$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0f4dd0c8-7282-4530-8548-818b3e99080d.roa File: 0f4dd0c8-7282-4530-8548-818b3e99080d.roa (raw, json) Hash identifier: fhCvZnxXps7W5pwPMl0OWE/uTkzu4FNmFOfc4cBWmhY= Subject key identifier: 12:25:5B:31:62:0D:56:E0:31:81:96:71:C9:7E:45:0D:90:94:AE:60 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 564FC173602E7F59BE505D23479CE09396ED9ED2 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0f4dd0c8-7282-4530-8548-818b3e99080d.roa Signing time: Thu 30 Oct 2025 23:25:36 +0000 ROA not before: Thu 30 Oct 2025 23:25:36 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2d36::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:4f:c1:73:60:2e:7f:59:be:50:5d:23:47:9c:e0:93:96:ed:9e:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 23:25:36 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=9308f42fb13f1bd467624552fbae9c33a611b96505b4ede5d03f690a9520e40b, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:21:ca:2e:3a:da:f0:04:d5:ee:c8:9e:6e:2d: f4:80:34:47:ec:01:62:02:19:70:c3:5e:2a:b5:f6: da:b1:41:7c:34:0e:6d:a3:83:05:cf:3b:5f:fa:36: db:ba:3e:85:74:cc:52:c2:b6:2c:2a:73:bf:36:a4: 62:49:4d:ac:ee:44:1f:fa:ca:00:78:0f:d2:7a:f4: 90:4d:10:25:3a:04:0e:d8:ac:fd:5e:4a:d7:c5:41: 5d:5e:ef:d7:38:75:16:53:7c:90:02:22:66:e0:91: cf:61:90:c4:6d:0c:39:8f:17:7c:ae:ee:c8:75:43: cc:a7:ea:61:9a:47:1d:42:1b:86:d6:e1:f3:35:7c: 7f:8a:9b:df:9d:dc:81:42:49:d1:46:60:cf:7b:21: ca:bb:bc:f5:62:7d:4c:8d:22:2e:12:be:42:d1:59: dd:ea:eb:26:03:a5:69:20:4d:4d:13:fb:96:f2:59: ea:4a:10:65:28:bd:0a:da:2b:79:e1:13:a7:73:48: b0:a6:b0:ea:36:92:ae:83:06:81:e0:7b:cd:16:e2: b2:c9:28:b6:a4:2e:2f:10:97:e0:e9:64:9c:a1:d5: f2:ea:3b:78:9b:8e:c4:c3:55:0e:14:1c:b3:a4:f0: 23:98:2f:51:9e:c2:3a:3c:57:d7:54:cb:b2:3d:98: 19:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:25:5B:31:62:0D:56:E0:31:81:96:71:C9:7E:45:0D:90:94:AE:60 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0f4dd0c8-7282-4530-8548-818b3e99080d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2d36::/47 Signature Algorithm: sha256WithRSAEncryption 49:0c:24:d9:30:22:40:9c:f2:a4:2f:79:12:d4:9d:ab:ae:e0: 39:0f:37:11:b6:28:be:02:c7:a0:50:bb:6f:68:41:5d:58:e9: 5b:88:9e:27:39:b7:13:ac:47:d5:62:13:c0:60:54:bb:c6:ce: f5:23:82:32:77:ba:b0:9d:94:8a:26:e8:9e:6a:8e:c7:8d:00: 72:b1:09:02:0f:b2:a3:1e:ee:fe:7c:97:17:68:65:13:87:71: 57:4d:ee:30:56:f7:74:1f:c8:a8:31:ce:42:18:a5:43:46:a8: 5b:b0:05:a5:74:1e:91:03:31:3e:3c:7b:12:e0:d6:86:f6:eb: bd:9b:54:5a:a7:07:da:c0:9a:26:ad:f8:ef:75:45:33:59:33: 49:ba:b0:1a:71:dd:a9:2c:93:12:fd:e1:a5:12:f6:54:91:2b: 79:45:83:e4:ef:98:f6:79:e2:49:a8:db:51:b2:8d:38:2c:89: 61:5f:47:49:64:ae:92:9c:d5:fb:2c:ed:27:d9:b8:63:64:9a: b9:91:54:75:04:9a:e2:57:d1:4d:49:ab:5b:ed:22:13:45:60: 3d:6c:d9:49:fc:71:11:27:fd:34:10:c3:56:25:92:3b:86:8d: b1:f2:bf:c3:60:0b:b4:ff:0e:f3:31:69:84:4d:81:56:15:88: 86:bc:45:1a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVk/Bc2Auf1m+UF0jR5zgk5btntIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjMyNTM2WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MzA4ZjQyZmIxM2YxYmQ0Njc2MjQ1NTJmYmFlOWMzM2E2 MTFiOTY1MDViNGVkZTVkMDNmNjkwYTk1MjBlNDBiMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2IcouOtrwBNXuyJ5uLfSANEfsAWICGXDDXiq19tqxQXw0 Dm2jgwXPO1/6Ntu6PoV0zFLCtiwqc782pGJJTazuRB/6ygB4D9J69JBNECU6BA7Y rP1eStfFQV1e79c4dRZTfJACImbgkc9hkMRtDDmPF3yu7sh1Q8yn6mGaRx1CG4bW 4fM1fH+Km9+d3IFCSdFGYM97Icq7vPVifUyNIi4SvkLRWd3q6yYDpWkgTU0T+5by WepKEGUovQraK3nhE6dzSLCmsOo2kq6DBoHge80W4rLJKLakLi8Ql+DpZJyh1fLq O3ibjsTDVQ4UHLOk8COYL1Gewjo8V9dUy7I9mBmLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUEiVbMWINVuAxgZZxyX5FDZCUrmAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzBmNGRkMGM4LTcyODItNDUzMC04NTQ4LTgxOGIzZTk5MDgwZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAALTYwDQYJKoZIhvcNAQELBQADggEBAEkMJNkwIkCc8qQveRLUnauu 4DkPNxG2KL4Cx6BQu29oQV1Y6VuInic5txOsR9ViE8BgVLvGzvUjgjJ3urCdlIom 6J5qjseNAHKxCQIPsqMe7v58lxdoZROHcVdN7jBW93QfyKgxzkIYpUNGqFuwBaV0 HpEDMT48exLg1ob2672bVFqnB9rAmiat+O91RTNZM0m6sBpx3akskxL94aUS9lSR K3lFg+TvmPZ54kmo21GyjTgsiWFfR0lkrpKc1fss7SfZuGNkmrmRVHUEmuJX0U1J q1vtIhNFYD1s2Un8cREn/TQQw1YlkjuGjbHyv8NgC7T/DvMxaYRNgVYViIa8RRo= -----END CERTIFICATE-----Generated at Wed Nov 5 16:54:21 2025 by rpki-client