$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d5fcd505-6e9b-4ab1-9666-aed833408042.roa File: d5fcd505-6e9b-4ab1-9666-aed833408042.roa (raw, json) Hash identifier: rFMP2gMbMqrAnSQbOJvRFkIm24h0pOshs/3PQBv2XYk= Subject key identifier: 05:A7:A7:50:54:29:2E:2C:B6:14:9C:A9:66:6D:75:2E:E9:C9:11:55 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2BF7087CDACDD24D2032D3111D1B796EDD53356D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d5fcd505-6e9b-4ab1-9666-aed833408042.roa Signing time: Fri 03 Oct 2025 15:18:14 +0000 ROA not before: Fri 03 Oct 2025 15:18:14 +0000 ROA not after: Fri 07 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6101::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:f7:08:7c:da:cd:d2:4d:20:32:d3:11:1d:1b:79:6e:dd:53:35:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 3 15:18:14 2025 GMT Not After : Nov 7 23:59:59 2025 GMT Subject: serialNumber=c0a781f37abe7a6e759b79ec29ce820d2c5a1f7e85310aefca9c41b377a04b29, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:05:ce:a3:ac:5e:42:3a:8c:a0:ec:ea:70:2d: 3f:4e:70:f3:f0:b6:ce:7c:8a:a0:04:ee:f5:96:c8: 3d:97:ed:f6:1a:29:b3:10:9f:9c:a1:e7:a9:7d:66: be:4a:86:10:15:1a:da:2e:62:d1:7c:e3:08:0d:f3: 7e:0a:fa:b7:2b:08:46:e0:7e:82:c1:8a:37:92:9f: c3:6a:cb:1d:b2:08:9e:c8:d4:f4:7f:e6:fb:72:af: 58:a4:ba:a6:66:22:75:b9:ec:d4:5d:15:5d:ad:1d: 04:b6:72:3d:96:00:f5:4d:48:12:f3:c4:9e:71:6a: 4a:27:69:2c:6a:4f:18:97:86:83:7f:16:8f:0d:18: 87:8a:c4:c4:ee:8a:2d:7b:c9:ec:08:64:10:35:1c: 8b:bc:40:1c:3a:20:0b:2e:3f:6b:65:47:af:15:65: 5b:5c:82:f9:ac:b3:39:1c:d4:31:69:40:f3:a2:43: a5:78:23:b1:97:45:93:ab:b2:b5:aa:80:33:8f:18: 74:ff:43:b3:a5:15:1b:10:a2:dd:b3:dc:94:66:fe: 8a:2e:fc:83:07:2c:4c:57:1a:9c:82:6e:1e:75:2c: 76:90:1a:7c:0c:40:53:2f:91:05:4f:4b:07:b5:5b: f3:00:11:6e:11:1d:c8:e8:14:a7:06:cf:31:9a:66: 63:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:A7:A7:50:54:29:2E:2C:B6:14:9C:A9:66:6D:75:2E:E9:C9:11:55 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d5fcd505-6e9b-4ab1-9666-aed833408042.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6101::/48 Signature Algorithm: sha256WithRSAEncryption 63:4b:ac:05:d8:1a:24:c3:18:50:50:a1:4e:7b:95:bb:66:c3: 3c:96:95:00:66:4a:3a:84:74:3b:70:07:2d:c4:11:4f:c2:1f: fb:0e:a5:d0:d7:51:e5:63:54:13:7a:6c:65:a5:29:ed:a6:cb: 51:fa:d4:f0:7f:f7:b8:0a:54:fa:3f:11:ac:a8:dd:7f:56:04: 23:ca:22:60:60:21:c5:8f:7b:51:c1:ac:c2:5e:eb:aa:a8:bb: 47:20:d8:a8:49:13:2f:60:0e:36:36:7b:18:11:90:83:17:a2: eb:1d:65:ea:bd:ed:32:46:6c:db:df:83:21:e0:b4:b5:dc:27: 8b:54:8a:5d:3f:db:b3:58:cf:1b:1e:df:e9:49:c5:a0:02:8d: df:0b:71:c7:45:41:41:01:fd:51:df:5a:f5:67:44:de:1a:5d: f5:2a:b8:b6:48:b8:05:bb:93:fb:37:91:30:c2:7e:e0:cd:ec: 15:f2:36:d1:90:1a:cd:ef:b3:fc:4f:f8:f2:91:fc:91:81:ec: 45:ef:6c:b5:ba:6a:ad:b0:33:d9:89:c8:b6:8b:33:fa:ad:99: 0c:2d:a6:5a:d6:cc:a0:a9:dd:d3:80:a5:6e:52:a4:d2:9c:a1: ad:0d:62:7c:e4:c5:1c:f9:1e:fd:89:59:b1:73:a3:d4:70:f6: 05:a5:ef:1c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUK/cIfNrN0k0gMtMRHRt5bt1TNW0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDAzMTUxODE0WhcNMjUxMTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMGE3ODFmMzdhYmU3YTZlNzU5Yjc5ZWMyOWNlODIwZDJj NWExZjdlODUzMTBhZWZjYTljNDFiMzc3YTA0YjI5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrBc6jrF5COoyg7OpwLT9OcPPwts58iqAE7vWWyD2X7fYa KbMQn5yh56l9Zr5KhhAVGtouYtF84wgN834K+rcrCEbgfoLBijeSn8Nqyx2yCJ7I 1PR/5vtyr1ikuqZmInW57NRdFV2tHQS2cj2WAPVNSBLzxJ5xakonaSxqTxiXhoN/ Fo8NGIeKxMTuii17yewIZBA1HIu8QBw6IAsuP2tlR68VZVtcgvmsszkc1DFpQPOi Q6V4I7GXRZOrsrWqgDOPGHT/Q7OlFRsQot2z3JRm/oou/IMHLExXGpyCbh51LHaQ GnwMQFMvkQVPSwe1W/MAEW4RHcjoFKcGzzGaZmOhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUBaenUFQpLiy2FJypZm11LunJEVUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Q1ZmNkNTA1LTZlOWItNGFiMS05NjY2LWFlZDgzMzQwODA0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQEwDQYJKoZIhvcNAQELBQADggEBAGNLrAXYGiTDGFBQoU57lbtm wzyWlQBmSjqEdDtwBy3EEU/CH/sOpdDXUeVjVBN6bGWlKe2my1H61PB/97gKVPo/ Eayo3X9WBCPKImBgIcWPe1HBrMJe66qou0cg2KhJEy9gDjY2exgRkIMXousdZeq9 7TJGbNvfgyHgtLXcJ4tUil0/27NYzxse3+lJxaACjd8LccdFQUEB/VHfWvVnRN4a XfUquLZIuAW7k/s3kTDCfuDN7BXyNtGQGs3vs/xP+PKR/JGB7EXvbLW6aq2wM9mJ yLaLM/qtmQwtplrWzKCp3dOApW5SpNKcoa0NYnzkxRz5Hv2JWbFzo9Rw9gWl7xw= -----END CERTIFICATE-----Generated at Mon Oct 20 13:53:13 2025 by rpki-client