$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0ffb53bc-11fa-4608-8008-58d71e8cf439.roa File: 0ffb53bc-11fa-4608-8008-58d71e8cf439.roa (raw, json) Hash identifier: DJLq6DNycSnGFDV8A0JB3NMUBEA0FILiUcqsDbiXJ7E= Subject key identifier: E3:4B:C8:5F:CE:77:89:D2:5C:66:4F:E3:D9:3E:16:AB:07:35:0A:74 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5ADD8B8A7437AA54DCC9EAF8FE1E95B49D113BEA Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0ffb53bc-11fa-4608-8008-58d71e8cf439.roa Signing time: Fri 31 Oct 2025 04:28:27 +0000 ROA not before: Fri 31 Oct 2025 04:28:27 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:39bc::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:dd:8b:8a:74:37:aa:54:dc:c9:ea:f8:fe:1e:95:b4:9d:11:3b:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 04:28:27 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=24891be4bb7462cc292500592cd5dfd18e5c42fb1fbf8d2d586d8374aa93f0ec, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:65:a4:a4:c9:d7:12:54:77:bc:87:a9:3a:d1: 45:ec:86:4e:06:05:af:f5:67:70:ee:95:fb:93:27: a0:9f:f6:92:58:11:c1:5c:ef:74:b9:c4:a6:01:60: 82:25:a7:3b:43:68:8c:b7:a5:10:32:54:79:ad:b3: 12:2c:81:91:f2:32:23:eb:bf:cd:b3:fd:3e:1b:55: be:54:af:77:f6:30:b4:8e:c5:26:9d:8f:9f:27:5b: e1:68:0c:61:bd:db:43:1a:96:8f:df:7f:f2:2e:40: 96:a9:15:a3:d7:ac:32:06:2c:e8:fb:70:e0:4b:03: 04:48:ac:37:0b:15:73:54:c0:03:33:a8:98:3f:d0: 98:87:bb:42:89:ff:e2:25:f3:07:81:f9:12:ab:cf: 79:f0:27:f3:18:dd:a9:1b:1c:78:d6:ce:4d:1d:98: 80:36:eb:02:3a:4a:a9:68:b6:c7:8d:94:18:95:45: 7c:b3:a8:9e:c7:29:7e:43:0c:b4:5c:a0:a8:e2:e6: fc:ec:90:96:58:82:e8:49:d1:de:30:3c:dc:f8:73: 45:09:6f:12:65:40:0e:e0:9f:c1:a9:ce:46:cf:ea: 4e:df:6d:21:bf:49:d7:da:86:72:9f:c6:6e:8d:61: 8a:bf:43:c3:5b:6f:d2:11:20:a7:79:fe:6c:02:f2: 57:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:4B:C8:5F:CE:77:89:D2:5C:66:4F:E3:D9:3E:16:AB:07:35:0A:74 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/0ffb53bc-11fa-4608-8008-58d71e8cf439.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:39bc::/46 Signature Algorithm: sha256WithRSAEncryption 1b:5e:be:e6:a3:23:33:ff:61:d5:8e:f1:bb:a4:c9:8a:11:21: d6:fe:35:1d:28:86:6b:83:1d:20:50:bc:ea:20:af:c8:ec:39: 3e:f7:bd:61:76:3a:55:55:40:4a:b1:e4:d2:10:98:84:9c:78: b4:d9:10:9f:1d:87:79:ac:9e:08:e1:e9:9f:45:7d:cd:c0:85: b4:14:67:a4:b7:83:71:67:ef:d1:8c:9f:76:f5:d3:39:dc:82: 67:e7:63:9e:d5:3d:04:e5:5a:a4:c6:62:11:1a:a9:b3:d9:13: 9e:45:67:bf:4d:bc:cc:f0:f7:3f:6a:8e:65:91:97:4f:56:e6: d5:24:0f:85:80:e0:8b:ea:4a:b3:d2:8b:f5:c1:8b:5c:aa:38: bb:31:44:dd:69:09:da:35:10:05:db:9f:6f:2f:f3:70:c3:c3: 37:b1:3f:81:70:8d:59:07:6b:0a:66:f5:c1:68:16:40:0f:bf: d8:e1:15:38:bf:90:a0:ce:0e:f4:d4:a8:84:a8:71:3b:bb:f2: f4:56:22:d6:23:bc:7b:4d:99:bb:b8:8f:94:f8:9b:e2:ab:3d: 6d:a1:84:31:fa:76:93:3a:51:30:fb:04:20:07:02:d9:01:fa: de:e9:6b:d3:50:7b:1c:78:3c:8a:f6:48:32:58:ce:b7:dd:ba: 76:a9:6c:6c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWt2LinQ3qlTcyer4/h6VtJ0RO+owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDQyODI3WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDg5MWJlNGJiNzQ2MmNjMjkyNTAwNTkyY2Q1ZGZkMThl NWM0MmZiMWZiZjhkMmQ1ODZkODM3NGFhOTNmMGVjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1ZaSkydcSVHe8h6k60UXshk4GBa/1Z3DulfuTJ6Cf9pJY EcFc73S5xKYBYIIlpztDaIy3pRAyVHmtsxIsgZHyMiPrv82z/T4bVb5Ur3f2MLSO xSadj58nW+FoDGG920Malo/ff/IuQJapFaPXrDIGLOj7cOBLAwRIrDcLFXNUwAMz qJg/0JiHu0KJ/+Il8weB+RKrz3nwJ/MY3akbHHjWzk0dmIA26wI6SqlotseNlBiV RXyzqJ7HKX5DDLRcoKji5vzskJZYguhJ0d4wPNz4c0UJbxJlQA7gn8GpzkbP6k7f bSG/SdfahnKfxm6NYYq/Q8Nbb9IRIKd5/mwC8lcXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU40vIX853idJcZk/j2T4Wqwc1CnQwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzBmZmI1M2JjLTExZmEtNDYwOC04MDA4LTU4ZDcxZThjZjQzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAObwwDQYJKoZIhvcNAQELBQADggEBABtevuajIzP/YdWO8bukyYoR Idb+NR0ohmuDHSBQvOogr8jsOT73vWF2OlVVQEqx5NIQmISceLTZEJ8dh3msngjh 6Z9Ffc3AhbQUZ6S3g3Fn79GMn3b10zncgmfnY57VPQTlWqTGYhEaqbPZE55FZ79N vMzw9z9qjmWRl09W5tUkD4WA4IvqSrPSi/XBi1yqOLsxRN1pCdo1EAXbn28v83DD wzexP4FwjVkHawpm9cFoFkAPv9jhFTi/kKDODvTUqISocTu78vRWItYjvHtNmbu4 j5T4m+KrPW2hhDH6dpM6UTD7BCAHAtkB+t7pa9NQexx4PIr2SDJYzrfdunapbGw= -----END CERTIFICATE-----Generated at Wed Nov 5 09:29:07 2025 by rpki-client