$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f10b8903-d556-40fa-97d2-08df95c5ec84.roa File: f10b8903-d556-40fa-97d2-08df95c5ec84.roa (raw, json) Hash identifier: ta+X/Gr2fyT7X25mdu7jRzaD0G1etlz9iouPbXuKXQc= Subject key identifier: 6E:DD:C6:77:C2:AB:E9:CC:8A:16:3B:C2:C2:A0:3F:1D:1C:51:F7:F9 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1ACE9E8339C0895104ED3E9AC44F53A1C54A9485 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f10b8903-d556-40fa-97d2-08df95c5ec84.roa Signing time: Sat 18 Oct 2025 00:00:32 +0000 ROA not before: Sat 18 Oct 2025 00:00:32 +0000 ROA not after: Sat 22 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8b02::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:ce:9e:83:39:c0:89:51:04:ed:3e:9a:c4:4f:53:a1:c5:4a:94:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 18 00:00:32 2025 GMT Not After : Nov 22 23:59:59 2025 GMT Subject: serialNumber=595b45cf50eebde0f38843bb811e2f41a14bf7c59afadad2e6e2c3361ee7622a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:46:87:6d:61:c7:a5:5b:7d:4e:da:fe:57:94: bc:05:55:6d:45:46:32:50:7f:ea:67:1a:e0:ff:70: 8d:3b:26:5a:95:5e:40:e4:c0:3e:8a:35:99:3f:16: 22:fd:dc:3f:3c:a3:14:aa:a9:1b:df:3d:bc:c2:24: 0a:fa:09:05:72:b0:9e:af:bb:0c:99:96:ab:4e:15: 85:60:58:5a:54:d4:35:df:03:b4:73:45:42:f9:2b: 8a:af:b5:2a:68:21:8d:1e:79:44:e1:3e:c2:bc:9c: 14:58:f9:40:28:51:4c:35:61:7b:e8:fa:76:7d:52: c7:50:db:a6:e2:d2:9b:ef:b9:4e:3e:16:52:cc:85: 71:07:04:a3:41:ba:6b:92:f5:67:64:11:33:9d:9d: 70:8e:2f:b3:19:bf:fd:b2:e1:26:3d:ea:2c:4e:12: 28:5a:65:1f:14:62:1d:4f:e0:ce:cc:7a:dc:ac:e9: 84:93:9f:d1:f0:51:92:db:0d:a6:f9:a3:47:3c:87: b0:be:57:3e:d1:cf:6d:44:21:3f:d0:6d:37:78:5b: 8b:ac:57:b2:9a:08:db:e7:4b:8f:c3:7f:71:db:14: ed:60:61:85:47:a5:d5:e0:c2:88:0f:19:31:d1:d9: 9a:0b:66:25:75:a7:02:0e:b8:a4:8a:6c:6a:00:a1: c2:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:DD:C6:77:C2:AB:E9:CC:8A:16:3B:C2:C2:A0:3F:1D:1C:51:F7:F9 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f10b8903-d556-40fa-97d2-08df95c5ec84.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8b02::/48 Signature Algorithm: sha256WithRSAEncryption 33:57:f1:e7:db:58:53:97:fd:8e:a9:17:50:6e:ff:da:ff:f0: b3:98:a9:82:63:83:87:4e:aa:98:3e:5a:71:56:e5:2a:c5:b5: ed:a1:3f:a1:a2:b6:09:0a:e6:5f:9f:2c:48:f9:d8:e5:94:29: e2:e4:f9:10:cd:0f:0d:de:a5:92:f2:83:5b:95:74:db:46:c6: b7:4c:bc:c1:da:1b:50:85:69:94:7d:b9:b8:3e:37:76:54:d0: 94:09:d6:84:43:36:35:96:18:52:48:79:af:07:b4:8c:30:5d: b6:33:24:d7:71:a9:f2:37:e4:38:50:96:49:78:34:eb:93:d3: 6f:a5:67:55:3a:1f:7b:9a:67:79:1d:a3:c7:56:02:ff:16:2e: ad:59:a1:ce:94:1c:2a:34:a8:f3:99:57:c5:97:e7:8d:f9:e1: 1d:19:fd:de:e1:e9:77:40:a0:57:b4:a2:0f:f0:e6:fa:4e:a7: 69:b0:ec:2a:86:ce:29:6b:4f:02:f9:69:25:86:eb:7d:9d:66: 9b:e5:a7:26:55:6f:f8:c9:9f:68:89:5b:7c:87:f4:0f:80:11: 69:f2:ae:c5:95:b0:d9:9a:1b:06:84:6b:14:54:c0:c2:4a:24: 80:f6:3b:5e:83:76:cd:5b:9a:9e:34:69:ad:c1:80:39:9f:f1: 45:9d:db:6f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGs6egznAiVEE7T6axE9TocVKlIUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDE4MDAwMDMyWhcNMjUxMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1OTViNDVjZjUwZWViZGUwZjM4ODQzYmI4MTFlMmY0MWEx NGJmN2M1OWFmYWRhZDJlNmUyYzMzNjFlZTc2MjJhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0RodtYcelW31O2v5XlLwFVW1FRjJQf+pnGuD/cI07JlqV XkDkwD6KNZk/FiL93D88oxSqqRvfPbzCJAr6CQVysJ6vuwyZlqtOFYVgWFpU1DXf A7RzRUL5K4qvtSpoIY0eeUThPsK8nBRY+UAoUUw1YXvo+nZ9UsdQ26bi0pvvuU4+ FlLMhXEHBKNBumuS9WdkETOdnXCOL7MZv/2y4SY96ixOEihaZR8UYh1P4M7Metys 6YSTn9HwUZLbDab5o0c8h7C+Vz7Rz21EIT/QbTd4W4usV7KaCNvnS4/Df3HbFO1g YYVHpdXgwogPGTHR2ZoLZiV1pwIOuKSKbGoAocJHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbt3Gd8Kr6cyKFjvCwqA/HRxR9/kwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2YxMGI4OTAzLWQ1NTYtNDBmYS05N2QyLTA4ZGY5NWM1ZWM4NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDxiwIwDQYJKoZIhvcNAQELBQADggEBADNX8efbWFOX/Y6pF1Bu/9r/ 8LOYqYJjg4dOqpg+WnFW5SrFte2hP6GitgkK5l+fLEj52OWUKeLk+RDNDw3epZLy g1uVdNtGxrdMvMHaG1CFaZR9ubg+N3ZU0JQJ1oRDNjWWGFJIea8HtIwwXbYzJNdx qfI35DhQlkl4NOuT02+lZ1U6H3uaZ3kdo8dWAv8WLq1Zoc6UHCo0qPOZV8WX5435 4R0Z/d7h6XdAoFe0og/w5vpOp2mw7CqGzilrTwL5aSWG632dZpvlpyZVb/jJn2iJ W3yH9A+AEWnyrsWVsNmaGwaEaxRUwMJKJID2O16Dds1bmp40aa3BgDmf8UWd228= -----END CERTIFICATE-----Generated at Mon Oct 20 09:58:57 2025 by rpki-client