$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f8738a51-4689-46b8-a472-d4d0afaca2d7.roa File: f8738a51-4689-46b8-a472-d4d0afaca2d7.roa (raw, json) Hash identifier: lLdNsecXVNjiPaSq0mNo3WTXe/Lfqpbiht9+0mbMF/U= Subject key identifier: 4C:B0:B3:4F:52:C8:88:33:93:6B:5D:A2:E1:42:3B:34:7A:52:95:94 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1CAFC8BDFA631A04D5BCA3BC732CCA01F7D662B2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f8738a51-4689-46b8-a472-d4d0afaca2d7.roa Signing time: Fri 31 Oct 2025 01:50:32 +0000 ROA not before: Fri 31 Oct 2025 01:50:32 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:af:c8:bd:fa:63:1a:04:d5:bc:a3:bc:73:2c:ca:01:f7:d6:62:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 31 01:50:32 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=94624878bfaf36bcc44cce15e0135b23e4691b766ac07572fda3ae23b1f03376, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:70:b7:29:8e:6d:32:7c:d3:e0:be:63:09:bb: ce:f9:48:e4:23:0e:32:21:87:70:35:8e:19:31:37: be:dc:01:12:d5:1d:7a:50:69:06:df:af:46:ce:eb: 78:a6:07:92:62:1b:18:9c:f2:74:6a:ea:82:c7:f6: 91:31:b5:8a:6c:ea:93:4c:b5:59:11:58:76:fe:b2: 3d:46:98:d3:63:8d:1e:95:5a:30:8b:fb:96:4c:7b: 49:10:8c:c5:6f:54:be:7f:9e:8e:f7:00:6b:a7:73: c4:c4:0d:c3:31:1c:fd:10:9e:d5:ac:b4:59:ba:b7: fe:98:ee:cc:18:69:35:8c:8e:9f:4e:ec:1e:81:9c: 65:d6:f3:fe:9d:75:76:99:38:fa:cc:4b:63:b5:e2: 0a:11:41:06:d0:3d:db:61:e4:f4:a3:0f:03:92:9b: 64:50:c3:73:ac:54:0c:47:44:78:bb:13:01:9e:89: 82:35:51:a8:62:33:94:31:4c:11:1b:8f:1c:f7:4b: cd:1d:46:e3:19:0c:ce:ab:1d:16:70:e9:7a:e6:d7: 86:4c:2d:03:bd:cb:b8:f4:9c:f7:a8:a6:d3:0b:96: e6:c8:3b:e4:71:11:a7:48:21:d1:f2:c7:e0:8a:59: c6:e5:1f:15:08:c4:57:b7:a4:cc:ea:43:a4:86:79: a4:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:B0:B3:4F:52:C8:88:33:93:6B:5D:A2:E1:42:3B:34:7A:52:95:94 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f8738a51-4689-46b8-a472-d4d0afaca2d7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4::/48 Signature Algorithm: sha256WithRSAEncryption 90:2a:96:01:71:c0:29:ba:99:8c:1e:af:24:73:14:d7:41:d3: f6:a6:c4:8c:a0:77:dd:d6:ce:50:d9:f5:bc:45:b8:fe:75:ae: cc:f3:87:68:d7:47:8c:74:bf:3b:15:fa:1f:27:bb:d1:2d:a9: 91:03:35:07:21:dd:a5:53:51:6b:6b:e9:af:ec:8f:1f:ce:d9: 6c:88:24:bd:a1:f9:33:93:d6:bf:dd:53:4c:9c:96:83:c4:ab: 39:b7:18:a6:25:71:26:56:2a:a5:5e:2d:e7:e8:ab:43:e6:d4: ec:73:68:3c:59:70:8d:6d:ee:70:b3:a0:83:67:c6:8f:a1:56: 3d:fc:75:26:db:34:3a:7c:f4:b4:7b:5a:32:3b:c4:50:a5:d2: 55:0f:0e:10:4b:36:df:53:5d:ec:9f:f4:1c:fc:29:90:2c:ed: c2:da:bb:33:17:b9:2d:ea:e7:de:43:b0:0d:57:1b:8a:9a:5d: 6c:65:29:1f:5c:fd:ab:d5:c0:af:b7:54:91:92:49:b5:32:b2: dd:a2:6c:27:82:cd:e5:de:6c:0a:26:ca:ad:97:24:56:dd:9e: 50:75:5c:fc:31:79:24:3f:5f:f6:b3:c6:fb:9d:be:b2:c0:a2: 10:22:c7:2d:86:26:1f:90:e4:b3:90:29:8a:61:28:11:30:08: f9:f0:87:77 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHK/IvfpjGgTVvKO8cyzKAffWYrIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDMxMDE1MDMyWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NDYyNDg3OGJmYWYzNmJjYzQ0Y2NlMTVlMDEzNWIyM2U0 NjkxYjc2NmFjMDc1NzJmZGEzYWUyM2IxZjAzMzc2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4cLcpjm0yfNPgvmMJu875SOQjDjIhh3A1jhkxN77cARLV HXpQaQbfr0bO63imB5JiGxic8nRq6oLH9pExtYps6pNMtVkRWHb+sj1GmNNjjR6V WjCL+5ZMe0kQjMVvVL5/no73AGunc8TEDcMxHP0QntWstFm6t/6Y7swYaTWMjp9O 7B6BnGXW8/6ddXaZOPrMS2O14goRQQbQPdth5PSjDwOSm2RQw3OsVAxHRHi7EwGe iYI1UahiM5QxTBEbjxz3S80dRuMZDM6rHRZw6Xrm14ZMLQO9y7j0nPeoptMLlubI O+RxEadIIdHyx+CKWcblHxUIxFe3pMzqQ6SGeaRLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUTLCzT1LIiDOTa12i4UI7NHpSlZQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y4NzM4YTUxLTQ2ODktNDZiOC1hNDcyLWQ0ZDBhZmFjYTJkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAQwDQYJKoZIhvcNAQELBQADggEBAJAqlgFxwCm6mYweryRzFNdB 0/amxIygd93WzlDZ9bxFuP51rszzh2jXR4x0vzsV+h8nu9EtqZEDNQch3aVTUWtr 6a/sjx/O2WyIJL2h+TOT1r/dU0ycloPEqzm3GKYlcSZWKqVeLefoq0Pm1OxzaDxZ cI1t7nCzoINnxo+hVj38dSbbNDp89LR7WjI7xFCl0lUPDhBLNt9TXeyf9Bz8KZAs 7cLauzMXuS3q595DsA1XG4qaXWxlKR9c/avVwK+3VJGSSbUyst2ibCeCzeXebAom yq2XJFbdnlB1XPwxeSQ/X/azxvudvrLAohAixy2GJh+Q5LOQKYphKBEwCPnwh3c= -----END CERTIFICATE-----Generated at Wed Nov 5 05:45:06 2025 by rpki-client