$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0cc0c409-1451-47d2-af4d-7239322121c4.roa File: 0cc0c409-1451-47d2-af4d-7239322121c4.roa (raw, json) Hash identifier: nag2tBS94qw428ceGmGOPHxvQ2SR95sFZb06BstdME8= Subject key identifier: 74:5C:2A:D8:A2:05:3D:F9:08:20:21:1D:D2:E3:67:38:03:B1:D9:FE Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 14C0D2607B2CD81C4C99D8C504137DE3402F63BC Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0cc0c409-1451-47d2-af4d-7239322121c4.roa Signing time: Fri 31 Oct 2025 07:53:45 +0000 ROA not before: Fri 31 Oct 2025 07:53:45 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:c0:d2:60:7b:2c:d8:1c:4c:99:d8:c5:04:13:7d:e3:40:2f:63:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 07:53:45 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=68c6e8408c9e79899e635d7b7318b63741f864fe37529a704c0015d49bab4b91, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:70:78:f0:f3:87:c2:67:28:3f:04:c6:a2:1f: 57:9c:bb:81:4f:a7:4e:7f:29:82:4d:85:5d:03:ca: 12:03:42:d1:bc:b1:b6:c0:59:69:cf:3c:1a:ac:b1: 7a:79:88:23:77:5e:87:a5:5b:75:59:f8:b0:3a:81: 6e:c2:50:bf:cb:0c:9d:af:ab:c0:1c:9a:6a:45:92: 54:c6:80:c8:2a:18:05:7b:55:a1:a9:a8:ed:36:60: 22:94:f7:f2:0c:0c:d0:e7:09:0a:b3:21:cf:df:fb: 0b:1a:50:c9:42:95:53:75:79:6e:fb:86:89:20:54: f6:30:7c:e6:45:20:bb:15:ff:ba:db:91:ca:cb:dc: 65:1d:98:c6:02:44:69:bb:72:fb:48:97:f4:b6:7e: f1:13:11:46:a2:1e:b7:60:3f:ee:0c:96:57:ab:7e: a4:fa:8d:3b:5d:30:7a:d6:db:41:bd:73:a7:d6:bb: a6:e2:57:48:32:e1:e6:0f:7e:6d:48:67:e8:37:65: 3f:ec:ce:10:ef:22:19:64:ec:b9:ce:1b:85:18:6f: 4a:d0:c3:35:1b:67:3d:6f:94:64:41:a2:1b:e0:f6: a7:be:b5:00:0a:7e:96:1a:a2:0d:c3:7c:c6:eb:b0: 59:05:cf:7e:c9:4a:b2:e8:1d:ef:c8:f1:9f:97:aa: 62:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:5C:2A:D8:A2:05:3D:F9:08:20:21:1D:D2:E3:67:38:03:B1:D9:FE X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0cc0c409-1451-47d2-af4d-7239322121c4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2000::/40 Signature Algorithm: sha256WithRSAEncryption 5f:23:b8:9c:b7:ad:bd:fd:4f:53:20:be:29:27:a8:39:39:56: 57:04:2b:b7:5e:e5:a3:7b:5e:81:9e:d0:44:ed:01:4e:39:4d: 05:bd:e2:00:bf:48:07:6f:34:d9:b4:e4:db:66:e7:1f:d0:b7: 02:8f:41:f6:fd:f6:c9:7a:c2:c1:fb:89:20:ba:30:22:4e:28: 3a:aa:b3:20:91:c2:27:82:a8:6c:19:61:8a:e9:68:ab:71:38: 0f:f5:ec:a3:31:45:1c:0f:1d:9a:fb:26:b2:93:c7:b1:bf:cc: 67:0a:79:e5:d7:70:a1:dc:6d:bb:10:7f:a0:a1:54:ea:7c:3f: dc:ca:35:47:ca:37:78:d7:ae:eb:96:df:1e:40:b2:d4:83:aa: 2a:e4:b6:f9:70:c4:08:9a:e2:d1:34:8c:f4:ef:47:52:0c:6e: 77:7e:ba:e4:80:fe:0d:16:29:58:b1:ad:26:ee:f7:d1:1f:8e: 2f:77:a6:1c:18:9e:bd:50:c2:37:6f:df:11:5c:b0:f9:cc:25: 55:51:d0:71:fc:39:2e:79:10:01:b0:c9:14:d6:a4:b6:fd:33: d7:bf:7f:33:95:56:52:1b:ad:94:fb:77:f2:67:90:11:bb:6a: 67:07:6f:28:43:e8:85:e7:4e:eb:61:28:b8:1d:14:d8:c3:68: 09:60:95:2e -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUFMDSYHss2BxMmdjFBBN940AvY7wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDc1MzQ1WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2OGM2ZTg0MDhjOWU3OTg5OWU2MzVkN2I3MzE4YjYzNzQx Zjg2NGZlMzc1MjlhNzA0YzAwMTVkNDliYWI0YjkxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXcHjw84fCZyg/BMaiH1ecu4FPp05/KYJNhV0DyhIDQtG8 sbbAWWnPPBqssXp5iCN3XoelW3VZ+LA6gW7CUL/LDJ2vq8AcmmpFklTGgMgqGAV7 VaGpqO02YCKU9/IMDNDnCQqzIc/f+wsaUMlClVN1eW77hokgVPYwfOZFILsV/7rb kcrL3GUdmMYCRGm7cvtIl/S2fvETEUaiHrdgP+4MllerfqT6jTtdMHrW20G9c6fW u6biV0gy4eYPfm1IZ+g3ZT/szhDvIhlk7LnOG4UYb0rQwzUbZz1vlGRBohvg9qe+ tQAKfpYaog3DfMbrsFkFz37JSrLoHe/I8Z+XqmLlAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUdFwq2KIFPfkIICEd0uNnOAOx2f4wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzBjYzBjNDA5LTE0NTEtNDdkMi1hZjRkLTcyMzkzMjIxMjFjNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAJAAIDANBgkqhkiG9w0BAQsFAAOCAQEAXyO4nLetvf1PUyC+KSeoOTlW VwQrt17lo3tegZ7QRO0BTjlNBb3iAL9IB2802bTk22bnH9C3Ao9B9v32yXrCwfuJ ILowIk4oOqqzIJHCJ4KobBlhiuloq3E4D/XsozFFHA8dmvsmspPHsb/MZwp55ddw odxtuxB/oKFU6nw/3Mo1R8o3eNeu65bfHkCy1IOqKuS2+XDECJri0TSM9O9HUgxu d3665ID+DRYpWLGtJu730R+OL3emHBievVDCN2/fEVyw+cwlVVHQcfw5LnkQAbDJ FNaktv0z179/M5VWUhutlPt38meQEbtqZwdvKEPohedO62EouB0U2MNoCWCVLg== -----END CERTIFICATE-----Generated at Wed Nov 5 09:05:40 2025 by rpki-client