$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1199337f-bc87-4eb0-aa39-d0149d758273.roa File: 1199337f-bc87-4eb0-aa39-d0149d758273.roa (raw, json) Hash identifier: PEGWtgVHenSsg0oQ0trFRy/ToukctCXSSm575QM66xI= Subject key identifier: F0:29:86:BB:1F:BA:AB:84:06:BC:A0:AB:2B:10:1D:8E:43:03:62:D5 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 7D26D9769E20B0BDE214847936254B4BEDBB20FA Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1199337f-bc87-4eb0-aa39-d0149d758273.roa Signing time: Fri 31 Oct 2025 01:23:30 +0000 ROA not before: Fri 31 Oct 2025 01:23:30 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3b42::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:26:d9:76:9e:20:b0:bd:e2:14:84:79:36:25:4b:4b:ed:bb:20:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 01:23:30 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=f4fbbb91fee655efc774db215d06095218326dd69bfc6caf424dc24dd8090538, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:38:5c:6e:23:81:6c:e5:fd:1b:95:2b:e8:48: db:5d:59:bf:2f:e5:bc:70:69:96:6c:7a:2a:ef:10: 96:a6:03:3f:af:c1:4e:34:e5:2b:3e:83:dd:04:f0: b2:5f:28:c5:59:9d:9c:af:19:ee:56:b4:cc:3f:b9: 3b:27:12:fb:42:f9:c8:9b:c9:73:bf:28:92:aa:97: 16:59:6a:c1:39:6e:4d:dc:98:18:da:6c:24:0a:6f: 9f:f0:4c:5e:04:a8:19:d8:60:cd:4e:97:b6:04:c1: 1d:0f:b1:e7:9a:57:89:43:f8:2a:f6:90:18:49:71: a8:c2:10:01:1e:90:91:9e:bc:d1:ec:1b:a8:29:f8: 0b:60:f4:31:d2:47:f9:bb:d3:c7:f1:cb:ca:33:45: 21:7c:9e:87:3c:52:10:f1:a6:a1:17:11:51:21:fd: c5:82:f4:63:f4:10:c6:37:97:fd:55:6e:af:e7:68: b6:44:54:e5:7b:86:de:4c:8a:18:3a:42:94:e4:11: 75:09:54:6a:7a:f0:d8:e0:aa:33:a7:5b:47:45:0c: 55:40:4f:dc:e0:42:e2:6e:9e:21:47:81:22:7c:aa: 7e:87:f8:eb:35:31:91:22:10:35:7a:b5:48:29:67: 5f:a7:12:0b:97:3b:ca:e3:c2:f3:5b:05:6e:7e:e6: 46:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:29:86:BB:1F:BA:AB:84:06:BC:A0:AB:2B:10:1D:8E:43:03:62:D5 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1199337f-bc87-4eb0-aa39-d0149d758273.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3b42::/47 Signature Algorithm: sha256WithRSAEncryption 74:be:1c:a7:a9:2b:ff:1d:7a:b9:c5:b2:ac:7b:0c:c4:26:cf: f7:ec:17:19:9e:e7:a6:91:56:25:8c:c4:f2:4e:38:8e:38:ba: f7:02:f7:cb:05:17:16:40:63:65:29:a8:aa:c9:35:fa:53:0a: cc:0f:e8:ec:f8:be:e0:dd:b2:05:76:2f:cd:76:ba:dc:42:f1: 96:47:75:29:38:3f:d3:bf:fb:c8:58:87:d2:3f:4c:6a:10:d0: c6:e1:fb:95:b7:42:2c:1d:ff:22:b1:ed:71:96:07:ef:32:ea: 91:29:e8:68:df:3f:b1:88:a0:17:f9:1f:14:5b:80:61:8c:e1: 47:c1:ee:11:ed:73:7d:78:0b:e2:84:35:bf:64:d7:e9:35:e0: 85:51:98:dc:bd:8c:36:ad:4b:03:87:1e:6a:f8:5a:f2:d8:97: 9a:db:1c:0a:67:2e:9a:85:49:91:07:b2:23:7a:24:a0:70:e1: d7:cb:9d:bc:a5:da:71:35:2a:db:b2:54:02:b5:d0:5c:24:dd: f4:0c:d3:b4:1c:19:39:47:7f:46:97:cc:be:43:34:82:b7:5d: 47:58:a0:7f:e5:9f:5d:d2:f4:a0:cd:fc:5c:5c:bf:04:49:50: fb:3a:71:0b:6c:e0:11:49:4d:49:36:fb:2a:93:43:3e:2c:a4: 54:7f:a9:30 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfSbZdp4gsL3iFIR5NiVLS+27IPowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDEyMzMwWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNGZiYmI5MWZlZTY1NWVmYzc3NGRiMjE1ZDA2MDk1MjE4 MzI2ZGQ2OWJmYzZjYWY0MjRkYzI0ZGQ4MDkwNTM4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvOFxuI4Fs5f0blSvoSNtdWb8v5bxwaZZseirvEJamAz+v wU405Ss+g90E8LJfKMVZnZyvGe5WtMw/uTsnEvtC+cibyXO/KJKqlxZZasE5bk3c mBjabCQKb5/wTF4EqBnYYM1Ol7YEwR0PseeaV4lD+Cr2kBhJcajCEAEekJGevNHs G6gp+Atg9DHSR/m708fxy8ozRSF8noc8UhDxpqEXEVEh/cWC9GP0EMY3l/1Vbq/n aLZEVOV7ht5Mihg6QpTkEXUJVGp68NjgqjOnW0dFDFVAT9zgQuJuniFHgSJ8qn6H +Os1MZEiEDV6tUgpZ1+nEguXO8rjwvNbBW5+5kZvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8CmGux+6q4QGvKCrKxAdjkMDYtUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzExOTkzMzdmLWJjODctNGViMC1hYTM5LWQwMTQ5ZDc1ODI3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAO0IwDQYJKoZIhvcNAQELBQADggEBAHS+HKepK/8dernFsqx7DMQm z/fsFxme56aRViWMxPJOOI44uvcC98sFFxZAY2UpqKrJNfpTCswP6Oz4vuDdsgV2 L812utxC8ZZHdSk4P9O/+8hYh9I/TGoQ0Mbh+5W3Qiwd/yKx7XGWB+8y6pEp6Gjf P7GIoBf5HxRbgGGM4UfB7hHtc314C+KENb9k1+k14IVRmNy9jDatSwOHHmr4WvLY l5rbHApnLpqFSZEHsiN6JKBw4dfLnbyl2nE1KtuyVAK10Fwk3fQM07QcGTlHf0aX zL5DNIK3XUdYoH/ln13S9KDN/FxcvwRJUPs6cQts4BFJTUk2+yqTQz4spFR/qTA= -----END CERTIFICATE-----Generated at Wed Nov 5 15:59:59 2025 by rpki-client