$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0fa80229-dade-4743-b29c-98f539373f6e.roa File: 0fa80229-dade-4743-b29c-98f539373f6e.roa (raw, json) Hash identifier: lgfogHDYxrw7qNiKmRRbtltitmKpZaGNSP084eoJcKY= Subject key identifier: 83:88:97:18:92:F9:76:26:B8:02:A8:99:F3:44:69:4D:23:C3:E8:35 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 72939DC2DD637340AF1F9A74CFD16B098B98B610 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0fa80229-dade-4743-b29c-98f539373f6e.roa Signing time: Fri 31 Oct 2025 05:42:25 +0000 ROA not before: Fri 31 Oct 2025 05:42:25 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2c00::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:93:9d:c2:dd:63:73:40:af:1f:9a:74:cf:d1:6b:09:8b:98:b6:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 05:42:25 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=b3a674cd4d0694d1aaa6a283aba5b36f3705673cc6f59f7b8a226e0997dfdd04, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:37:43:54:f7:f8:09:46:47:af:bf:7e:b7:c6: c1:5e:56:c1:7b:35:59:3f:2c:99:82:24:b4:70:9c: 8d:58:a9:c4:83:85:22:9d:73:e3:b7:37:b0:ea:b4: 60:78:0c:5e:b0:2a:9d:fc:04:d4:83:05:b5:77:49: 26:db:15:3a:ce:b3:a1:79:f6:ca:c7:65:13:d9:8b: b6:db:54:54:d2:76:55:7d:57:36:8e:5f:3f:86:15: 2a:4d:6b:da:63:bd:3b:b2:f4:18:ae:fc:3b:5a:87: 9f:93:2e:65:34:08:3b:45:c7:2c:cc:93:e1:23:9e: d9:ac:1c:35:d8:af:8a:cd:7b:f9:4c:79:c7:ef:b7: e7:78:95:cb:06:49:3c:7c:69:44:90:38:13:ef:33: a3:0b:dd:09:07:29:7f:e2:9b:3b:8c:bc:28:bb:95: 1e:4b:02:d5:3b:76:c7:e9:84:0a:f4:f3:29:5a:76: 4e:5a:0e:a6:c4:e1:78:ac:4b:a2:4a:e7:69:9b:61: 9e:08:d9:90:75:82:63:98:b6:7a:19:97:35:4b:aa: b3:02:e6:e6:04:ed:5e:b8:e8:20:7f:62:e3:c1:03: d6:2c:35:13:cf:37:9d:39:e8:0b:35:5c:58:b1:cc: 8b:7c:4f:47:30:8f:64:c8:61:e0:45:87:5a:d1:06: af:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:88:97:18:92:F9:76:26:B8:02:A8:99:F3:44:69:4D:23:C3:E8:35 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0fa80229-dade-4743-b29c-98f539373f6e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2c00::/45 Signature Algorithm: sha256WithRSAEncryption 20:9b:b5:8c:55:7f:fd:10:1c:9d:38:60:f7:4c:3d:1d:38:f5: 34:dc:c3:0c:00:19:f0:65:26:50:f0:73:b4:d8:b5:cc:07:41: 28:09:57:8c:b5:24:30:ca:73:34:06:e6:94:b5:7b:aa:68:a6: 6f:16:e0:99:d0:64:9c:4d:3c:cc:b9:9d:02:34:28:2c:8a:c5: 92:74:ea:b6:84:de:26:30:5c:2c:a9:61:b0:64:5d:5d:ce:57: 4c:df:45:fa:67:a7:9a:6f:f3:0c:2e:39:cf:a4:83:84:2a:c0: 54:f2:26:67:a3:0b:81:ab:a5:b6:83:91:fd:3d:9c:7f:e4:ff: a9:1f:dc:f5:7b:7e:10:ff:35:a8:62:10:34:08:44:fa:f1:74: ca:e8:97:65:84:32:1e:86:c2:64:80:72:a7:e6:16:a4:c7:8f: fd:21:57:9e:91:57:d6:6c:07:92:23:dc:4d:0a:c5:05:56:1b: 12:09:4e:39:28:4f:08:45:3b:22:ee:97:54:11:b1:91:56:1a: d7:a3:21:7a:b3:03:30:ef:60:a3:55:88:f4:00:5d:12:06:37: d0:04:30:e6:0a:51:4b:eb:85:00:f2:12:f0:11:a1:a3:58:31: 01:eb:de:90:19:ad:b7:e4:8b:8c:df:4a:55:f2:ff:b7:b0:d5: a3:ab:e3:f1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcpOdwt1jc0CvH5p0z9FrCYuYthAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDU0MjI1WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiM2E2NzRjZDRkMDY5NGQxYWFhNmEyODNhYmE1YjM2ZjM3 MDU2NzNjYzZmNTlmN2I4YTIyNmUwOTk3ZGZkZDA0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoN0NU9/gJRkevv363xsFeVsF7NVk/LJmCJLRwnI1YqcSD hSKdc+O3N7DqtGB4DF6wKp38BNSDBbV3SSbbFTrOs6F59srHZRPZi7bbVFTSdlV9 VzaOXz+GFSpNa9pjvTuy9Biu/Dtah5+TLmU0CDtFxyzMk+EjntmsHDXYr4rNe/lM ecfvt+d4lcsGSTx8aUSQOBPvM6ML3QkHKX/imzuMvCi7lR5LAtU7dsfphAr08yla dk5aDqbE4XisS6JK52mbYZ4I2ZB1gmOYtnoZlzVLqrMC5uYE7V646CB/YuPBA9Ys NRPPN5056As1XFixzIt8T0cwj2TIYeBFh1rRBq8XAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUg4iXGJL5dia4AqiZ80RpTSPD6DUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzBmYTgwMjI5LWRhZGUtNDc0My1iMjljLTk4ZjUzOTM3M2Y2ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAALAAwDQYJKoZIhvcNAQELBQADggEBACCbtYxVf/0QHJ04YPdMPR04 9TTcwwwAGfBlJlDwc7TYtcwHQSgJV4y1JDDKczQG5pS1e6popm8W4JnQZJxNPMy5 nQI0KCyKxZJ06raE3iYwXCypYbBkXV3OV0zfRfpnp5pv8wwuOc+kg4QqwFTyJmej C4GrpbaDkf09nH/k/6kf3PV7fhD/NahiEDQIRPrxdMrol2WEMh6GwmSAcqfmFqTH j/0hV56RV9ZsB5Ij3E0KxQVWGxIJTjkoTwhFOyLul1QRsZFWGtejIXqzAzDvYKNV iPQAXRIGN9AEMOYKUUvrhQDyEvARoaNYMQHr3pAZrbfki4zfSlXy/7ew1aOr4/E= -----END CERTIFICATE-----Generated at Wed Nov 5 05:34:49 2025 by rpki-client