$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/066b1d04-099d-477e-8504-df088d5f3183.roa File: 066b1d04-099d-477e-8504-df088d5f3183.roa (raw, json) Hash identifier: 77/RDh3yw0tJZJ3sM05uSScdPhpUA30I+ZaEy+Rp1+4= Subject key identifier: 0C:54:7E:38:BD:3C:2F:20:F8:54:6F:30:BF:D4:64:96:AF:83:B0:A6 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3690EE2CC6036DC6ADE71579439F80BF72F07C98 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/066b1d04-099d-477e-8504-df088d5f3183.roa Signing time: Fri 31 Oct 2025 07:53:53 +0000 ROA not before: Fri 31 Oct 2025 07:53:53 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:90:ee:2c:c6:03:6d:c6:ad:e7:15:79:43:9f:80:bf:72:f0:7c:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 07:53:53 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=beb4d48083cbe2890044d5a5757f3043353688626381f2ae7948f32deb29f975, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5c:ad:d2:40:42:d3:df:d9:ae:19:cb:1c:b4: 91:a0:4a:b2:74:ea:6e:d3:20:05:86:f6:d8:6c:e8: 9f:d4:49:57:00:d0:c6:b9:4e:0d:4d:42:10:f7:b9: 7f:43:24:bd:fc:38:a2:20:2c:1a:e1:16:01:49:d7: 90:65:5a:a2:f9:5a:01:bd:b2:91:12:6d:d1:7f:1d: 3d:85:b6:69:54:be:e9:1b:65:66:71:b8:79:77:aa: 9f:49:29:64:25:84:bf:a4:19:e4:69:7d:2d:10:4e: e5:22:35:78:3f:dd:dd:48:35:06:33:bc:8e:ff:cc: 18:fe:f2:4f:db:5e:53:41:25:9f:f9:65:7c:54:4f: ad:28:e9:09:28:a6:78:a6:c3:a6:4c:e5:fd:24:08: 0d:d8:df:e1:44:2a:bc:12:f6:ff:85:33:18:cb:0f: 72:5e:3a:fc:94:94:15:16:b1:0e:5a:ec:aa:a5:b1: d3:3e:3b:e4:c0:04:a4:4a:96:32:4d:c9:c0:66:21: ec:03:e8:0b:b6:3e:16:a2:e4:d5:b3:47:7c:f1:e2: 39:35:ae:52:0e:75:7e:25:90:10:32:e6:fa:11:83: 6a:91:17:35:7c:a1:0f:b8:a7:c7:57:62:00:e4:98: 78:af:97:8f:d3:61:39:80:9a:fc:1d:2a:1d:62:3f: b6:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:54:7E:38:BD:3C:2F:20:F8:54:6F:30:BF:D4:64:96:AF:83:B0:A6 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/066b1d04-099d-477e-8504-df088d5f3183.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3200::/40 Signature Algorithm: sha256WithRSAEncryption b8:6d:10:b8:d5:65:30:55:9e:fd:4d:1f:62:e1:74:d6:c7:d9: ed:67:ae:a7:81:e2:83:66:57:9d:69:da:cf:99:19:10:b0:89: 9e:cd:8d:86:4f:2d:2b:fb:24:19:f3:37:b5:8d:50:58:5e:a8: 42:18:7f:43:66:1c:58:2b:62:33:48:81:72:97:b1:80:1b:e7: ae:2a:52:ac:2f:bb:d8:85:5e:5b:2f:41:c9:75:dc:dd:37:9c: 6a:6a:e4:4d:8a:00:da:33:c0:1d:8d:fd:58:4e:db:d7:f8:52: ec:0d:c1:4e:c8:00:06:e5:8a:01:41:32:d5:ed:ea:23:c7:d2: 3e:bf:1f:e0:99:48:36:8a:51:7f:65:66:87:1a:27:55:fb:25: 00:f4:8f:47:b0:48:71:2b:73:b3:fb:df:64:ab:88:91:e3:0e: d0:59:d8:a4:f2:fa:9a:46:2a:6b:50:63:fe:3b:0f:56:5d:f3: 06:09:1d:d5:b2:45:c0:e2:fa:99:24:e7:92:9b:78:19:59:e9: 35:79:47:7c:03:68:6b:31:b9:f1:d9:3c:97:d6:ac:d8:2c:f8: f5:6b:26:f0:04:90:61:94:f5:c4:50:f5:1b:02:67:f5:86:c1: 39:84:b7:1e:36:42:70:68:d2:89:86:ec:93:37:9b:14:77:35: c4:e6:4b:69 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUNpDuLMYDbcat5xV5Q5+Av3LwfJgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDc1MzUzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZWI0ZDQ4MDgzY2JlMjg5MDA0NGQ1YTU3NTdmMzA0MzM1 MzY4ODYyNjM4MWYyYWU3OTQ4ZjMyZGViMjlmOTc1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2XK3SQELT39muGcsctJGgSrJ06m7TIAWG9ths6J/USVcA 0Ma5Tg1NQhD3uX9DJL38OKIgLBrhFgFJ15BlWqL5WgG9spESbdF/HT2FtmlUvukb ZWZxuHl3qp9JKWQlhL+kGeRpfS0QTuUiNXg/3d1INQYzvI7/zBj+8k/bXlNBJZ/5 ZXxUT60o6Qkopnimw6ZM5f0kCA3Y3+FEKrwS9v+FMxjLD3JeOvyUlBUWsQ5a7Kql sdM+O+TABKRKljJNycBmIewD6Au2Phai5NWzR3zx4jk1rlIOdX4lkBAy5voRg2qR FzV8oQ+4p8dXYgDkmHivl4/TYTmAmvwdKh1iP7YBAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUDFR+OL08LyD4VG8wv9Rklq+DsKYwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzA2NmIxZDA0LTA5OWQtNDc3ZS04NTA0LWRmMDg4ZDVmMzE4My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAJAAMjANBgkqhkiG9w0BAQsFAAOCAQEAuG0QuNVlMFWe/U0fYuF01sfZ 7Weup4Hig2ZXnWnaz5kZELCJns2Nhk8tK/skGfM3tY1QWF6oQhh/Q2YcWCtiM0iB cpexgBvnripSrC+72IVeWy9ByXXc3TecamrkTYoA2jPAHY39WE7b1/hS7A3BTsgA BuWKAUEy1e3qI8fSPr8f4JlINopRf2VmhxonVfslAPSPR7BIcStzs/vfZKuIkeMO 0FnYpPL6mkYqa1Bj/jsPVl3zBgkd1bJFwOL6mSTnkpt4GVnpNXlHfANoazG58dk8 l9as2Cz49Wsm8ASQYZT1xFD1GwJn9YbBOYS3HjZCcGjSiYbskzebFHc1xOZLaQ== -----END CERTIFICATE-----Generated at Wed Nov 5 10:54:42 2025 by rpki-client