$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/02cde75b-112b-4985-adbd-b8c1a60e7853.roa File: 02cde75b-112b-4985-adbd-b8c1a60e7853.roa (raw, json) Hash identifier: hwMDFj8aqiSh59WUuYSvNvjd/mlgi7sQjkgxMloCsus= Subject key identifier: B9:31:B7:A1:77:2F:EC:EB:A6:CD:8F:2B:91:D7:98:01:A1:5A:9B:08 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0B22233A6D79D0F84824401F5E28741C479BF240 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/02cde75b-112b-4985-adbd-b8c1a60e7853.roa Signing time: Fri 31 Oct 2025 03:56:36 +0000 ROA not before: Fri 31 Oct 2025 03:56:36 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3240::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:22:23:3a:6d:79:d0:f8:48:24:40:1f:5e:28:74:1c:47:9b:f2:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 03:56:36 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=4c62368c3dedf6d93b9576cb1ac799f4b5700bd41979a79f44edccfd976cb085, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ec:dc:31:cf:86:99:67:fd:e9:c4:bd:73:92: 65:53:96:4d:b9:50:36:17:a9:28:3f:b8:5d:d9:94: 75:36:5a:2c:29:58:e9:a3:74:8d:77:0e:89:8d:49: 83:72:bb:05:c0:08:f1:db:55:fb:c5:31:fc:8a:01: 2f:5b:99:74:db:cf:84:18:5e:aa:f0:88:dc:a3:df: 8a:fe:c0:91:d8:96:a4:0e:14:69:11:13:50:e8:8d: 6e:cb:a4:f9:fd:16:95:64:e0:ff:75:63:83:cd:d4: 6f:f4:8a:56:37:93:f7:c6:0a:6b:6c:c8:cf:ac:65: 2f:c1:52:1c:75:23:a2:37:a0:ee:3c:42:1f:15:db: 62:79:c8:a8:67:a0:d9:1e:3a:5a:11:64:9c:dc:e9: a1:84:6f:5e:85:31:b8:73:dd:23:11:19:1e:b6:2b: 61:5b:92:d4:22:8a:3c:36:22:2b:c1:a5:bf:33:20: fa:57:15:ce:7c:44:4f:30:85:5c:1d:3c:d9:a6:49: db:d3:1b:0b:2d:e0:45:43:2a:31:59:3e:c5:6b:f4: af:6d:18:5a:da:33:71:28:54:5e:69:cc:bc:c8:6c: c9:b9:aa:d3:6e:3b:3e:fa:cb:51:6d:72:35:ad:ce: 97:c4:89:51:33:bc:9f:39:98:d2:0b:6c:1f:a9:88: 4d:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:31:B7:A1:77:2F:EC:EB:A6:CD:8F:2B:91:D7:98:01:A1:5A:9B:08 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/02cde75b-112b-4985-adbd-b8c1a60e7853.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3240::/46 Signature Algorithm: sha256WithRSAEncryption 04:d5:d4:6c:e9:04:0a:d3:36:16:f2:a1:49:d2:1e:ef:74:f3: e0:51:2f:59:7f:11:f4:9a:16:ac:b1:cb:42:66:e0:1e:df:a6: e2:e0:af:76:4f:96:d8:5a:26:18:04:f1:88:6f:45:21:56:a3: 55:b3:04:38:55:e2:89:53:c5:7a:d7:81:f5:0a:1b:4f:bc:8c: e0:fe:60:1b:f9:72:dc:9b:5a:e6:bf:6c:42:e4:23:76:a5:25: 0b:90:7c:cc:78:19:75:8d:1d:3c:23:1d:bb:28:82:2e:37:93: e4:49:a2:69:60:85:c7:62:f0:b8:9f:f4:2b:e0:70:04:d2:32: d1:12:6a:95:a5:4a:be:05:22:a3:25:b4:e8:25:38:ab:b8:dd: 07:7e:ba:4b:80:90:14:f2:87:ac:f2:e9:67:dd:6c:cc:4c:fb: 42:8a:ad:38:d9:52:b4:79:6f:2a:38:af:a0:b9:68:6d:40:c0: a1:78:e4:cd:32:3b:33:44:31:3f:5a:d3:23:d3:48:f8:3f:e6: e5:54:dc:ce:bc:63:bb:dd:2c:40:31:d4:5b:eb:6e:3a:2d:96: 36:97:df:65:dd:c6:23:36:48:7e:38:25:ed:a7:2e:59:d0:05: 31:7d:dc:45:f7:2a:4f:76:50:5a:e1:f0:80:1a:26:d8:aa:80: f1:60:ef:c6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCyIjOm150PhIJEAfXih0HEeb8kAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDM1NjM2WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YzYyMzY4YzNkZWRmNmQ5M2I5NTc2Y2IxYWM3OTlmNGI1 NzAwYmQ0MTk3OWE3OWY0NGVkY2NmZDk3NmNiMDg1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDX7Nwxz4aZZ/3pxL1zkmVTlk25UDYXqSg/uF3ZlHU2Wiwp WOmjdI13DomNSYNyuwXACPHbVfvFMfyKAS9bmXTbz4QYXqrwiNyj34r+wJHYlqQO FGkRE1DojW7LpPn9FpVk4P91Y4PN1G/0ilY3k/fGCmtsyM+sZS/BUhx1I6I3oO48 Qh8V22J5yKhnoNkeOloRZJzc6aGEb16FMbhz3SMRGR62K2FbktQiijw2IivBpb8z IPpXFc58RE8whVwdPNmmSdvTGwst4EVDKjFZPsVr9K9tGFraM3EoVF5pzLzIbMm5 qtNuOz76y1FtcjWtzpfEiVEzvJ85mNILbB+piE0hAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUuTG3oXcv7OumzY8rkdeYAaFamwgwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzAyY2RlNzViLTExMmItNDk4NS1hZGJkLWI4YzFhNjBlNzg1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAMkAwDQYJKoZIhvcNAQELBQADggEBAATV1GzpBArTNhbyoUnSHu90 8+BRL1l/EfSaFqyxy0Jm4B7fpuLgr3ZPlthaJhgE8YhvRSFWo1WzBDhV4olTxXrX gfUKG0+8jOD+YBv5ctybWua/bELkI3alJQuQfMx4GXWNHTwjHbsogi43k+RJomlg hcdi8Lif9CvgcATSMtESapWlSr4FIqMltOglOKu43Qd+ukuAkBTyh6zy6WfdbMxM +0KKrTjZUrR5byo4r6C5aG1AwKF45M0yOzNEMT9a0yPTSPg/5uVU3M68Y7vdLEAx 1FvrbjotljaX32XdxiM2SH44Je2nLlnQBTF93EX3Kk92UFrh8IAaJtiqgPFg78Y= -----END CERTIFICATE-----Generated at Wed Nov 5 07:46:18 2025 by rpki-client