$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/065acdf0-1fed-4d13-8818-ed60be560900.roa File: 065acdf0-1fed-4d13-8818-ed60be560900.roa (raw, json) Hash identifier: KS+ugQdUVwKT+cT0gij51QCevThGPrxg/pNZz6fMkOA= Subject key identifier: 9A:42:3D:99:37:9B:06:C4:E7:46:72:95:B3:9D:6F:BD:09:2F:40:06 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 096205BD44F02CFAAC6665312CDC172B60D713EF Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/065acdf0-1fed-4d13-8818-ed60be560900.roa Signing time: Thu 30 Oct 2025 23:43:57 +0000 ROA not before: Thu 30 Oct 2025 23:43:57 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2f46::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:62:05:bd:44:f0:2c:fa:ac:66:65:31:2c:dc:17:2b:60:d7:13:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 23:43:57 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=ad6d79320adbd0b7b85577bada5de4d83ede53ff0deeca0c75b9112fdb3781cb, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b3:e6:3b:2a:a4:19:f5:5e:2a:f6:cd:6a:8d: 74:96:71:4b:56:02:fe:a4:d0:a9:22:f1:2d:97:26: 41:d4:15:51:fd:98:a1:23:cf:a7:9e:7f:33:aa:63: 8d:f0:cd:64:8d:42:0d:a6:91:a7:dd:df:b8:54:bc: 22:f7:ee:88:c9:a8:51:13:16:6f:83:b9:0d:bb:41: 08:2d:9e:f5:a5:b5:cd:ad:98:14:55:36:ab:33:17: 9e:d0:ed:77:0e:10:2c:9d:38:13:7c:1e:a2:71:4a: 05:8c:9a:1b:0f:5c:27:b2:30:17:d8:27:36:2f:19: 6f:17:8b:ad:7e:44:c7:f5:1b:ce:20:f7:42:01:4b: 91:66:0c:40:85:69:44:bd:13:e4:59:88:75:e5:94: 25:f8:04:f0:f7:98:6a:fe:81:92:f2:85:37:d6:84: b3:ec:41:e3:53:94:7c:c4:11:fb:cc:1b:56:cc:43: 88:98:30:4a:d6:c5:54:27:ae:8a:fd:2d:ce:81:7b: 98:c5:09:b8:55:e4:55:40:ed:f7:0b:e9:66:77:de: 7f:2a:fd:08:f9:c6:42:dd:5e:8a:c2:5d:b8:8f:87: 92:90:bd:0b:36:2c:36:20:a5:39:27:20:13:b2:4f: 77:46:88:eb:87:21:62:91:07:00:ee:57:4e:40:bb: f3:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:42:3D:99:37:9B:06:C4:E7:46:72:95:B3:9D:6F:BD:09:2F:40:06 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/065acdf0-1fed-4d13-8818-ed60be560900.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2f46::/47 Signature Algorithm: sha256WithRSAEncryption 85:e1:ac:09:2f:21:0b:db:7a:a9:59:1f:d4:a3:1e:dc:ce:1f: 27:ba:57:03:07:c6:c6:de:4d:ce:b8:eb:43:54:5d:c0:48:6d: cf:ef:2f:11:67:e4:38:70:15:c5:1c:e7:ab:98:7b:c3:8d:ea: fb:47:09:fc:71:a9:9e:b7:fd:b0:51:db:b1:49:be:c1:48:f3: 75:4f:3b:73:82:43:16:90:09:40:5e:82:2b:5e:fa:02:19:30: 7b:2c:eb:86:b6:8e:33:6f:38:3a:0c:13:b2:02:d2:17:3d:be: cc:b1:bc:75:b4:2e:b9:1f:f7:78:fe:96:31:38:01:07:e9:02: 0b:3b:8e:b3:31:0b:50:20:23:67:97:78:8a:1f:2c:71:ea:06: 86:e3:b5:a9:5a:97:1c:ab:15:74:f9:ee:2d:53:ba:d6:fd:32: 0b:57:d1:08:94:bb:17:76:24:e2:00:46:09:f4:ed:f0:44:05: ba:dd:77:85:00:97:6d:1b:ce:49:34:99:fb:d8:c8:b7:2b:66: a8:11:b4:cf:1a:6a:d1:35:13:70:30:86:7c:94:01:58:e4:d9: a9:c7:2f:63:76:56:52:26:a3:07:51:65:e0:2b:7c:28:e3:ca: ef:4c:06:36:e5:7a:21:6d:57:21:4d:3e:f3:c8:d9:79:17:fa: dd:5e:2e:10 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCWIFvUTwLPqsZmUxLNwXK2DXE+8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjM0MzU3WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZDZkNzkzMjBhZGJkMGI3Yjg1NTc3YmFkYTVkZTRkODNl ZGU1M2ZmMGRlZWNhMGM3NWI5MTEyZmRiMzc4MWNiMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgs+Y7KqQZ9V4q9s1qjXSWcUtWAv6k0Kki8S2XJkHUFVH9 mKEjz6eefzOqY43wzWSNQg2mkafd37hUvCL37ojJqFETFm+DuQ27QQgtnvWltc2t mBRVNqszF57Q7XcOECydOBN8HqJxSgWMmhsPXCeyMBfYJzYvGW8Xi61+RMf1G84g 90IBS5FmDECFaUS9E+RZiHXllCX4BPD3mGr+gZLyhTfWhLPsQeNTlHzEEfvMG1bM Q4iYMErWxVQnror9Lc6Be5jFCbhV5FVA7fcL6WZ33n8q/Qj5xkLdXorCXbiPh5KQ vQs2LDYgpTknIBOyT3dGiOuHIWKRBwDuV05Au/ORAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUmkI9mTebBsTnRnKVs51vvQkvQAYwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzA2NWFjZGYwLTFmZWQtNGQxMy04ODE4LWVkNjBiZTU2MDkwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAL0YwDQYJKoZIhvcNAQELBQADggEBAIXhrAkvIQvbeqlZH9SjHtzO Hye6VwMHxsbeTc6460NUXcBIbc/vLxFn5DhwFcUc56uYe8ON6vtHCfxxqZ63/bBR 27FJvsFI83VPO3OCQxaQCUBegite+gIZMHss64a2jjNvODoME7IC0hc9vsyxvHW0 Lrkf93j+ljE4AQfpAgs7jrMxC1AgI2eXeIofLHHqBobjtalalxyrFXT57i1Tutb9 MgtX0QiUuxd2JOIARgn07fBEBbrdd4UAl20bzkk0mfvYyLcrZqgRtM8aatE1E3Aw hnyUAVjk2anHL2N2VlImowdRZeArfCjjyu9MBjbleiFtVyFNPvPI2XkX+t1eLhA= -----END CERTIFICATE-----Generated at Wed Nov 5 09:05:29 2025 by rpki-client