$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/07ddc39a-0de5-4776-9478-6e0891131342.roa File: 07ddc39a-0de5-4776-9478-6e0891131342.roa (raw, json) Hash identifier: OwJsZpcxowRnRyNiO+1j2NuzQt50VviGc1QhDGhEfI8= Subject key identifier: 40:15:28:C1:DA:99:44:DE:3A:C8:DE:90:2A:C4:92:90:F5:78:D5:CB Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 08FD14C5B4AC9774C95BA4388FB9455C75CCACDE Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/07ddc39a-0de5-4776-9478-6e0891131342.roa Signing time: Thu 30 Oct 2025 23:22:05 +0000 ROA not before: Thu 30 Oct 2025 23:22:05 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2c8e::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:fd:14:c5:b4:ac:97:74:c9:5b:a4:38:8f:b9:45:5c:75:cc:ac:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 23:22:05 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=47ac0e29b60e01cf1ad1793d16d680d6b215e9e90820d89abc6ded09b2244223, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:1d:13:61:be:d8:5f:c5:57:24:b0:d8:f7:c5: ba:7c:93:13:14:76:ed:a2:f2:1f:d7:3d:63:05:24: d7:cd:d6:82:cb:5e:9b:eb:a8:28:b7:ad:2b:f0:6f: 25:8f:bf:cd:80:de:6c:e8:25:47:9e:eb:5c:8b:d5: 22:dc:9e:e6:fe:65:84:81:52:b1:c8:1b:89:8f:57: 2d:02:14:39:3d:e2:30:87:54:a2:1e:c6:b9:5d:d2: 89:dc:e6:45:2b:f8:ac:92:3e:cd:b8:f6:9f:ae:64: 2d:f5:d3:e0:57:6c:72:b2:27:e4:60:fa:e0:a6:ab: 3d:fe:b0:04:0e:07:b9:e9:f1:e6:d7:30:d4:80:8e: 37:df:c8:47:17:7a:1a:2d:16:32:31:1b:8a:55:61: cf:eb:fd:2d:af:9f:75:6a:8b:8e:38:a4:bc:8d:42: 1f:e2:d7:66:a8:95:35:bc:3b:a8:ac:bc:6b:9e:e8: 99:10:06:ed:a8:14:19:71:63:f3:c4:15:0b:b8:82: 06:26:b4:0d:9d:6e:c5:bb:7b:d8:36:b6:99:b4:ee: f7:39:e8:c1:39:42:e4:8e:c5:7f:50:4f:29:78:df: a2:f8:4c:b3:b6:7a:6a:c1:35:19:a3:a0:1b:e1:a0: 81:64:af:af:e6:bb:a8:03:fc:18:30:99:56:1a:ac: 90:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:15:28:C1:DA:99:44:DE:3A:C8:DE:90:2A:C4:92:90:F5:78:D5:CB X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/07ddc39a-0de5-4776-9478-6e0891131342.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2c8e::/47 Signature Algorithm: sha256WithRSAEncryption 23:2d:55:84:6b:79:7d:fe:f7:6e:e9:53:e8:65:07:a0:04:24: 81:19:3e:07:24:26:de:a9:90:0b:6a:08:50:70:1c:48:e7:29: e8:7b:88:34:b8:5f:55:f6:da:71:62:61:2f:bd:2c:8e:0a:ec: a9:1a:df:a1:c3:53:7b:7d:13:09:c1:a4:e8:7d:a7:1d:a6:b1: 81:a0:63:07:57:65:08:1f:f8:ff:c5:65:3e:d2:b7:30:59:de: 8e:fe:de:6c:aa:ee:0d:af:b7:ea:00:f8:f9:94:16:a8:4b:e7: a0:41:fe:4c:3c:17:3c:02:76:17:f5:c4:20:33:a5:ad:5c:29: aa:e5:7c:2e:7b:2a:77:cb:19:d2:76:0d:09:bf:c7:7d:f6:01: 3e:f6:03:ed:b9:f3:bc:ac:8b:aa:72:b8:de:52:f5:05:bc:7a: cb:71:2e:ba:50:a6:8d:20:08:3d:ba:31:c0:dd:ca:42:62:04: 45:d4:0b:8c:f0:6a:94:51:52:8a:fc:50:79:dd:cf:6c:c0:87: b1:24:1b:63:c2:ee:2c:ea:01:cb:79:c9:f1:00:cd:fb:37:e9: 0d:56:f9:17:e3:a3:99:80:93:fb:14:3b:9d:81:da:9f:df:47: c5:0d:f5:33:c2:f8:88:fc:d2:09:02:8c:b3:73:3b:3f:d7:b6: 52:28:ed:c1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCP0UxbSsl3TJW6Q4j7lFXHXMrN4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjMyMjA1WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0N2FjMGUyOWI2MGUwMWNmMWFkMTc5M2QxNmQ2ODBkNmIy MTVlOWU5MDgyMGQ4OWFiYzZkZWQwOWIyMjQ0MjIzMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkHRNhvthfxVcksNj3xbp8kxMUdu2i8h/XPWMFJNfN1oLL XpvrqCi3rSvwbyWPv82A3mzoJUee61yL1SLcnub+ZYSBUrHIG4mPVy0CFDk94jCH VKIexrld0onc5kUr+KySPs249p+uZC310+BXbHKyJ+Rg+uCmqz3+sAQOB7np8ebX MNSAjjffyEcXehotFjIxG4pVYc/r/S2vn3Vqi444pLyNQh/i12aolTW8O6isvGue 6JkQBu2oFBlxY/PEFQu4ggYmtA2dbsW7e9g2tpm07vc56ME5QuSOxX9QTyl436L4 TLO2emrBNRmjoBvhoIFkr6/mu6gD/BgwmVYarJBdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQBUowdqZRN46yN6QKsSSkPV41cswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzA3ZGRjMzlhLTBkZTUtNDc3Ni05NDc4LTZlMDg5MTEzMTM0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAALI4wDQYJKoZIhvcNAQELBQADggEBACMtVYRreX3+927pU+hlB6AE JIEZPgckJt6pkAtqCFBwHEjnKeh7iDS4X1X22nFiYS+9LI4K7Kka36HDU3t9EwnB pOh9px2msYGgYwdXZQgf+P/FZT7StzBZ3o7+3myq7g2vt+oA+PmUFqhL56BB/kw8 FzwCdhf1xCAzpa1cKarlfC57KnfLGdJ2DQm/x332AT72A+2587ysi6pyuN5S9QW8 estxLrpQpo0gCD26McDdykJiBEXUC4zwapRRUor8UHndz2zAh7EkG2PC7izqAct5 yfEAzfs36Q1W+Rfjo5mAk/sUO52B2p/fR8UN9TPC+Ij80gkCjLNzOz/XtlIo7cE= -----END CERTIFICATE-----Generated at Wed Nov 5 07:41:13 2025 by rpki-client