$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/11c309f1-db52-44cc-9534-5dae044d4af1.roa File: 11c309f1-db52-44cc-9534-5dae044d4af1.roa (raw, json) Hash identifier: PFEEp2fSh+2AuXVcrttwQDbssII0WHlenykPPQcF8C4= Subject key identifier: 19:D7:11:DA:FB:DE:44:6E:24:32:DC:58:2B:12:38:08:0A:52:4B:DD Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2174153FF4C0F522BD8E999286A5FB8BDFD51AF5 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/11c309f1-db52-44cc-9534-5dae044d4af1.roa Signing time: Fri 31 Oct 2025 01:24:50 +0000 ROA not before: Fri 31 Oct 2025 01:24:50 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3b6e::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:74:15:3f:f4:c0:f5:22:bd:8e:99:92:86:a5:fb:8b:df:d5:1a:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 01:24:50 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=a438d0df3b9c681e05904daa2a8f93c805630399badf5ceb9c3f2ff6098b1b80, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9a:67:ba:93:90:6b:2b:54:c9:94:66:96:ee: 0b:68:87:e2:2e:27:33:06:fd:7b:c4:d7:70:92:a3: c4:1c:c1:48:53:1d:61:c8:67:a7:23:d3:e0:91:68: 12:67:45:1c:46:39:4f:17:5d:80:f2:e7:b6:d2:76: 3c:01:09:7a:32:f5:6b:18:01:be:e6:cb:b2:fc:21: b8:a1:ab:4d:eb:c9:54:6d:c0:d2:a4:0e:a8:72:55: 71:2e:23:70:e0:fb:5c:56:62:d9:e8:bb:7e:db:61: 3a:69:32:a3:98:ee:f3:0c:24:b3:08:26:dd:96:ea: ec:c8:16:9d:2d:57:bb:38:d5:e9:3e:5b:ce:c9:4d: c4:13:54:84:4d:36:98:c4:d6:4b:9b:a1:78:37:8f: 33:65:12:76:f3:f7:9a:89:89:f7:af:16:27:21:90: f7:b3:9f:48:e4:80:c4:d2:8d:0d:4f:c0:32:0e:88: 3c:1c:ad:49:09:d5:8c:b3:61:41:65:61:3a:48:85: 24:ee:bd:da:34:ec:91:ae:b3:05:fa:16:3b:24:b4: 1e:57:cb:23:d9:8a:f0:a9:13:f6:c6:73:20:b8:b9: ae:ed:ec:03:d5:e4:01:96:ac:3a:88:f7:97:37:a9: 09:05:ea:78:0b:10:6c:e4:82:17:96:50:cc:5b:4f: 06:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:D7:11:DA:FB:DE:44:6E:24:32:DC:58:2B:12:38:08:0A:52:4B:DD X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/11c309f1-db52-44cc-9534-5dae044d4af1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3b6e::/47 Signature Algorithm: sha256WithRSAEncryption 56:e5:57:67:86:d1:61:5a:c9:ef:c9:be:34:71:02:1d:cd:a5: d2:fd:ee:ef:86:ce:85:c5:3a:ca:55:e0:b3:51:0c:fb:ab:c4: 23:a2:cd:39:c1:3f:7b:84:b1:e5:39:ec:84:8c:99:a9:b1:fa: 1c:e6:30:31:fa:af:ba:ca:a6:e2:dd:d3:52:2e:d2:62:97:9f: 6f:67:84:87:c5:a3:b5:2a:20:bd:fe:d9:0b:9e:ca:31:63:3c: 5d:92:12:76:3c:b6:a0:18:4c:3d:e5:27:95:76:f3:ed:9b:60: 5f:77:e8:4a:0e:76:87:87:d5:6b:82:a3:34:54:2e:32:09:ab: cf:42:58:98:0b:a2:47:6b:00:df:4c:99:e2:c8:0f:c3:a7:c6: bf:8d:0b:76:be:73:07:0b:db:35:a3:90:59:56:f1:15:2b:11: 15:9e:8f:ad:9d:22:d3:62:db:ce:7e:1c:9c:da:80:d9:ad:3b: 17:95:b1:44:6b:a5:ef:64:90:09:69:da:be:e2:52:17:ea:97: 1a:e2:eb:b4:a9:55:55:4f:8a:ae:a7:04:1f:74:af:98:0d:fe: a6:65:d0:9f:df:cb:98:02:ef:83:21:da:ef:91:48:48:24:0e: 8c:04:9e:b8:4a:d7:bc:7a:9a:75:fa:0f:57:7c:1a:d6:8b:78: d0:c3:a3:84 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIXQVP/TA9SK9jpmShqX7i9/VGvUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDEyNDUwWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNDM4ZDBkZjNiOWM2ODFlMDU5MDRkYWEyYThmOTNjODA1 NjMwMzk5YmFkZjVjZWI5YzNmMmZmNjA5OGIxYjgwMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwmme6k5BrK1TJlGaW7gtoh+IuJzMG/XvE13CSo8QcwUhT HWHIZ6cj0+CRaBJnRRxGOU8XXYDy57bSdjwBCXoy9WsYAb7my7L8Ibihq03ryVRt wNKkDqhyVXEuI3Dg+1xWYtnou37bYTppMqOY7vMMJLMIJt2W6uzIFp0tV7s41ek+ W87JTcQTVIRNNpjE1kuboXg3jzNlEnbz95qJifevFichkPezn0jkgMTSjQ1PwDIO iDwcrUkJ1YyzYUFlYTpIhSTuvdo07JGuswX6FjsktB5XyyPZivCpE/bGcyC4ua7t 7APV5AGWrDqI95c3qQkF6ngLEGzkgheWUMxbTwa1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUGdcR2vveRG4kMtxYKxI4CApSS90wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzExYzMwOWYxLWRiNTItNDRjYy05NTM0LTVkYWUwNDRkNGFmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAO24wDQYJKoZIhvcNAQELBQADggEBAFblV2eG0WFaye/JvjRxAh3N pdL97u+GzoXFOspV4LNRDPurxCOizTnBP3uEseU57ISMmamx+hzmMDH6r7rKpuLd 01Iu0mKXn29nhIfFo7UqIL3+2QueyjFjPF2SEnY8tqAYTD3lJ5V28+2bYF936EoO doeH1WuCozRULjIJq89CWJgLokdrAN9MmeLID8Onxr+NC3a+cwcL2zWjkFlW8RUr ERWej62dItNi285+HJzagNmtOxeVsURrpe9kkAlp2r7iUhfqlxri67SpVVVPiq6n BB90r5gN/qZl0J/fy5gC74Mh2u+RSEgkDowEnrhK17x6mnX6D1d8GtaLeNDDo4Q= -----END CERTIFICATE-----Generated at Wed Nov 5 09:28:05 2025 by rpki-client