$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/35e17b2d-e386-449d-8b46-4deb40b06ad8.roa File: 35e17b2d-e386-449d-8b46-4deb40b06ad8.roa (raw, json) Hash identifier: 2us4PaLhm2ZGg08fDi4e63xh0OGLGkDL2mNuDkfFNTs= Subject key identifier: 2D:F3:54:CD:CA:BC:D8:60:E3:46:68:5F:7E:7B:C7:EB:71:F9:E3:BE Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 29F297795387F65B9478D0C59947D058BF928ADB Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/35e17b2d-e386-449d-8b46-4deb40b06ad8.roa Signing time: Tue 04 Nov 2025 00:10:09 +0000 ROA not before: Tue 04 Nov 2025 00:10:09 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:60::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 05 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:f2:97:79:53:87:f6:5b:94:78:d0:c5:99:47:d0:58:bf:92:8a:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 4 00:10:09 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=a4cfd14f7455f0172e01eb3cc7bcf76cf1984e39ec2bcdaba73c562566bcab0a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2c:39:d7:9e:37:73:13:fe:08:e7:ee:a1:55: 4e:05:6b:53:cc:5f:53:97:8a:c8:b2:0b:b2:a8:50: 73:9d:7c:71:7a:e5:31:a0:7c:6a:8a:c7:36:33:09: 0e:6f:cc:56:34:7d:b9:71:8a:ac:e8:a4:ff:24:c7: 7e:28:c9:6a:12:65:4c:4f:b4:2d:7c:56:9a:ab:23: f1:52:cf:1c:01:91:b4:8c:06:e2:7c:85:1a:16:c9: df:fc:35:d0:28:32:9f:d1:b0:03:c6:83:d9:47:00: 57:a6:34:8d:5b:dd:20:5e:2a:51:e3:d7:89:90:2b: cc:9e:07:f3:bc:9a:b2:0a:d8:ea:27:8a:c0:d4:d1: 03:41:23:ee:21:5a:b2:45:24:4d:6f:a8:f5:8d:f5: c1:36:09:51:f7:ba:e8:fa:8c:0e:ca:07:8d:d6:7d: fb:bd:49:a1:2e:e2:df:a1:f0:dd:ea:4f:d6:37:a6: c3:80:ed:ab:fd:96:03:b3:94:90:33:8c:52:a5:a0: ad:da:e0:02:c6:f4:ee:ce:11:43:5e:36:87:02:bc: 79:aa:d6:7e:80:7e:43:82:e1:f3:2f:8c:ff:bd:08: cf:8b:93:e6:18:02:27:b9:6a:92:9c:e8:ea:b4:7d: df:7b:65:bc:6b:94:06:4a:6b:cb:40:92:af:24:a9: 6e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:F3:54:CD:CA:BC:D8:60:E3:46:68:5F:7E:7B:C7:EB:71:F9:E3:BE X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/35e17b2d-e386-449d-8b46-4deb40b06ad8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:60::/44 Signature Algorithm: sha256WithRSAEncryption 85:1e:b9:6d:db:1f:89:bd:44:d3:c0:ff:f7:19:02:97:47:aa: b1:83:68:57:f3:bf:3c:65:b8:f9:55:18:07:cc:be:04:ab:a6: b9:bb:4e:64:5f:88:69:f3:91:d4:0a:38:aa:4b:7c:b9:5c:fa: 96:67:8b:2e:f6:a7:89:a2:22:f7:d0:7e:cb:19:cc:d0:3f:c4: 3f:46:1a:3e:ea:47:77:f4:8f:33:b5:81:0d:45:78:1e:3d:93: 7e:17:14:ec:b7:6d:ed:1a:b1:45:85:a7:62:f6:c5:28:91:8e: ad:34:d5:bf:5a:48:aa:56:f5:d6:26:89:7f:35:8e:4c:18:0c: f6:1c:e8:cd:92:35:f8:f2:cf:0a:c6:63:1a:a2:c5:24:3f:e6: ee:85:b6:9e:1e:7c:c1:fb:89:9f:d1:20:95:3f:c0:3b:d5:8d: b3:d8:68:a0:4d:bc:6a:80:88:e7:aa:28:a6:db:68:b4:7e:71: a1:b9:fb:41:92:2c:c8:8c:e7:17:71:be:46:44:e2:e9:95:ee: 20:c4:09:b5:aa:44:2e:a8:87:21:d7:59:24:7d:be:a3:70:6a: 35:58:02:29:0d:7d:bb:e0:25:1a:d4:e6:16:7d:3c:16:8a:10: 0d:70:7b:78:47:1d:06:a0:15:32:00:db:19:da:99:9a:3c:df: 79:d9:d0:7c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKfKXeVOH9luUeNDFmUfQWL+SitswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMTA0MDAxMDA5WhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNGNmZDE0Zjc0NTVmMDE3MmUwMWViM2NjN2JjZjc2Y2Yx OTg0ZTM5ZWMyYmNkYWJhNzNjNTYyNTY2YmNhYjBhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5LDnXnjdzE/4I5+6hVU4Fa1PMX1OXisiyC7KoUHOdfHF6 5TGgfGqKxzYzCQ5vzFY0fblxiqzopP8kx34oyWoSZUxPtC18VpqrI/FSzxwBkbSM BuJ8hRoWyd/8NdAoMp/RsAPGg9lHAFemNI1b3SBeKlHj14mQK8yeB/O8mrIK2Oon isDU0QNBI+4hWrJFJE1vqPWN9cE2CVH3uuj6jA7KB43Wffu9SaEu4t+h8N3qT9Y3 psOA7av9lgOzlJAzjFKloK3a4ALG9O7OEUNeNocCvHmq1n6AfkOC4fMvjP+9CM+L k+YYAie5apKc6Oq0fd97ZbxrlAZKa8tAkq8kqW6PAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQULfNUzcq82GDjRmhffnvH63H5474wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM1ZTE3YjJkLWUzODYtNDQ5ZC04YjQ2LTRkZWI0MGIwNmFkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAGAwDQYJKoZIhvcNAQELBQADggEBAIUeuW3bH4m9RNPA//cZApdH qrGDaFfzvzxluPlVGAfMvgSrprm7TmRfiGnzkdQKOKpLfLlc+pZniy72p4miIvfQ fssZzNA/xD9GGj7qR3f0jzO1gQ1FeB49k34XFOy3be0asUWFp2L2xSiRjq001b9a SKpW9dYmiX81jkwYDPYc6M2SNfjyzwrGYxqixSQ/5u6Ftp4efMH7iZ/RIJU/wDvV jbPYaKBNvGqAiOeqKKbbaLR+caG5+0GSLMiM5xdxvkZE4umV7iDECbWqRC6ohyHX WSR9vqNwajVYAikNfbvgJRrU5hZ9PBaKEA1we3hHHQagFTIA2xnamZo833nZ0Hw= -----END CERTIFICATE-----Generated at Tue Nov 4 04:43:52 2025 by rpki-client