$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/04d8f18c-0a52-4551-a82f-be905bae5a14.roa File: 04d8f18c-0a52-4551-a82f-be905bae5a14.roa (raw, json) Hash identifier: evGq17oS6C1MvJ8mXT3/G7eR7DKIwfBtAnFLtMNs9OA= Subject key identifier: 9F:66:01:CC:5B:ED:7E:08:8B:E7:5C:E9:B2:39:AE:57:EA:31:5B:29 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0FB283697F83375DE1478FF80129A8C2F6E64FCC Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/04d8f18c-0a52-4551-a82f-be905bae5a14.roa Signing time: Fri 31 Oct 2025 07:08:38 +0000 ROA not before: Fri 31 Oct 2025 07:08:38 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3f10::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:b2:83:69:7f:83:37:5d:e1:47:8f:f8:01:29:a8:c2:f6:e6:4f:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 07:08:38 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=8abae7ba969513f805cab058d01c2356583fab43a409ee64fc40fb2f07b8fce1, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:03:0e:63:82:d6:5b:e7:c9:6e:ff:df:64:ab: 8f:4d:8a:23:a9:70:3e:e3:5a:96:f6:9b:68:7d:ad: c7:9e:f6:6f:29:bd:20:57:f3:53:a0:91:6f:c1:04: 2f:16:05:6f:9a:41:cb:17:23:11:12:54:45:a1:d0: af:8e:e9:b2:a3:99:1c:5a:c1:84:5a:c3:40:a8:25: df:78:f9:4b:25:19:17:ae:1d:83:58:24:5a:a1:ea: cd:d2:f0:f8:fb:ff:ed:10:97:8b:f5:71:1d:68:f1: c3:c0:57:fa:1f:77:cb:4a:d5:e8:24:d4:79:37:1d: e3:0d:24:23:e8:99:9f:4c:b8:a6:f0:bb:34:4d:a7: bd:20:1a:be:b6:60:b9:2c:79:9b:57:c4:98:75:f3: 91:dc:45:fa:a9:c5:0b:e4:a6:db:8b:d2:d1:05:22: 2a:44:af:3a:13:06:15:04:8d:fc:68:aa:8c:e4:3e: 12:9f:eb:0e:8a:b6:4f:c3:4e:0b:0a:7a:a1:40:9e: da:38:2e:ad:59:db:fc:cf:d6:9c:3a:87:4a:8d:1a: a9:51:76:e7:8a:ad:59:d4:97:0e:a4:d8:51:b4:02: 66:a0:ea:a4:23:e5:f2:9b:05:f1:e2:44:3f:da:0d: b3:98:e6:80:7b:23:cc:da:75:65:98:9f:e5:46:25: 05:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:66:01:CC:5B:ED:7E:08:8B:E7:5C:E9:B2:39:AE:57:EA:31:5B:29 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/04d8f18c-0a52-4551-a82f-be905bae5a14.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3f10::/44 Signature Algorithm: sha256WithRSAEncryption 73:87:39:9c:e1:4f:b2:04:7a:f6:d7:a2:21:74:1e:e3:8e:6a: 3d:3b:14:e7:e9:e9:27:b0:9b:b6:cc:14:af:14:04:17:1d:b6: 72:0c:12:ad:0e:3b:25:06:9d:0f:e7:41:75:ee:d7:aa:e1:df: 6b:c5:41:36:24:88:32:82:8b:0b:5b:14:29:ca:14:43:4b:1b: ef:3f:44:ae:43:e4:0f:2f:40:8a:42:48:49:52:c2:28:ef:65: 38:e9:f5:80:19:55:45:20:83:1d:b5:66:95:d6:6c:9a:4d:5a: b7:79:bb:a8:65:9f:d6:7a:e7:bf:84:c3:d9:93:28:c4:86:11: 1c:3a:34:92:1c:bc:e0:23:54:7e:d3:57:fa:e9:6c:aa:d2:f5: f5:5f:bf:de:a0:4b:3d:2a:bd:05:86:bd:0d:93:26:b3:2c:72: 2c:b4:5a:96:79:de:22:5c:b3:b0:3a:ab:6c:b9:42:41:77:55: 2c:d5:b8:6a:d3:4a:60:28:f5:ed:2a:1a:04:27:b0:35:2a:13: 8e:e2:3e:7e:e1:8b:41:f9:61:2c:65:72:32:6a:a5:4e:d5:2c: f2:8c:c8:21:3f:d7:a6:64:cb:85:88:35:56:5d:c1:ad:44:01: 12:a3:87:f7:f6:82:58:5f:56:14:46:27:40:aa:84:a8:ea:46: 69:70:9b:64 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUD7KDaX+DN13hR4/4ASmowvbmT8wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDcwODM4WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YWJhZTdiYTk2OTUxM2Y4MDVjYWIwNThkMDFjMjM1NjU4 M2ZhYjQzYTQwOWVlNjRmYzQwZmIyZjA3YjhmY2UxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzAw5jgtZb58lu/99kq49NiiOpcD7jWpb2m2h9rcee9m8p vSBX81OgkW/BBC8WBW+aQcsXIxESVEWh0K+O6bKjmRxawYRaw0CoJd94+UslGReu HYNYJFqh6s3S8Pj7/+0Ql4v1cR1o8cPAV/ofd8tK1egk1Hk3HeMNJCPomZ9MuKbw uzRNp70gGr62YLkseZtXxJh185HcRfqpxQvkptuL0tEFIipErzoTBhUEjfxoqozk PhKf6w6Ktk/DTgsKeqFAnto4Lq1Z2/zP1pw6h0qNGqlRdueKrVnUlw6k2FG0Amag 6qQj5fKbBfHiRD/aDbOY5oB7I8zadWWYn+VGJQUBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUn2YBzFvtfgiL51zpsjmuV+oxWykwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzA0ZDhmMThjLTBhNTItNDU1MS1hODJmLWJlOTA1YmFlNWExNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAJAAPxAwDQYJKoZIhvcNAQELBQADggEBAHOHOZzhT7IEevbXoiF0HuOO aj07FOfp6Sewm7bMFK8UBBcdtnIMEq0OOyUGnQ/nQXXu16rh32vFQTYkiDKCiwtb FCnKFENLG+8/RK5D5A8vQIpCSElSwijvZTjp9YAZVUUggx21ZpXWbJpNWrd5u6hl n9Z657+Ew9mTKMSGERw6NJIcvOAjVH7TV/rpbKrS9fVfv96gSz0qvQWGvQ2TJrMs ciy0WpZ53iJcs7A6q2y5QkF3VSzVuGrTSmAo9e0qGgQnsDUqE47iPn7hi0H5YSxl cjJqpU7VLPKMyCE/16Zky4WINVZdwa1EARKjh/f2glhfVhRGJ0CqhKjqRmlwm2Q= -----END CERTIFICATE-----Generated at Wed Nov 5 07:46:49 2025 by rpki-client