$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/02199521-5f9b-495a-8f98-038eae8cd626.roa File: 02199521-5f9b-495a-8f98-038eae8cd626.roa (raw, json) Hash identifier: /wlS6klGVqUoq3WHuPLesq90BRmwy5v7G1kDieJVw70= Subject key identifier: 60:92:D6:FF:67:64:BC:AF:B4:BD:3C:FE:C5:0C:6E:76:F1:37:0C:12 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2E8D9BF14816227AE708D0F5D78683F6F467B071 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/02199521-5f9b-495a-8f98-038eae8cd626.roa Signing time: Thu 30 Oct 2025 21:06:47 +0000 ROA not before: Thu 30 Oct 2025 21:06:47 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:146e::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:8d:9b:f1:48:16:22:7a:e7:08:d0:f5:d7:86:83:f6:f4:67:b0:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 21:06:47 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=32858108de3f96b227eceb3c2c721b6bb1d544da620c43da7912de25da653483, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:78:e8:4d:59:15:73:ae:a4:43:da:8d:01:11: cf:1a:cc:0d:48:1b:34:1d:59:0d:f3:99:7a:f2:cd: 97:7b:f6:3b:b1:8a:c7:b5:3b:b8:c2:82:5b:09:93: 7e:3b:05:9f:8b:c3:eb:02:f7:7c:0a:c6:e4:70:37: d3:d0:5b:72:9d:6b:ae:e5:16:ac:b6:5b:7b:66:65: 38:99:2a:63:a5:8e:79:2a:d4:7e:55:b7:21:01:56: cf:b6:28:c1:18:86:89:50:4d:d0:66:d2:f0:06:57: 74:a9:3f:79:3d:68:b4:e3:cb:13:5d:f4:01:70:c3: dd:20:71:f0:6d:e4:cd:03:e3:7e:61:54:a8:e3:43: f1:eb:60:f2:6f:a9:a6:03:d8:c6:4d:0a:f0:95:b0: 49:cd:53:dd:07:b1:f6:2b:90:74:6d:31:ba:c4:0b: e8:ce:26:47:a4:5e:eb:93:dc:98:e7:ee:ea:2d:cc: eb:5e:80:6c:fe:60:0d:43:62:01:09:32:d5:1b:6b: 77:15:05:bd:cf:59:72:ee:f9:1b:43:c4:50:f2:80: b8:07:c9:be:bc:f5:b4:81:2f:10:47:1f:d1:83:13: 1e:db:a0:1e:3d:97:3c:28:ca:d8:b8:05:9c:de:1e: d8:26:b6:0a:cc:78:e8:58:5e:fa:88:08:ce:19:5b: 34:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:92:D6:FF:67:64:BC:AF:B4:BD:3C:FE:C5:0C:6E:76:F1:37:0C:12 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/02199521-5f9b-495a-8f98-038eae8cd626.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:146e::/47 Signature Algorithm: sha256WithRSAEncryption 84:55:83:fa:5f:7b:10:40:0f:be:fe:2a:85:07:01:98:58:46: 4e:cc:ee:38:4f:f5:13:b5:4e:3e:a6:f7:d1:b9:81:db:2b:8a: 0b:23:bd:f7:b4:3f:bf:08:39:8c:63:9b:c8:87:d0:10:08:c1: ce:ca:4f:dc:a2:0a:dc:dc:16:ba:0d:6e:fc:2e:90:e9:32:e1: f0:cd:c5:6e:0c:51:e6:03:0b:c5:45:5e:13:3f:a5:38:0a:47: 2e:10:51:83:1b:74:03:a2:7c:4f:48:8e:07:d5:3d:80:4a:e9: 6c:f7:0f:d5:11:23:58:90:79:11:3d:b8:8c:f3:d9:ac:95:1c: 42:aa:af:a6:47:ec:0a:9f:7a:30:cc:64:cd:2f:55:89:fb:ac: f7:b9:ad:d3:b1:cf:f6:64:89:08:1f:12:bc:6f:82:ad:47:80: 79:be:ba:03:a7:21:65:76:9f:1e:64:32:35:19:8e:7b:8a:20: 4b:41:51:cf:ae:da:07:75:08:85:a4:52:0b:41:39:6a:4e:bf: 47:65:23:92:37:6d:74:f2:ac:d0:f2:ea:df:80:f5:8b:2d:04: 70:a4:14:05:95:38:dd:0f:b9:cc:5f:f7:1a:1b:36:46:c7:6c: 14:fd:23:21:14:7c:ad:dc:7c:46:44:9a:be:90:6d:8c:c8:c4: bb:f7:aa:a8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULo2b8UgWInrnCND114aD9vRnsHEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjEwNjQ3WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMjg1ODEwOGRlM2Y5NmIyMjdlY2ViM2MyYzcyMWI2YmIx ZDU0NGRhNjIwYzQzZGE3OTEyZGUyNWRhNjUzNDgzMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCueOhNWRVzrqRD2o0BEc8azA1IGzQdWQ3zmXryzZd79jux ise1O7jCglsJk347BZ+Lw+sC93wKxuRwN9PQW3Kda67lFqy2W3tmZTiZKmOljnkq 1H5VtyEBVs+2KMEYholQTdBm0vAGV3SpP3k9aLTjyxNd9AFww90gcfBt5M0D435h VKjjQ/HrYPJvqaYD2MZNCvCVsEnNU90HsfYrkHRtMbrEC+jOJkekXuuT3Jjn7uot zOtegGz+YA1DYgEJMtUba3cVBb3PWXLu+RtDxFDygLgHyb689bSBLxBHH9GDEx7b oB49lzwoyti4BZzeHtgmtgrMeOhYXvqICM4ZWzTlAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUYJLW/2dkvK+0vTz+xQxudvE3DBIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzAyMTk5NTIxLTVmOWItNDk1YS04Zjk4LTAzOGVhZThjZDYyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAFG4wDQYJKoZIhvcNAQELBQADggEBAIRVg/pfexBAD77+KoUHAZhY Rk7M7jhP9RO1Tj6m99G5gdsrigsjvfe0P78IOYxjm8iH0BAIwc7KT9yiCtzcFroN bvwukOky4fDNxW4MUeYDC8VFXhM/pTgKRy4QUYMbdAOifE9IjgfVPYBK6Wz3D9UR I1iQeRE9uIzz2ayVHEKqr6ZH7AqfejDMZM0vVYn7rPe5rdOxz/ZkiQgfErxvgq1H gHm+ugOnIWV2nx5kMjUZjnuKIEtBUc+u2gd1CIWkUgtBOWpOv0dlI5I3bXTyrNDy 6t+A9YstBHCkFAWVON0Pucxf9xobNkbHbBT9IyEUfK3cfEZEmr6QbYzIxLv3qqg= -----END CERTIFICATE-----Generated at Wed Nov 5 09:27:54 2025 by rpki-client