$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/143ac1df-283c-4c92-9152-f918a1758415.roa File: 143ac1df-283c-4c92-9152-f918a1758415.roa (raw, json) Hash identifier: jBPZk7JYMFelBMz2qVx2kMUQEtaK4qR2OYNgBnAYlFs= Subject key identifier: DE:1E:7A:B2:A7:8C:6A:69:87:2D:4F:6A:11:09:ED:C6:2D:60:8A:6A Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 20D6008B5680C8F45A004A51F8966E3B78715253 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/143ac1df-283c-4c92-9152-f918a1758415.roa Signing time: Fri 31 Oct 2025 01:23:13 +0000 ROA not before: Fri 31 Oct 2025 01:23:13 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3b00::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:d6:00:8b:56:80:c8:f4:5a:00:4a:51:f8:96:6e:3b:78:71:52:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 01:23:13 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=00bdb355f1ee9154a5b5c3af1043f92a85c63b4b18beb2a9c793fe1d3cf873b4, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d4:ef:62:d1:d5:16:33:9d:a0:0c:97:11:8d: 37:da:80:4b:55:3b:d2:11:4f:42:ec:b7:cd:16:22: 5b:0b:e3:11:b9:8d:0b:0d:29:92:37:03:92:91:0b: 0f:04:7f:f8:ef:5b:67:09:8e:da:ba:f5:60:bf:b5: a0:28:00:ac:75:bc:13:b4:45:49:3c:61:bb:52:92: 32:24:dd:b6:37:44:46:07:bd:b0:c8:ca:2b:0a:fd: 34:40:4f:ab:21:8b:1a:0c:4b:e7:81:6e:5c:31:44: cb:22:23:f5:82:85:f5:6f:b5:7a:7c:78:0e:19:0c: 7f:3b:9d:b5:c8:11:e8:a8:e2:6a:0a:86:d6:46:42: 23:b1:e7:eb:67:41:4f:cc:7c:44:5c:1d:82:9d:ad: f6:ce:d2:f9:f2:06:9d:d6:0f:87:98:b7:24:52:3c: 43:eb:f9:0c:83:7f:ec:67:fe:b5:e5:c6:32:f2:1d: e9:44:f4:11:d8:d9:30:6e:c3:9c:4f:f9:b7:ab:a0: 72:db:61:43:54:aa:99:2f:77:30:36:74:c9:50:9d: 1c:c0:07:22:22:74:b5:cc:30:59:b7:9f:26:3f:b9: ed:fd:35:a2:de:19:7c:73:29:5d:c4:54:a8:98:6e: 5c:eb:72:cc:80:40:fc:d7:0b:86:7c:68:04:5b:78: 23:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:1E:7A:B2:A7:8C:6A:69:87:2D:4F:6A:11:09:ED:C6:2D:60:8A:6A X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/143ac1df-283c-4c92-9152-f918a1758415.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3b00::/47 Signature Algorithm: sha256WithRSAEncryption 90:e5:b6:8e:f2:4d:c1:e3:d5:c5:ed:50:2b:10:2d:88:f4:82: f6:5c:b2:d5:87:c6:20:a5:7a:b1:aa:b8:6e:d6:e3:c1:c8:e1: bd:37:bf:3d:dd:b5:48:89:c8:ca:e8:14:25:ed:69:00:b0:b2: 82:4a:f1:31:46:82:78:2a:33:f9:02:1e:a7:75:6e:50:67:7e: 8b:49:5f:71:af:cb:91:20:07:6a:a8:c6:86:5c:c7:da:7b:2b: eb:1f:b6:ff:c2:e8:cc:5d:c1:36:87:5e:a0:4b:70:d6:4a:b7: c4:e6:bc:c1:1b:46:10:98:ba:e5:4f:46:4a:75:83:af:38:1e: ee:3e:5c:29:f3:5d:9c:26:4e:18:c3:8d:d7:e6:bf:f6:a8:81: 76:f9:5c:79:99:fd:41:ea:b0:9d:9e:69:41:f0:dd:b9:00:c6: 32:33:8b:f7:4c:5a:cf:fe:44:42:39:23:a1:1b:45:97:23:81: e7:03:95:ec:40:2b:3b:f8:49:cd:ea:70:06:50:05:00:2e:8f: 81:19:3e:9f:28:2f:5a:5f:07:7f:1d:3a:45:66:d4:2f:75:45: d1:ad:48:35:8a:50:79:de:53:e0:36:63:b7:ba:4a:bd:79:ff: 21:89:ca:e0:d2:3a:f5:31:8a:98:05:23:1e:c4:cc:90:93:20: 17:21:35:54 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUINYAi1aAyPRaAEpR+JZuO3hxUlMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDEyMzEzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMGJkYjM1NWYxZWU5MTU0YTViNWMzYWYxMDQzZjkyYTg1 YzYzYjRiMThiZWIyYTljNzkzZmUxZDNjZjg3M2I0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDE1O9i0dUWM52gDJcRjTfagEtVO9IRT0Lst80WIlsL4xG5 jQsNKZI3A5KRCw8Ef/jvW2cJjtq69WC/taAoAKx1vBO0RUk8YbtSkjIk3bY3REYH vbDIyisK/TRAT6shixoMS+eBblwxRMsiI/WChfVvtXp8eA4ZDH87nbXIEeio4moK htZGQiOx5+tnQU/MfERcHYKdrfbO0vnyBp3WD4eYtyRSPEPr+QyDf+xn/rXlxjLy HelE9BHY2TBuw5xP+beroHLbYUNUqpkvdzA2dMlQnRzAByIidLXMMFm3nyY/ue39 NaLeGXxzKV3EVKiYblzrcsyAQPzXC4Z8aARbeCOnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3h56sqeMammHLU9qEQntxi1gimowHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzE0M2FjMWRmLTI4M2MtNGM5Mi05MTUyLWY5MThhMTc1ODQxNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOwAwDQYJKoZIhvcNAQELBQADggEBAJDlto7yTcHj1cXtUCsQLYj0 gvZcstWHxiClerGquG7W48HI4b03vz3dtUiJyMroFCXtaQCwsoJK8TFGgngqM/kC Hqd1blBnfotJX3Gvy5EgB2qoxoZcx9p7K+sftv/C6MxdwTaHXqBLcNZKt8TmvMEb RhCYuuVPRkp1g684Hu4+XCnzXZwmThjDjdfmv/aogXb5XHmZ/UHqsJ2eaUHw3bkA xjIzi/dMWs/+REI5I6EbRZcjgecDlexAKzv4Sc3qcAZQBQAuj4EZPp8oL1pfB38d OkVm1C91RdGtSDWKUHneU+A2Y7e6Sr15/yGJyuDSOvUxipgFIx7EzJCTIBchNVQ= -----END CERTIFICATE-----Generated at Wed Nov 5 15:27:34 2025 by rpki-client