$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0b771578-7684-4128-9eca-4468235bfdf8.roa File: 0b771578-7684-4128-9eca-4468235bfdf8.roa (raw, json) Hash identifier: cw2nf3CJN+9NFOiCOC1Hjbf5bWIOavtUL7ZDwT8Jqj0= Subject key identifier: EB:AF:9E:6C:26:43:D8:A9:6D:90:62:CC:21:0B:F5:E3:EC:DC:E8:49 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2AEB5DDCA850CEC92E27582915BC9457A219CB53 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0b771578-7684-4128-9eca-4468235bfdf8.roa Signing time: Fri 31 Oct 2025 06:56:32 +0000 ROA not before: Fri 31 Oct 2025 06:56:32 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3570::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:eb:5d:dc:a8:50:ce:c9:2e:27:58:29:15:bc:94:57:a2:19:cb:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 06:56:32 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=e0be3f8cd5156b78fddabc6188ff2f1de578fe310568ca014ec520a5d0172fd2, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ee:87:67:4b:8d:fc:37:91:ef:b0:89:b6:3b: c2:e5:fd:b1:65:39:9e:43:8f:46:88:52:42:e6:d3: 79:3d:f6:1b:38:b0:e0:cd:1f:1e:7f:82:02:cf:d7: 22:68:f8:4c:c1:80:da:f7:f3:7b:35:6f:43:6f:d9: b6:c4:a8:48:38:70:30:fb:af:76:07:6b:ac:77:58: 83:8f:40:51:7b:72:43:ad:22:7a:97:54:40:e4:70: 76:01:e8:bc:c9:cc:1b:c4:32:a6:db:a4:70:47:9f: 2d:b1:66:e9:d5:d4:45:96:e6:e6:91:ac:e5:f5:91: 1a:41:ad:18:bc:15:81:42:d3:bf:28:4e:65:d9:92: 80:f2:3c:3d:f2:51:41:cd:fb:f2:bb:36:74:5a:d6: 28:a2:8c:7c:a7:09:c4:fe:e8:1e:8e:1c:e9:ea:0f: 43:90:45:02:c3:6e:46:f7:1c:aa:df:16:c1:d1:61: e6:79:30:42:60:ff:09:c6:b0:96:2e:10:6e:ae:11: 52:39:51:bd:df:15:78:67:2e:bc:b1:b3:3b:44:56: 7e:19:99:de:ae:fa:f6:c1:11:14:01:8a:b9:60:a0: 85:c5:71:3e:18:fb:9b:81:e0:19:48:6e:b2:d3:98: 59:29:a7:90:cf:09:fc:60:b2:64:86:98:26:c4:38: b9:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:AF:9E:6C:26:43:D8:A9:6D:90:62:CC:21:0B:F5:E3:EC:DC:E8:49 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0b771578-7684-4128-9eca-4468235bfdf8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3570::/44 Signature Algorithm: sha256WithRSAEncryption c0:0c:0b:d7:2b:31:0d:c7:5a:22:86:4a:cc:f9:e4:b9:fb:d9: 4e:29:af:47:12:e6:04:3b:15:be:01:37:2f:14:ff:a3:9c:03: e6:4d:26:84:25:5b:00:33:36:0d:73:0c:37:c7:b8:4d:de:4e: aa:28:32:2c:e3:5c:5e:ea:d8:67:d5:c6:e3:cd:c1:d9:7d:18: 0e:ab:e6:bc:15:43:d2:7c:30:e8:85:18:fc:48:d3:24:a3:ca: e2:ba:2e:26:1e:b0:d1:93:86:99:08:56:f7:97:7c:2a:00:0f: 1b:63:cd:d7:97:c7:16:52:4f:bf:23:bb:02:a7:32:b2:bf:3e: a8:b6:95:36:59:c5:18:bb:32:90:95:70:da:90:8c:3a:18:14: c8:4c:1f:41:c2:26:cf:0a:7b:2b:98:46:48:90:84:c1:30:6d: a8:35:f2:52:3e:9f:93:b0:f1:71:09:ce:64:49:d4:9e:56:e8: 91:d5:9e:d7:d9:06:44:59:eb:45:1c:81:31:da:78:0d:3e:3c: 35:b3:38:98:7e:75:e7:f2:af:05:c6:83:26:e5:3f:b4:55:3e: 55:ea:e8:cc:4c:25:e0:ea:b4:24:8f:7a:d9:7f:90:e4:b7:aa: f9:e3:00:eb:7a:05:63:64:ab:b6:4b:dc:36:86:e9:69:ba:cc: 07:13:d3:d7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKutd3KhQzskuJ1gpFbyUV6IZy1MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDY1NjMyWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMGJlM2Y4Y2Q1MTU2Yjc4ZmRkYWJjNjE4OGZmMmYxZGU1 NzhmZTMxMDU2OGNhMDE0ZWM1MjBhNWQwMTcyZmQyMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCl7odnS438N5HvsIm2O8Ll/bFlOZ5Dj0aIUkLm03k99hs4 sODNHx5/ggLP1yJo+EzBgNr383s1b0Nv2bbEqEg4cDD7r3YHa6x3WIOPQFF7ckOt InqXVEDkcHYB6LzJzBvEMqbbpHBHny2xZunV1EWW5uaRrOX1kRpBrRi8FYFC078o TmXZkoDyPD3yUUHN+/K7NnRa1iiijHynCcT+6B6OHOnqD0OQRQLDbkb3HKrfFsHR YeZ5MEJg/wnGsJYuEG6uEVI5Ub3fFXhnLryxsztEVn4Zmd6u+vbBERQBirlgoIXF cT4Y+5uB4BlIbrLTmFkpp5DPCfxgsmSGmCbEOLlbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU66+ebCZD2KltkGLMIQv14+zc6EkwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzBiNzcxNTc4LTc2ODQtNDEyOC05ZWNhLTQ0NjgyMzViZmRmOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAJAANXAwDQYJKoZIhvcNAQELBQADggEBAMAMC9crMQ3HWiKGSsz55Ln7 2U4pr0cS5gQ7Fb4BNy8U/6OcA+ZNJoQlWwAzNg1zDDfHuE3eTqooMizjXF7q2GfV xuPNwdl9GA6r5rwVQ9J8MOiFGPxI0ySjyuK6LiYesNGThpkIVveXfCoADxtjzdeX xxZST78juwKnMrK/Pqi2lTZZxRi7MpCVcNqQjDoYFMhMH0HCJs8KeyuYRkiQhMEw bag18lI+n5Ow8XEJzmRJ1J5W6JHVntfZBkRZ60UcgTHaeA0+PDWzOJh+defyrwXG gyblP7RVPlXq6MxMJeDqtCSPetl/kOS3qvnjAOt6BWNkq7ZL3DaG6Wm6zAcT09c= -----END CERTIFICATE-----Generated at Wed Nov 5 05:38:53 2025 by rpki-client