$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1a5323d-810c-4209-a36d-e85d1d062c2e.roa File: a1a5323d-810c-4209-a36d-e85d1d062c2e.roa (raw, json) Hash identifier: /6aQVDb8wFwRjf2bOW7n32lj2FnKJoTGluDOZnl4K9c= Subject key identifier: F4:CD:75:89:12:F3:D6:E4:08:15:07:21:ED:BB:C9:0D:CC:77:42:FA Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3D4F827D597CFF291E4C1B0DE29AACFF9C4D059C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1a5323d-810c-4209-a36d-e85d1d062c2e.roa Signing time: Wed 22 Oct 2025 00:50:10 +0000 ROA not before: Wed 22 Oct 2025 00:50:10 +0000 ROA not after: Wed 26 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f10a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 05 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:4f:82:7d:59:7c:ff:29:1e:4c:1b:0d:e2:9a:ac:ff:9c:4d:05:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 22 00:50:10 2025 GMT Not After : Nov 26 23:59:59 2025 GMT Subject: serialNumber=370bd9782360c6b50878beb8e630619e382e032c657a5e046d9790f64311f406, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:62:7e:2f:fb:2d:88:f7:36:5a:f2:58:11:86: 5a:c0:9c:e8:d5:41:5d:33:2a:b8:3e:3c:27:f2:b9: 30:d6:9a:24:21:61:02:6c:7d:c5:0f:87:9c:b5:85: 64:44:86:d5:ac:ac:c9:69:0f:e2:c3:2a:1d:18:55: 38:d7:77:39:9b:05:4a:6b:3a:3c:e7:6a:e1:4b:7e: 11:b4:be:88:13:f8:e0:9f:94:d8:95:1d:44:8a:73: a3:eb:6a:5e:59:c4:3a:08:bd:4e:4c:b2:17:37:23: 22:5e:23:5c:70:a2:7c:3d:ab:7a:27:14:df:f0:b9: 54:53:9e:71:1e:a6:37:cf:2b:5e:5f:8a:5e:80:c1: e3:15:3b:1a:ee:00:46:b4:ac:52:30:05:e1:f2:f8: 87:e7:ee:2d:f1:22:7d:41:09:d3:be:a5:90:83:3d: bf:cf:c7:ea:88:e5:d3:20:56:c9:5b:be:d2:64:56: 26:04:06:4a:63:eb:d4:8d:17:ae:56:09:6b:11:60: a7:80:39:ef:e4:79:d6:16:ea:b7:f5:84:51:21:d9: 44:ea:9e:5f:dd:0b:38:05:27:aa:b4:9f:47:61:c6: 8e:10:6b:9e:32:38:86:0e:f7:57:73:3f:d3:2b:6f: f0:47:84:14:b1:a3:c6:a5:e9:81:bc:51:1b:8d:6a: 2b:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:CD:75:89:12:F3:D6:E4:08:15:07:21:ED:BB:C9:0D:CC:77:42:FA X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1a5323d-810c-4209-a36d-e85d1d062c2e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f10a::/48 Signature Algorithm: sha256WithRSAEncryption 24:b4:1d:24:8b:2b:03:3a:42:66:67:55:17:20:2e:86:bb:67: eb:25:da:3b:bb:d0:36:15:15:4e:fd:52:6b:19:aa:98:1a:26: ab:a2:d3:11:a4:5d:69:5d:2e:27:27:57:04:7e:bc:d9:cf:e9: dd:ab:19:78:66:70:09:f3:4a:6a:ce:a6:de:33:0c:3f:b2:9c: 45:c1:68:6b:39:4a:d1:31:8d:66:b1:d9:f3:9c:15:82:27:20: 8e:f4:db:e0:76:f6:04:38:55:9c:37:6b:78:91:67:b9:0f:f4: 2f:8a:97:61:6e:f4:d2:4a:65:06:79:7c:d7:7f:5b:42:2f:74: 55:a8:6e:25:be:cf:6f:16:21:7c:a2:65:1f:e6:95:b8:be:f2: 1c:09:81:0a:33:97:f4:69:a5:06:10:76:27:48:6b:a3:f8:ae: aa:ec:b6:5a:75:2f:f8:38:4d:a4:97:ab:d9:60:e4:f2:78:f9: 61:da:b5:76:81:4e:b0:1b:cd:4b:84:d6:8f:47:73:f7:9c:66: 31:bd:d0:39:0b:c4:6e:fc:e9:f6:4f:26:2c:1a:69:df:c7:0d: 2a:2d:60:73:dd:a4:8a:b1:a1:fa:4c:58:58:8b:34:0b:28:9d: 5a:a1:19:8f:e0:a8:b2:2c:77:bc:2e:c7:08:b5:83:fc:a7:72: 41:2c:57:d6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPU+CfVl8/ykeTBsN4pqs/5xNBZwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIyMDA1MDEwWhcNMjUxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNzBiZDk3ODIzNjBjNmI1MDg3OGJlYjhlNjMwNjE5ZTM4 MmUwMzJjNjU3YTVlMDQ2ZDk3OTBmNjQzMTFmNDA2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcYn4v+y2I9zZa8lgRhlrAnOjVQV0zKrg+PCfyuTDWmiQh YQJsfcUPh5y1hWREhtWsrMlpD+LDKh0YVTjXdzmbBUprOjznauFLfhG0vogT+OCf lNiVHUSKc6Pral5ZxDoIvU5Mshc3IyJeI1xwonw9q3onFN/wuVRTnnEepjfPK15f il6AweMVOxruAEa0rFIwBeHy+Ifn7i3xIn1BCdO+pZCDPb/Px+qI5dMgVslbvtJk ViYEBkpj69SNF65WCWsRYKeAOe/kedYW6rf1hFEh2UTqnl/dCzgFJ6q0n0dhxo4Q a54yOIYO91dzP9Mrb/BHhBSxo8al6YG8URuNaitRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU9M11iRLz1uQIFQch7bvJDcx3QvowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ExYTUzMjNkLTgxMGMtNDIwOS1hMzZkLWU4NWQxZDA2MmMyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QowDQYJKoZIhvcNAQELBQADggEBACS0HSSLKwM6QmZnVRcgLoa7 Z+sl2ju70DYVFU79UmsZqpgaJqui0xGkXWldLicnVwR+vNnP6d2rGXhmcAnzSmrO pt4zDD+ynEXBaGs5StExjWax2fOcFYInII702+B29gQ4VZw3a3iRZ7kP9C+Kl2Fu 9NJKZQZ5fNd/W0IvdFWobiW+z28WIXyiZR/mlbi+8hwJgQozl/RppQYQdidIa6P4 rqrstlp1L/g4TaSXq9lg5PJ4+WHatXaBTrAbzUuE1o9Hc/ecZjG90DkLxG786fZP Jiwaad/HDSotYHPdpIqxofpMWFiLNAsonVqhGY/gqLIsd7wuxwi1g/ynckEsV9Y= -----END CERTIFICATE-----Generated at Tue Nov 4 04:41:06 2025 by rpki-client