$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1630ab93-c281-4de0-a766-ba352fbf77da.roa File: 1630ab93-c281-4de0-a766-ba352fbf77da.roa (raw, json) Hash identifier: yiYxQoF5EIC43YH/lgwbgT88htijZRRPfZby1Z1Flq0= Subject key identifier: D3:FF:9D:2F:42:ED:FE:2D:4A:09:EF:11:52:5A:76:4F:A3:60:84:81 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 60784626DC67EF218833AED59E4DBF65C0B381A3 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1630ab93-c281-4de0-a766-ba352fbf77da.roa Signing time: Fri 31 Oct 2025 03:37:06 +0000 ROA not before: Fri 31 Oct 2025 03:37:06 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2bb8::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:78:46:26:dc:67:ef:21:88:33:ae:d5:9e:4d:bf:65:c0:b3:81:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 03:37:06 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=36e8ce370e10bb7b3fc59a22f312d0d24ad11daffe7774c8c9344e8c32e9d8aa, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ff:85:97:f5:1d:dd:93:25:7d:2f:ad:8b:7c: df:c5:e4:b2:27:db:e7:f6:64:ef:8e:d6:69:71:13: 60:7a:35:b4:2e:62:56:7e:6d:d8:08:3f:19:66:e6: dd:4b:6a:82:5d:d9:6e:82:a9:68:7c:cd:79:98:94: 9a:16:4e:35:b9:f9:2f:e2:00:a3:01:b2:ac:28:06: b5:f0:e2:1e:03:88:f8:e8:44:b5:f8:44:bf:36:27: f3:af:4d:63:ba:0f:ac:33:7f:90:75:ad:bd:e9:9e: 8a:1e:e6:54:98:35:b5:3c:19:4b:27:51:2b:5d:98: 8e:00:8d:06:94:b5:27:20:ae:99:1e:94:73:23:42: 6b:78:c2:bc:35:5e:88:00:78:cb:22:14:89:48:cc: ee:ba:63:33:82:99:cc:02:18:f1:06:71:2c:54:00: 6a:db:00:79:e6:bf:a7:40:59:18:9d:38:26:bb:af: 40:f7:a9:74:6e:d0:c5:37:7d:8b:b2:ce:6f:b6:e0: 06:4e:63:0b:6b:f9:4e:e2:a1:93:6d:42:08:f1:8a: 9d:e9:f3:64:a7:ab:19:2b:59:4f:51:31:7b:71:fe: 19:9f:a1:17:08:8a:1c:71:9b:5d:10:d4:fb:c3:df: fa:72:0d:68:60:be:a7:7d:5a:78:19:18:a7:f9:7f: 14:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:FF:9D:2F:42:ED:FE:2D:4A:09:EF:11:52:5A:76:4F:A3:60:84:81 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1630ab93-c281-4de0-a766-ba352fbf77da.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2bb8::/46 Signature Algorithm: sha256WithRSAEncryption 28:20:7f:d4:41:ae:67:b4:8e:1b:be:24:93:f2:ce:e8:76:92: 9f:65:03:55:ed:a2:b3:a3:6b:a3:1f:b1:3b:ce:e5:78:0c:7a: fe:2d:e6:78:fe:41:3a:a2:8d:3d:f9:c0:f9:f0:13:ea:62:2b: b3:d4:b8:4a:c5:af:72:fa:f7:8b:a9:7c:69:1f:3e:a0:fd:e7: 4e:8a:b6:a2:55:af:40:52:df:ce:2c:56:3a:a7:42:b1:48:af: 27:89:ab:3f:ff:9e:fd:35:53:7a:1c:a9:39:1f:49:ba:be:db: ac:3b:f8:e4:c1:47:d4:f9:89:a2:ce:87:84:1b:3d:35:0e:75: 6f:40:4d:f9:ee:25:df:52:28:b6:a9:0f:89:36:1b:ab:fc:61: 39:91:87:c2:93:a1:5b:60:75:e7:53:30:e9:2f:78:1a:24:56: a4:27:d5:a7:eb:4f:d7:07:46:fa:71:0f:b7:3b:e3:fc:ec:d0: 04:c4:15:0b:51:ee:72:61:9d:f5:ac:3e:39:31:19:c5:b5:23: 96:16:36:63:20:66:d0:f8:c1:43:6d:e3:3a:3d:b3:7f:63:10: f3:bc:2b:22:19:2e:be:9e:78:f4:04:45:4b:08:7b:51:54:bb: ab:08:b4:bd:a9:24:f3:3f:1b:8f:9e:51:1b:57:9a:cc:40:c9: 6e:62:99:78 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYHhGJtxn7yGIM67Vnk2/ZcCzgaMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDMzNzA2WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNmU4Y2UzNzBlMTBiYjdiM2ZjNTlhMjJmMzEyZDBkMjRh ZDExZGFmZmU3Nzc0YzhjOTM0NGU4YzMyZTlkOGFhMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDU/4WX9R3dkyV9L62LfN/F5LIn2+f2ZO+O1mlxE2B6NbQu YlZ+bdgIPxlm5t1LaoJd2W6CqWh8zXmYlJoWTjW5+S/iAKMBsqwoBrXw4h4DiPjo RLX4RL82J/OvTWO6D6wzf5B1rb3pnooe5lSYNbU8GUsnUStdmI4AjQaUtScgrpke lHMjQmt4wrw1XogAeMsiFIlIzO66YzOCmcwCGPEGcSxUAGrbAHnmv6dAWRidOCa7 r0D3qXRu0MU3fYuyzm+24AZOYwtr+U7ioZNtQgjxip3p82SnqxkrWU9RMXtx/hmf oRcIihxxm10Q1PvD3/pyDWhgvqd9WngZGKf5fxSnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU0/+dL0Lt/i1KCe8RUlp2T6NghIEwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzE2MzBhYjkzLWMyODEtNGRlMC1hNzY2LWJhMzUyZmJmNzdkYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAK7gwDQYJKoZIhvcNAQELBQADggEBACggf9RBrme0jhu+JJPyzuh2 kp9lA1XtorOja6MfsTvO5XgMev4t5nj+QTqijT35wPnwE+piK7PUuErFr3L694up fGkfPqD9506KtqJVr0BS384sVjqnQrFIryeJqz//nv01U3ocqTkfSbq+26w7+OTB R9T5iaLOh4QbPTUOdW9ATfnuJd9SKLapD4k2G6v8YTmRh8KToVtgdedTMOkveBok VqQn1afrT9cHRvpxD7c74/zs0ATEFQtR7nJhnfWsPjkxGcW1I5YWNmMgZtD4wUNt 4zo9s39jEPO8KyIZLr6eePQERUsIe1FUu6sItL2pJPM/G4+eURtXmsxAyW5imXg= -----END CERTIFICATE-----Generated at Wed Nov 5 05:36:35 2025 by rpki-client