$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0aec4720-2306-428a-b865-8eb452e15700.roa File: 0aec4720-2306-428a-b865-8eb452e15700.roa (raw, json) Hash identifier: BEgFDC4TgKWZCWwoOA4u+4AuRrHfUgm2WkjC25ODbRY= Subject key identifier: 85:D4:29:38:0D:3C:90:A0:54:77:E7:34:A2:A9:09:CC:47:52:4A:17 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0A4405BD9BE36A53F33D75A10BD32D696BD95F37 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0aec4720-2306-428a-b865-8eb452e15700.roa Signing time: Fri 31 Oct 2025 06:42:06 +0000 ROA not before: Fri 31 Oct 2025 06:42:06 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1fc0::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:44:05:bd:9b:e3:6a:53:f3:3d:75:a1:0b:d3:2d:69:6b:d9:5f:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 06:42:06 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=bccb38096e16c616584d7f8246c61ec93eb9c4463cb0897767d44913a961f289, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:40:99:d1:9e:72:31:cb:b5:96:75:43:f9:d9: a9:16:83:f9:97:01:11:1e:14:f4:63:50:6c:e2:29: e2:df:4b:7f:59:2d:dc:f5:07:18:5f:ff:c9:db:ef: f5:60:59:07:ef:f8:73:a8:d3:46:d5:74:96:8a:99: 6c:73:41:91:42:a0:65:71:b8:36:d5:40:a0:6c:56: 78:c1:38:a7:48:7b:1b:3e:25:bd:5e:e1:48:2b:cc: 00:36:15:ef:9d:1b:7e:ac:0f:74:c1:69:d0:b5:88: dc:57:9a:1c:6a:1c:3f:74:5b:19:ad:93:2c:2b:89: 47:d7:88:af:c6:8c:cb:ad:05:88:25:79:ea:7b:85: 78:20:76:a3:14:ba:b4:ad:75:34:82:94:8f:ca:6c: 2a:ab:81:35:7b:d1:d3:14:21:4c:5a:97:9c:e8:00: eb:6f:34:2c:6e:a7:2b:08:2b:5c:8d:57:b7:85:50: 95:4d:b6:cd:30:62:41:b2:d6:c5:de:65:ca:97:5f: 38:74:80:4a:3e:90:30:82:e9:56:ee:3d:f8:24:ac: 9a:7a:60:11:0e:98:4e:5c:d3:15:55:c9:fc:92:b3: f3:ec:55:2b:8b:50:03:25:85:25:cf:71:ea:d3:8d: 99:70:b8:ad:15:cf:86:41:4a:e2:bd:09:90:bf:49: 8a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:D4:29:38:0D:3C:90:A0:54:77:E7:34:A2:A9:09:CC:47:52:4A:17 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0aec4720-2306-428a-b865-8eb452e15700.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1fc0::/44 Signature Algorithm: sha256WithRSAEncryption 84:e5:3c:73:b8:f2:c1:9a:45:d6:ed:ad:0a:c7:45:28:c5:5c: 42:cd:4f:87:97:d9:32:ca:b6:ed:fc:84:9e:ae:bc:bf:5a:25: e2:44:78:32:8e:a0:a7:32:e2:a8:8d:2c:04:e4:30:70:d0:d6: 37:f6:f6:e4:ce:87:50:50:88:ca:c5:92:db:51:e9:b7:7d:9c: 3f:ef:95:ca:5c:a3:b7:f3:86:c6:26:53:2f:45:df:86:4a:ef: c6:69:e4:bb:02:19:a7:08:0f:da:f4:d4:b3:34:60:34:b2:27: ca:2d:e9:35:52:92:ac:b2:d5:52:75:bc:40:b1:22:5d:dd:6d: 9e:f3:dd:2d:d9:2f:65:0f:88:d9:d1:3b:48:4a:a7:8c:9f:db: 88:aa:68:49:4c:ac:0c:69:58:e2:42:5a:9e:f6:6f:2e:ce:74: 33:12:ed:25:13:4c:d0:ae:68:b3:1c:9d:34:4a:6a:36:c2:75: c5:44:15:a8:a1:b2:da:04:51:cf:59:13:62:45:f2:d2:b7:fb: 65:39:c5:4a:5a:48:09:da:af:6f:84:c3:91:99:2d:6b:7e:46: aa:3a:1a:d4:d5:cd:57:84:10:c4:84:77:95:6d:5e:c7:17:aa: 68:a7:52:57:c0:2d:34:7d:e4:8c:14:9b:31:45:98:89:f9:2a: 4f:ec:5b:23 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCkQFvZvjalPzPXWhC9MtaWvZXzcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDY0MjA2WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiY2NiMzgwOTZlMTZjNjE2NTg0ZDdmODI0NmM2MWVjOTNl YjljNDQ2M2NiMDg5Nzc2N2Q0NDkxM2E5NjFmMjg5MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnQJnRnnIxy7WWdUP52akWg/mXAREeFPRjUGziKeLfS39Z Ldz1Bxhf/8nb7/VgWQfv+HOo00bVdJaKmWxzQZFCoGVxuDbVQKBsVnjBOKdIexs+ Jb1e4UgrzAA2Fe+dG36sD3TBadC1iNxXmhxqHD90WxmtkywriUfXiK/GjMutBYgl eep7hXggdqMUurStdTSClI/KbCqrgTV70dMUIUxal5zoAOtvNCxupysIK1yNV7eF UJVNts0wYkGy1sXeZcqXXzh0gEo+kDCC6VbuPfgkrJp6YBEOmE5c0xVVyfySs/Ps VSuLUAMlhSXPcerTjZlwuK0Vz4ZBSuK9CZC/SYrtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUhdQpOA08kKBUd+c0oqkJzEdSShcwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzBhZWM0NzIwLTIzMDYtNDI4YS1iODY1LThlYjQ1MmUxNTcwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAJAAH8AwDQYJKoZIhvcNAQELBQADggEBAITlPHO48sGaRdbtrQrHRSjF XELNT4eX2TLKtu38hJ6uvL9aJeJEeDKOoKcy4qiNLATkMHDQ1jf29uTOh1BQiMrF kttR6bd9nD/vlcpco7fzhsYmUy9F34ZK78Zp5LsCGacID9r01LM0YDSyJ8ot6TVS kqyy1VJ1vECxIl3dbZ7z3S3ZL2UPiNnRO0hKp4yf24iqaElMrAxpWOJCWp72by7O dDMS7SUTTNCuaLMcnTRKajbCdcVEFaihstoEUc9ZE2JF8tK3+2U5xUpaSAnar2+E w5GZLWt+Rqo6GtTVzVeEEMSEd5VtXscXqminUlfALTR95IwUmzFFmIn5Kk/sWyM= -----END CERTIFICATE-----Generated at Wed Nov 5 05:38:27 2025 by rpki-client