$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/16b22ea8-4a7c-431a-bd74-8a2cceaaaf4a.roa File: 16b22ea8-4a7c-431a-bd74-8a2cceaaaf4a.roa (raw, json) Hash identifier: HQJFSlFZAn+AXoTrPHpZ1UpSV88LEDekX31PdSwmrXg= Subject key identifier: F2:73:3B:05:16:9A:10:F6:11:C7:E7:28:AA:62:A4:CD:6B:D5:26:84 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 69B20ED9DC647983A98A8696EDF4E81A735A4AA7 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/16b22ea8-4a7c-431a-bd74-8a2cceaaaf4a.roa Signing time: Wed 22 Oct 2025 00:40:05 +0000 ROA not before: Wed 22 Oct 2025 00:40:05 +0000 ROA not after: Wed 26 Nov 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f3:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 05 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:b2:0e:d9:dc:64:79:83:a9:8a:86:96:ed:f4:e8:1a:73:5a:4a:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 22 00:40:05 2025 GMT Not After : Nov 26 23:59:59 2025 GMT Subject: serialNumber=9d44abad4b5f569f2397d0e81369dfe33e2acfafe6a2c6069f240c0e017a248f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:90:ad:ca:3b:2a:b4:59:84:95:7f:e1:1f:e8: d6:2c:9a:e9:9c:01:63:d2:fe:5f:7b:c1:58:db:f5: fb:af:14:86:89:3d:ac:2b:72:8c:ae:0b:82:14:d6: be:e8:9e:90:e4:32:05:19:e6:6d:ca:d0:a8:45:8a: ad:e7:f1:08:6c:48:52:12:58:28:d1:86:7b:da:2b: 20:8a:fe:1f:fc:cd:88:00:c1:31:5f:6d:04:b5:e1: 01:05:50:39:85:f7:c1:d4:ea:52:4c:6d:55:78:15: b1:40:08:bf:75:63:95:32:c1:56:1c:f1:23:77:74: 9c:10:8f:60:bb:51:61:59:0e:d3:ea:6f:a6:24:48: c3:46:7a:49:00:21:27:a5:22:7c:f0:c4:97:58:65: 78:46:6c:c7:07:c0:ae:b1:12:3a:c7:d4:60:22:68: 6c:d6:f4:a3:f5:d2:a7:43:b1:b1:4d:9b:2d:5f:1d: 3d:67:88:22:00:2c:d3:fb:80:2a:c3:fc:42:a4:24: 7c:bb:60:ba:f9:d6:08:3d:9a:71:28:38:3a:10:da: c5:07:0e:24:45:5e:dd:fe:13:15:53:bb:d5:f3:20: 47:95:8c:9b:ed:c8:fa:0b:d9:13:42:70:46:26:41: f4:5b:44:2a:8b:44:7d:80:ea:e8:cc:21:4d:65:5b: 84:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:73:3B:05:16:9A:10:F6:11:C7:E7:28:AA:62:A4:CD:6B:D5:26:84 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/16b22ea8-4a7c-431a-bd74-8a2cceaaaf4a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f3:f000::/44 Signature Algorithm: sha256WithRSAEncryption 27:f9:bf:05:7b:0a:ee:63:f4:f4:6d:63:77:5d:b5:ba:42:a0: ee:af:e6:ce:1e:d5:d1:7b:7f:e1:f0:f1:42:50:5e:64:83:a5: 09:22:87:c9:ad:61:c9:6f:ec:63:8b:ed:69:7e:b5:4c:c9:f0: 1f:bc:ba:c5:13:2f:70:a4:ed:d6:0f:9a:c6:ec:d2:65:8c:70: dd:7e:1d:e3:4c:5a:30:bd:3c:4d:b3:de:59:9a:af:91:c6:89: c7:98:00:9c:0e:d5:4a:3f:cb:d8:06:52:29:b3:e0:8f:ad:dd: ff:a4:11:3a:58:b0:48:d8:22:97:d5:ee:bc:e2:ec:92:89:fb: 46:00:19:83:e6:f2:7d:62:21:a4:bd:f2:81:de:42:c9:8d:96: 09:4e:89:a1:72:2c:e2:f6:eb:6a:96:d3:d8:90:59:cc:ba:20: 10:ea:ec:37:6c:bf:e5:20:fb:8a:ef:89:fb:28:29:6f:ca:46: 5b:40:76:22:c5:1d:97:d2:ea:d7:1a:42:58:46:65:cc:f2:50: 9b:96:9a:b9:37:f5:16:cc:45:8b:b9:ae:e5:ef:77:a8:c9:84: 3a:da:f6:76:3e:ac:10:c2:27:35:d5:80:fe:80:a9:cf:d1:01: 78:68:ed:d9:62:55:1d:64:3d:8e:c1:34:1a:ad:04:43:fa:08: 94:44:70:66 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUabIO2dxkeYOpioaW7fToGnNaSqcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIyMDA0MDA1WhcNMjUxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZDQ0YWJhZDRiNWY1NjlmMjM5N2QwZTgxMzY5ZGZlMzNl MmFjZmFmZTZhMmM2MDY5ZjI0MGMwZTAxN2EyNDhmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCykK3KOyq0WYSVf+Ef6NYsmumcAWPS/l97wVjb9fuvFIaJ PawrcoyuC4IU1r7onpDkMgUZ5m3K0KhFiq3n8QhsSFISWCjRhnvaKyCK/h/8zYgA wTFfbQS14QEFUDmF98HU6lJMbVV4FbFACL91Y5UywVYc8SN3dJwQj2C7UWFZDtPq b6YkSMNGekkAISelInzwxJdYZXhGbMcHwK6xEjrH1GAiaGzW9KP10qdDsbFNmy1f HT1niCIALNP7gCrD/EKkJHy7YLr51gg9mnEoODoQ2sUHDiRFXt3+ExVTu9XzIEeV jJvtyPoL2RNCcEYmQfRbRCqLRH2A6ujMIU1lW4TPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8nM7BRaaEPYRx+coqmKkzWvVJoQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzE2YjIyZWE4LTRhN2MtNDMxYS1iZDc0LThhMmNjZWFhYWY0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDz8AAwDQYJKoZIhvcNAQELBQADggEBACf5vwV7Cu5j9PRtY3ddtbpC oO6v5s4e1dF7f+Hw8UJQXmSDpQkih8mtYclv7GOL7Wl+tUzJ8B+8usUTL3Ck7dYP msbs0mWMcN1+HeNMWjC9PE2z3lmar5HGiceYAJwO1Uo/y9gGUimz4I+t3f+kETpY sEjYIpfV7rzi7JKJ+0YAGYPm8n1iIaS98oHeQsmNlglOiaFyLOL262qW09iQWcy6 IBDq7Ddsv+Ug+4rvifsoKW/KRltAdiLFHZfS6tcaQlhGZczyUJuWmrk39RbMRYu5 ruXvd6jJhDra9nY+rBDCJzXVgP6Aqc/RAXho7dliVR1kPY7BNBqtBEP6CJREcGY= -----END CERTIFICATE-----Generated at Tue Nov 4 04:41:05 2025 by rpki-client