$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/036896f6-30b5-45b4-9d17-19054e93e23d.roa File: 036896f6-30b5-45b4-9d17-19054e93e23d.roa (raw, json) Hash identifier: ZMIluEbpgLu7PFqSvv+5/Qo1BF07723WU2/8k/vl1Pg= Subject key identifier: 01:7E:FA:72:FC:84:74:FD:6C:34:F8:69:2C:32:1C:64:A7:26:45:68 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 1306D9719D9236043AF810F35D2103249845D300 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/036896f6-30b5-45b4-9d17-19054e93e23d.roa Signing time: Thu 30 Oct 2025 20:27:26 +0000 ROA not before: Thu 30 Oct 2025 20:27:26 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:27ed::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:06:d9:71:9d:92:36:04:3a:f8:10:f3:5d:21:03:24:98:45:d3:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 20:27:26 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=ab96970d10186c54d384bf544bd93ae2e2ee899d39fd89c91d5b1a618efeaa74, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:79:2e:db:50:be:d3:32:6d:22:14:7f:53:20: b3:05:4b:c3:72:2e:5f:03:cb:94:01:93:88:27:34: 1f:59:a8:3c:5a:87:a3:1c:ba:57:9a:30:60:dc:84: 08:12:e3:9e:6b:01:49:eb:d2:27:f3:61:ea:e4:9c: 7a:59:ff:96:b6:07:a0:68:66:be:d2:a6:40:9d:3e: 76:a2:ae:cd:fd:48:28:a0:df:a3:1d:1e:c6:02:8d: bf:6d:b1:eb:f0:f6:eb:21:ff:be:05:ef:89:11:89: 06:d6:e3:43:00:68:b4:e9:fd:f3:13:f7:95:bf:a3: 14:cb:fe:5c:2b:69:2f:ba:9a:5f:c4:9b:7d:f1:e4: ea:37:c0:0a:02:a0:cf:ac:a9:84:8f:23:a0:85:47: df:76:1c:cb:3a:62:bf:74:81:96:3a:bb:02:05:4e: 7f:97:c9:11:da:9b:ce:6f:b0:52:56:f3:b8:6a:21: c1:7f:45:33:c5:1d:cd:ea:4d:e6:8b:44:12:6c:b8: 10:eb:5a:49:ad:f4:e7:84:80:2a:04:01:75:d6:ad: f0:4a:66:83:db:ed:99:63:74:67:28:ac:58:9f:bc: 03:f9:b1:85:0c:c6:a8:c6:9d:07:7f:14:a1:2d:94: eb:49:75:c1:38:b2:d1:c9:3d:b3:fb:59:73:21:ca: aa:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:7E:FA:72:FC:84:74:FD:6C:34:F8:69:2C:32:1C:64:A7:26:45:68 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/036896f6-30b5-45b4-9d17-19054e93e23d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:27ed::/48 Signature Algorithm: sha256WithRSAEncryption 65:bf:33:ee:dd:da:8b:4a:aa:f3:e6:b2:ea:b1:54:31:d1:92: 27:68:e3:e7:d1:f8:14:98:2c:28:27:fc:0f:b9:c1:ca:02:74: 89:8a:3a:76:3d:45:c4:bc:a1:c7:df:d3:cc:5a:12:c7:7d:d9: a9:90:96:29:4b:6c:5f:0e:83:89:d6:89:4e:0d:52:35:0d:bd: 76:27:72:f8:90:62:aa:22:d8:33:05:98:af:f5:a3:8f:a6:a6: 89:80:bf:53:d1:5e:14:74:ec:a9:43:78:33:17:4a:3f:52:c5: ef:f5:8e:8d:f0:8d:e3:55:b5:23:46:d1:e8:d2:8b:d5:94:7d: 50:3f:92:1d:7e:e2:f2:6d:7e:49:75:36:b1:10:6a:05:d6:33: 6e:d2:7b:36:f1:99:9d:c1:a6:a9:87:35:b7:41:63:42:72:f9: 28:e7:c1:1b:30:9e:51:83:b6:ff:ff:dd:fc:a2:35:a5:01:20: b8:32:53:61:ff:96:c7:67:9b:c7:5a:1b:68:33:f8:b5:bc:20: 80:71:7b:44:bf:0d:a4:a3:0a:75:6e:54:e0:37:05:3d:ab:22: 29:d3:39:06:e9:f4:55:7e:ef:e2:8c:e1:4c:f4:8f:47:49:6b: 53:68:cf:6d:25:26:cb:ea:28:41:72:70:60:d8:c7:48:72:ca: 1d:6b:6a:78 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEwbZcZ2SNgQ6+BDzXSEDJJhF0wAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjAyNzI2WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYjk2OTcwZDEwMTg2YzU0ZDM4NGJmNTQ0YmQ5M2FlMmUy ZWU4OTlkMzlmZDg5YzkxZDViMWE2MThlZmVhYTc0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1eS7bUL7TMm0iFH9TILMFS8NyLl8Dy5QBk4gnNB9ZqDxa h6MculeaMGDchAgS455rAUnr0ifzYerknHpZ/5a2B6BoZr7SpkCdPnairs39SCig 36MdHsYCjb9tsevw9ush/74F74kRiQbW40MAaLTp/fMT95W/oxTL/lwraS+6ml/E m33x5Oo3wAoCoM+sqYSPI6CFR992HMs6Yr90gZY6uwIFTn+XyRHam85vsFJW87hq IcF/RTPFHc3qTeaLRBJsuBDrWkmt9OeEgCoEAXXWrfBKZoPb7ZljdGcorFifvAP5 sYUMxqjGnQd/FKEtlOtJdcE4stHJPbP7WXMhyqq3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUAX76cvyEdP1sNPhpLDIcZKcmRWgwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzAzNjg5NmY2LTMwYjUtNDViNC05ZDE3LTE5MDU0ZTkzZTIzZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAJAAJ+0wDQYJKoZIhvcNAQELBQADggEBAGW/M+7d2otKqvPmsuqxVDHR kido4+fR+BSYLCgn/A+5wcoCdImKOnY9RcS8ocff08xaEsd92amQlilLbF8Og4nW iU4NUjUNvXYncviQYqoi2DMFmK/1o4+mpomAv1PRXhR07KlDeDMXSj9Sxe/1jo3w jeNVtSNG0ejSi9WUfVA/kh1+4vJtfkl1NrEQagXWM27SezbxmZ3BpqmHNbdBY0Jy +SjnwRswnlGDtv//3fyiNaUBILgyU2H/lsdnm8daG2gz+LW8IIBxe0S/DaSjCnVu VOA3BT2rIinTOQbp9FV+7+KM4Uz0j0dJa1Noz20lJsvqKEFycGDYx0hyyh1rang= -----END CERTIFICATE-----Generated at Wed Nov 5 07:38:51 2025 by rpki-client