$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/70022df8-77ee-469e-810d-5c7c45c08162.roa File: 70022df8-77ee-469e-810d-5c7c45c08162.roa (raw, json) Hash identifier: ZrphBVsQYxt/YurMQNQttaj2xwq30IFPlmZ2PPuvGOk= Subject key identifier: DE:03:BF:F2:13:F2:02:4D:61:3A:29:23:77:6E:0B:33:F8:3D:AF:23 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4A6B3C4AD0A23A4F012B07B601D00E3569E5D604 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/70022df8-77ee-469e-810d-5c7c45c08162.roa Signing time: Wed 22 Oct 2025 00:40:17 +0000 ROA not before: Wed 22 Oct 2025 00:40:17 +0000 ROA not after: Wed 26 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f110::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 05 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:6b:3c:4a:d0:a2:3a:4f:01:2b:07:b6:01:d0:0e:35:69:e5:d6:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 22 00:40:17 2025 GMT Not After : Nov 26 23:59:59 2025 GMT Subject: serialNumber=2a27d294dfcafaa7d1bb1f970ea4274f99bb1400d30daa89221e5d17ef25b11e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:3a:c2:ce:52:7f:96:dc:4c:e8:11:7b:00:ab: 4f:62:75:60:6c:6b:f8:07:00:a5:0a:8e:0f:b8:e4: 97:5e:71:c0:58:a4:e7:0d:33:b1:88:c2:d3:5a:57: 40:e6:78:2c:44:2f:81:18:3c:9c:55:de:f6:41:cd: 1a:4b:91:f1:8d:c1:f5:d9:ed:47:d0:10:af:af:2d: 99:b1:e4:45:ea:64:82:14:61:9f:ad:80:cf:fb:72: 9f:59:c4:ea:18:6d:65:6d:cd:88:da:18:02:67:8a: ae:49:1d:49:d2:ed:34:a9:bb:38:93:7c:11:b6:39: 90:fc:57:fb:07:9c:55:87:e1:71:86:38:7f:55:b6: 03:d7:c9:08:7d:29:7e:47:02:73:a2:cc:31:ab:48: c2:d8:e7:ec:1f:ed:d2:d3:06:78:42:e7:d4:08:a4: 6d:f6:a3:25:fe:25:af:6e:06:86:21:80:3d:7d:1e: 8e:04:7e:f5:3c:f1:a8:df:ee:76:0a:ab:2c:17:11: fc:c5:c3:a3:17:e6:88:4d:41:b7:4a:4b:bb:9e:91: 8d:52:4b:8f:65:eb:65:88:7c:24:b0:69:c2:29:a9: e5:e7:e5:fe:6a:8e:5c:dc:4e:68:71:62:12:c0:8e: 48:f2:89:cf:ac:ae:d6:28:db:76:56:f5:6c:0c:3e: 8c:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:03:BF:F2:13:F2:02:4D:61:3A:29:23:77:6E:0B:33:F8:3D:AF:23 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/70022df8-77ee-469e-810d-5c7c45c08162.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f110::/48 Signature Algorithm: sha256WithRSAEncryption 05:95:79:f2:09:83:29:dd:0b:52:8a:5f:47:77:fd:3f:92:f8: 50:0d:91:57:82:cf:48:4d:ae:0a:38:70:57:60:b6:45:dd:56: 4e:aa:17:bc:ad:43:d5:06:28:8f:0b:fd:13:e0:a7:75:97:53: 6e:57:4d:8f:2e:89:71:c2:aa:93:b2:6c:e1:88:47:bf:be:35: 05:3b:9e:d0:c3:f8:90:35:e5:16:fd:92:73:a1:03:1c:3c:79: 51:9c:cd:97:ae:99:18:02:eb:33:77:06:44:88:57:61:33:46: 45:1e:80:ef:d7:d2:1c:4d:a5:b7:25:74:ad:64:c2:0e:a5:7b: 32:2a:08:bc:f4:c7:b9:ba:74:c5:2f:1b:89:48:01:d2:0c:f6: c6:50:f0:ab:ba:46:24:22:7e:50:bb:d1:2c:39:9e:64:1e:0b: b0:f1:4c:43:8a:2c:71:e1:1d:f5:6a:d0:06:69:66:7a:1b:20: 0f:3f:12:f5:bb:e7:71:10:e3:ef:01:a1:45:b4:b5:40:a7:37: 54:21:2e:b0:52:f8:c6:84:ce:3d:45:38:63:c8:b7:30:49:68: 06:e8:55:40:67:c6:46:fd:43:64:a9:6a:c3:2e:86:60:69:c2: b4:b4:3b:0d:58:87:a1:e6:ad:3d:1f:fe:8e:45:6f:e6:0f:f7: 35:28:85:c7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSms8StCiOk8BKwe2AdAONWnl1gQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIyMDA0MDE3WhcNMjUxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYTI3ZDI5NGRmY2FmYWE3ZDFiYjFmOTcwZWE0Mjc0Zjk5 YmIxNDAwZDMwZGFhODkyMjFlNWQxN2VmMjViMTFlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD7OsLOUn+W3EzoEXsAq09idWBsa/gHAKUKjg+45JdeccBY pOcNM7GIwtNaV0DmeCxEL4EYPJxV3vZBzRpLkfGNwfXZ7UfQEK+vLZmx5EXqZIIU YZ+tgM/7cp9ZxOoYbWVtzYjaGAJniq5JHUnS7TSpuziTfBG2OZD8V/sHnFWH4XGG OH9VtgPXyQh9KX5HAnOizDGrSMLY5+wf7dLTBnhC59QIpG32oyX+Ja9uBoYhgD19 Ho4EfvU88ajf7nYKqywXEfzFw6MX5ohNQbdKS7uekY1SS49l62WIfCSwacIpqeXn 5f5qjlzcTmhxYhLAjkjyic+srtYo23ZW9WwMPoyvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3gO/8hPyAk1hOikjd24LM/g9ryMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcwMDIyZGY4LTc3ZWUtNDY5ZS04MTBkLTVjN2M0NWMwODE2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78RAwDQYJKoZIhvcNAQELBQADggEBAAWVefIJgyndC1KKX0d3/T+S +FANkVeCz0hNrgo4cFdgtkXdVk6qF7ytQ9UGKI8L/RPgp3WXU25XTY8uiXHCqpOy bOGIR7++NQU7ntDD+JA15Rb9knOhAxw8eVGczZeumRgC6zN3BkSIV2EzRkUegO/X 0hxNpbcldK1kwg6lezIqCLz0x7m6dMUvG4lIAdIM9sZQ8Ku6RiQiflC70Sw5nmQe C7DxTEOKLHHhHfVq0AZpZnobIA8/EvW753EQ4+8BoUW0tUCnN1QhLrBS+MaEzj1F OGPItzBJaAboVUBnxkb9Q2SpasMuhmBpwrS0Ow1Yh6HmrT0f/o5Fb+YP9zUohcc= -----END CERTIFICATE-----Generated at Tue Nov 4 04:43:29 2025 by rpki-client