$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6cf58cb-08de-4e22-be98-43e3537a793b.roa File: f6cf58cb-08de-4e22-be98-43e3537a793b.roa (raw, json) Hash identifier: 8uutnH+ZSWWg6Z2m2aMJG6nddmA6xAJ1RG0XjhmR8DQ= Subject key identifier: EC:67:07:E7:59:FB:15:47:FC:F1:1F:DE:49:70:18:B0:9B:D3:36:F4 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 25248A7BE94B1C298DE4DBFF1C1113B42BFBB4F1 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6cf58cb-08de-4e22-be98-43e3537a793b.roa Signing time: Tue 21 Oct 2025 12:50:10 +0000 ROA not before: Tue 21 Oct 2025 12:50:10 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:24:8a:7b:e9:4b:1c:29:8d:e4:db:ff:1c:11:13:b4:2b:fb:b4:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:10 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=143217c9f9231aad4481935b79a141aad974061f1bf68e14144eaf1da4abf54e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a2:09:37:a5:c8:5e:cf:e5:4b:cc:17:28:3f: 4a:57:c4:bd:fc:33:93:3d:3f:eb:3b:6f:f0:95:f6: 6c:d2:d5:6e:d1:fa:13:e7:83:80:7b:e7:3f:52:72: de:4c:f9:a5:36:b7:5a:4b:d2:d2:2b:20:fb:a3:c0: 98:e0:3a:26:cb:40:1d:71:f8:0f:96:67:b2:2d:7c: 53:a4:82:2c:41:de:fa:00:7c:87:68:ad:8a:1e:96: 4e:02:fd:72:96:8f:ee:33:41:16:e8:1a:2f:f5:ec: 51:dc:59:48:18:16:75:a5:44:f2:ca:ed:6b:1c:fc: c6:5e:47:83:e6:2b:95:eb:96:2f:59:e8:7d:3c:88: e7:55:9c:d7:fe:72:a7:a5:70:c2:4e:c5:83:c1:7d: 14:db:73:f5:16:65:d4:1e:ee:13:8f:6b:f2:64:f1: e6:3b:58:f9:ec:b9:08:13:65:4f:8a:99:24:44:61: 23:de:2b:a3:46:a5:f8:c4:94:3d:2c:1a:84:0b:97: 38:74:fd:df:ef:d4:ee:88:22:3e:1f:83:8d:e5:66: e5:6c:d7:3d:6e:23:1a:d8:a9:5b:ac:44:74:06:cd: 90:b9:83:43:c1:58:4f:13:4a:11:4c:24:8c:a7:1c: 1a:8d:13:b3:c6:75:b9:28:bc:7b:ee:02:7b:ba:8f: 4d:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:67:07:E7:59:FB:15:47:FC:F1:1F:DE:49:70:18:B0:9B:D3:36:F4 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6cf58cb-08de-4e22-be98-43e3537a793b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e100::/40 Signature Algorithm: sha256WithRSAEncryption 52:7e:92:c5:6a:97:57:d5:01:9a:b9:04:66:23:35:7c:2b:46: 2e:62:05:1c:4f:cf:78:c1:39:f4:1f:2b:58:67:3f:ef:0f:f0: 8d:3c:52:20:36:bc:d9:a6:ce:6c:87:a7:e3:87:37:4c:87:18: a3:23:38:73:54:b9:b8:26:bf:45:d7:cc:a7:7a:33:bb:4f:c1: 90:3f:38:5c:84:b2:80:9b:59:f8:c6:0c:84:a1:5d:0f:cc:64: 98:b3:2e:ac:99:92:d4:cc:d4:57:cd:c6:9c:0b:8c:87:a3:fe: 53:38:f6:38:1c:90:4d:2e:6b:4c:b7:99:11:96:aa:94:27:7c: c4:19:10:1f:30:4b:92:5e:ff:2b:aa:b8:78:a0:f1:43:c4:36: f1:5e:1a:ac:1e:bb:c2:ed:9f:7f:59:bd:af:86:ce:75:3c:7c: 3d:0e:fc:46:f2:88:22:bd:d6:9d:36:ac:51:9f:19:c2:6c:29: 12:91:50:46:cc:7f:4b:42:ca:b7:b4:0b:7e:c3:e5:2c:85:ba: d0:d2:8a:b1:61:65:58:04:e9:ac:eb:d7:4e:40:6c:29:54:f0: 8e:d2:82:4e:dc:ac:4e:55:e5:4e:9e:95:bf:c1:bb:9c:43:da: 1a:ee:a6:18:2c:29:3d:bf:6c:24:ed:cb:b8:10:8b:64:2e:4b: f7:50:6e:be -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUJSSKe+lLHCmN5Nv/HBETtCv7tPEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDEwWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNDMyMTdjOWY5MjMxYWFkNDQ4MTkzNWI3OWExNDFhYWQ5 NzQwNjFmMWJmNjhlMTQxNDRlYWYxZGE0YWJmNTRlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGogk3pchez+VLzBcoP0pXxL38M5M9P+s7b/CV9mzS1W7R +hPng4B75z9Sct5M+aU2t1pL0tIrIPujwJjgOibLQB1x+A+WZ7ItfFOkgixB3voA fIdorYoelk4C/XKWj+4zQRboGi/17FHcWUgYFnWlRPLK7Wsc/MZeR4PmK5Xrli9Z 6H08iOdVnNf+cqelcMJOxYPBfRTbc/UWZdQe7hOPa/Jk8eY7WPnsuQgTZU+KmSRE YSPeK6NGpfjElD0sGoQLlzh0/d/v1O6IIj4fg43lZuVs1z1uIxrYqVusRHQGzZC5 g0PBWE8TShFMJIynHBqNE7PGdbkovHvuAnu6j00jAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU7GcH51n7FUf88R/eSXAYsJvTNvQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y2Y2Y1OGNiLTA4ZGUtNGUyMi1iZTk4LTQzZTM1MzdhNzkzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74TANBgkqhkiG9w0BAQsFAAOCAQEAUn6SxWqXV9UBmrkEZiM1fCtG LmIFHE/PeME59B8rWGc/7w/wjTxSIDa82abObIen44c3TIcYoyM4c1S5uCa/RdfM p3ozu0/BkD84XISygJtZ+MYMhKFdD8xkmLMurJmS1MzUV83GnAuMh6P+Uzj2OByQ TS5rTLeZEZaqlCd8xBkQHzBLkl7/K6q4eKDxQ8Q28V4arB67wu2ff1m9r4bOdTx8 PQ78RvKIIr3WnTasUZ8ZwmwpEpFQRsx/S0LKt7QLfsPlLIW60NKKsWFlWATprOvX TkBsKVTwjtKCTtysTlXlTp6Vv8G7nEPaGu6mGCwpPb9sJO3LuBCLZC5L91Buvg== -----END CERTIFICATE-----Generated at Wed Nov 5 05:48:08 2025 by rpki-client