$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa File: cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa (raw, json) Hash identifier: orazKeA0BybM3tnlEPt8BOmdAeETKcbQOIYG5GpGhsc= Subject key identifier: D7:E3:21:B6:A7:DF:A8:0C:B3:96:55:ED:4B:6C:FF:5B:66:AD:3E:7E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3D67CF70756F59931B4F230D052730A4E075D7DE Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa Signing time: Tue 21 Oct 2025 13:00:05 +0000 ROA not before: Tue 21 Oct 2025 13:00:05 +0000 ROA not after: Tue 25 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5518::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:67:cf:70:75:6f:59:93:1b:4f:23:0d:05:27:30:a4:e0:75:d7:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 21 13:00:05 2025 GMT Not After : Nov 25 23:59:59 2025 GMT Subject: serialNumber=336a129c61d52d377dc7f053c0038c8a16f404a1c59a177b409d91c4b88a3bfc, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:8f:01:3f:94:2d:02:44:81:87:3f:c5:a1:30: f2:a8:3a:fb:69:94:11:d1:4c:12:0e:96:c9:70:7f: fb:16:ed:f5:c1:28:34:a7:77:96:2f:07:ea:7d:6d: 8c:77:ac:13:d6:ed:dd:2b:98:b1:a7:bd:7b:35:ca: 09:5d:de:e7:8e:bc:63:ef:3c:49:77:dd:05:be:a8: e1:d9:bb:67:f8:ad:cc:37:f3:91:bc:7a:4f:f2:72: e7:d7:82:fa:7f:8a:de:60:b3:bf:54:21:e9:65:fa: 3e:b9:6e:06:51:85:15:42:36:fe:cc:e6:9e:52:b6: 26:76:46:e8:da:bb:5f:43:07:b6:f5:87:56:7b:fd: a0:e9:94:2c:f5:b6:95:b9:b6:53:f9:81:46:4b:b6: 45:32:52:7d:12:16:3c:85:97:71:dd:7a:3e:ce:82: ca:f5:fc:8f:4b:fb:d3:65:96:92:71:36:f8:4f:97: df:a3:63:c0:1d:a2:a7:4b:a5:48:da:14:82:72:f7: 57:01:a2:40:55:54:d5:f6:52:08:5e:71:eb:63:dd: 7a:59:d8:7c:1a:6c:16:1f:99:e5:3d:82:95:e2:e0: bc:95:01:06:96:e9:0b:6a:40:d6:0d:9a:03:fa:75: 70:1c:ee:bd:91:b8:6f:6a:fb:d7:1c:7f:78:f2:b6: 77:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:E3:21:B6:A7:DF:A8:0C:B3:96:55:ED:4B:6C:FF:5B:66:AD:3E:7E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5518::/48 Signature Algorithm: sha256WithRSAEncryption 4c:a3:cb:a6:0b:0e:c4:dc:7c:7d:68:b7:5a:3a:33:e5:2d:1e: e7:ed:9c:c4:19:c5:a0:8f:d0:3b:12:ad:04:6c:41:56:75:cb: 7a:76:84:d5:85:39:7b:9c:17:59:98:d4:ca:14:0f:c4:7a:cc: a7:a9:f9:21:42:23:63:e5:c8:4e:07:3d:3a:0a:d8:87:a5:d7: 8f:16:e2:0c:b3:7f:7d:dd:eb:d3:31:03:39:a7:9f:f9:fb:5b: 0b:45:a6:c7:8c:79:fa:bc:9e:83:63:51:d9:54:99:db:2e:9f: b2:ad:47:1b:ac:18:f9:32:9b:df:26:da:83:02:13:12:54:df: 04:fb:8f:4f:04:8f:ea:71:82:e3:b6:25:0b:6c:0e:e1:e5:d6: 61:3e:3e:8c:25:36:58:2b:12:8e:f9:54:02:ee:25:5d:4f:91: 98:8a:43:21:4b:95:b1:fc:a4:b1:f7:21:1f:35:2e:b7:12:38: f5:0d:84:f2:c7:26:a8:3c:d4:22:a1:0a:12:29:28:82:52:3c: f1:4f:ee:bd:4e:b6:49:b3:2b:05:01:28:04:b0:7d:af:6b:b6: a6:26:71:20:38:73:74:59:c6:37:2c:28:2a:ed:cf:b4:12:fa: ce:11:c6:38:03:2a:bb:b1:40:35:41:ee:e1:37:96:ec:1f:dc: fb:65:aa:7b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPWfPcHVvWZMbTyMNBScwpOB1194wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIxMTMwMDA1WhcNMjUxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMzZhMTI5YzYxZDUyZDM3N2RjN2YwNTNjMDAzOGM4YTE2 ZjQwNGExYzU5YTE3N2I0MDlkOTFjNGI4OGEzYmZjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDxjwE/lC0CRIGHP8WhMPKoOvtplBHRTBIOlslwf/sW7fXB KDSnd5YvB+p9bYx3rBPW7d0rmLGnvXs1ygld3ueOvGPvPEl33QW+qOHZu2f4rcw3 85G8ek/ycufXgvp/it5gs79UIell+j65bgZRhRVCNv7M5p5StiZ2Rujau19DB7b1 h1Z7/aDplCz1tpW5tlP5gUZLtkUyUn0SFjyFl3Hdej7Ogsr1/I9L+9NllpJxNvhP l9+jY8AdoqdLpUjaFIJy91cBokBVVNX2Ughecetj3XpZ2HwabBYfmeU9gpXi4LyV AQaW6QtqQNYNmgP6dXAc7r2RuG9q+9ccf3jytndHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU1+MhtqffqAyzllXtS2z/W2atPn4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NiZjQzZDk5LTRkMDEtNGQyNC1hZGE5LTZlMzQzNjhkMWQ3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRgwDQYJKoZIhvcNAQELBQADggEBAEyjy6YLDsTcfH1ot1o6M+Ut HuftnMQZxaCP0DsSrQRsQVZ1y3p2hNWFOXucF1mY1MoUD8R6zKep+SFCI2PlyE4H PToK2Iel148W4gyzf33d69MxAzmnn/n7WwtFpseMefq8noNjUdlUmdsun7KtRxus GPkym98m2oMCExJU3wT7j08Ej+pxguO2JQtsDuHl1mE+PowlNlgrEo75VALuJV1P kZiKQyFLlbH8pLH3IR81LrcSOPUNhPLHJqg81CKhChIpKIJSPPFP7r1OtkmzKwUB KASwfa9rtqYmcSA4c3RZxjcsKCrtz7QS+s4RxjgDKruxQDVB7uE3luwf3Ptlqns= -----END CERTIFICATE-----Generated at Wed Nov 5 01:17:51 2025 by rpki-client