$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1499b63d-556d-4b49-a650-42c93e5833d0.roa File: 1499b63d-556d-4b49-a650-42c93e5833d0.roa (raw, json) Hash identifier: 2tpzLwYA/Jg3uLEDu34bp0JtNHIg6HooD7WKmkTb2R8= Subject key identifier: 7E:1E:69:C7:73:41:53:60:41:46:DD:97:D6:85:6C:DF:23:E5:57:16 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 57B8C75C91CA0DD897D7285B5D726B7C7ED7730F Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1499b63d-556d-4b49-a650-42c93e5833d0.roa Signing time: Fri 31 Oct 2025 03:28:19 +0000 ROA not before: Fri 31 Oct 2025 03:28:19 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2b18::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:b8:c7:5c:91:ca:0d:d8:97:d7:28:5b:5d:72:6b:7c:7e:d7:73:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 03:28:19 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=e30d78d4ec447af0a41ff487aa0687d9582ecbfb919c17159384e43147294b3f, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:bf:e1:bd:74:13:24:e6:45:23:54:d0:92:94: 76:e9:06:10:81:3b:77:75:67:50:41:54:9f:1d:61: 02:c8:be:1c:5c:71:93:93:d0:e1:f6:cf:52:8a:49: a9:21:96:37:f2:cf:eb:db:d3:35:44:35:2d:a7:2d: 58:c5:2b:07:4e:d7:11:48:74:ee:be:ac:ec:65:53: 96:8a:52:78:7b:e6:aa:96:05:74:30:7f:a2:3e:02: 90:2c:bf:5c:50:6d:df:4b:3e:ef:7a:ab:e9:2d:3e: 31:23:b3:82:d4:b4:22:32:93:b1:dc:a0:b6:19:3d: dd:c4:e2:76:d9:8a:07:2d:07:44:64:93:ba:b5:13: d5:8a:5c:b5:7b:a8:d8:83:ba:45:76:1a:09:8f:5e: 7a:44:8a:3d:ad:a5:22:be:fb:8e:6b:2e:f5:c2:6e: cf:c7:83:10:62:61:be:84:df:be:da:1d:74:b5:50: b1:9c:e4:30:cb:ce:81:f6:89:d4:9e:3e:70:8d:93: 5a:88:93:ca:8b:12:24:48:cc:ba:5a:99:68:ef:5d: 44:be:b9:b5:ad:b9:5d:aa:21:7f:ca:d1:2d:5d:25: e0:04:7a:9c:ad:42:f5:ff:aa:b5:89:08:d7:c6:ad: da:7f:a7:53:e8:84:97:8a:1f:8f:41:a1:37:fb:fc: fc:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:1E:69:C7:73:41:53:60:41:46:DD:97:D6:85:6C:DF:23:E5:57:16 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1499b63d-556d-4b49-a650-42c93e5833d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2b18::/46 Signature Algorithm: sha256WithRSAEncryption 8f:05:7f:8e:f2:7c:cd:04:7d:9d:65:5b:3a:9f:d0:13:1b:6b: e3:9c:4d:6d:50:81:9f:4d:9e:93:ad:56:36:c8:3a:86:23:b2: 8b:0f:b9:aa:f0:87:c9:81:59:87:f1:e4:b5:bb:bb:66:74:31: 16:74:72:59:09:84:dd:0b:49:84:fb:ab:bc:56:ef:26:7a:b2: 4a:58:3f:94:8b:c5:36:67:e7:1e:1e:ed:b9:2d:44:35:bf:af: 1e:f6:8a:74:74:10:dd:26:94:80:35:ab:7a:c2:77:9a:4d:fe: d5:95:1f:6e:04:ea:eb:73:d0:40:c1:16:36:3e:6e:f4:9d:b7: 61:a7:23:8e:3c:a3:2d:51:50:7c:46:71:55:a3:d8:2a:21:02: 86:b7:e5:28:0b:d8:7c:cd:cd:e3:9b:01:bc:95:49:20:0a:58: 2d:9c:63:fb:71:38:37:59:4a:9d:9f:60:5f:17:17:95:53:ca: 05:e4:56:35:02:bf:43:0c:dc:64:41:f3:e6:cd:ae:ae:7b:25: 57:b6:82:2e:48:0d:b7:a5:37:58:33:47:9b:89:59:bb:ff:43: 65:ac:b2:80:e0:db:50:b1:4e:de:0e:f8:6e:2a:59:04:c5:bd: a1:9a:5d:e3:03:c3:4f:a0:e5:f9:9b:1e:b6:0a:04:62:bc:60: 52:4d:63:fd -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUV7jHXJHKDdiX1yhbXXJrfH7Xcw8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDMyODE5WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMzBkNzhkNGVjNDQ3YWYwYTQxZmY0ODdhYTA2ODdkOTU4 MmVjYmZiOTE5YzE3MTU5Mzg0ZTQzMTQ3Mjk0YjNmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCov+G9dBMk5kUjVNCSlHbpBhCBO3d1Z1BBVJ8dYQLIvhxc cZOT0OH2z1KKSakhljfyz+vb0zVENS2nLVjFKwdO1xFIdO6+rOxlU5aKUnh75qqW BXQwf6I+ApAsv1xQbd9LPu96q+ktPjEjs4LUtCIyk7HcoLYZPd3E4nbZigctB0Rk k7q1E9WKXLV7qNiDukV2GgmPXnpEij2tpSK++45rLvXCbs/HgxBiYb6E377aHXS1 ULGc5DDLzoH2idSePnCNk1qIk8qLEiRIzLpamWjvXUS+ubWtuV2qIX/K0S1dJeAE epytQvX/qrWJCNfGrdp/p1PohJeKH49BoTf7/PynAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUfh5px3NBU2BBRt2X1oVs3yPlVxYwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzE0OTliNjNkLTU1NmQtNGI0OS1hNjUwLTQyYzkzZTU4MzNkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAKxgwDQYJKoZIhvcNAQELBQADggEBAI8Ff47yfM0EfZ1lWzqf0BMb a+OcTW1QgZ9NnpOtVjbIOoYjsosPuarwh8mBWYfx5LW7u2Z0MRZ0clkJhN0LSYT7 q7xW7yZ6skpYP5SLxTZn5x4e7bktRDW/rx72inR0EN0mlIA1q3rCd5pN/tWVH24E 6utz0EDBFjY+bvSdt2GnI448oy1RUHxGcVWj2CohAoa35SgL2HzNzeObAbyVSSAK WC2cY/txODdZSp2fYF8XF5VTygXkVjUCv0MM3GRB8+bNrq57JVe2gi5IDbelN1gz R5uJWbv/Q2WssoDg21CxTt4O+G4qWQTFvaGaXeMDw0+g5fmbHrYKBGK8YFJNY/0= -----END CERTIFICATE-----Generated at Wed Nov 5 07:46:41 2025 by rpki-client