8GmHTncTn0IgBLK83k8blnJgZ4FeVFwApYYAzMw6ngMW7PFxW+TN+ XKVN7iVq7uNAOfCC2R/DjOce8ohzSLYv7YvW2HnvjzCwGOJHzIAQ9RYwDNvtUczZ dxQTyB+449O6mtxxzzaAnvH6UXCr/DNbRI6qee+UrAu8TJY2LwpW/+MRb9OIRBwP zF9NTjQDG8SM8I4NdQJy1FHSMSIvzp+xXFHPfgHs6S4k32itg/PA17B9UohsAw== -----END CERTIFICATE-----Generated at Wed Nov 5 07:49:24 2025 by rpki-client