$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/789a1aef-77f7-4108-9d41-1a97c18e12cb.roa File: 789a1aef-77f7-4108-9d41-1a97c18e12cb.roa (raw, json) Hash identifier: 9VIqZboV9Pm259xkT+p90M+4QUhMDb0srZkpd6ys8Fs= Subject key identifier: C6:97:5E:77:D7:E6:A6:90:9B:8E:EA:EB:97:D8:E0:12:BC:5E:58:CB Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5BFBC67C081E60BB6F76D334DE5A77A5DF8F4432 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/789a1aef-77f7-4108-9d41-1a97c18e12cb.roa Signing time: Tue 21 Oct 2025 12:50:02 +0000 ROA not before: Tue 21 Oct 2025 12:50:02 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f00c::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 03 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:fb:c6:7c:08:1e:60:bb:6f:76:d3:34:de:5a:77:a5:df:8f:44:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 12:50:02 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=cff503bde4ed100802d92858c21d41a5dbcb5a475d965e0e0dda45b8cab173b0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e4:17:6c:f0:ce:89:48:5f:e1:bb:38:82:78: b7:54:2e:7d:50:a7:a3:a8:18:f4:06:aa:6b:2e:13: e6:10:18:b4:c8:93:9c:97:2a:ab:4e:7f:c2:66:51: a9:49:13:53:64:4d:10:ae:15:fc:ac:1d:e8:32:31: c1:12:b9:63:40:ef:38:0f:15:1b:bd:2e:9e:5d:d1: 45:4d:7d:76:89:d4:e6:fe:ce:95:f2:64:10:88:f2: 8b:7e:32:3f:55:5d:01:1d:77:7b:26:de:64:94:97: e6:b5:33:93:dd:f0:2f:05:35:bc:cb:5e:0e:8d:61: 80:a3:3a:40:ab:dd:1e:94:61:29:87:08:60:51:a3: 6c:7c:d8:40:2b:9a:f2:7d:8e:a1:a8:50:b0:b2:f7: 49:4b:ee:db:53:6d:bd:56:24:cd:bc:9d:90:c0:f8: 92:57:30:3a:43:cf:ff:25:fa:76:32:d3:3e:11:a7: 78:5c:63:5a:11:e9:f5:e9:dc:a6:99:9b:84:5a:1b: ca:0c:02:29:10:be:c2:dc:5b:3c:f8:a9:f9:6b:8e: f0:58:fa:db:91:08:0a:6a:d8:32:fe:88:3e:e7:ea: 03:79:87:12:b7:2f:ed:77:15:8e:45:80:2c:57:64: da:52:2c:c9:f8:d9:8a:6a:7b:55:65:b0:f1:da:c7: 74:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:97:5E:77:D7:E6:A6:90:9B:8E:EA:EB:97:D8:E0:12:BC:5E:58:CB X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/789a1aef-77f7-4108-9d41-1a97c18e12cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f00c::/39 Signature Algorithm: sha256WithRSAEncryption 0c:79:f7:71:ce:e2:2f:93:6f:10:88:76:8e:29:6e:2f:48:0a: 98:0b:4e:0d:76:bb:19:a9:6d:ce:a0:97:14:2a:8c:7f:5e:af: 62:2a:df:be:f4:49:e7:c3:52:0b:43:c0:81:71:ac:34:d8:73: 4a:68:ac:8a:08:be:af:3f:7e:69:67:d9:e4:59:55:16:69:d9: 9e:c9:53:42:1c:2d:45:94:c8:fa:43:16:f2:09:d8:aa:48:71: 55:c3:8a:12:88:4c:1c:34:ec:87:c6:f1:2a:66:07:48:7f:90: 2c:ef:8c:69:c1:e1:67:a0:dc:e8:48:10:82:52:c8:77:82:37: f8:79:70:08:9d:3d:e7:d6:a1:6c:d0:dc:57:2d:8f:0b:19:4e: 59:27:1e:80:ce:0f:f4:2f:00:4e:10:f9:10:c9:29:f3:75:96: 2f:d9:fd:f8:3e:89:c1:25:48:f4:41:cf:ee:30:98:0a:b8:f4: 07:1a:57:b6:29:49:7b:bb:8a:7d:b1:0c:c8:4c:b7:3c:13:71: a3:03:2a:96:72:59:bf:41:d2:24:da:28:16:cd:72:2f:6c:0a: 1b:b7:21:8c:c4:67:12:2e:81:f0:f0:e2:7a:a5:5f:cc:dc:76: 2b:09:3e:cf:1c:e9:79:6d:46:93:6e:ba:14:2e:18:38:cc:bf: 83:dd:47:bb -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUW/vGfAgeYLtvdtM03lp3pd+PRDIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTI1MDAyWhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZmY1MDNiZGU0ZWQxMDA4MDJkOTI4NThjMjFkNDFhNWRi Y2I1YTQ3NWQ5NjVlMGUwZGRhNDViOGNhYjE3M2IwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC85Bds8M6JSF/huziCeLdULn1Qp6OoGPQGqmsuE+YQGLTI k5yXKqtOf8JmUalJE1NkTRCuFfysHegyMcESuWNA7zgPFRu9Lp5d0UVNfXaJ1Ob+ zpXyZBCI8ot+Mj9VXQEdd3sm3mSUl+a1M5Pd8C8FNbzLXg6NYYCjOkCr3R6UYSmH CGBRo2x82EArmvJ9jqGoULCy90lL7ttTbb1WJM28nZDA+JJXMDpDz/8l+nYy0z4R p3hcY1oR6fXp3KaZm4RaG8oMAikQvsLcWzz4qflrjvBY+tuRCApq2DL+iD7n6gN5 hxK3L+13FY5FgCxXZNpSLMn42Ypqe1VlsPHax3SxAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUxpded9fmppCbjurrl9jgErxeWMswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzc4OWExYWVmLTc3ZjctNDEwOC05ZDQxLTFhOTdjMThlMTJjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAPAMADANBgkqhkiG9w0BAQsFAAOCAQEADHn3cc7iL5NvEIh2jiluL0gK mAtODXa7GaltzqCXFCqMf16vYirfvvRJ58NSC0PAgXGsNNhzSmisigi+rz9+aWfZ 5FlVFmnZnslTQhwtRZTI+kMW8gnYqkhxVcOKEohMHDTsh8bxKmYHSH+QLO+MacHh Z6Dc6EgQglLId4I3+HlwCJ0959ahbNDcVy2PCxlOWScegM4P9C8AThD5EMkp83WW L9n9+D6JwSVI9EHP7jCYCrj0BxpXtilJe7uKfbEMyEy3PBNxowMqlnJZv0HSJNoo Fs1yL2wKG7chjMRnEi6B8PDieqVfzNx2Kwk+zxzpeW1Gk266FC4YOMy/g91Huw== -----END CERTIFICATE-----Generated at Sat Nov 1 18:32:44 2025 by rpki-client