$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0e25ff6b-b800-47bd-b202-1ffe5f44d9fe.roa File: 0e25ff6b-b800-47bd-b202-1ffe5f44d9fe.roa (raw, json) Hash identifier: 5DZ+OZ9gfuP2j61ZiFQiUnsLN6QK0ZdLdRLLc7jcxvk= Subject key identifier: 13:DB:8F:13:E7:C4:2F:10:E3:98:3D:52:98:9B:CB:A3:AE:AE:CB:23 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 256141F4D155B4F9AF08432EB588F5FA807D3875 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0e25ff6b-b800-47bd-b202-1ffe5f44d9fe.roa Signing time: Wed 22 Oct 2025 00:50:07 +0000 ROA not before: Wed 22 Oct 2025 00:50:07 +0000 ROA not after: Wed 26 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f103::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 05 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:61:41:f4:d1:55:b4:f9:af:08:43:2e:b5:88:f5:fa:80:7d:38:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 22 00:50:07 2025 GMT Not After : Nov 26 23:59:59 2025 GMT Subject: serialNumber=6ba151431b89f47063c73e024f6c997a3e4e1b4686ac97eef4d2255a51e126c8, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:00:1f:c6:24:84:93:85:f2:32:78:b3:75:9a: 80:c1:9d:b8:d8:ef:f5:e0:eb:1c:7b:73:6b:d0:0a: fc:04:c1:33:cf:e9:90:d3:8d:5a:2f:95:e1:11:93: c2:4d:b0:1c:53:95:be:ca:d3:97:18:77:15:e5:59: dc:25:20:1e:28:af:93:5f:34:d4:94:a0:8e:16:c7: a3:80:f1:9d:3a:5b:af:90:ef:9c:00:45:9b:18:e8: 28:59:92:73:4d:9f:a3:61:70:e2:96:54:fa:a0:ea: 56:7a:6f:33:36:af:9b:81:60:ba:d9:bc:04:72:59: 19:85:30:e8:a4:71:5e:5c:9c:47:93:48:d0:3a:b5: 8d:3b:57:09:82:d3:d7:2b:5a:eb:52:7e:4b:2a:ad: cd:06:fb:21:21:b1:7a:cb:56:06:af:27:37:34:95: 06:72:3d:aa:aa:8e:3b:77:98:40:65:5c:7e:52:7d: 7e:0d:f2:de:90:ae:39:f1:2a:0f:73:bb:ca:af:8b: 96:ad:ab:69:39:12:4b:6f:6c:0e:67:53:90:ad:71: cd:80:95:09:40:0b:01:e5:1a:a8:8f:f9:ea:c9:3a: cc:f8:62:00:ca:f3:9e:83:24:84:1f:5c:de:40:f7: ad:e2:c2:8c:8a:65:14:27:eb:5a:25:fc:90:8e:61: 67:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:DB:8F:13:E7:C4:2F:10:E3:98:3D:52:98:9B:CB:A3:AE:AE:CB:23 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0e25ff6b-b800-47bd-b202-1ffe5f44d9fe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f103::/48 Signature Algorithm: sha256WithRSAEncryption 21:15:41:d3:fb:f8:56:2b:00:fb:5d:c2:6b:ab:5b:ad:b3:df: 04:8a:17:d9:d9:3b:d8:53:98:5b:d5:32:6d:5b:92:ae:5f:d8: cb:29:c1:9e:48:4b:24:5d:c9:89:6f:f3:25:f0:f4:ea:0a:31: 03:8e:3e:8a:41:5e:8a:d5:0e:0d:1f:f5:96:dc:53:4c:ec:de: 0b:f2:4f:57:28:7c:fe:f7:b6:44:e2:76:56:ba:cf:4f:a2:d8: fa:23:61:3f:18:76:a0:52:4e:8c:9b:20:35:5d:d9:73:cf:b3: 36:e5:16:12:32:ca:cb:1f:86:fc:55:84:a6:ed:e4:a4:19:8e: dc:a8:ca:84:b1:7c:f1:2e:92:f5:ef:77:8a:34:7f:71:b0:af: 24:25:1c:79:15:5f:9f:24:3d:a9:0f:ae:d6:31:ef:d6:3e:97: 80:a3:e7:10:02:a9:62:04:ed:d2:22:2a:50:38:35:84:05:44: 28:f0:d4:ec:fc:fa:38:af:19:6e:11:70:21:39:51:72:20:8a: b2:72:10:56:3e:94:3c:9b:d3:b9:f0:aa:93:2c:31:4c:a9:d1: 0c:85:50:44:cd:ba:9a:d9:11:74:69:0d:e6:c1:73:74:dd:30: 9c:6c:ce:30:43:11:7c:0c:14:84:71:69:ed:a7:b6:89:70:16: 00:5e:2e:7c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJWFB9NFVtPmvCEMutYj1+oB9OHUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIyMDA1MDA3WhcNMjUxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YmExNTE0MzFiODlmNDcwNjNjNzNlMDI0ZjZjOTk3YTNl NGUxYjQ2ODZhYzk3ZWVmNGQyMjU1YTUxZTEyNmM4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdAB/GJISThfIyeLN1moDBnbjY7/Xg6xx7c2vQCvwEwTPP 6ZDTjVovleERk8JNsBxTlb7K05cYdxXlWdwlIB4or5NfNNSUoI4Wx6OA8Z06W6+Q 75wARZsY6ChZknNNn6NhcOKWVPqg6lZ6bzM2r5uBYLrZvARyWRmFMOikcV5cnEeT SNA6tY07VwmC09crWutSfksqrc0G+yEhsXrLVgavJzc0lQZyPaqqjjt3mEBlXH5S fX4N8t6QrjnxKg9zu8qvi5atq2k5EktvbA5nU5Ctcc2AlQlACwHlGqiP+erJOsz4 YgDK856DJIQfXN5A963iwoyKZRQn61ol/JCOYWdnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUE9uPE+fELxDjmD1SmJvLo66uyyMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBlMjVmZjZiLWI4MDAtNDdiZC1iMjAyLTFmZmU1ZjQ0ZDlmZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QMwDQYJKoZIhvcNAQELBQADggEBACEVQdP7+FYrAPtdwmurW62z 3wSKF9nZO9hTmFvVMm1bkq5f2MspwZ5ISyRdyYlv8yXw9OoKMQOOPopBXorVDg0f 9ZbcU0zs3gvyT1cofP73tkTidla6z0+i2PojYT8YdqBSToybIDVd2XPPszblFhIy yssfhvxVhKbt5KQZjtyoyoSxfPEukvXvd4o0f3GwryQlHHkVX58kPakPrtYx79Y+ l4Cj5xACqWIE7dIiKlA4NYQFRCjw1Oz8+jivGW4RcCE5UXIgirJyEFY+lDyb07nw qpMsMUyp0QyFUETNuprZEXRpDebBc3TdMJxszjBDEXwMFIRxae2ntolwFgBeLnw= -----END CERTIFICATE-----Generated at Tue Nov 4 04:42:53 2025 by rpki-client