$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/05876e04-6a48-47f9-a53a-40496713d9ab.roa File: 05876e04-6a48-47f9-a53a-40496713d9ab.roa (raw, json) Hash identifier: QypgL2CxGw5VXzhUJb4kIOxMj4oCu2SX7MzvsnHcdHk= Subject key identifier: FB:23:38:BF:55:0D:31:9F:F7:AE:F4:A0:D5:87:3F:4C:87:40:82:30 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1DF561D5DAF076079D701514D02E95F4898F2231 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/05876e04-6a48-47f9-a53a-40496713d9ab.roa Signing time: Wed 22 Oct 2025 00:50:05 +0000 ROA not before: Wed 22 Oct 2025 00:50:05 +0000 ROA not after: Wed 26 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 05 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:f5:61:d5:da:f0:76:07:9d:70:15:14:d0:2e:95:f4:89:8f:22:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 22 00:50:05 2025 GMT Not After : Nov 26 23:59:59 2025 GMT Subject: serialNumber=6a7bb8a28331b87d3c8ec7864633e1f16644e11030a132088719f5b9f628054a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:08:aa:5a:38:00:b7:ea:58:68:bb:c0:80:b1: 8e:42:92:40:75:ef:40:11:0b:3d:71:03:fa:02:7a: c2:01:94:f4:39:86:e2:8a:dd:f5:63:52:5e:ec:25: 83:2b:c9:f2:61:18:7f:3d:38:78:c0:ae:a4:42:cf: 66:a4:99:c1:81:28:b9:1f:5a:2d:4c:9f:dc:ca:07: 01:be:7f:3a:55:ae:3c:a3:9c:15:42:11:dd:de:df: f5:6e:22:d9:f7:b1:43:fc:d6:d3:b9:20:5d:49:81: 2e:e6:c7:a4:52:77:e5:41:07:16:db:b7:ed:38:38: 1d:6c:10:fe:d3:75:9d:10:01:bf:ca:e4:df:ec:1b: a0:fd:7a:9e:7c:fd:8f:a2:52:1d:65:18:c8:8d:94: 85:0e:e0:0c:02:45:d2:ed:27:e5:f4:23:a9:24:bd: 3f:26:8c:ab:9b:48:0f:0a:91:33:e0:21:1e:ff:5d: 10:ea:9b:e8:87:db:17:08:98:98:84:df:09:ca:5a: 4c:e3:6d:3a:56:9e:fb:b1:c1:b8:74:15:5a:5c:11: c1:a7:35:11:b6:bb:9d:bd:51:35:2c:49:62:60:64: aa:50:51:bb:b8:45:b3:b7:fb:ac:93:3a:88:53:59: b5:b5:29:bd:65:6b:8e:e1:1c:de:aa:7a:e1:08:37: 74:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:23:38:BF:55:0D:31:9F:F7:AE:F4:A0:D5:87:3F:4C:87:40:82:30 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/05876e04-6a48-47f9-a53a-40496713d9ab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f100::/40 Signature Algorithm: sha256WithRSAEncryption 2c:35:20:5c:76:0b:d3:33:91:fd:5b:bf:1d:9f:3d:46:7d:c2: f7:03:1c:46:ad:d6:7d:84:a2:e1:5f:71:3b:8d:04:a6:01:b9: ed:84:53:b1:a1:5e:b8:ad:84:8d:1e:d4:2f:5e:c6:77:d6:4f: f1:51:f1:95:ec:20:1d:b2:a9:35:6e:59:43:7f:f8:e0:ec:ac: 7e:62:72:d6:2a:74:3b:37:28:c4:f7:eb:28:18:f5:c8:be:05: 89:e4:5e:48:91:aa:ac:a9:a6:f7:c6:41:dc:22:b3:e8:87:ee: 64:f0:bd:6b:d1:78:f4:38:84:c0:d3:e1:d9:aa:30:8c:bf:f3: d0:26:7a:01:1e:20:92:6b:46:35:56:4d:72:21:b8:07:b6:ad: cf:7a:e1:7b:7c:0f:c9:96:ac:8d:bd:88:04:c3:0f:11:a7:5d: 8f:79:89:47:33:fd:b0:0a:f9:10:44:f9:72:0c:b3:87:02:b8: fb:09:2c:6a:48:0a:79:b2:bf:79:4f:c3:17:c9:22:40:cb:f9: 44:5d:ca:4e:6c:f9:4e:7a:12:13:1e:27:9d:54:59:37:6b:93: 46:31:67:d0:45:ad:ad:84:c4:e8:f4:0f:88:02:d5:be:8e:f5: 49:61:8e:b5:9e:20:5b:88:99:84:4b:55:6b:dd:88:aa:69:bb: c5:cf:1f:58 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUHfVh1drwdgedcBUU0C6V9ImPIjEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIyMDA1MDA1WhcNMjUxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YTdiYjhhMjgzMzFiODdkM2M4ZWM3ODY0NjMzZTFmMTY2 NDRlMTEwMzBhMTMyMDg4NzE5ZjViOWY2MjgwNTRhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFCKpaOAC36lhou8CAsY5CkkB170ARCz1xA/oCesIBlPQ5 huKK3fVjUl7sJYMryfJhGH89OHjArqRCz2akmcGBKLkfWi1Mn9zKBwG+fzpVrjyj nBVCEd3e3/VuItn3sUP81tO5IF1JgS7mx6RSd+VBBxbbt+04OB1sEP7TdZ0QAb/K 5N/sG6D9ep58/Y+iUh1lGMiNlIUO4AwCRdLtJ+X0I6kkvT8mjKubSA8KkTPgIR7/ XRDqm+iH2xcImJiE3wnKWkzjbTpWnvuxwbh0FVpcEcGnNRG2u529UTUsSWJgZKpQ Ubu4RbO3+6yTOohTWbW1Kb1la47hHN6qeuEIN3SzAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU+yM4v1UNMZ/3rvSg1Yc/TIdAgjAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzA1ODc2ZTA0LTZhNDgtNDdmOS1hNTNhLTQwNDk2NzEzZDlhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD78TANBgkqhkiG9w0BAQsFAAOCAQEALDUgXHYL0zOR/Vu/HZ89Rn3C 9wMcRq3WfYSi4V9xO40EpgG57YRTsaFeuK2EjR7UL17Gd9ZP8VHxlewgHbKpNW5Z Q3/44OysfmJy1ip0OzcoxPfrKBj1yL4FieReSJGqrKmm98ZB3CKz6IfuZPC9a9F4 9DiEwNPh2aowjL/z0CZ6AR4gkmtGNVZNciG4B7atz3rhe3wPyZasjb2IBMMPEadd j3mJRzP9sAr5EET5cgyzhwK4+wksakgKebK/eU/DF8kiQMv5RF3KTmz5TnoSEx4n nVRZN2uTRjFn0EWtrYTE6PQPiALVvo71SWGOtZ4gW4iZhEtVa92Iqmm7xc8fWA== -----END CERTIFICATE-----Generated at Tue Nov 4 04:41:06 2025 by rpki-client