$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3b1d79f6-944a-4da0-acd2-15477b975226.roa File: 3b1d79f6-944a-4da0-acd2-15477b975226.roa (raw, json) Hash identifier: PhE0tnf3cFCjPcx4oHUrYaSBnnv9hoatehcRu/oPDs0= Subject key identifier: E7:3E:22:E1:4E:DE:32:2B:4C:87:58:46:27:5E:3E:1E:47:FF:01:08 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5B8722F7EF9536BBF86A7EEEDE78B44A23CF8A44 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3b1d79f6-944a-4da0-acd2-15477b975226.roa Signing time: Tue 21 Oct 2025 12:50:43 +0000 ROA not before: Tue 21 Oct 2025 12:50:43 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:551b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 24 Oct 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:87:22:f7:ef:95:36:bb:f8:6a:7e:ee:de:78:b4:4a:23:cf:8a:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:43 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=5991744f3c50c9d6dea69e4fe2954f957702635e6ef23d9d103736bdc8373014, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:66:15:1c:23:11:59:67:5b:bc:ed:c8:0b:46: b7:e0:e8:a6:a8:66:a6:35:d4:d6:63:50:4e:bd:d7: 62:c3:f6:af:57:16:69:37:e7:ed:fb:dd:9a:39:56: 2c:e6:04:24:32:fe:48:45:56:e0:6b:2d:89:bc:77: f4:97:9c:3c:7a:c8:2d:aa:05:cd:1a:11:ec:bc:3d: e2:42:ef:f7:53:52:c1:d2:e9:c4:8a:1f:78:1a:3c: d4:41:f8:22:ca:ea:e0:31:37:01:73:07:b4:13:9e: 1f:b6:03:a9:89:3d:61:66:17:47:bc:d9:1a:9d:5a: 84:1b:94:02:57:69:e6:97:c0:e4:a3:9e:14:fe:05: 5f:b9:9c:85:2d:6f:fa:a3:6c:45:d2:ce:cf:d5:fd: dd:77:57:3b:4b:73:80:be:7e:b0:c5:af:cc:f1:77: b0:e2:1a:e2:16:a3:e4:0c:d6:c6:50:e2:ed:e5:0b: 1b:0a:be:86:dc:16:c6:60:ee:43:34:73:27:ae:e6: a8:5e:f9:80:a5:8f:b9:0d:ee:66:67:e4:e1:fe:bd: 0b:ad:dc:8a:d7:05:d3:63:eb:62:fd:38:1f:3b:a1: 65:47:12:0a:04:01:55:91:f9:10:8a:7e:43:08:67: 66:2d:d1:dd:04:4f:87:69:2d:48:e6:46:e4:c5:7e: cf:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:3E:22:E1:4E:DE:32:2B:4C:87:58:46:27:5E:3E:1E:47:FF:01:08 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3b1d79f6-944a-4da0-acd2-15477b975226.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551b::/48 Signature Algorithm: sha256WithRSAEncryption 61:67:7f:a1:c3:5e:59:4c:c0:f9:a9:bf:e5:38:3d:c3:19:12: 17:b4:f7:96:97:d9:b6:6f:01:e1:9f:5c:23:d7:1e:a0:3f:7b: 65:f7:74:89:b5:d2:10:b1:e8:26:1a:6f:2f:cb:66:41:be:0a: c8:a7:3f:97:19:39:61:37:53:f3:c5:2a:c0:4e:f3:28:13:58: 36:fc:8b:42:87:11:82:78:4a:bc:3c:f3:c6:13:22:e4:b6:b8: 2a:fd:10:76:ae:d5:cc:97:03:b2:9b:3f:6c:99:60:75:2a:77: b7:61:aa:66:93:a9:2c:c0:5e:c1:fc:17:92:9f:40:6d:8e:09: 27:87:8d:d3:3c:c2:be:3a:ba:33:18:74:34:a5:d5:84:00:5e: 79:60:e0:ca:87:3c:39:3d:a8:10:d9:fb:0e:10:bb:1d:ed:18: 9a:d2:89:47:7e:1b:b0:4e:d9:5a:55:bb:e7:73:69:a2:f8:78: 0f:00:9d:d3:66:e1:2c:c1:d8:b0:f0:8e:cb:0d:fd:22:32:68: 94:c0:84:a8:79:19:14:d1:4c:32:02:68:4d:07:40:79:9b:c1: 4a:16:fe:7f:b9:48:0a:ce:3b:21:93:91:f2:60:03:00:35:b6: 74:fd:bd:36:12:4b:58:dc:8f:bd:3f:b7:2f:90:1a:a8:2b:e3: 0f:8e:29:2d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUW4ci9++VNrv4an7u3ni0SiPPikQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDQzWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OTkxNzQ0ZjNjNTBjOWQ2ZGVhNjllNGZlMjk1NGY5NTc3 MDI2MzVlNmVmMjNkOWQxMDM3MzZiZGM4MzczMDE0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3ZhUcIxFZZ1u87cgLRrfg6KaoZqY11NZjUE6912LD9q9X Fmk35+373Zo5VizmBCQy/khFVuBrLYm8d/SXnDx6yC2qBc0aEey8PeJC7/dTUsHS 6cSKH3gaPNRB+CLK6uAxNwFzB7QTnh+2A6mJPWFmF0e82RqdWoQblAJXaeaXwOSj nhT+BV+5nIUtb/qjbEXSzs/V/d13VztLc4C+frDFr8zxd7DiGuIWo+QM1sZQ4u3l CxsKvobcFsZg7kM0cyeu5qhe+YClj7kN7mZn5OH+vQut3IrXBdNj62L9OB87oWVH EgoEAVWR+RCKfkMIZ2Yt0d0ET4dpLUjmRuTFfs+FAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5z4i4U7eMitMh1hGJ14+Hkf/AQgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzNiMWQ3OWY2LTk0NGEtNGRhMC1hY2QyLTE1NDc3Yjk3NTIyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRswDQYJKoZIhvcNAQELBQADggEBAGFnf6HDXllMwPmpv+U4PcMZ Ehe095aX2bZvAeGfXCPXHqA/e2X3dIm10hCx6CYaby/LZkG+CsinP5cZOWE3U/PF KsBO8ygTWDb8i0KHEYJ4Srw888YTIuS2uCr9EHau1cyXA7KbP2yZYHUqd7dhqmaT qSzAXsH8F5KfQG2OCSeHjdM8wr46ujMYdDSl1YQAXnlg4MqHPDk9qBDZ+w4Qux3t GJrSiUd+G7BO2VpVu+dzaaL4eA8AndNm4SzB2LDwjssN/SIyaJTAhKh5GRTRTDIC aE0HQHmbwUoW/n+5SArOOyGTkfJgAwA1tnT9vTYSS1jcj70/ty+QGqgr4w+OKS0= -----END CERTIFICATE-----Generated at Wed Oct 22 16:16:07 2025 by rpki-client