$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/06e0a97e-b500-434c-94b4-3eadd34e5d34.roa File: 06e0a97e-b500-434c-94b4-3eadd34e5d34.roa (raw, json) Hash identifier: 3J9V74v8milKfycwYJUO0sPIbMtfBHws7+jZtYbF0pA= Subject key identifier: DD:68:49:FD:42:24:AA:A8:3D:B5:85:C4:21:61:1F:63:F5:A2:8F:74 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4743E9E260E6484659CBBA549F9ABDC352E1D3A7 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/06e0a97e-b500-434c-94b4-3eadd34e5d34.roa Signing time: Wed 22 Oct 2025 00:50:07 +0000 ROA not before: Wed 22 Oct 2025 00:50:07 +0000 ROA not after: Wed 26 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f103::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 05 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:43:e9:e2:60:e6:48:46:59:cb:ba:54:9f:9a:bd:c3:52:e1:d3:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 22 00:50:07 2025 GMT Not After : Nov 26 23:59:59 2025 GMT Subject: serialNumber=f26de73b850f5f382dd00e6da51fb0b1e0352a7951157728fcf2c9e180259772, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c0:ae:fc:47:55:79:f9:5c:b4:ab:9b:87:1c: e8:0c:95:12:db:72:4e:d7:64:2a:04:00:96:21:3a: 3c:1f:3f:1c:ad:fe:af:ad:a9:bd:47:c8:26:84:d6: 9b:58:6d:40:6f:9e:3e:55:80:48:2b:55:d9:82:57: 57:3c:0b:48:2e:09:3c:f5:a8:f2:eb:1c:93:77:38: b9:4a:44:1a:65:bd:50:2d:b7:35:86:a1:48:30:1d: d0:eb:09:ac:3b:6f:ef:a0:d2:3f:84:f1:5a:91:30: af:13:2d:a6:65:a3:d9:ce:06:35:ef:90:4f:f7:d3: 28:d2:df:4a:fa:62:82:3d:53:d8:51:2a:30:10:48: fb:d4:68:c9:b7:48:ce:3f:74:92:57:10:69:d5:3d: e0:5a:4f:1e:97:10:f7:ff:01:34:c8:b4:36:20:e9: 93:80:c0:4b:a6:21:ff:c1:b1:39:1d:72:df:59:6a: 05:55:02:03:ce:fa:09:9f:9c:64:a9:74:7f:22:d9: de:18:0d:49:ae:cf:0d:ab:67:86:0d:5b:5b:29:9a: b2:b5:a9:93:8a:bd:13:d7:8f:90:92:cf:b9:20:26: 8b:60:20:ab:5b:cb:88:15:1b:57:a2:aa:52:44:eb: 82:33:32:25:ba:01:5d:37:fd:b8:13:6b:a9:f5:0b: 25:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:68:49:FD:42:24:AA:A8:3D:B5:85:C4:21:61:1F:63:F5:A2:8F:74 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/06e0a97e-b500-434c-94b4-3eadd34e5d34.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f103::/48 Signature Algorithm: sha256WithRSAEncryption 64:98:b0:ae:e2:a9:2a:e4:32:75:9c:73:56:a8:26:ea:4a:93: d7:07:38:e1:dc:06:79:33:37:99:46:27:c9:91:ab:65:78:8b: e5:b1:0a:38:5b:09:2d:3d:14:12:88:67:52:31:58:d6:3a:c7: fc:54:92:36:e2:02:c8:2a:04:1f:77:22:aa:e1:d7:6f:ab:e2: 2a:ba:cf:fb:e1:30:98:bd:5f:94:72:8c:d3:99:77:6e:40:f3: 05:50:a0:d3:fa:84:19:f0:f2:68:09:a9:49:35:6d:df:90:91: 2c:10:bd:6d:a3:86:cc:c9:54:c5:32:ad:bb:ab:17:4a:20:54: 1e:dc:cb:f5:3e:75:ef:34:61:0f:df:bd:0e:f3:fa:72:9b:53: c0:fc:fb:e1:1c:cb:32:37:e8:56:f4:2f:09:18:ba:36:45:c3: bb:71:0a:cc:d9:78:07:27:47:f9:89:85:f6:04:57:79:c6:e5: 16:39:7c:74:07:ae:e6:ee:fb:72:f9:d2:ec:7c:49:a9:d0:01: 00:8c:8f:36:ee:53:8e:1f:4a:07:8a:57:a7:3a:7f:b8:62:07: 83:6b:bd:b4:f8:fa:32:3b:04:33:bd:af:07:9d:f5:71:62:02: 33:61:9b:a1:ff:d3:13:a6:c2:e5:a3:57:a7:2a:c6:be:74:a4: a3:cd:a8:1c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUR0Pp4mDmSEZZy7pUn5q9w1Lh06cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIyMDA1MDA3WhcNMjUxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMjZkZTczYjg1MGY1ZjM4MmRkMDBlNmRhNTFmYjBiMWUw MzUyYTc5NTExNTc3MjhmY2YyYzllMTgwMjU5NzcyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzwK78R1V5+Vy0q5uHHOgMlRLbck7XZCoEAJYhOjwfPxyt /q+tqb1HyCaE1ptYbUBvnj5VgEgrVdmCV1c8C0guCTz1qPLrHJN3OLlKRBplvVAt tzWGoUgwHdDrCaw7b++g0j+E8VqRMK8TLaZlo9nOBjXvkE/30yjS30r6YoI9U9hR KjAQSPvUaMm3SM4/dJJXEGnVPeBaTx6XEPf/ATTItDYg6ZOAwEumIf/BsTkdct9Z agVVAgPO+gmfnGSpdH8i2d4YDUmuzw2rZ4YNW1spmrK1qZOKvRPXj5CSz7kgJotg IKtby4gVG1eiqlJE64IzMiW6AV03/bgTa6n1CyXvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3WhJ/UIkqqg9tYXEIWEfY/Wij3QwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzA2ZTBhOTdlLWI1MDAtNDM0Yy05NGI0LTNlYWRkMzRlNWQzNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QMwDQYJKoZIhvcNAQELBQADggEBAGSYsK7iqSrkMnWcc1aoJupK k9cHOOHcBnkzN5lGJ8mRq2V4i+WxCjhbCS09FBKIZ1IxWNY6x/xUkjbiAsgqBB93 Iqrh12+r4iq6z/vhMJi9X5RyjNOZd25A8wVQoNP6hBnw8mgJqUk1bd+QkSwQvW2j hszJVMUyrburF0ogVB7cy/U+de80YQ/fvQ7z+nKbU8D8++EcyzI36Fb0LwkYujZF w7txCszZeAcnR/mJhfYEV3nG5RY5fHQHrubu+3L50ux8SanQAQCMjzbuU44fSgeK V6c6f7hiB4NrvbT4+jI7BDO9rwed9XFiAjNhm6H/0xOmwuWjV6cqxr50pKPNqBw= -----END CERTIFICATE-----Generated at Tue Nov 4 04:41:04 2025 by rpki-client