$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0239f21b-a697-4037-8971-039996de4f0c.roa File: 0239f21b-a697-4037-8971-039996de4f0c.roa (raw, json) Hash identifier: qXsmEtxdODqFPOAzH/XOsjxaz0Ui7yLIOkNa8hNOBx4= Subject key identifier: 14:DB:04:C9:10:92:5A:9C:CB:F1:76:2F:84:7F:A0:11:77:F2:FD:8F Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 53183863B0D0F4772DE528B02CDB3A52F32919C7 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0239f21b-a697-4037-8971-039996de4f0c.roa Signing time: Fri 31 Oct 2025 01:13:15 +0000 ROA not before: Fri 31 Oct 2025 01:13:15 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3a82::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:18:38:63:b0:d0:f4:77:2d:e5:28:b0:2c:db:3a:52:f3:29:19:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 01:13:15 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=04c4172f3e316b1560c660e3fa4852e541cb9fcf13555da5c54727f3df2a468a, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ac:4d:9c:cf:45:00:f0:5e:96:b4:69:ea:d4: b6:97:6b:80:4a:f3:09:d9:07:55:6f:1e:e9:a3:20: 21:9a:bf:aa:c0:ab:63:ed:a2:36:10:cc:74:24:a4: 6d:06:b5:d1:db:03:35:5d:a7:40:5f:4e:09:ef:78: 45:3f:2d:c0:3f:94:dc:48:b2:f4:06:68:0c:90:37: 48:23:22:7d:2a:ab:a9:d0:a7:ef:bc:cc:8d:c0:3e: 22:6d:94:9f:9b:66:ae:85:09:36:82:13:94:8b:fb: c4:d5:c1:23:39:4c:4c:f9:24:9a:57:ff:2b:0e:10: 6d:99:13:51:fa:e0:1c:3d:6f:69:32:63:6f:f8:c9: 20:22:c7:47:9f:4f:81:b6:3c:78:eb:61:42:f5:ab: 5e:b9:68:73:cc:02:2d:4f:18:b1:26:e3:3b:fe:ff: ed:3a:8f:b3:d4:2b:71:e2:f0:06:34:6e:2d:e6:7c: 66:ba:e9:82:87:32:24:2c:c5:a8:7f:bf:48:c4:a4: c0:30:6a:b5:43:a3:41:9a:b6:b3:b7:12:a9:40:29: 56:57:a9:66:e1:61:1e:52:f6:f3:fc:6a:bb:9c:dc: ee:56:95:39:5e:78:fc:87:af:10:69:74:ad:c3:70: 68:84:3b:f9:18:12:84:b9:28:e3:55:e0:14:22:21: 5c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:DB:04:C9:10:92:5A:9C:CB:F1:76:2F:84:7F:A0:11:77:F2:FD:8F X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0239f21b-a697-4037-8971-039996de4f0c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3a82::/47 Signature Algorithm: sha256WithRSAEncryption 15:0f:f0:52:e4:91:10:5b:44:66:e0:40:3a:af:e2:b9:9c:ed: c1:63:60:70:27:56:e7:67:62:8c:b4:ff:8e:ac:28:22:12:cc: 25:5c:f3:b7:b7:94:9b:6a:8e:1c:bb:5e:5a:f0:36:03:97:04: 29:ba:56:78:23:84:8d:d6:94:d8:70:d0:de:10:d1:08:09:7c: 9e:de:61:4a:56:7d:2c:14:b0:f5:dc:9a:d0:91:bb:4c:0b:d5: 0f:bc:cb:d2:83:c4:fa:22:6a:bb:bc:97:9c:3c:45:eb:8a:bf: 85:24:83:f4:18:f1:84:3c:cc:49:3b:a9:e7:ca:04:a0:48:f6: 60:a0:5a:f2:97:f8:93:1f:42:c8:1b:2f:c0:78:31:66:30:f3: 00:cd:4b:7b:bd:43:f6:78:e9:40:3c:0f:0c:c8:9d:38:7d:75: 63:d8:0b:54:3e:d0:7a:14:8b:e3:c2:5d:e5:87:c8:80:fc:b4: bd:b7:9b:de:6d:f4:f8:29:78:3a:4d:6f:1d:fb:da:ce:6b:8b: 42:1d:3b:61:39:b2:a3:a5:2f:9b:11:d8:ed:f2:16:0f:b4:c5: 03:a8:04:5b:da:54:a2:be:6c:36:fb:02:17:e9:ad:8d:74:99: a2:1a:10:52:db:e1:f2:2c:df:06:77:86:79:fc:0d:cc:ee:ed: 41:fb:1d:82 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUxg4Y7DQ9Hct5SiwLNs6UvMpGccwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDExMzE1WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNGM0MTcyZjNlMzE2YjE1NjBjNjYwZTNmYTQ4NTJlNTQx Y2I5ZmNmMTM1NTVkYTVjNTQ3MjdmM2RmMmE0NjhhMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/rE2cz0UA8F6WtGnq1LaXa4BK8wnZB1VvHumjICGav6rA q2PtojYQzHQkpG0GtdHbAzVdp0BfTgnveEU/LcA/lNxIsvQGaAyQN0gjIn0qq6nQ p++8zI3APiJtlJ+bZq6FCTaCE5SL+8TVwSM5TEz5JJpX/ysOEG2ZE1H64Bw9b2ky Y2/4ySAix0efT4G2PHjrYUL1q165aHPMAi1PGLEm4zv+/+06j7PUK3Hi8AY0bi3m fGa66YKHMiQsxah/v0jEpMAwarVDo0GatrO3EqlAKVZXqWbhYR5S9vP8aruc3O5W lTleePyHrxBpdK3DcGiEO/kYEoS5KONV4BQiIVxVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUFNsEyRCSWpzL8XYvhH+gEXfy/Y8wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzAyMzlmMjFiLWE2OTctNDAzNy04OTcxLTAzOTk5NmRlNGYwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOoIwDQYJKoZIhvcNAQELBQADggEBABUP8FLkkRBbRGbgQDqv4rmc 7cFjYHAnVudnYoy0/46sKCISzCVc87e3lJtqjhy7XlrwNgOXBCm6VngjhI3WlNhw 0N4Q0QgJfJ7eYUpWfSwUsPXcmtCRu0wL1Q+8y9KDxPoiaru8l5w8ReuKv4Ukg/QY 8YQ8zEk7qefKBKBI9mCgWvKX+JMfQsgbL8B4MWYw8wDNS3u9Q/Z46UA8DwzInTh9 dWPYC1Q+0HoUi+PCXeWHyID8tL23m95t9PgpeDpNbx372s5ri0IdO2E5sqOlL5sR 2O3yFg+0xQOoBFvaVKK+bDb7AhfprY10maIaEFLb4fIs3wZ3hnn8Dczu7UH7HYI= -----END CERTIFICATE-----Generated at Wed Nov 5 09:28:06 2025 by rpki-client