$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da111c82-234c-46a2-a1ef-e848103120cb.roa File: da111c82-234c-46a2-a1ef-e848103120cb.roa (raw, json) Hash identifier: SphrXBWV47zXpcD5xCP3XqQSuNMdQZzE4aUfaXtOFrI= Subject key identifier: 0C:75:F8:8D:D9:19:26:E2:E4:82:42:14:07:54:4D:94:2F:25:7D:41 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 608B9B0DFE183D7E0F4381C998C3934C08B460F1 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da111c82-234c-46a2-a1ef-e848103120cb.roa Signing time: Wed 29 Oct 2025 22:40:12 +0000 ROA not before: Wed 29 Oct 2025 22:40:12 +0000 ROA not after: Wed 03 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:110::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 05 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:8b:9b:0d:fe:18:3d:7e:0f:43:81:c9:98:c3:93:4c:08:b4:60:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 29 22:40:12 2025 GMT Not After : Dec 3 23:59:59 2025 GMT Subject: serialNumber=54eda31fa5ef019709469e7364c0d2ff40e7b2347add79ffa6816a6cc49dccc2, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7a:0d:25:a2:25:60:92:f3:f2:67:78:af:b2: 5b:bb:fc:77:ab:0d:1c:58:6c:0a:94:41:9b:9e:f9: 89:a4:0a:87:98:f7:c4:48:27:c6:dd:3f:7b:5f:31: 2a:be:01:65:59:da:bc:15:d2:b8:8f:22:bc:35:72: a3:fd:bb:28:73:83:ce:7a:09:1d:68:45:60:a9:23: 3f:d3:96:d9:45:55:76:3f:f1:fd:2f:10:b7:7e:5e: a5:63:19:71:04:5d:92:59:10:fa:52:d5:9e:1a:58: d1:39:d9:73:66:12:25:66:a9:42:50:f4:4d:eb:45: 02:3a:0d:84:6d:4a:e9:60:2b:f5:5f:b2:43:92:8c: 33:5e:9a:51:5b:9d:6b:5f:9a:f9:9c:e5:60:12:d0: 07:22:ab:60:b0:fe:0c:a1:ce:8a:57:7e:31:14:92: b7:66:33:9b:e4:7b:bd:8a:52:47:0f:63:9a:45:af: 25:3d:c1:1d:ee:1b:77:c1:22:c3:f3:46:81:4f:79: 79:da:51:bf:62:a2:ab:d2:1a:86:d7:64:68:2f:1b: b2:42:87:47:b4:29:c0:e7:66:df:0b:9b:b7:15:fd: dc:cd:49:fb:d4:58:98:4e:c2:e8:26:c3:c1:2a:21: 5f:04:77:45:d0:29:ba:26:e0:76:2a:65:19:04:49: c2:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:75:F8:8D:D9:19:26:E2:E4:82:42:14:07:54:4D:94:2F:25:7D:41 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da111c82-234c-46a2-a1ef-e848103120cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:110::/47 Signature Algorithm: sha256WithRSAEncryption 26:fd:ef:f6:7b:51:88:9f:20:c7:0a:67:35:6a:af:be:8b:07: 0b:7b:01:b3:80:4f:89:3b:b6:3c:95:05:8a:80:e2:09:c8:b6: db:71:c5:ce:7b:f9:27:0b:1d:a0:2a:ca:a0:5f:ab:39:15:21: 87:38:d1:1c:be:03:98:15:76:b8:a4:7a:8c:4f:4d:f7:c4:eb: d2:0b:6b:c9:38:e7:68:a2:46:39:fb:f7:4a:5a:45:a2:ec:d2: 8e:80:68:ae:8e:75:84:da:89:b8:73:4f:11:37:4e:19:c7:ed: d3:2b:7c:f4:12:15:d2:82:e8:1d:af:b7:f6:7d:e5:4a:6b:4a: 2e:68:94:6e:e8:3e:01:0c:6f:18:48:6f:ea:b5:1a:63:e7:8f: c2:2e:e0:8e:3d:17:84:ea:27:25:5c:d5:3a:a0:26:aa:d9:f6: 1a:c7:26:b7:9b:43:26:d3:f6:b9:f7:3d:34:b5:7c:92:49:e1: b7:ad:47:7a:d7:2a:62:56:68:95:18:35:f5:03:47:fa:b1:64: e2:0e:20:f3:e3:ad:3f:10:4a:90:26:91:46:b1:08:c2:70:aa: 8a:83:67:c4:7e:97:9a:c7:8d:46:0f:07:ac:53:b9:06:47:fd: fb:a5:5e:ff:40:56:17:7a:f8:a7:82:7c:e0:6d:9f:eb:2c:a6: f2:6a:43:73 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYIubDf4YPX4PQ4HJmMOTTAi0YPEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDI5MjI0MDEyWhcNMjUxMjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NGVkYTMxZmE1ZWYwMTk3MDk0NjllNzM2NGMwZDJmZjQw ZTdiMjM0N2FkZDc5ZmZhNjgxNmE2Y2M0OWRjY2MyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9eg0loiVgkvPyZ3ivslu7/HerDRxYbAqUQZue+YmkCoeY 98RIJ8bdP3tfMSq+AWVZ2rwV0riPIrw1cqP9uyhzg856CR1oRWCpIz/TltlFVXY/ 8f0vELd+XqVjGXEEXZJZEPpS1Z4aWNE52XNmEiVmqUJQ9E3rRQI6DYRtSulgK/Vf skOSjDNemlFbnWtfmvmc5WAS0Aciq2Cw/gyhzopXfjEUkrdmM5vke72KUkcPY5pF ryU9wR3uG3fBIsPzRoFPeXnaUb9ioqvSGobXZGgvG7JCh0e0KcDnZt8Lm7cV/dzN SfvUWJhOwugmw8EqIV8Ed0XQKbom4HYqZRkEScIpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDHX4jdkZJuLkgkIUB1RNlC8lfUEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RhMTExYzgyLTIzNGMtNDZhMi1hMWVmLWU4NDgxMDMxMjBjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAPDwARAwDQYJKoZIhvcNAQELBQADggEBACb97/Z7UYifIMcKZzVqr76L Bwt7AbOAT4k7tjyVBYqA4gnItttxxc57+ScLHaAqyqBfqzkVIYc40Ry+A5gVdrik eoxPTffE69ILa8k452iiRjn790paRaLs0o6AaK6OdYTaibhzTxE3ThnH7dMrfPQS FdKC6B2vt/Z95UprSi5olG7oPgEMbxhIb+q1GmPnj8Iu4I49F4TqJyVc1TqgJqrZ 9hrHJrebQybT9rn3PTS1fJJJ4betR3rXKmJWaJUYNfUDR/qxZOIOIPPjrT8QSpAm kUaxCMJwqoqDZ8R+l5rHjUYPB6xTuQZH/fulXv9AVhd6+KeCfOBtn+sspvJqQ3M= -----END CERTIFICATE-----Generated at Tue Nov 4 04:39:53 2025 by rpki-client