$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/14a432e8-9fd1-4c31-b008-d8adf942f457.roa File: 14a432e8-9fd1-4c31-b008-d8adf942f457.roa (raw, json) Hash identifier: RbRzN+d0mrHMEwfwLSbqQw3pWlmo99c5Z0MEQtOwIe4= Subject key identifier: A3:C9:12:88:AD:94:5A:90:2F:06:7E:1E:AC:08:01:BF:C0:B9:8D:55 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 725D59B1685CA34CA8A9A315427EFE9F15242641 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/14a432e8-9fd1-4c31-b008-d8adf942f457.roa Signing time: Fri 31 Oct 2025 06:56:38 +0000 ROA not before: Fri 31 Oct 2025 06:56:38 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3690::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:5d:59:b1:68:5c:a3:4c:a8:a9:a3:15:42:7e:fe:9f:15:24:26:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 06:56:38 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=7b084940f8649445f39cf7871a9401767bb5720fba7e2be527f9fd6e077fff94, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:74:af:ce:85:80:4d:6b:73:21:73:71:79:43: b3:5a:84:94:41:1c:96:2d:dd:d4:e2:f4:e5:74:22: 7c:35:0c:b8:26:e4:f7:a3:ef:f8:f9:50:e8:78:b5: 07:63:70:28:24:27:38:61:cf:a0:d0:e6:e6:76:59: 46:e6:7e:7e:63:31:f6:a8:d9:44:cf:7d:4a:c3:cc: a4:b0:5c:14:e1:aa:95:df:67:43:d7:b1:41:0c:f2: 7f:4e:56:eb:d3:e0:69:87:84:81:fa:7a:a2:cf:6a: 11:8e:e8:c0:7c:51:29:db:44:67:a4:da:b3:05:ae: b8:6b:f5:42:97:3e:74:e1:6c:c0:df:a7:bb:2f:c2: ac:43:5e:4b:50:74:1c:40:3a:ac:35:63:51:91:1d: 4f:ac:29:de:e8:4d:72:4a:5a:1d:a9:fe:9f:9a:7b: b1:1f:08:6e:ae:74:3c:87:5f:de:c6:31:15:32:63: 8a:b6:af:89:27:24:0d:11:4a:63:19:81:31:87:67: 08:c0:5b:f6:3d:cd:89:84:6b:e0:f9:83:73:f8:d8: df:e3:48:7f:51:9f:01:c1:8c:d6:c1:2e:3a:4a:ef: 35:f4:ae:6e:05:7a:9f:c1:ad:57:a9:20:ff:f9:f8: 4a:38:e4:4e:9f:ec:8c:f9:dd:82:40:c1:8e:e3:b5: 98:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:C9:12:88:AD:94:5A:90:2F:06:7E:1E:AC:08:01:BF:C0:B9:8D:55 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/14a432e8-9fd1-4c31-b008-d8adf942f457.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3690::/44 Signature Algorithm: sha256WithRSAEncryption 01:1c:b0:85:e1:00:cb:f5:7c:4a:d5:b4:90:ba:c1:a2:8a:14: 83:21:73:c3:89:73:bb:28:66:ba:97:5d:bd:6e:58:69:a9:c8: 6a:d1:96:36:2a:1d:04:59:79:03:e7:f8:48:c4:ad:41:27:74: b5:23:13:02:62:dd:3b:9c:0a:7a:e7:95:aa:87:c1:4f:08:6d: 2c:a8:8d:91:81:ca:14:82:75:8f:5e:d4:d3:17:aa:f9:8a:f1: e2:90:a9:31:56:bb:51:85:58:67:72:d1:d2:2a:bf:a0:f6:32: b7:4f:c2:2f:01:17:de:4a:f1:e3:25:a6:07:37:28:13:75:e8: cd:bd:03:be:15:63:7a:ba:ef:8b:c9:dc:07:1c:1d:c3:d9:ea: af:f7:45:f7:c7:6c:ab:45:43:db:dc:31:81:5a:ff:77:f9:cc: 51:38:3d:69:4a:96:38:d6:03:22:09:89:e8:4c:13:65:5a:cc: 8b:d8:32:a9:64:07:09:d9:79:11:f9:b2:d3:a3:30:fd:54:8d: ac:13:b2:15:77:18:81:e5:94:df:a8:e9:39:e3:ed:21:48:90: 90:ab:d4:53:64:87:24:bf:ce:11:63:0a:f2:2f:86:42:16:a7: 61:c3:97:24:88:73:ef:5c:b0:ed:8a:46:ed:93:5a:6e:d6:4b: b6:de:e0:aa -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcl1ZsWhco0yoqaMVQn7+nxUkJkEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDY1NjM4WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YjA4NDk0MGY4NjQ5NDQ1ZjM5Y2Y3ODcxYTk0MDE3Njdi YjU3MjBmYmE3ZTJiZTUyN2Y5ZmQ2ZTA3N2ZmZjk0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCldK/OhYBNa3Mhc3F5Q7NahJRBHJYt3dTi9OV0Inw1DLgm 5Pej7/j5UOh4tQdjcCgkJzhhz6DQ5uZ2WUbmfn5jMfao2UTPfUrDzKSwXBThqpXf Z0PXsUEM8n9OVuvT4GmHhIH6eqLPahGO6MB8USnbRGek2rMFrrhr9UKXPnThbMDf p7svwqxDXktQdBxAOqw1Y1GRHU+sKd7oTXJKWh2p/p+ae7EfCG6udDyHX97GMRUy Y4q2r4knJA0RSmMZgTGHZwjAW/Y9zYmEa+D5g3P42N/jSH9RnwHBjNbBLjpK7zX0 rm4Fep/BrVepIP/5+Eo45E6f7Iz53YJAwY7jtZjPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUo8kSiK2UWpAvBn4erAgBv8C5jVUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzE0YTQzMmU4LTlmZDEtNGMzMS1iMDA4LWQ4YWRmOTQyZjQ1Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAJAANpAwDQYJKoZIhvcNAQELBQADggEBAAEcsIXhAMv1fErVtJC6waKK FIMhc8OJc7soZrqXXb1uWGmpyGrRljYqHQRZeQPn+EjErUEndLUjEwJi3TucCnrn laqHwU8IbSyojZGByhSCdY9e1NMXqvmK8eKQqTFWu1GFWGdy0dIqv6D2MrdPwi8B F95K8eMlpgc3KBN16M29A74VY3q674vJ3AccHcPZ6q/3RffHbKtFQ9vcMYFa/3f5 zFE4PWlKljjWAyIJiehME2VazIvYMqlkBwnZeRH5stOjMP1UjawTshV3GIHllN+o 6Tnj7SFIkJCr1FNkhyS/zhFjCvIvhkIWp2HDlySIc+9csO2KRu2TWm7WS7be4Ko= -----END CERTIFICATE-----Generated at Wed Nov 5 09:26:47 2025 by rpki-client