$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc2b5e45-8344-4038-8f8f-6229cecec136.roa File: fc2b5e45-8344-4038-8f8f-6229cecec136.roa (raw, json) Hash identifier: pky1/Zt4S1qZZIivdd6gbCQkxJqjQ3y2p/fhdu7HXec= Subject key identifier: F1:0E:24:35:25:3A:96:F8:36:83:3D:60:F7:AC:51:C0:3B:2D:70:01 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6E62D62194A90E94801505266A0DDA7D7F571ABA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc2b5e45-8344-4038-8f8f-6229cecec136.roa Signing time: Fri 24 Oct 2025 00:20:09 +0000 ROA not before: Fri 24 Oct 2025 00:20:09 +0000 ROA not after: Fri 28 Nov 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f0:4141::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:62:d6:21:94:a9:0e:94:80:15:05:26:6a:0d:da:7d:7f:57:1a:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 24 00:20:09 2025 GMT Not After : Nov 28 23:59:59 2025 GMT Subject: serialNumber=76af277e2e213759831f793fca1da8f9d11d1ee959e579b9b74fb7af483b9ef2, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:d6:31:ab:a6:96:fb:d7:c5:bd:6d:6f:f5:f4: da:5b:52:54:de:d7:6e:6d:7d:52:55:62:ad:cc:18: 90:b3:e5:8d:ab:c2:5c:7e:6a:08:49:29:f9:29:67: bd:41:4c:bc:13:71:3f:31:bb:6e:72:d5:24:9b:72: 5d:e6:0a:e9:63:98:1f:60:ce:58:26:91:d1:c1:e0: 96:7e:f6:3d:fa:78:c7:6c:d4:f0:1b:eb:a6:d0:74: c0:fd:f7:38:f5:77:a4:a6:dd:2c:c4:36:b9:67:9c: 0a:97:48:c7:e6:b6:b7:ca:f2:23:34:df:bd:f1:7d: 31:92:7f:f3:50:f6:7c:0d:7b:4f:16:51:3d:45:91: 69:9d:25:08:50:0b:37:d9:25:ed:38:d0:e3:04:cd: ec:64:28:f5:75:af:e6:bd:41:87:cf:af:32:59:45: b8:35:d9:7f:4d:f3:ad:87:dc:1e:85:14:71:d9:48: 9d:bc:0d:6e:75:1f:1b:18:57:b7:d4:67:13:fc:19: bc:7b:ed:0e:e2:67:af:f4:2d:55:7b:a8:47:3e:1a: 2c:4e:3a:e3:54:56:0a:ce:5b:f6:e7:96:38:40:1f: e7:eb:a3:0e:5d:88:e7:0b:ab:ec:72:48:56:41:f5: 84:17:0e:84:7e:d6:04:8e:a9:b5:da:8f:99:e6:22: 83:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:0E:24:35:25:3A:96:F8:36:83:3D:60:F7:AC:51:C0:3B:2D:70:01 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc2b5e45-8344-4038-8f8f-6229cecec136.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4141::/48 Signature Algorithm: sha256WithRSAEncryption 4a:a6:cd:1e:35:7d:62:d4:b2:58:95:f5:06:e4:45:d5:fd:65: 7f:d2:24:19:19:88:58:aa:56:ab:be:a0:98:30:2c:04:b0:d4: ce:9a:55:f0:b8:4a:d0:f5:94:b1:8c:ba:2a:89:36:19:af:64: 33:fc:4b:05:c7:d6:5a:cf:2b:41:e8:ae:ea:97:c8:b6:72:19: 46:25:74:1f:b8:8e:cc:ee:3c:26:70:79:01:f1:75:92:47:9a: af:8c:09:69:95:e6:94:b4:8a:6f:6c:ae:d9:e2:1f:49:09:5d: 59:aa:ce:a5:fc:6e:a9:c2:11:26:45:49:66:20:3a:fc:47:97: 68:73:a3:57:b5:98:91:10:e6:6e:5c:2a:cf:24:1c:2f:e7:76: db:06:5d:fb:10:d0:b3:02:5d:b8:0f:23:d1:64:77:8c:3d:b6: 9c:a7:8b:be:0f:e4:13:0e:12:f7:1d:84:05:d8:a4:11:e7:1c: 54:ae:72:c5:eb:3d:c4:e7:0b:90:d5:fe:e3:34:b7:27:af:42: 61:f0:b9:1c:3e:d4:a6:2f:15:d6:b1:0a:06:cd:71:aa:46:b1: 1f:68:70:0d:4c:41:4c:2e:fc:a5:91:18:47:8a:c5:50:a4:82: 9e:78:67:e7:22:f8:85:76:39:b8:d6:53:f2:1d:41:42:f6:b9: 2e:74:d4:6b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbmLWIZSpDpSAFQUmag3afX9XGrowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDI0MDAyMDA5WhcNMjUxMTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NmFmMjc3ZTJlMjEzNzU5ODMxZjc5M2ZjYTFkYThmOWQx MWQxZWU5NTllNTc5YjliNzRmYjdhZjQ4M2I5ZWYyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDj1jGrppb718W9bW/19NpbUlTe125tfVJVYq3MGJCz5Y2r wlx+aghJKfkpZ71BTLwTcT8xu25y1SSbcl3mCuljmB9gzlgmkdHB4JZ+9j36eMds 1PAb66bQdMD99zj1d6Sm3SzENrlnnAqXSMfmtrfK8iM0373xfTGSf/NQ9nwNe08W UT1FkWmdJQhQCzfZJe040OMEzexkKPV1r+a9QYfPrzJZRbg12X9N862H3B6FFHHZ SJ28DW51HxsYV7fUZxP8Gbx77Q7iZ6/0LVV7qEc+GixOOuNUVgrOW/bnljhAH+fr ow5diOcLq+xySFZB9YQXDoR+1gSOqbXaj5nmIoP9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8Q4kNSU6lvg2gz1g96xRwDstcAEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ZjMmI1ZTQ1LTgzNDQtNDAzOC04ZjhmLTYyMjljZWNlYzEzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwQUEwDQYJKoZIhvcNAQELBQADggEBAEqmzR41fWLUsliV9QbkRdX9 ZX/SJBkZiFiqVqu+oJgwLASw1M6aVfC4StD1lLGMuiqJNhmvZDP8SwXH1lrPK0Ho ruqXyLZyGUYldB+4jszuPCZweQHxdZJHmq+MCWmV5pS0im9srtniH0kJXVmqzqX8 bqnCESZFSWYgOvxHl2hzo1e1mJEQ5m5cKs8kHC/ndtsGXfsQ0LMCXbgPI9Fkd4w9 tpyni74P5BMOEvcdhAXYpBHnHFSucsXrPcTnC5DV/uM0tyevQmHwuRw+1KYvFdax CgbNcapGsR9ocA1MQUwu/KWRGEeKxVCkgp54Z+ci+IV2ObjWU/IdQUL2uS501Gs= -----END CERTIFICATE-----Generated at Wed Nov 5 01:58:47 2025 by rpki-client