$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8d691919-536d-4192-bb94-4b09044e4c56.roa File: 8d691919-536d-4192-bb94-4b09044e4c56.roa (raw, json) Hash identifier: FCtcqP3PlTnWOruVaE3PZRkidxRbYA4qwnQj0Rx+Fts= Subject key identifier: 08:65:21:03:A0:65:86:F6:8B:68:D6:CC:CF:4C:0C:BE:DB:01:8D:D2 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1803439735A5D15267F30A011C30FD54A029CCF2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8d691919-536d-4192-bb94-4b09044e4c56.roa Signing time: Wed 29 Oct 2025 22:40:12 +0000 ROA not before: Wed 29 Oct 2025 22:40:12 +0000 ROA not after: Wed 03 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:110::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 05 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:03:43:97:35:a5:d1:52:67:f3:0a:01:1c:30:fd:54:a0:29:cc:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 29 22:40:12 2025 GMT Not After : Dec 3 23:59:59 2025 GMT Subject: serialNumber=0cbccfb90b98393e40f2af1a1a0c1500c5a7924c64a24cf75396ba343277d409, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:0d:85:52:77:0f:84:6f:34:dd:2f:65:17:55: d1:6b:1c:0e:ac:72:17:0a:65:46:89:eb:2a:66:a1: 4d:6a:5f:dd:6e:51:b1:66:04:72:c2:46:72:34:ad: 8c:54:d5:93:c8:7f:a3:11:9b:65:5e:c5:16:e6:09: a8:f5:4e:6c:97:48:48:00:5b:95:00:ad:51:f0:93: 6a:2e:37:50:95:ec:5e:38:16:13:21:3e:94:15:43: d3:5c:06:74:11:56:e3:70:3a:13:09:cc:99:76:38: ff:d8:34:24:0c:45:da:75:06:f5:a2:47:91:cf:1c: 1f:e4:68:41:a7:46:4f:f6:bb:ae:06:e9:2a:60:42: bd:1a:7f:32:23:30:a3:13:8d:33:f5:82:9f:e5:da: c0:16:de:1d:54:6a:9f:6e:0b:18:19:f1:6e:b1:9e: 12:bf:e8:0c:13:7d:39:52:f3:97:11:6c:f2:e2:f1: 5d:a7:85:dc:81:e5:e6:e7:e0:71:be:4e:00:36:4f: e2:2f:0f:fd:a4:62:24:1f:47:76:b5:af:69:f5:7e: a9:f2:4d:b7:77:de:9b:ac:dc:73:d6:b4:07:10:e3: 71:4b:93:a9:01:b2:59:ee:a4:b9:1f:fa:d4:0f:1f: 3d:18:af:19:b7:b2:d2:fa:49:54:c0:0b:b5:1f:87: f3:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:65:21:03:A0:65:86:F6:8B:68:D6:CC:CF:4C:0C:BE:DB:01:8D:D2 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8d691919-536d-4192-bb94-4b09044e4c56.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:110::/47 Signature Algorithm: sha256WithRSAEncryption 6a:2d:7a:37:6f:82:17:43:fb:ee:18:79:63:b4:14:6b:0a:d4: de:21:d9:42:0c:02:32:6d:4e:f7:c6:dc:89:60:87:47:ef:ea: 9d:58:92:30:e9:32:98:c9:01:be:e5:80:f7:76:d7:75:a6:32: 30:bf:f7:b5:10:f0:0c:bf:ce:1d:74:b7:0d:ff:ff:8e:32:c0: e2:b1:2e:d5:a3:be:84:27:84:54:a4:58:25:d4:13:40:45:6e: 57:fe:b6:a7:1f:cd:fa:61:91:c5:f7:98:9d:34:57:5f:e0:69: 4e:51:cd:6e:f4:e2:36:1f:32:4c:fa:e5:0d:7d:e6:2a:96:ee: 4d:aa:c2:26:05:19:72:c2:70:0e:42:33:c8:6c:ac:46:20:d9: 89:89:a3:92:e6:9a:03:39:67:60:71:02:e2:73:d3:8b:ad:95: 76:d0:72:94:c4:e2:48:50:de:82:55:04:73:d4:78:c3:9e:7e: ea:c9:26:d4:06:59:39:d8:f8:b0:f4:76:a0:fb:5d:d0:33:cd: 99:8a:32:72:74:4b:29:00:46:8c:a3:4e:e5:96:2d:80:b5:83: 1a:61:a3:90:a1:c6:1f:5a:2c:2d:3a:39:25:f7:4a:89:02:02: 78:6a:08:79:7e:29:04:3e:80:e5:00:fc:e0:1b:f3:a0:b0:d2: f3:ee:e1:6e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGANDlzWl0VJn8woBHDD9VKApzPIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDI5MjI0MDEyWhcNMjUxMjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwY2JjY2ZiOTBiOTgzOTNlNDBmMmFmMWExYTBjMTUwMGM1 YTc5MjRjNjRhMjRjZjc1Mzk2YmEzNDMyNzdkNDA5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRDYVSdw+EbzTdL2UXVdFrHA6schcKZUaJ6ypmoU1qX91u UbFmBHLCRnI0rYxU1ZPIf6MRm2VexRbmCaj1TmyXSEgAW5UArVHwk2ouN1CV7F44 FhMhPpQVQ9NcBnQRVuNwOhMJzJl2OP/YNCQMRdp1BvWiR5HPHB/kaEGnRk/2u64G 6SpgQr0afzIjMKMTjTP1gp/l2sAW3h1Uap9uCxgZ8W6xnhK/6AwTfTlS85cRbPLi 8V2nhdyB5ebn4HG+TgA2T+IvD/2kYiQfR3a1r2n1fqnyTbd33pus3HPWtAcQ43FL k6kBslnupLkf+tQPHz0Yrxm3stL6SVTAC7Ufh/PBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUCGUhA6BlhvaLaNbMz0wMvtsBjdIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzhkNjkxOTE5LTUzNmQtNDE5Mi1iYjk0LTRiMDkwNDRlNGM1Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAPDwARAwDQYJKoZIhvcNAQELBQADggEBAGotejdvghdD++4YeWO0FGsK 1N4h2UIMAjJtTvfG3Ilgh0fv6p1YkjDpMpjJAb7lgPd213WmMjC/97UQ8Ay/zh10 tw3//44ywOKxLtWjvoQnhFSkWCXUE0BFblf+tqcfzfphkcX3mJ00V1/gaU5RzW70 4jYfMkz65Q195iqW7k2qwiYFGXLCcA5CM8hsrEYg2YmJo5LmmgM5Z2BxAuJz04ut lXbQcpTE4khQ3oJVBHPUeMOefurJJtQGWTnY+LD0dqD7XdAzzZmKMnJ0SykARoyj TuWWLYC1gxpho5Chxh9aLC06OSX3SokCAnhqCHl+KQQ+gOUA/OAb86Cw0vPu4W4= -----END CERTIFICATE-----Generated at Tue Nov 4 04:39:52 2025 by rpki-client