$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da202649-b5ac-45d7-ab2c-22fec234c600.roa File: da202649-b5ac-45d7-ab2c-22fec234c600.roa (raw, json) Hash identifier: VFpyWHfJ3By/L4qyQnrYZI+2AN2AJxlvprznxSGPjGo= Subject key identifier: D1:29:EE:0B:C1:B1:84:FA:E6:AD:31:78:FD:D9:97:41:AC:A4:D4:03 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0F9E2C0EBB459CBEC151D7A5BBD6AE03115C754B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da202649-b5ac-45d7-ab2c-22fec234c600.roa Signing time: Wed 22 Oct 2025 00:40:09 +0000 ROA not before: Wed 22 Oct 2025 00:40:09 +0000 ROA not after: Wed 26 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f106::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 05 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:9e:2c:0e:bb:45:9c:be:c1:51:d7:a5:bb:d6:ae:03:11:5c:75:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 22 00:40:09 2025 GMT Not After : Nov 26 23:59:59 2025 GMT Subject: serialNumber=e23a15c1c67c9497dac33a8f397eac6c82add87b167f559425f6e5accce83796, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:c8:b9:d8:ef:25:69:f1:8f:05:e1:fd:01:c7: d5:59:ab:6d:f8:01:d5:bd:e6:b6:91:1c:be:d6:52: 66:d6:f3:fe:7c:95:5e:f0:a9:04:27:d9:0f:98:16: 78:37:0c:8d:44:14:e2:08:91:d1:43:70:23:56:17: df:43:ca:27:a8:57:7f:ec:4f:e9:15:c6:b6:8b:e1: fe:0b:fd:8e:7e:0b:cf:d3:47:c1:68:fa:ce:ad:1b: 33:09:fe:6b:94:ad:97:ad:98:69:b5:90:53:71:c4: 25:26:43:8e:4d:73:c6:19:ae:ff:fb:3d:ff:24:b6: 13:c7:a8:25:12:bb:fb:9e:9c:0a:89:27:bb:88:98: 29:e9:37:90:67:a1:92:a8:34:7e:e4:45:11:5e:53: cc:46:cb:09:cd:a1:2e:49:c9:7c:87:2a:c3:f9:c0: fa:72:ab:d8:53:00:51:13:a9:cb:15:b8:4c:eb:9a: 3b:7c:5a:89:1e:83:c9:a3:f5:7f:c7:89:d8:70:87: c7:d9:ef:8b:d6:1d:10:77:74:5c:e6:fa:7b:81:d0: 69:46:a9:49:ff:f1:94:34:67:71:b9:24:d7:b7:91: 6f:44:c4:56:26:55:31:f5:5e:56:f6:64:e3:9e:b0: 17:42:1a:aa:c5:ff:4c:09:45:00:d6:6a:31:e7:57: 4d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:29:EE:0B:C1:B1:84:FA:E6:AD:31:78:FD:D9:97:41:AC:A4:D4:03 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da202649-b5ac-45d7-ab2c-22fec234c600.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f106::/48 Signature Algorithm: sha256WithRSAEncryption a2:22:f0:16:84:13:98:b0:e7:1e:15:aa:3b:4e:8b:94:ab:71: 22:e6:64:eb:b6:6e:fe:b0:48:29:0c:e8:47:f1:b8:50:86:ce: b0:2b:81:95:00:66:10:5a:18:35:af:e0:25:52:b9:fa:b4:78: 20:e0:08:df:74:c5:70:6b:13:4f:61:dd:e4:28:8d:79:88:01: 8b:f5:4e:16:27:35:35:2d:f4:6c:90:fb:df:98:fc:46:f3:9e: 7a:01:69:70:db:c3:46:c3:e2:d6:96:a3:4a:b6:fd:db:4e:f3: 9c:5e:03:c9:1d:08:03:54:7e:ff:04:fc:9e:98:6a:87:55:9d: d5:29:65:87:d9:d2:2b:e5:14:40:02:41:c0:1a:ea:36:e9:bf: dc:44:24:0e:35:b6:0c:fe:5b:2c:e5:71:fc:9f:31:d8:7b:ea: ef:fc:60:b2:bc:82:de:f3:01:cd:37:06:18:db:20:bc:91:d6: b8:2a:8e:b4:a8:43:0d:5d:c6:75:34:67:27:9f:91:80:a7:fd: f0:3f:a9:86:23:98:17:2a:29:bd:14:9c:15:cb:bf:18:04:9d: 7a:3f:f2:55:4f:78:35:59:e4:f8:57:29:21:9b:bd:0b:02:21: 68:15:81:82:bd:38:d9:b8:de:dd:76:71:32:27:c8:c2:85:57: c0:74:eb:66 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUD54sDrtFnL7BUdelu9auAxFcdUswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIyMDA0MDA5WhcNMjUxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMjNhMTVjMWM2N2M5NDk3ZGFjMzNhOGYzOTdlYWM2Yzgy YWRkODdiMTY3ZjU1OTQyNWY2ZTVhY2NjZTgzNzk2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOyLnY7yVp8Y8F4f0Bx9VZq234AdW95raRHL7WUmbW8/58 lV7wqQQn2Q+YFng3DI1EFOIIkdFDcCNWF99DyieoV3/sT+kVxraL4f4L/Y5+C8/T R8Fo+s6tGzMJ/muUrZetmGm1kFNxxCUmQ45Nc8YZrv/7Pf8kthPHqCUSu/uenAqJ J7uImCnpN5BnoZKoNH7kRRFeU8xGywnNoS5JyXyHKsP5wPpyq9hTAFETqcsVuEzr mjt8Wokeg8mj9X/Hidhwh8fZ74vWHRB3dFzm+nuB0GlGqUn/8ZQ0Z3G5JNe3kW9E xFYmVTH1Xlb2ZOOesBdCGqrF/0wJRQDWajHnV00bAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU0SnuC8GxhPrmrTF4/dmXQayk1AMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RhMjAyNjQ5LWI1YWMtNDVkNy1hYjJjLTIyZmVjMjM0YzYwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78QYwDQYJKoZIhvcNAQELBQADggEBAKIi8BaEE5iw5x4VqjtOi5Sr cSLmZOu2bv6wSCkM6EfxuFCGzrArgZUAZhBaGDWv4CVSufq0eCDgCN90xXBrE09h 3eQojXmIAYv1ThYnNTUt9GyQ+9+Y/EbznnoBaXDbw0bD4taWo0q2/dtO85xeA8kd CANUfv8E/J6YaodVndUpZYfZ0ivlFEACQcAa6jbpv9xEJA41tgz+WyzlcfyfMdh7 6u/8YLK8gt7zAc03BhjbILyR1rgqjrSoQw1dxnU0ZyefkYCn/fA/qYYjmBcqKb0U nBXLvxgEnXo/8lVPeDVZ5PhXKSGbvQsCIWgVgYK9ONm43t12cTInyMKFV8B062Y= -----END CERTIFICATE-----Generated at Tue Nov 4 04:41:55 2025 by rpki-client