$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa File: 03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa (raw, json) Hash identifier: VljJO68tPVZovtSEPMoq/rs3WYGcEs5y6BVXP2cNeV4= Subject key identifier: 5C:93:82:14:F4:F0:5A:EA:33:D8:1C:6C:70:65:00:47:53:77:00:90 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 117E34FB3A317991F0FEAD4012307286BFA0B27E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa Signing time: Tue 21 Oct 2025 13:00:06 +0000 ROA not before: Tue 21 Oct 2025 13:00:06 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:551d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 24 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:7e:34:fb:3a:31:79:91:f0:fe:ad:40:12:30:72:86:bf:a0:b2:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:00:06 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=50c0953db86be634389383baa4c31906797f8401355d76d144c458462b88f00c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b5:26:54:81:05:c6:1b:79:09:b8:45:b1:da: f2:9a:03:f1:ed:87:bc:46:e3:85:4e:32:5f:56:5e: 09:b6:46:53:03:f8:e7:7b:3b:be:a8:f8:4d:99:06: 07:aa:92:1a:88:fd:b7:78:42:b6:85:8b:e7:52:c6: 98:c1:2d:53:53:ad:5e:bc:1f:9e:c6:ba:3d:79:23: 9e:c9:f1:be:85:d7:59:11:6b:90:50:85:82:4f:41: b9:a8:4b:f2:57:02:eb:d5:85:67:8b:f8:87:c8:b5: ba:e4:2a:b2:3a:a2:36:fa:e7:f5:d7:80:3d:3c:0a: 60:0f:56:84:df:2a:bb:a4:79:5d:16:cd:81:ef:87: 75:d1:1d:86:9d:35:3a:a9:13:1e:6c:c1:7b:55:fa: a7:83:0e:e7:1d:9e:5b:e5:9a:47:cb:2f:d2:02:ef: 1e:5a:d3:62:55:db:d4:c4:0c:62:6e:ca:45:bb:e3: 5e:70:80:34:d5:3c:84:f5:ba:0e:bd:95:53:e5:29: 9d:31:bb:af:b9:24:46:2d:d7:d1:65:89:a1:48:67: 79:2c:b6:2c:f4:bf:c2:5b:d8:b7:64:ab:e5:6b:a1: 67:ab:ec:71:c2:7f:d1:41:8f:9e:82:eb:54:41:c7: 5c:0b:9f:7f:21:31:61:08:9b:dc:34:43:09:7a:cb: 1b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:93:82:14:F4:F0:5A:EA:33:D8:1C:6C:70:65:00:47:53:77:00:90 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551d::/48 Signature Algorithm: sha256WithRSAEncryption 75:9f:bd:5c:be:ed:69:cd:aa:4c:69:77:b4:69:f7:4d:f1:f3: 8f:d3:4c:d4:32:73:42:99:05:47:18:1a:07:0a:27:6b:23:ef: 45:3c:fa:ed:9e:39:6d:99:6b:2d:0e:87:56:5d:b5:db:cf:c7: 7e:06:3f:67:c4:d9:35:cb:f7:84:c7:b4:be:60:4b:39:f7:30: aa:e8:91:80:7c:20:84:79:42:db:19:61:51:8f:27:00:32:de: d2:0d:7b:54:1e:a5:4d:51:4b:13:c4:b2:16:81:cf:4b:9e:1c: 2b:e7:b4:f5:db:84:18:0e:8d:24:46:ac:11:2b:91:3d:58:50: 63:49:cd:ed:00:1b:14:62:ba:39:66:29:e4:7b:67:a9:2b:f3: 2c:ac:d9:ae:66:1f:59:54:63:27:a6:0c:4d:90:7b:91:38:e0: b0:7f:45:f1:80:11:e1:2d:78:55:92:fb:4e:97:7b:88:3e:fc: fe:27:84:ee:a2:e1:3e:18:88:6a:57:dc:17:64:9f:d1:83:56: 46:af:fc:69:21:0e:af:71:ef:8d:57:e7:0b:3d:0e:b7:39:97: 12:d9:e0:6a:0d:d0:92:2e:33:01:19:f7:0c:da:c9:46:7f:0a: 85:a6:e8:7a:af:b5:a0:4f:01:09:2a:66:a3:76:75:8f:87:17: fd:12:8b:d9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEX40+zoxeZHw/q1AEjByhr+gsn4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMwMDA2WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MGMwOTUzZGI4NmJlNjM0Mzg5MzgzYmFhNGMzMTkwNjc5 N2Y4NDAxMzU1ZDc2ZDE0NGM0NTg0NjJiODhmMDBjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9tSZUgQXGG3kJuEWx2vKaA/Hth7xG44VOMl9WXgm2RlMD +Od7O76o+E2ZBgeqkhqI/bd4QraFi+dSxpjBLVNTrV68H57Guj15I57J8b6F11kR a5BQhYJPQbmoS/JXAuvVhWeL+IfItbrkKrI6ojb65/XXgD08CmAPVoTfKrukeV0W zYHvh3XRHYadNTqpEx5swXtV+qeDDucdnlvlmkfLL9IC7x5a02JV29TEDGJuykW7 415wgDTVPIT1ug69lVPlKZ0xu6+5JEYt19FliaFIZ3kstiz0v8Jb2Ldkq+VroWer 7HHCf9FBj56C61RBx1wLn38hMWEIm9w0Qwl6yxvXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUXJOCFPTwWuoz2BxscGUAR1N3AJAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzAzYjU5YTFlLTYyNjgtNDYwNy1hNmMxLTY5ZTZkZTgwY2Y0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVR0wDQYJKoZIhvcNAQELBQADggEBAHWfvVy+7WnNqkxpd7Rp903x 84/TTNQyc0KZBUcYGgcKJ2sj70U8+u2eOW2Zay0Oh1ZdtdvPx34GP2fE2TXL94TH tL5gSzn3MKrokYB8IIR5QtsZYVGPJwAy3tINe1QepU1RSxPEshaBz0ueHCvntPXb hBgOjSRGrBErkT1YUGNJze0AGxRiujlmKeR7Z6kr8yys2a5mH1lUYyemDE2Qe5E4 4LB/RfGAEeEteFWS+06Xe4g+/P4nhO6i4T4YiGpX3Bdkn9GDVkav/GkhDq9x741X 5ws9Drc5lxLZ4GoN0JIuMwEZ9wzayUZ/CoWm6HqvtaBPAQkqZqN2dY+HF/0Si9k= -----END CERTIFICATE-----Generated at Thu Oct 23 08:44:27 2025 by rpki-client