$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5457865c-05cc-496e-9344-9ec7d5266e2c.roa File: 5457865c-05cc-496e-9344-9ec7d5266e2c.roa (raw, json) Hash identifier: 4MyzI7YatczGcuuYq4t/10LqlD5lvJ3PXvmZP6JFO94= Subject key identifier: BC:B5:C2:1F:0D:D2:4E:E5:0D:3C:00:7B:78:DF:58:04:17:C9:9F:E5 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2323E5C091D01D132CD4F1EA54E613696C0D10FB Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5457865c-05cc-496e-9344-9ec7d5266e2c.roa Signing time: Wed 22 Oct 2025 00:40:06 +0000 ROA not before: Wed 22 Oct 2025 00:40:06 +0000 ROA not after: Wed 26 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 05 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:23:e5:c0:91:d0:1d:13:2c:d4:f1:ea:54:e6:13:69:6c:0d:10:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 22 00:40:06 2025 GMT Not After : Nov 26 23:59:59 2025 GMT Subject: serialNumber=fefa8e060fb74fef399048318ccf7af644ae684eda014f326dc5b0959fe245cf, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:cc:a7:de:b1:41:32:69:68:53:53:cb:e2:87: 1a:28:b1:cf:87:e7:e2:bd:27:52:51:ad:71:1e:be: b1:49:f6:58:04:36:6e:42:ed:e0:20:6d:ed:ae:cd: a3:bd:66:c6:c1:78:2d:08:21:43:75:f7:66:df:bc: 1b:4e:b7:de:e7:bc:aa:1d:f4:ec:56:78:4f:22:07: b9:bd:0b:73:11:0f:a8:7c:7a:02:54:90:1d:93:59: 66:eb:17:71:ae:65:f6:3e:f1:aa:e0:c8:5c:64:b8: f8:ef:52:43:44:75:b5:64:c4:e1:a3:d2:16:e9:00: 83:92:fb:a6:1a:e6:50:45:2d:c1:b6:19:55:1e:0c: 4a:bb:65:93:c9:a4:96:d3:47:df:04:88:8e:58:86: 87:a0:af:03:e9:18:4c:b4:b5:92:6b:48:40:6f:2c: 5b:b9:21:03:cd:8a:86:8d:ce:0a:6b:9c:05:9d:ef: fc:cc:d4:18:33:4a:b7:09:96:ce:a4:f8:23:13:7c: 9c:f1:83:e6:3c:df:30:2c:5b:9c:c8:cd:7c:b5:81: d9:64:b4:d7:ef:8c:fc:6f:2c:a8:35:4d:90:38:dc: 39:1b:ed:95:c2:ec:2c:34:ba:5a:62:70:a0:8b:ca: e9:99:8d:34:cb:7c:c4:99:df:f3:3d:27:d2:1e:56: f1:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:B5:C2:1F:0D:D2:4E:E5:0D:3C:00:7B:78:DF:58:04:17:C9:9F:E5 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5457865c-05cc-496e-9344-9ec7d5266e2c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f100::/48 Signature Algorithm: sha256WithRSAEncryption 7d:f6:9a:b7:57:27:92:d6:10:44:ce:22:8d:31:6a:12:82:32: 68:51:a3:a4:72:c1:8a:12:dc:b2:be:57:23:17:7d:82:9c:93: 10:c4:23:bf:01:0b:5d:69:2b:e4:67:3e:72:ed:cb:61:87:f2: d6:fa:69:b2:67:21:05:22:f1:f2:f9:6a:f6:af:22:d4:51:5f: 55:68:7a:2b:c8:c3:84:c2:77:e5:15:49:de:17:ef:7c:08:1c: 7e:69:62:60:68:39:7b:56:59:62:eb:0f:c5:58:b9:03:20:5b: a5:9d:ba:a7:62:d1:cd:bf:e7:1a:b2:1d:ba:d9:83:b0:2c:ec: 90:10:ea:71:86:ae:ab:72:9c:57:ea:0b:56:c4:cd:2e:f5:0b: fc:7e:81:e3:3b:00:e3:3c:95:38:9a:d2:23:19:14:88:0e:aa: cb:de:cd:9b:3d:8f:ea:36:7b:1a:49:66:7d:aa:ce:c2:1c:8e: 5c:47:02:73:70:91:e4:b7:b9:14:2c:f9:65:93:09:e1:7d:e3: c4:27:12:29:a3:06:75:06:77:7f:aa:67:fe:84:89:a2:a6:33: 71:c1:71:d3:71:ae:69:a2:4b:9b:d5:2f:cf:02:06:f5:06:18: 2d:5a:4a:43:8e:c2:24:26:46:91:63:e6:93:25:69:d2:bf:63: ae:f7:3b:51 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIyPlwJHQHRMs1PHqVOYTaWwNEPswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIyMDA0MDA2WhcNMjUxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZWZhOGUwNjBmYjc0ZmVmMzk5MDQ4MzE4Y2NmN2FmNjQ0 YWU2ODRlZGEwMTRmMzI2ZGM1YjA5NTlmZTI0NWNmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCszKfesUEyaWhTU8vihxoosc+H5+K9J1JRrXEevrFJ9lgE Nm5C7eAgbe2uzaO9ZsbBeC0IIUN192bfvBtOt97nvKod9OxWeE8iB7m9C3MRD6h8 egJUkB2TWWbrF3GuZfY+8argyFxkuPjvUkNEdbVkxOGj0hbpAIOS+6Ya5lBFLcG2 GVUeDEq7ZZPJpJbTR98EiI5YhoegrwPpGEy0tZJrSEBvLFu5IQPNioaNzgprnAWd 7/zM1BgzSrcJls6k+CMTfJzxg+Y83zAsW5zIzXy1gdlktNfvjPxvLKg1TZA43Dkb 7ZXC7Cw0ulpicKCLyumZjTTLfMSZ3/M9J9IeVvGdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUvLXCHw3STuUNPAB7eN9YBBfJn+UwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU0NTc4NjVjLTA1Y2MtNDk2ZS05MzQ0LTllYzdkNTI2NmUyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QAwDQYJKoZIhvcNAQELBQADggEBAH32mrdXJ5LWEETOIo0xahKC MmhRo6RywYoS3LK+VyMXfYKckxDEI78BC11pK+RnPnLty2GH8tb6abJnIQUi8fL5 avavItRRX1VoeivIw4TCd+UVSd4X73wIHH5pYmBoOXtWWWLrD8VYuQMgW6Wduqdi 0c2/5xqyHbrZg7As7JAQ6nGGrqtynFfqC1bEzS71C/x+geM7AOM8lTia0iMZFIgO qsvezZs9j+o2expJZn2qzsIcjlxHAnNwkeS3uRQs+WWTCeF948QnEimjBnUGd3+q Z/6EiaKmM3HBcdNxrmmiS5vVL88CBvUGGC1aSkOOwiQmRpFj5pMladK/Y673O1E= -----END CERTIFICATE-----Generated at Tue Nov 4 04:41:53 2025 by rpki-client