$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b89c4fe-6730-4f60-bc4c-ea16b19c2c3c.roa File: 0b89c4fe-6730-4f60-bc4c-ea16b19c2c3c.roa (raw, json) Hash identifier: 8eB8l/acmCyBztV+lUx8w2Uu7jyhFFXK9fADbBUXgQg= Subject key identifier: E5:98:54:A8:05:52:84:AA:9C:6D:93:AC:A9:D1:B2:46:26:FA:76:04 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1CD178CCB68B0510984F18B716174CB5ACF4138F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b89c4fe-6730-4f60-bc4c-ea16b19c2c3c.roa Signing time: Tue 21 Oct 2025 13:00:21 +0000 ROA not before: Tue 21 Oct 2025 13:00:21 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 05 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:d1:78:cc:b6:8b:05:10:98:4f:18:b7:16:17:4c:b5:ac:f4:13:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:00:21 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=35d94dc42291770d3041ad7f7b3791d782b1f497212bed9009596b0fd6c69595, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8e:1a:d4:8f:e3:36:6a:7d:9c:7d:c4:43:54: 20:9d:cf:64:43:b2:5f:fb:f1:50:de:33:53:02:6d: ca:ac:46:3b:3d:2b:d1:fc:2a:25:71:a6:7e:02:66: 50:e0:28:2a:c9:f7:83:d2:ab:63:53:99:07:7f:d2: 72:3d:98:ae:6b:90:ad:d2:95:3c:3a:c6:44:e6:f0: 11:cb:d1:59:cc:6f:0e:e5:57:7b:01:de:8d:7c:7e: eb:70:97:95:2e:65:8c:9f:be:2d:38:ed:ea:84:c5: 5d:cb:0c:bd:4b:fc:ba:aa:e6:68:93:5f:d8:b1:fd: 04:b8:e0:38:0f:b6:04:3d:62:b0:0f:1b:6e:6d:ce: a2:a8:4b:c8:0b:b0:6d:8b:d4:d5:4d:01:59:0c:c1: d8:fb:d1:b7:8d:2f:ae:bb:9b:2e:52:39:dd:64:79: 5a:d8:12:18:2e:9d:ef:a1:a6:18:66:d2:e7:a5:33: c0:08:93:8a:f2:44:1b:d4:f3:ef:d8:9e:dd:71:e3: d0:f2:55:b7:87:7a:bd:78:e2:8a:7a:1c:6e:cf:71: f4:db:1d:ea:4a:06:43:55:83:17:f7:b1:4c:55:62: 81:03:14:41:b0:42:99:d6:11:c8:e8:fa:06:ac:6f: 59:41:3b:9b:79:9a:cd:73:8a:dc:41:d2:4c:99:ff: cf:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:98:54:A8:05:52:84:AA:9C:6D:93:AC:A9:D1:B2:46:26:FA:76:04 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b89c4fe-6730-4f60-bc4c-ea16b19c2c3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:20::/48 Signature Algorithm: sha256WithRSAEncryption 12:7e:e5:0c:3a:9c:a9:39:4d:04:a4:54:fa:91:72:ae:2d:d4: c6:88:53:2e:3a:1f:70:2b:96:0e:be:c1:9b:27:bd:f6:87:43: fd:33:92:d5:f1:92:e1:1d:e1:3a:93:f0:e9:f4:b6:00:0b:5d: b2:90:ef:c5:4b:ce:dd:b6:7e:2a:d4:d7:eb:8c:c9:fe:9f:e5: 9f:0d:80:db:1b:c0:f9:a1:e3:37:84:07:47:00:cd:80:b4:b7: 84:dc:d3:b3:ea:7c:71:57:02:58:f2:6e:bf:6b:e3:6e:fb:b5: 1a:78:0b:ca:5b:00:42:3e:ee:6c:5f:04:7b:5e:63:34:38:9c: b6:e2:79:0d:7d:25:37:97:7d:2f:3f:6d:54:ee:d6:d0:e4:7f: e1:3b:1f:6d:43:23:6a:be:42:1f:09:12:59:c2:f1:12:89:38: dc:35:3d:b1:00:48:38:9f:45:da:8f:2b:51:09:19:1b:22:a5: c6:3c:ff:b4:0b:cc:3d:a0:2c:ac:6e:95:4e:7b:29:a9:45:23: e8:12:59:a3:29:74:9a:18:ce:76:34:78:3c:9b:40:09:06:f6: 13:05:3a:ab:d0:3d:c3:7c:25:8e:66:aa:4f:c3:a0:e4:3f:94: a8:90:87:14:05:e6:20:1a:f8:eb:a0:9d:1d:35:94:3e:ee:f7: 24:2d:28:9c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHNF4zLaLBRCYTxi3FhdMtaz0E48wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMwMDIxWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNWQ5NGRjNDIyOTE3NzBkMzA0MWFkN2Y3YjM3OTFkNzgy YjFmNDk3MjEyYmVkOTAwOTU5NmIwZmQ2YzY5NTk1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8jhrUj+M2an2cfcRDVCCdz2RDsl/78VDeM1MCbcqsRjs9 K9H8KiVxpn4CZlDgKCrJ94PSq2NTmQd/0nI9mK5rkK3SlTw6xkTm8BHL0VnMbw7l V3sB3o18futwl5UuZYyfvi047eqExV3LDL1L/Lqq5miTX9ix/QS44DgPtgQ9YrAP G25tzqKoS8gLsG2L1NVNAVkMwdj70beNL667my5SOd1keVrYEhgune+hphhm0uel M8AIk4ryRBvU8+/Ynt1x49DyVbeHer144op6HG7PcfTbHepKBkNVgxf3sUxVYoED FEGwQpnWEcjo+gasb1lBO5t5ms1zitxB0kyZ/88DAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5ZhUqAVShKqcbZOsqdGyRib6dgQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBiODljNGZlLTY3MzAtNGY2MC1iYzRjLWVhMTZiMTljMmMzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwACAwDQYJKoZIhvcNAQELBQADggEBABJ+5Qw6nKk5TQSkVPqRcq4t 1MaIUy46H3Arlg6+wZsnvfaHQ/0zktXxkuEd4TqT8On0tgALXbKQ78VLzt22firU 1+uMyf6f5Z8NgNsbwPmh4zeEB0cAzYC0t4Tc07PqfHFXAljybr9r4277tRp4C8pb AEI+7mxfBHteYzQ4nLbieQ19JTeXfS8/bVTu1tDkf+E7H21DI2q+Qh8JElnC8RKJ ONw1PbEASDifRdqPK1EJGRsipcY8/7QLzD2gLKxulU57KalFI+gSWaMpdJoYznY0 eDybQAkG9hMFOqvQPcN8JY5mqk/DoOQ/lKiQhxQF5iAa+OugnR01lD7u9yQtKJw= -----END CERTIFICATE-----Generated at Tue Nov 4 04:39:54 2025 by rpki-client