$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a98a96f2-fb84-44ae-a59d-ebeb6059194f.roa File: a98a96f2-fb84-44ae-a59d-ebeb6059194f.roa (raw, json) Hash identifier: deMcHksLIdWE7WIjNUtzG2bR6F1jSOhv8Py/tiug5Sk= Subject key identifier: 57:86:76:C5:75:72:03:F9:53:CD:43:07:B2:38:31:38:97:BC:65:5E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6DF7BE964CF77332B78D77002591C215B27FE630 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a98a96f2-fb84-44ae-a59d-ebeb6059194f.roa Signing time: Wed 22 Oct 2025 00:40:09 +0000 ROA not before: Wed 22 Oct 2025 00:40:09 +0000 ROA not after: Wed 26 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f104::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 05 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:f7:be:96:4c:f7:73:32:b7:8d:77:00:25:91:c2:15:b2:7f:e6:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 22 00:40:09 2025 GMT Not After : Nov 26 23:59:59 2025 GMT Subject: serialNumber=da64125b6166090f08967376112afec8fd051c930a9662e40695ddc100703ead, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:90:af:be:9f:c6:03:54:69:a3:d1:e1:53:5a: 0d:eb:cc:ab:a2:7f:bb:fe:d4:30:13:19:3f:09:c4: b3:c5:3c:6d:93:32:36:73:f0:1c:96:de:d4:05:47: 10:98:a5:9c:15:33:32:b7:f0:0f:81:6c:d7:2d:b8: bd:32:e9:23:6e:24:56:76:f6:1e:2a:6c:cf:72:6d: 8b:83:d4:9a:d7:d9:1f:76:a5:e5:5b:77:42:33:b0: ce:2b:97:e2:34:d4:4e:0a:95:7e:a2:06:21:0f:a3: 3e:db:b8:74:5f:5a:b4:de:9f:f8:92:3e:06:a5:9e: 2e:ef:e1:e4:18:25:f0:de:31:17:e6:f5:37:48:da: 7b:bb:81:63:0b:59:aa:cc:51:c9:c1:1a:a9:81:3f: 46:b3:4a:66:17:a6:5b:64:29:43:39:08:a5:04:b2: a8:34:1c:7f:9b:3b:81:69:53:5b:ea:a1:d4:54:b2: 7c:d0:1d:fa:45:cf:80:1f:fd:2a:16:dd:3f:cc:99: 85:68:2b:bd:a3:cf:5f:28:7d:e8:a2:d6:cd:33:bb: 82:69:ff:fb:97:32:d2:b8:d5:3d:dc:6f:3f:f1:82: d2:1d:e1:75:b8:66:60:2c:7b:b2:7e:72:6e:b7:7d: c8:1b:f3:7b:57:82:84:a3:20:ab:f1:e6:f6:57:c3: 08:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:86:76:C5:75:72:03:F9:53:CD:43:07:B2:38:31:38:97:BC:65:5E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a98a96f2-fb84-44ae-a59d-ebeb6059194f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f104::/48 Signature Algorithm: sha256WithRSAEncryption a2:49:7d:df:40:37:58:9b:6a:44:b3:11:5f:da:c5:66:70:8c: 0e:81:b8:56:f0:3f:27:43:43:cd:3c:cd:71:c8:f3:5c:7d:06: ce:87:d3:14:6e:5c:bc:0b:a3:5f:06:46:fe:c5:5c:7e:3e:dd: c2:67:ad:eb:27:98:2d:2e:c7:63:00:37:13:ef:5a:27:34:f4: 74:e3:37:37:83:5d:99:6b:d8:7d:a4:30:6b:cf:fe:ec:9c:48: 08:77:4b:c0:bf:0f:15:53:41:8a:8c:43:74:72:f5:59:a3:7c: 01:0d:b7:9d:36:77:83:95:98:02:55:ec:47:ed:1b:53:21:58: 26:e9:f6:2b:64:46:cf:ad:fd:dc:00:ce:6d:cc:43:bc:00:6b: 00:78:88:09:32:7e:33:4f:af:6f:2d:cd:f8:19:59:70:28:b2: cd:ff:4c:6b:4f:61:04:b6:01:ec:d7:d8:e9:b7:48:6e:d2:62: ec:36:cd:54:4f:45:57:35:f5:50:5b:87:6e:ef:64:fe:c4:49: f2:29:3c:66:9e:38:cd:e8:67:a4:e9:9b:6c:65:fa:3e:11:90: c0:13:6f:2b:51:ff:09:6e:6c:1c:bb:1f:b4:b2:e1:cb:34:38: a5:04:11:1d:33:90:c0:f0:2b:83:2c:53:89:7e:19:28:7e:21: d1:52:95:b0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbfe+lkz3czK3jXcAJZHCFbJ/5jAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIyMDA0MDA5WhcNMjUxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYTY0MTI1YjYxNjYwOTBmMDg5NjczNzYxMTJhZmVjOGZk MDUxYzkzMGE5NjYyZTQwNjk1ZGRjMTAwNzAzZWFkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDzkK++n8YDVGmj0eFTWg3rzKuif7v+1DATGT8JxLPFPG2T MjZz8ByW3tQFRxCYpZwVMzK38A+BbNctuL0y6SNuJFZ29h4qbM9ybYuD1JrX2R92 peVbd0IzsM4rl+I01E4KlX6iBiEPoz7buHRfWrTen/iSPgalni7v4eQYJfDeMRfm 9TdI2nu7gWMLWarMUcnBGqmBP0azSmYXpltkKUM5CKUEsqg0HH+bO4FpU1vqodRU snzQHfpFz4Af/SoW3T/MmYVoK72jz18ofeii1s0zu4Jp//uXMtK41T3cbz/xgtId 4XW4ZmAse7J+cm63fcgb83tXgoSjIKvx5vZXwwhZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUV4Z2xXVyA/lTzUMHsjgxOJe8ZV4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E5OGE5NmYyLWZiODQtNDRhZS1hNTlkLWViZWI2MDU5MTk0Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QQwDQYJKoZIhvcNAQELBQADggEBAKJJfd9AN1ibakSzEV/axWZw jA6BuFbwPydDQ808zXHI81x9Bs6H0xRuXLwLo18GRv7FXH4+3cJnresnmC0ux2MA NxPvWic09HTjNzeDXZlr2H2kMGvP/uycSAh3S8C/DxVTQYqMQ3Ry9VmjfAENt502 d4OVmAJV7EftG1MhWCbp9itkRs+t/dwAzm3MQ7wAawB4iAkyfjNPr28tzfgZWXAo ss3/TGtPYQS2AezX2Om3SG7SYuw2zVRPRVc19VBbh27vZP7ESfIpPGaeOM3oZ6Tp m2xl+j4RkMATbytR/wlubBy7H7Sy4cs0OKUEER0zkMDwK4MsU4l+GSh+IdFSlbA= -----END CERTIFICATE-----Generated at Tue Nov 4 04:42:53 2025 by rpki-client