$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/165eb35a-e590-43ec-952a-7a17cb133927.roa File: 165eb35a-e590-43ec-952a-7a17cb133927.roa (raw, json) Hash identifier: tH7HuKdzxHHO1r/lQ91kb+vWbgLGoVboRjsvCZP7QvQ= Subject key identifier: 28:6A:4B:3B:8A:0D:B8:BD:DA:0E:9E:5F:C7:53:84:12:81:95:49:6E Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 67FA20037656FE1A03219467A7D1A689CACFD508 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/165eb35a-e590-43ec-952a-7a17cb133927.roa Signing time: Fri 31 Oct 2025 01:08:40 +0000 ROA not before: Fri 31 Oct 2025 01:08:40 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:399e::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:fa:20:03:76:56:fe:1a:03:21:94:67:a7:d1:a6:89:ca:cf:d5:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 01:08:40 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=1b1f16b13844421898bdf8e1f934a91bf9e3615b3afa37e0d6050e439b00b382, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:cf:04:25:b4:9f:cb:d8:dd:3d:d9:5c:3e:d8: a0:b2:ee:ff:fc:ce:77:12:37:c9:2f:30:d6:6f:a6: 19:6c:bd:e9:0b:d4:1e:bb:6f:e0:3b:2b:67:54:cf: 7a:43:8f:75:dc:7e:53:80:6e:9a:83:b3:93:4e:15: e7:b5:c7:34:d3:3e:4f:c4:af:af:f8:30:b9:76:b6: 5c:f3:1d:0f:b2:86:62:65:c0:29:dd:34:0d:89:0d: 4f:81:99:8d:fa:84:b2:f3:08:6b:d2:bf:ee:29:e8: 71:ca:a9:53:d5:e6:b4:c6:32:05:e0:9d:65:60:ba: 87:05:1e:af:2e:4c:74:66:d3:23:20:89:49:cc:c2: db:08:e3:d6:85:be:5a:02:79:11:cf:27:0c:ff:50: cc:4f:98:cc:57:a2:7b:49:ef:3e:89:4e:2a:97:3e: 98:bc:ec:81:13:42:84:d7:7a:ab:1c:ef:19:dd:b0: c2:a9:05:ef:8c:9c:ae:8d:f1:c8:79:96:fe:c9:f6: dc:64:a4:af:c4:95:e7:35:38:2a:ad:ca:9c:f1:15: f7:26:3c:45:e2:17:ee:cf:70:ef:33:fb:3c:1e:1e: 7c:5c:a0:b1:0b:b3:61:fc:c6:c4:3a:fa:53:f1:41: ef:91:d6:b2:bd:ed:a2:16:7f:d1:e7:28:f2:c2:88: a2:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:6A:4B:3B:8A:0D:B8:BD:DA:0E:9E:5F:C7:53:84:12:81:95:49:6E X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/165eb35a-e590-43ec-952a-7a17cb133927.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:399e::/47 Signature Algorithm: sha256WithRSAEncryption 94:3a:cd:df:af:76:5b:02:f1:72:01:6e:21:4f:5a:a3:bb:ac: 6a:35:00:74:e4:f7:d1:b6:c0:42:5a:4f:6b:3a:d5:37:9c:03: f0:f5:96:03:98:93:6e:d7:f9:a3:b1:18:93:bc:55:38:38:11: d5:00:d7:96:b1:96:33:ea:27:a1:d8:b7:5c:0a:ba:f0:5e:49: ed:4b:7b:8a:a4:64:7d:a9:aa:e7:65:81:8f:09:08:83:cf:42: aa:4d:f1:fa:72:c0:4b:4d:ca:b0:47:11:50:00:69:15:a1:7a: ee:c8:92:cb:56:54:51:ff:04:a9:21:88:21:0f:a9:9b:2b:88: e6:b9:01:8f:68:d5:a7:59:83:cd:fb:a3:98:1e:56:21:07:c3: b2:99:84:ec:5f:30:c8:06:55:95:83:65:a4:11:c1:08:c9:7c: ce:14:67:a4:b9:ff:5f:f3:15:b9:b9:70:99:13:1e:09:64:c9: bf:65:e0:2d:f9:a2:75:95:2a:d2:a1:4d:3a:d0:ed:07:cf:4d: cb:c6:62:92:0e:b7:91:74:d4:d1:0e:13:3f:2f:e3:01:71:08: ff:5e:6f:22:84:8d:7c:15:09:64:6d:5f:4d:36:0f:15:f3:91: f7:c4:67:c4:97:a2:8f:c3:c4:5a:9e:6e:19:54:a1:78:ae:0a: 08:33:f1:75 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZ/ogA3ZW/hoDIZRnp9GmicrP1QgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDEwODQwWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYjFmMTZiMTM4NDQ0MjE4OThiZGY4ZTFmOTM0YTkxYmY5 ZTM2MTViM2FmYTM3ZTBkNjA1MGU0MzliMDBiMzgyMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCozwQltJ/L2N092Vw+2KCy7v/8zncSN8kvMNZvphlsvekL 1B67b+A7K2dUz3pDj3XcflOAbpqDs5NOFee1xzTTPk/Er6/4MLl2tlzzHQ+yhmJl wCndNA2JDU+BmY36hLLzCGvSv+4p6HHKqVPV5rTGMgXgnWVguocFHq8uTHRm0yMg iUnMwtsI49aFvloCeRHPJwz/UMxPmMxXontJ7z6JTiqXPpi87IETQoTXeqsc7xnd sMKpBe+MnK6N8ch5lv7J9txkpK/Elec1OCqtypzxFfcmPEXiF+7PcO8z+zweHnxc oLELs2H8xsQ6+lPxQe+R1rK97aIWf9HnKPLCiKILAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKGpLO4oNuL3aDp5fx1OEEoGVSW4wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzE2NWViMzVhLWU1OTAtNDNlYy05NTJhLTdhMTdjYjEzMzkyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOZ4wDQYJKoZIhvcNAQELBQADggEBAJQ6zd+vdlsC8XIBbiFPWqO7 rGo1AHTk99G2wEJaT2s61TecA/D1lgOYk27X+aOxGJO8VTg4EdUA15axljPqJ6HY t1wKuvBeSe1Le4qkZH2pqudlgY8JCIPPQqpN8fpywEtNyrBHEVAAaRWheu7IkstW VFH/BKkhiCEPqZsriOa5AY9o1adZg837o5geViEHw7KZhOxfMMgGVZWDZaQRwQjJ fM4UZ6S5/1/zFbm5cJkTHglkyb9l4C35onWVKtKhTTrQ7QfPTcvGYpIOt5F01NEO Ez8v4wFxCP9ebyKEjXwVCWRtX002DxXzkffEZ8SXoo/DxFqebhlUoXiuCggz8XU= -----END CERTIFICATE-----Generated at Wed Nov 5 10:53:44 2025 by rpki-client