$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/02ffce26-286e-4412-a8f5-62a0bebfae89.roa File: 02ffce26-286e-4412-a8f5-62a0bebfae89.roa (raw, json) Hash identifier: Q6v80mRyvY/u+RZrubpU6YU96w34WeuzK6iPlOLqmwg= Subject key identifier: FD:9E:DA:EE:12:56:E3:D9:3B:38:8E:F6:34:D2:2D:07:7D:7A:97:B4 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2BC79D40A9BD0CE0A5C4AB6EC1C6B878E3E2237B Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/02ffce26-286e-4412-a8f5-62a0bebfae89.roa Signing time: Fri 31 Oct 2025 01:56:31 +0000 ROA not before: Fri 31 Oct 2025 01:56:31 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3ec4::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:c7:9d:40:a9:bd:0c:e0:a5:c4:ab:6e:c1:c6:b8:78:e3:e2:23:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 01:56:31 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=bb44484756102fa636d5eed03e84b10e41119da02049869b28d2f4e55fee46aa, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:9e:e7:13:43:a0:73:ea:13:c2:2b:00:01:27: 4a:65:90:ed:bc:30:99:5b:0e:cc:71:a9:a6:2b:4d: 29:1b:b9:ec:56:db:32:a8:dc:67:19:dc:3c:2f:9e: 2b:bd:49:22:9a:0e:a1:25:b2:d3:c9:54:e3:d9:a0: e4:77:59:af:f3:11:48:ff:22:a3:63:1d:52:8f:1b: b2:9c:44:f1:0f:39:2b:ba:12:48:0c:c3:3e:3b:21: a1:ae:19:e2:c1:09:3e:c0:4c:10:2e:c0:61:84:aa: 4b:ce:93:1f:b9:f3:9a:fa:57:27:9a:2b:d3:34:22: 89:36:da:6f:99:2a:a3:91:05:b4:73:90:72:9d:e7: 5e:95:e6:94:4a:2e:91:03:95:e5:88:4d:c8:64:62: 9d:27:3a:b0:e9:7a:2d:3c:43:74:97:14:89:1b:f4: cd:fd:c4:6e:c1:6c:63:f7:a6:1b:db:5e:bf:ff:a7: dc:ed:33:15:ff:7b:39:e8:e4:1f:1c:f6:aa:e3:2a: 38:3b:1d:ca:9b:9a:08:fa:f1:9d:b8:48:cc:65:16: a7:4a:8d:a7:3e:37:64:ec:3d:7b:5b:97:3f:9f:e0: 9b:de:92:1f:2a:d5:71:0e:db:3b:63:a9:cb:17:4f: 76:72:b7:d4:25:9e:18:f6:b4:4d:4d:58:6f:07:e2: b0:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:9E:DA:EE:12:56:E3:D9:3B:38:8E:F6:34:D2:2D:07:7D:7A:97:B4 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/02ffce26-286e-4412-a8f5-62a0bebfae89.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3ec4::/47 Signature Algorithm: sha256WithRSAEncryption 4f:a9:5d:f9:8d:4a:7e:d0:f3:38:a3:45:55:dd:22:28:87:57: 18:f5:20:d8:09:a2:21:f4:61:1d:62:d2:3e:64:5f:9b:f8:cd: 71:c8:b6:e2:4f:80:3c:96:e6:85:1c:c6:57:3f:f3:4e:23:70: 97:79:b6:39:10:42:04:9d:1e:e7:3f:4d:a3:83:9c:1e:c9:c3: 8c:9d:6b:d6:14:75:a9:00:27:c4:8a:25:7c:10:8e:b0:f0:52: ae:82:f3:52:fc:60:4b:8c:99:90:db:5e:53:52:36:30:27:0f: 57:c8:aa:b6:9f:3a:a0:b4:35:31:bd:b3:52:57:45:a2:50:fa: 94:d4:fd:a3:9b:8d:a7:ba:f8:40:a7:56:76:08:26:10:7e:16: 75:d9:5c:19:81:4c:49:0a:68:2b:c7:4d:51:7d:70:1c:22:31: 41:3d:1e:1a:fa:10:e6:be:9e:34:45:c4:93:77:55:7a:a2:ac: 52:e0:31:31:7a:26:f8:53:b3:26:e9:93:9f:17:4e:24:d5:01: 95:df:f1:b5:8d:d2:0d:aa:d8:6a:aa:20:c4:37:6a:33:53:4c: bb:5a:e0:72:9f:7e:db:8a:a2:31:3f:bf:26:20:76:2e:47:50: fe:d9:b8:f3:1b:8d:31:a9:ab:4f:93:32:c3:5e:11:cb:69:93: 27:83:9e:01 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUK8edQKm9DOClxKtuwca4eOPiI3swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDE1NjMxWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYjQ0NDg0NzU2MTAyZmE2MzZkNWVlZDAzZTg0YjEwZTQx MTE5ZGEwMjA0OTg2OWIyOGQyZjRlNTVmZWU0NmFhMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDnnucTQ6Bz6hPCKwABJ0plkO28MJlbDsxxqaYrTSkbuexW 2zKo3GcZ3Dwvniu9SSKaDqElstPJVOPZoOR3Wa/zEUj/IqNjHVKPG7KcRPEPOSu6 EkgMwz47IaGuGeLBCT7ATBAuwGGEqkvOkx+585r6VyeaK9M0Iok22m+ZKqORBbRz kHKd516V5pRKLpEDleWITchkYp0nOrDpei08Q3SXFIkb9M39xG7BbGP3phvbXr// p9ztMxX/ezno5B8c9qrjKjg7Hcqbmgj68Z24SMxlFqdKjac+N2TsPXtblz+f4Jve kh8q1XEO2ztjqcsXT3Zyt9Qlnhj2tE1NWG8H4rCVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU/Z7a7hJW49k7OI72NNItB316l7QwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzAyZmZjZTI2LTI4NmUtNDQxMi1hOGY1LTYyYTBiZWJmYWU4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAPsQwDQYJKoZIhvcNAQELBQADggEBAE+pXfmNSn7Q8zijRVXdIiiH Vxj1INgJoiH0YR1i0j5kX5v4zXHItuJPgDyW5oUcxlc/804jcJd5tjkQQgSdHuc/ TaODnB7Jw4yda9YUdakAJ8SKJXwQjrDwUq6C81L8YEuMmZDbXlNSNjAnD1fIqraf OqC0NTG9s1JXRaJQ+pTU/aObjae6+ECnVnYIJhB+FnXZXBmBTEkKaCvHTVF9cBwi MUE9Hhr6EOa+njRFxJN3VXqirFLgMTF6JvhTsybpk58XTiTVAZXf8bWN0g2q2Gqq IMQ3ajNTTLta4HKfftuKojE/vyYgdi5HUP7ZuPMbjTGpq0+TMsNeEctpkyeDngE= -----END CERTIFICATE-----Generated at Wed Nov 5 12:57:17 2025 by rpki-client