$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a4f9065c-8922-4d3f-b9ac-82a6edd499c9.roa File: a4f9065c-8922-4d3f-b9ac-82a6edd499c9.roa (raw, json) Hash identifier: C/N60Sqw0DNuzV0PwEH0IPvWz6/DTVBPjVT7PCP97Io= Subject key identifier: A8:8B:8E:DB:35:F0:88:D2:DF:E6:6D:6C:A0:E6:94:A9:09:11:9E:9E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3BC754A396E6B7E1478C19B027F27F93AFA2F68C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a4f9065c-8922-4d3f-b9ac-82a6edd499c9.roa Signing time: Wed 22 Oct 2025 00:40:07 +0000 ROA not before: Wed 22 Oct 2025 00:40:07 +0000 ROA not after: Wed 26 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f101::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 05 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:c7:54:a3:96:e6:b7:e1:47:8c:19:b0:27:f2:7f:93:af:a2:f6:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 22 00:40:07 2025 GMT Not After : Nov 26 23:59:59 2025 GMT Subject: serialNumber=46197ccadb83348e71f0c9b732962a57568791b495cadef883664fdb19f9b9e3, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0a:b6:b0:d2:62:61:65:82:2e:c9:b9:6c:2b: 67:aa:71:f0:7b:e2:0d:c5:5b:a0:c9:51:e6:53:82: d2:7e:3e:78:ac:c4:d3:71:0d:ec:f1:39:94:7e:51: 98:6f:d9:ac:16:70:81:25:c6:47:03:e6:fc:d1:2a: 49:ed:04:22:5c:e0:04:c6:cb:2f:55:75:42:4a:a6: c6:da:83:04:13:48:a3:47:e6:86:36:6a:0a:c6:f8: ec:6a:d2:43:b7:dd:aa:bc:a3:1e:fe:e8:43:4d:a5: 63:57:b5:e0:ff:1e:c3:49:7a:62:a6:dc:96:ec:b9: 67:8c:fb:f5:ab:e0:35:ca:e3:ae:ba:34:14:75:6d: 22:ae:94:65:37:84:3f:00:37:e1:21:93:45:50:3a: d8:84:a3:01:07:9e:78:b8:3f:02:c5:ab:e8:50:10: 47:ea:c0:96:a9:43:0e:28:5e:8a:99:9d:2e:ee:c1: 33:97:3a:04:d5:aa:cb:50:9d:bc:7c:99:cd:6d:11: 2c:ba:cf:49:a3:11:a7:1b:29:26:e8:b1:ca:2b:e2: d3:da:a2:48:3e:b5:e1:c6:d6:b8:25:65:a4:8e:2f: 0b:4a:84:13:c5:f3:c6:c3:2a:d8:96:71:e7:45:d7: 9d:cf:23:6c:43:5d:88:13:bc:9e:ae:43:38:c4:d4: 62:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:8B:8E:DB:35:F0:88:D2:DF:E6:6D:6C:A0:E6:94:A9:09:11:9E:9E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a4f9065c-8922-4d3f-b9ac-82a6edd499c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f101::/48 Signature Algorithm: sha256WithRSAEncryption 43:31:a9:f6:bd:aa:ee:b5:18:d3:27:65:1f:de:02:e3:ce:40: ce:4d:c5:06:47:d2:bd:af:5d:0f:f9:3e:a5:6e:ac:30:62:93: 80:d6:1f:33:a0:61:73:89:b6:30:3e:e0:0b:73:8b:c1:e5:33: 9e:e4:7b:80:e5:65:47:64:db:20:64:e8:1e:b6:f5:b6:45:02: 2c:05:bc:4a:26:24:d0:95:79:9e:7b:81:cd:65:78:57:2c:33: ce:63:e6:ea:75:32:bc:07:4b:38:36:7e:2b:8d:d3:3c:f4:c4: 92:01:7c:e0:35:3e:04:c4:97:f5:e3:1e:0b:17:b7:fa:cb:38: 97:c3:08:85:98:16:f9:5f:1d:b0:da:f2:6d:9d:df:fe:d5:71: 5d:ab:35:ca:ca:01:81:a8:76:aa:68:d0:db:b4:71:6b:c4:33: 39:ad:18:68:35:cd:39:6d:27:74:ae:17:13:c2:26:ff:25:6d: c2:ac:bb:60:9c:f2:a3:d7:8a:61:67:eb:c8:7e:6a:82:a4:bc: f6:03:fb:58:33:4d:94:98:ec:05:91:28:ba:67:c9:69:75:ac: af:49:ce:73:14:27:be:d2:18:af:ff:f6:6b:21:24:2d:a1:b1: e9:af:65:fa:c5:8b:3a:34:af:01:f6:68:99:94:aa:1c:53:4e: fe:2a:a5:a7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUO8dUo5bmt+FHjBmwJ/J/k6+i9owwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIyMDA0MDA3WhcNMjUxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NjE5N2NjYWRiODMzNDhlNzFmMGM5YjczMjk2MmE1NzU2 ODc5MWI0OTVjYWRlZjg4MzY2NGZkYjE5ZjliOWUzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGCraw0mJhZYIuyblsK2eqcfB74g3FW6DJUeZTgtJ+Pnis xNNxDezxOZR+UZhv2awWcIElxkcD5vzRKkntBCJc4ATGyy9VdUJKpsbagwQTSKNH 5oY2agrG+Oxq0kO33aq8ox7+6ENNpWNXteD/HsNJemKm3JbsuWeM+/Wr4DXK4666 NBR1bSKulGU3hD8AN+Ehk0VQOtiEowEHnni4PwLFq+hQEEfqwJapQw4oXoqZnS7u wTOXOgTVqstQnbx8mc1tESy6z0mjEacbKSboscor4tPaokg+teHG1rglZaSOLwtK hBPF88bDKtiWcedF153PI2xDXYgTvJ6uQzjE1GKZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUqIuO2zXwiNLf5m1soOaUqQkRnp4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E0ZjkwNjVjLTg5MjItNGQzZi1iOWFjLTgyYTZlZGQ0OTljOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QEwDQYJKoZIhvcNAQELBQADggEBAEMxqfa9qu61GNMnZR/eAuPO QM5NxQZH0r2vXQ/5PqVurDBik4DWHzOgYXOJtjA+4Atzi8HlM57ke4DlZUdk2yBk 6B629bZFAiwFvEomJNCVeZ57gc1leFcsM85j5up1MrwHSzg2fiuN0zz0xJIBfOA1 PgTEl/XjHgsXt/rLOJfDCIWYFvlfHbDa8m2d3/7VcV2rNcrKAYGodqpo0Nu0cWvE MzmtGGg1zTltJ3SuFxPCJv8lbcKsu2Cc8qPXimFn68h+aoKkvPYD+1gzTZSY7AWR KLpnyWl1rK9JznMUJ77SGK//9mshJC2hsemvZfrFizo0rwH2aJmUqhxTTv4qpac= -----END CERTIFICATE-----Generated at Tue Nov 4 04:43:52 2025 by rpki-client