$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0e57377a-6654-4523-9dc3-9f7f53981870.roa File: 0e57377a-6654-4523-9dc3-9f7f53981870.roa (raw, json) Hash identifier: YSVt+2N/t7z+FWZP/b710e7l/MXFSegUU256le8A/jo= Subject key identifier: 99:70:C8:4F:A9:29:73:38:C3:F5:37:E2:73:99:52:04:93:E3:77:21 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3525BFA652A12BA591F49308D12856646DCCE0EC Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0e57377a-6654-4523-9dc3-9f7f53981870.roa Signing time: Thu 30 Oct 2025 22:12:02 +0000 ROA not before: Thu 30 Oct 2025 22:12:02 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1ba6::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:25:bf:a6:52:a1:2b:a5:91:f4:93:08:d1:28:56:64:6d:cc:e0:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 22:12:02 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=e88390362ff9ed93f03bf2e7559605f66390062d82ea5313a2fcf9d446d5c1b5, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:75:49:77:1a:53:c9:f3:14:15:38:3c:dc:54: 16:e1:f1:da:fd:cb:13:a7:da:e1:ed:09:1e:3b:54: 4c:ac:d2:28:47:79:23:8d:ec:de:df:ce:9c:fd:c8: 26:50:ee:10:b1:06:4f:8e:92:55:fc:90:c6:55:3b: 15:9c:29:6c:34:c4:5d:d4:2d:bf:8b:ee:60:90:35: 3e:8c:4e:d1:e4:78:e1:96:7f:de:3e:5b:3c:91:b9: e4:59:50:ea:59:30:43:fb:f2:d4:e5:71:e7:b6:fb: e6:e7:80:7b:24:83:5c:4a:92:8d:ad:0f:8a:48:bd: c0:e3:3c:4d:52:fd:f0:29:ce:48:96:58:d8:b0:24: f8:19:ab:b5:a3:1c:ee:56:de:87:59:09:47:42:18: 38:1a:ea:d0:f1:7a:54:b2:6f:fe:5a:7a:f5:77:fb: 8e:e1:dd:66:60:12:e8:2d:8a:27:ca:2b:7c:0b:a9: 4b:dc:8a:4a:b9:5b:b5:70:59:80:d7:25:d1:5e:e4: bf:0d:61:48:e9:45:b2:5f:d5:4f:5b:a4:8c:7c:1d: 8a:4b:20:6c:0f:f6:b6:c3:76:0d:5f:95:35:6d:7c: ba:31:07:1e:c6:5f:65:ad:bf:be:f3:0f:6a:c3:eb: e1:5a:e2:c4:0c:54:68:d2:76:33:5a:e8:14:c7:30: 8d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:70:C8:4F:A9:29:73:38:C3:F5:37:E2:73:99:52:04:93:E3:77:21 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0e57377a-6654-4523-9dc3-9f7f53981870.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1ba6::/47 Signature Algorithm: sha256WithRSAEncryption 5c:a4:32:70:5d:c6:97:79:71:7f:f4:18:82:b7:4b:e8:c1:35: ba:4f:1b:b6:76:24:e7:08:f3:43:ab:5a:69:ec:b6:3e:d7:01: aa:06:1c:1e:6d:49:0a:4c:4e:83:33:6e:59:37:b3:b8:ab:c4: 41:9a:cf:d2:37:18:3d:f9:d4:e3:e2:43:8f:fd:71:4d:5d:bc: 54:8f:9d:ce:f5:ad:c6:a2:6e:c6:c8:2d:90:10:d0:41:c4:8a: 03:e7:01:47:6f:7d:01:85:0e:fc:78:66:ac:4a:a2:9b:64:77: 19:98:0c:5b:51:f7:09:19:a6:a2:70:4d:96:22:18:87:c9:43: a8:50:67:a3:4b:b5:6c:2e:59:09:09:d6:05:62:70:5e:71:0b: b4:d1:a9:48:60:ac:36:d2:1a:88:03:96:ca:ee:07:82:fd:17: a5:00:f5:62:4c:f3:9e:ea:f8:13:3e:ff:16:0c:d0:3c:64:12: 8d:9f:4c:9a:2e:7a:ad:c6:ed:6e:d4:ce:45:f8:95:6f:8b:fc: d4:7e:f5:a7:13:c2:a6:43:7b:ef:67:49:56:91:f7:aa:66:71: d9:da:b4:51:80:ec:b9:fd:0e:fe:fd:f6:21:5a:de:6d:63:0f: c1:55:7a:94:9c:7d:4f:4f:2a:e7:65:47:46:bb:52:47:14:38: 5c:89:7d:3d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNSW/plKhK6WR9JMI0ShWZG3M4OwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjIxMjAyWhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlODgzOTAzNjJmZjllZDkzZjAzYmYyZTc1NTk2MDVmNjYz OTAwNjJkODJlYTUzMTNhMmZjZjlkNDQ2ZDVjMWI1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD6dUl3GlPJ8xQVODzcVBbh8dr9yxOn2uHtCR47VEys0ihH eSON7N7fzpz9yCZQ7hCxBk+OklX8kMZVOxWcKWw0xF3ULb+L7mCQNT6MTtHkeOGW f94+WzyRueRZUOpZMEP78tTlcee2++bngHskg1xKko2tD4pIvcDjPE1S/fApzkiW WNiwJPgZq7WjHO5W3odZCUdCGDga6tDxelSyb/5aevV3+47h3WZgEugtiifKK3wL qUvcikq5W7VwWYDXJdFe5L8NYUjpRbJf1U9bpIx8HYpLIGwP9rbDdg1flTVtfLox Bx7GX2Wtv77zD2rD6+Fa4sQMVGjSdjNa6BTHMI39AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUmXDIT6kpczjD9Tfic5lSBJPjdyEwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzBlNTczNzdhLTY2NTQtNDUyMy05ZGMzLTlmN2Y1Mzk4MTg3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAG6YwDQYJKoZIhvcNAQELBQADggEBAFykMnBdxpd5cX/0GIK3S+jB NbpPG7Z2JOcI80OrWmnstj7XAaoGHB5tSQpMToMzblk3s7irxEGaz9I3GD351OPi Q4/9cU1dvFSPnc71rcaibsbILZAQ0EHEigPnAUdvfQGFDvx4ZqxKoptkdxmYDFtR 9wkZpqJwTZYiGIfJQ6hQZ6NLtWwuWQkJ1gVicF5xC7TRqUhgrDbSGogDlsruB4L9 F6UA9WJM857q+BM+/xYM0DxkEo2fTJoueq3G7W7UzkX4lW+L/NR+9acTwqZDe+9n SVaR96pmcdnatFGA7Ln9Dv799iFa3m1jD8FVepScfU9PKudlR0a7UkcUOFyJfT0= -----END CERTIFICATE-----Generated at Wed Nov 5 05:38:21 2025 by rpki-client