$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa File: 1ad26571-c674-4a73-b205-77cb32fe83bd.roa (raw, json) Hash identifier: oAMll4eZQiqpvcNyIj0FEPmZqz0DfOS99+YL3QWXIJs= Subject key identifier: D8:6D:36:18:CA:54:62:3B:89:9E:E2:38:8F:16:EA:33:05:8A:58:03 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 37DC413B779924A53CE56C2E88F482BD78D70E26 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa Signing time: Tue 21 Oct 2025 13:00:20 +0000 ROA not before: Tue 21 Oct 2025 13:00:20 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 05 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:dc:41:3b:77:99:24:a5:3c:e5:6c:2e:88:f4:82:bd:78:d7:0e:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:00:20 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=a4f5ea4e3f30f0b5f8ef016dbaf7e40b4f9aa8221d8a570ec523401bfe538473, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f0:6c:32:32:66:71:8a:58:a2:71:36:7a:41: 8c:da:05:d0:d9:9c:bd:fa:3f:ba:75:3a:9c:fc:bb: 97:96:05:94:55:41:2a:16:f8:86:9a:a2:f2:1e:91: 81:1e:73:ed:69:2d:8c:05:ff:5a:96:8d:4c:8f:4a: 6a:84:08:7c:fc:c9:5a:da:b4:bd:86:3f:1f:9a:21: bf:e1:08:19:0a:a4:1a:44:b2:94:3f:f2:55:6f:3d: 7a:4b:d5:12:84:e7:20:4d:3c:7b:c8:fa:9b:7f:9a: fa:5d:f0:44:3c:0e:b3:be:a2:bc:5f:71:d2:ab:28: 81:5f:f8:20:2b:ae:9e:50:10:33:2a:1a:db:42:ff: 56:89:3b:63:b6:dd:a9:a8:ec:16:92:f9:19:2f:83: f3:3b:92:1c:11:3f:d1:ce:81:48:ce:cb:fe:dd:ab: f3:f2:c1:e7:57:23:75:cd:c0:d5:0b:7d:62:4d:41: 16:ab:e4:86:34:d5:35:8a:f5:5b:7f:0d:b2:5d:8d: 0c:f0:6f:c5:b7:5b:8e:26:ea:78:25:b5:7a:22:f8: bd:75:a6:ff:91:70:5f:74:c9:40:bf:ea:7c:e6:da: b0:74:db:f1:8f:5d:49:b3:4f:d0:93:29:5f:75:47: 78:78:c1:b4:89:95:4f:b7:f9:13:9c:8f:18:cd:1b: 37:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:6D:36:18:CA:54:62:3B:89:9E:E2:38:8F:16:EA:33:05:8A:58:03 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:10::/48 Signature Algorithm: sha256WithRSAEncryption 8c:51:99:26:00:57:b0:79:56:41:e7:f3:ce:27:7c:2e:91:f1: 94:94:d3:e0:75:1c:a0:05:75:9d:e0:d7:ba:0d:fb:d9:a3:23: f3:8c:61:b0:a1:2a:38:73:fb:1f:ab:40:36:2f:88:84:5b:97: 29:58:02:b1:6f:24:c9:b2:bb:f4:7f:e1:94:a3:9b:3a:93:04: 2e:6c:fb:f8:9c:2e:2e:4b:8d:89:f4:38:d0:fa:df:16:24:46: 5e:35:c8:8a:30:49:03:cd:8e:1a:42:3a:ef:95:ea:0e:61:de: 0e:65:a5:5c:d6:a2:96:fb:e3:c6:ca:bf:22:92:43:69:63:0b: 84:c8:eb:ec:36:4d:aa:08:7e:4e:5b:6e:8d:65:21:8f:a4:2b: 33:6c:9b:ea:e5:e7:e8:69:8b:bb:cf:4b:a2:23:0d:10:a8:48: 26:4e:98:ca:3d:c0:0a:fb:89:cb:bf:28:b0:cc:8a:04:88:a9: d6:de:b3:6d:54:6e:0d:e7:8f:61:44:2c:46:3d:d5:18:2c:ac: d0:12:8c:fe:43:8f:ea:4f:2b:74:40:c4:fa:e0:6e:34:df:ef: 1f:8e:ad:48:57:29:a5:f3:5d:05:ca:31:a5:bf:4e:b4:cc:e9: 58:6e:40:4a:9b:1e:2e:a3:d8:8e:5e:f5:21:b4:0c:da:e3:1a: e2:72:31:9b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUN9xBO3eZJKU85WwuiPSCvXjXDiYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMwMDIwWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNGY1ZWE0ZTNmMzBmMGI1ZjhlZjAxNmRiYWY3ZTQwYjRm OWFhODIyMWQ4YTU3MGVjNTIzNDAxYmZlNTM4NDczMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDW8GwyMmZxiliicTZ6QYzaBdDZnL36P7p1Opz8u5eWBZRV QSoW+IaaovIekYEec+1pLYwF/1qWjUyPSmqECHz8yVratL2GPx+aIb/hCBkKpBpE spQ/8lVvPXpL1RKE5yBNPHvI+pt/mvpd8EQ8DrO+orxfcdKrKIFf+CArrp5QEDMq GttC/1aJO2O23amo7BaS+Rkvg/M7khwRP9HOgUjOy/7dq/PywedXI3XNwNULfWJN QRar5IY01TWK9Vt/DbJdjQzwb8W3W44m6ngltXoi+L11pv+RcF90yUC/6nzm2rB0 2/GPXUmzT9CTKV91R3h4wbSJlU+3+ROcjxjNGzdhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2G02GMpUYjuJnuI4jxbqMwWKWAMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFhZDI2NTcxLWM2NzQtNGE3My1iMjA1LTc3Y2IzMmZlODNiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwABAwDQYJKoZIhvcNAQELBQADggEBAIxRmSYAV7B5VkHn884nfC6R 8ZSU0+B1HKAFdZ3g17oN+9mjI/OMYbChKjhz+x+rQDYviIRblylYArFvJMmyu/R/ 4ZSjmzqTBC5s+/icLi5LjYn0OND63xYkRl41yIowSQPNjhpCOu+V6g5h3g5lpVzW opb748bKvyKSQ2ljC4TI6+w2TaoIfk5bbo1lIY+kKzNsm+rl5+hpi7vPS6IjDRCo SCZOmMo9wAr7icu/KLDMigSIqdbes21Ubg3nj2FELEY91RgsrNASjP5Dj+pPK3RA xPrgbjTf7x+OrUhXKaXzXQXKMaW/TrTM6VhuQEqbHi6j2I5e9SG0DNrjGuJyMZs= -----END CERTIFICATE-----Generated at Mon Nov 3 16:00:52 2025 by rpki-client