$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0a26405c-9944-49bf-86cf-485790462c9f.roa File: 0a26405c-9944-49bf-86cf-485790462c9f.roa (raw, json) Hash identifier: 4to7yJi4jGf7TOLmHip8gpP5PVtRoIZ2EtDVdjM62Ww= Subject key identifier: 82:2D:99:76:92:2C:A5:10:DA:72:C8:EB:F5:6C:F3:F3:29:D0:BA:BF Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 329553645137DF909248E281FC8A6C026ECFAA Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0a26405c-9944-49bf-86cf-485790462c9f.roa Signing time: Fri 31 Oct 2025 03:55:10 +0000 ROA not before: Fri 31 Oct 2025 03:55:10 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:31c0::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:95:53:64:51:37:df:90:92:48:e2:81:fc:8a:6c:02:6e:cf:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 03:55:10 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=8036ae8a5d5d6300b713d3da206728dbe1d7ff9e60078fde1f1b282820eca30a, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:fa:da:a5:73:e3:d9:f6:59:c5:62:6d:64:a3: fc:1d:7c:0b:89:66:d9:28:78:89:41:5d:e8:31:f9: 73:07:b3:c3:53:0a:15:9f:40:ea:4f:3f:46:e1:2c: 81:1a:b3:ea:50:13:15:c7:74:29:06:c0:30:1b:16: 3b:b0:6e:af:b1:b4:ef:f2:93:4e:c8:b6:d0:7f:2c: fc:78:e5:00:cf:c3:54:9c:62:3f:36:ad:7f:9e:44: 71:77:73:a5:13:3a:22:2c:fc:31:db:dd:b3:e5:c8: 6b:32:53:39:4b:1c:85:47:57:f9:78:23:36:ea:46: fa:50:df:fd:d6:d6:00:e2:10:87:97:7c:76:1e:3f: 5b:a0:54:3d:d3:54:d2:73:bb:9f:69:d6:c8:4b:62: 50:c3:52:1d:08:a8:11:6c:3e:10:41:1e:c1:d6:59: f6:ae:19:e2:54:83:25:56:d5:82:2d:53:97:e6:ee: c5:d4:a2:7e:db:48:20:0a:ae:a3:5f:65:4b:21:eb: 2f:62:15:ee:0a:3f:10:0b:19:67:f8:38:de:26:b8: b9:52:fb:f5:cc:b4:5d:b4:a0:c5:37:e1:da:8b:38: 8a:39:88:8a:c5:4f:93:46:98:80:78:32:8c:82:1a: 66:99:d4:5c:55:0f:17:5b:ac:b7:31:ac:4e:b3:fc: d6:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:2D:99:76:92:2C:A5:10:DA:72:C8:EB:F5:6C:F3:F3:29:D0:BA:BF X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0a26405c-9944-49bf-86cf-485790462c9f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:31c0::/46 Signature Algorithm: sha256WithRSAEncryption 79:61:5a:52:1f:68:02:53:1d:d2:36:8b:f2:18:dc:75:93:fc: 3a:9e:51:b8:ac:bd:ff:d4:06:13:fd:ea:3a:ca:71:ba:6a:81: 14:80:cc:87:44:84:75:51:bc:9b:29:de:13:5f:84:08:af:f8: 91:c1:c5:c3:48:ff:72:5a:1f:b4:0a:b7:4d:91:97:41:3d:d6: 15:ea:0d:ff:80:66:8f:d0:79:a6:6e:43:ef:d9:17:e6:f2:a5: ad:35:46:ab:fe:e4:df:0c:e6:01:89:9f:28:f6:de:e9:1f:b7: ae:c0:67:f6:ac:c3:a9:3e:a9:0f:60:b3:99:ab:30:a2:b3:81: bb:61:74:4d:27:4f:d0:94:44:e5:9a:58:48:2a:bd:b4:98:70: 6b:23:07:05:28:37:a8:89:96:f4:54:a8:c0:be:1e:40:38:b7: 09:07:d4:e7:7d:c5:ca:4c:ca:91:07:fa:ca:00:09:bf:4e:9a: 0a:d2:4b:58:7e:f0:24:78:7c:11:43:a7:f0:41:1e:3f:65:dd: 3b:64:5f:85:93:37:06:07:a5:a1:8b:26:dc:49:bd:05:82:a4: 3d:c9:e9:e9:9c:65:b2:51:82:ba:21:1b:1c:f8:52:8a:10:ec: e4:89:26:3e:38:95:21:5a:f8:c9:83:a6:32:bb:1e:3e:d8:9c: 85:73:e7:bb -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgITMpVTZFE335CSSOKB/IpsAm7PqjANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI1NTEyMDkwMjdmNWU3YWQ1NGUwNGYwNDJlNGFjMGU5ZTY1 YzU2ZTU1Yzc3NDc4ZDJjZTAeFw0yNTEwMzEwMzU1MTBaFw0yNTEyMDUyMzU5NTla MHoxSTBHBgNVBAUTQDgwMzZhZThhNWQ1ZDYzMDBiNzEzZDNkYTIwNjcyOGRiZTFk N2ZmOWU2MDA3OGZkZTFmMWIyODI4MjBlY2EzMGExLTArBgNVBAMTJDlmMjMwZmE5 LWFhMmYtNDAyMC1hZTJhLTFhNjAzNzQwODRiODCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAKP62qVz49n2WcVibWSj/B18C4lm2Sh4iUFd6DH5cwezw1MK FZ9A6k8/RuEsgRqz6lATFcd0KQbAMBsWO7Bur7G07/KTTsi20H8s/HjlAM/DVJxi Pzatf55EcXdzpRM6Iiz8Mdvds+XIazJTOUschUdX+XgjNupG+lDf/dbWAOIQh5d8 dh4/W6BUPdNU0nO7n2nWyEtiUMNSHQioEWw+EEEewdZZ9q4Z4lSDJVbVgi1Tl+bu xdSifttIIAquo19lSyHrL2IV7go/EAsZZ/g43ia4uVL79cy0XbSgxTfh2os4ijmI isVPk0aYgHgyjIIaZpnUXFUPF1ustzGsTrP81pUCAwEAAaOCArQwggKwMB0GA1Ud DgQWBBSCLZl2kiylENpyyOv1bPPzKdC6vzAfBgNVHSMEGDAWgBTo88Ug4g7yXTq3 oha7FAQxajc48TAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv ZjYwYzlmMzItYTg3Yy00MzM5LWEyZjMtNjI5OWEzYjAyZTI5Lzk5ZjhmZWQyLTI5 MmItNDcyMi1iOTI4LWZlZTdiZjBhNTkxMC81NTEyMDkwMjdmNWU3YWQ1NGUwNGYw NDJlNGFjMGU5ZTY1YzU2ZTU1Yzc3NDc4ZDJjZS5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9lNzUxOGFmNS1hMzQzLTQyOGQtYmY3OC1mOTgy YjZlNjA1MDUvMGEyNjQwNWMtOTk0NC00OWJmLTg2Y2YtNDg1NzkwNDYyYzlmLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgt Zjk4MmI2ZTYwNTA1L1huclZUZ1R3UXVTc0RwNWx4VzVWeDNSNDBzNC5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHAiYAkAAxwDANBgkqhkiG9w0BAQsFAAOCAQEAeWFaUh9oAlMd0jaL8hjcdZP8 Op5RuKy9/9QGE/3qOspxumqBFIDMh0SEdVG8myneE1+ECK/4kcHFw0j/cloftAq3 TZGXQT3WFeoN/4Bmj9B5pm5D79kX5vKlrTVGq/7k3wzmAYmfKPbe6R+3rsBn9qzD qT6pD2CzmasworOBu2F0TSdP0JRE5ZpYSCq9tJhwayMHBSg3qImW9FSowL4eQDi3 CQfU533FykzKkQf6ygAJv06aCtJLWH7wJHh8EUOn8EEeP2XdO2RfhZM3BgeloYsm 3Em9BYKkPcnp6ZxlslGCuiEbHPhSihDs5IkmPjiVIVr4yYOmMrsePtichXPnuw== -----END CERTIFICATE-----Generated at Wed Nov 5 07:40:41 2025 by rpki-client