$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6826d5c-b428-498f-80be-06e94897140e.roa File: f6826d5c-b428-498f-80be-06e94897140e.roa (raw, json) Hash identifier: K0ysJ5T5lwWaHcgp50sqfNhvn2dVDl2+EZF93TtKArk= Subject key identifier: EA:4D:D7:99:75:BF:D9:35:D6:1F:2C:A0:4D:EB:91:90:F0:D0:54:7A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 46133E0BB8D1E1080CE2C1714D82087562E77E1D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6826d5c-b428-498f-80be-06e94897140e.roa Signing time: Fri 31 Oct 2025 01:50:35 +0000 ROA not before: Fri 31 Oct 2025 01:50:35 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6106::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:13:3e:0b:b8:d1:e1:08:0c:e2:c1:71:4d:82:08:75:62:e7:7e:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 31 01:50:35 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=77a98ac9052b0f37f01b0cf030e88205d3f198787d8983a1d07eef5e15432578, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:53:bb:4c:3c:bb:68:b7:c7:24:d9:be:6d:82: 33:3d:48:22:94:ca:cc:e6:4c:75:8f:8c:98:e3:74: db:0b:f1:7f:76:1a:12:32:94:55:8d:c9:3d:44:8a: d1:eb:6b:0e:b3:d2:b3:dd:b0:ce:82:dd:f6:9e:b8: 13:bd:0d:97:46:1f:cd:fa:5a:c6:df:bc:dc:63:3e: 67:28:81:e3:42:61:ef:20:27:4f:e1:15:b8:21:89: 41:f6:94:1a:ac:cd:9c:7e:3f:04:84:3f:df:2e:da: e5:0e:f4:38:d7:91:68:a9:df:c1:1f:09:f5:74:0d: a0:f1:b2:6f:e6:5b:29:60:18:3f:55:2a:1b:09:46: a2:f7:0b:4b:0a:db:7a:11:92:92:9f:51:19:12:b6: 09:49:91:2a:c0:58:15:a4:d1:55:75:63:c1:79:fa: 0c:86:11:2e:ca:6b:86:eb:3f:3e:ac:cc:de:cc:04: de:bf:62:92:09:e9:a6:6c:c2:7b:34:f2:18:9f:62: 1a:e6:3e:01:25:e9:0f:c3:d3:1b:df:e6:c6:a5:2a: 25:02:43:87:23:37:c0:98:f4:d8:e3:cb:a4:02:c5: 46:f4:12:27:88:13:4d:a5:37:84:3f:cb:3e:e0:58: de:fd:7e:49:98:23:5f:b0:eb:02:3b:56:1e:52:b9: 9f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:4D:D7:99:75:BF:D9:35:D6:1F:2C:A0:4D:EB:91:90:F0:D0:54:7A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6826d5c-b428-498f-80be-06e94897140e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6106::/48 Signature Algorithm: sha256WithRSAEncryption 0e:2f:b8:db:52:21:2f:88:0f:33:99:52:5f:73:4f:80:34:84: cd:d7:c4:41:85:fe:02:1d:3e:47:64:03:bc:fd:e7:72:8b:33: 12:4f:e3:21:2b:3c:13:ec:4f:1a:44:24:f6:9a:9d:4b:de:95: 2a:89:b8:2e:aa:5c:85:ad:c5:26:18:19:0a:34:90:be:01:91: c8:49:6c:38:cf:a7:3c:a3:c0:bd:50:a7:e5:50:de:9e:17:0a: b9:1e:85:58:97:87:70:57:c4:f3:30:d5:ae:96:51:af:c1:b1: 95:57:0e:a3:41:8e:2d:20:83:09:52:3a:37:d7:06:14:21:39: 37:49:69:90:b4:2f:c2:e4:b0:b6:6a:bb:85:ac:fd:76:04:2e: a5:aa:53:60:21:22:f1:ee:06:4d:69:43:7f:0a:88:14:70:67: 70:ce:de:2c:1a:89:a3:63:e2:39:86:70:8d:2b:e4:6c:e8:d9: e5:94:f0:63:b0:7a:e2:e6:f8:4e:a7:3d:9e:c2:c9:88:1f:29: 73:5f:a9:fd:26:12:1e:ab:17:bb:7f:8f:7f:7a:1d:a3:01:35: eb:0b:6a:5b:c5:9b:c6:da:0c:f5:69:fe:b8:96:76:70:5a:f1: e9:88:25:93:5c:00:43:3f:09:af:1c:56:0e:fc:7f:2a:61:92: 20:6a:55:2a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURhM+C7jR4QgM4sFxTYIIdWLnfh0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDMxMDE1MDM1WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3N2E5OGFjOTA1MmIwZjM3ZjAxYjBjZjAzMGU4ODIwNWQz ZjE5ODc4N2Q4OTgzYTFkMDdlZWY1ZTE1NDMyNTc4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpU7tMPLtot8ck2b5tgjM9SCKUyszmTHWPjJjjdNsL8X92 GhIylFWNyT1EitHraw6z0rPdsM6C3faeuBO9DZdGH836WsbfvNxjPmcogeNCYe8g J0/hFbghiUH2lBqszZx+PwSEP98u2uUO9DjXkWip38EfCfV0DaDxsm/mWylgGD9V KhsJRqL3C0sK23oRkpKfURkStglJkSrAWBWk0VV1Y8F5+gyGES7Ka4brPz6szN7M BN6/YpIJ6aZswns08hifYhrmPgEl6Q/D0xvf5salKiUCQ4cjN8CY9Njjy6QCxUb0 EieIE02lN4Q/yz7gWN79fkmYI1+w6wI7Vh5SuZ/HAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU6k3XmXW/2TXWHyygTeuRkPDQVHowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y2ODI2ZDVjLWI0MjgtNDk4Zi04MGJlLTA2ZTk0ODk3MTQwZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQYwDQYJKoZIhvcNAQELBQADggEBAA4vuNtSIS+IDzOZUl9zT4A0 hM3XxEGF/gIdPkdkA7z953KLMxJP4yErPBPsTxpEJPaanUvelSqJuC6qXIWtxSYY GQo0kL4BkchJbDjPpzyjwL1Qp+VQ3p4XCrkehViXh3BXxPMw1a6WUa/BsZVXDqNB ji0ggwlSOjfXBhQhOTdJaZC0L8LksLZqu4Ws/XYELqWqU2AhIvHuBk1pQ38KiBRw Z3DO3iwaiaNj4jmGcI0r5Gzo2eWU8GOweuLm+E6nPZ7CyYgfKXNfqf0mEh6rF7t/ j396HaMBNesLalvFm8baDPVp/riWdnBa8emIJZNcAEM/Ca8cVg78fyphkiBqVSo= -----END CERTIFICATE-----Generated at Wed Nov 5 12:30:02 2025 by rpki-client