$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a3e10b40-ca3b-4631-9c39-e3dee6a31d8e.roa File: a3e10b40-ca3b-4631-9c39-e3dee6a31d8e.roa (raw, json) Hash identifier: PwbZwa0+lUMl4sSHzXWnmeSUQOPIWuRvpRaz813ykqA= Subject key identifier: 32:74:37:68:32:6E:E2:B4:28:49:C9:9D:06:67:74:21:CA:A5:E9:B1 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4FC6628E7F6E0181EB982B80149A62B356D56688 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a3e10b40-ca3b-4631-9c39-e3dee6a31d8e.roa Signing time: Wed 22 Oct 2025 00:50:11 +0000 ROA not before: Wed 22 Oct 2025 00:50:11 +0000 ROA not after: Wed 26 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f10b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 05 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:c6:62:8e:7f:6e:01:81:eb:98:2b:80:14:9a:62:b3:56:d5:66:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 22 00:50:11 2025 GMT Not After : Nov 26 23:59:59 2025 GMT Subject: serialNumber=56ee3e9876fdc300c5ac5bd68c9e8bee46d7912e13a13449e30873dd32301195, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:47:f2:ec:6e:c5:f8:32:e2:36:d3:0b:30:35: b9:e9:f2:f2:41:72:df:a3:62:f7:5a:b9:f9:1a:31: a5:f1:1d:b3:73:c2:59:60:45:6a:b7:75:eb:a4:48: 5e:5c:7d:a2:55:34:c1:46:4b:85:77:e7:e2:79:31: ba:02:7c:a9:48:0a:f8:2b:d0:b4:b6:2d:23:f3:76: 22:74:8c:d9:9a:11:cd:e6:3d:e9:f7:42:23:4c:3c: 90:60:e7:0d:97:35:ed:4b:fa:16:a0:77:f9:69:93: 15:bf:c7:0a:c0:77:08:17:43:83:b7:e2:ce:e8:cc: 06:a4:9c:6a:15:1a:f0:79:d5:8a:25:be:25:db:c2: 90:2a:d2:ee:78:b4:6b:d7:a7:19:a2:95:27:5e:a0: 8b:66:a5:ed:be:8d:a6:2b:b2:6c:82:42:9b:2d:8d: 1d:fa:b6:f7:cf:5c:3b:56:61:50:b5:3b:a0:7d:cc: 58:00:d3:c7:91:af:30:7c:9b:43:de:ee:99:5f:d4: 91:98:e9:9a:e0:28:7f:6d:59:b8:bd:b9:5a:a8:6f: 56:fc:d8:6a:e4:ae:ec:8e:0d:4a:9e:3d:a5:b9:9b: 31:7f:8d:9e:25:fa:2c:da:4e:1a:68:f5:6c:dc:18: e2:93:40:33:33:5f:5d:1a:41:81:df:74:77:22:67: a3:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:74:37:68:32:6E:E2:B4:28:49:C9:9D:06:67:74:21:CA:A5:E9:B1 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a3e10b40-ca3b-4631-9c39-e3dee6a31d8e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f10b::/48 Signature Algorithm: sha256WithRSAEncryption 91:9b:34:c9:41:e1:e1:0f:91:34:cb:4e:a4:cc:c3:a9:e4:05: 38:c6:5b:26:2b:7b:af:83:9d:e8:57:da:61:ff:7e:e5:88:1f: 6c:4d:f3:15:03:8e:7a:e6:62:b6:62:0b:bb:b4:de:5b:d2:a7: f5:ca:10:69:65:73:4e:16:b2:68:da:2b:71:a1:c0:79:71:22: 16:4d:27:4b:00:09:29:cd:4d:70:b2:af:ad:20:8e:48:58:76: 32:b8:13:04:ab:5c:44:b8:9c:14:38:6b:30:36:ef:89:b7:d6: 03:70:d8:5c:a7:6f:99:0a:36:bd:11:ac:5c:e0:ac:0a:21:77: 55:ab:eb:3c:01:2f:a2:89:96:a0:f2:0c:39:3f:b8:f8:d5:fa: ec:45:2c:16:28:4f:6c:13:8f:b4:2b:c6:ed:78:ee:7e:b6:75: dc:b1:38:e5:88:9d:35:f6:5a:02:97:c8:f3:34:7a:21:b7:2d: f9:86:b7:3c:ab:d9:94:f7:68:6e:6b:7d:d8:e3:fb:bf:41:61: 40:5f:e2:c1:96:4e:77:74:4b:e8:b2:72:e2:0b:09:b0:b1:bc: 81:9f:cf:45:e8:41:33:be:52:ec:a9:f6:68:a8:e6:5c:12:f4: 91:c5:bb:6e:3d:85:76:2f:31:5b:da:61:87:ca:80:e0:ea:5f: 4d:8a:9a:86 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUT8Zijn9uAYHrmCuAFJpis1bVZogwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIyMDA1MDExWhcNMjUxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NmVlM2U5ODc2ZmRjMzAwYzVhYzViZDY4YzllOGJlZTQ2 ZDc5MTJlMTNhMTM0NDllMzA4NzNkZDMyMzAxMTk1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbR/LsbsX4MuI20wswNbnp8vJBct+jYvdaufkaMaXxHbNz wllgRWq3deukSF5cfaJVNMFGS4V35+J5MboCfKlICvgr0LS2LSPzdiJ0jNmaEc3m Pen3QiNMPJBg5w2XNe1L+hagd/lpkxW/xwrAdwgXQ4O34s7ozAaknGoVGvB51Yol viXbwpAq0u54tGvXpxmilSdeoItmpe2+jaYrsmyCQpstjR36tvfPXDtWYVC1O6B9 zFgA08eRrzB8m0Pe7plf1JGY6ZrgKH9tWbi9uVqob1b82GrkruyODUqePaW5mzF/ jZ4l+izaThpo9WzcGOKTQDMzX10aQYHfdHciZ6PdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUMnQ3aDJu4rQoScmdBmd0Icql6bEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2EzZTEwYjQwLWNhM2ItNDYzMS05YzM5LWUzZGVlNmEzMWQ4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QswDQYJKoZIhvcNAQELBQADggEBAJGbNMlB4eEPkTTLTqTMw6nk BTjGWyYre6+DnehX2mH/fuWIH2xN8xUDjnrmYrZiC7u03lvSp/XKEGllc04Wsmja K3GhwHlxIhZNJ0sACSnNTXCyr60gjkhYdjK4EwSrXES4nBQ4azA274m31gNw2Fyn b5kKNr0RrFzgrAohd1Wr6zwBL6KJlqDyDDk/uPjV+uxFLBYoT2wTj7Qrxu147n62 ddyxOOWInTX2WgKXyPM0eiG3LfmGtzyr2ZT3aG5rfdjj+79BYUBf4sGWTnd0S+iy cuILCbCxvIGfz0XoQTO+Uuyp9mio5lwS9JHFu249hXYvMVvaYYfKgODqX02KmoY= -----END CERTIFICATE-----Generated at Tue Nov 4 04:43:51 2025 by rpki-client