$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/18e38fcb-8447-471b-a1fc-0de8ddb39195.roa File: 18e38fcb-8447-471b-a1fc-0de8ddb39195.roa (raw, json) Hash identifier: Noz1QO9sR80UM0vXay+cRT/s5dcTtNfaWFLkB4Dxl8s= Subject key identifier: 65:69:A9:8D:98:CF:0E:A1:D9:C7:76:7E:87:94:88:A5:91:FB:82:70 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 687FB77D1F1D3895B1F820BFD55DCD3800E4C34B Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/18e38fcb-8447-471b-a1fc-0de8ddb39195.roa Signing time: Fri 31 Oct 2025 05:25:30 +0000 ROA not before: Fri 31 Oct 2025 05:25:30 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1ba8::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:7f:b7:7d:1f:1d:38:95:b1:f8:20:bf:d5:5d:cd:38:00:e4:c3:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 05:25:30 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=54160e2a0687f933d7ca3eb450014135b75296b86647907bf3f9d1b8582357ac, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c5:6a:fb:e5:24:d5:f3:93:a9:b5:03:90:c1: 53:7c:00:d8:44:ba:3e:0e:e2:37:e3:1b:a8:28:92: 9e:aa:8d:aa:7e:a0:60:03:8c:0d:ff:91:52:67:e1: ec:6c:09:81:96:dd:c5:11:e4:ea:c8:15:f6:f5:54: d8:36:e0:47:ab:1d:6b:d3:fa:d4:46:48:53:f9:67: 74:46:b9:80:a4:82:17:04:9f:98:15:3b:46:6e:0a: b1:60:d7:be:3d:43:7a:c3:ef:9a:46:f4:89:73:56: 0f:2d:91:82:fb:05:61:b7:4c:22:3b:73:a9:bd:c1: d3:23:3f:d8:76:bb:8c:e8:7b:9a:ae:68:51:a6:ea: 5a:74:31:14:b4:ae:ab:b6:58:7f:18:52:47:5f:d6: 01:2d:a8:3f:16:52:3d:b2:16:63:83:3b:71:14:1d: 1e:2c:6d:60:c2:78:36:01:a2:a7:9e:34:28:a0:96: 9a:e0:e9:e6:e7:3c:21:97:ba:0d:76:f9:28:10:e7: 53:10:af:6c:e8:59:83:0b:d7:6f:61:b5:50:e7:3a: 5e:24:74:4d:c2:8c:a8:5c:27:93:9f:8a:44:9a:4f: c9:87:62:e2:57:4e:48:97:45:ea:f5:90:9c:22:e7: ca:bf:d6:6a:c1:d8:5c:77:1d:d3:ac:70:68:d1:95: a4:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:69:A9:8D:98:CF:0E:A1:D9:C7:76:7E:87:94:88:A5:91:FB:82:70 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/18e38fcb-8447-471b-a1fc-0de8ddb39195.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1ba8::/45 Signature Algorithm: sha256WithRSAEncryption 72:1d:1c:f8:36:42:44:ef:05:e5:3e:82:6e:56:ea:df:c8:5f: 00:32:4d:b7:86:d5:1b:df:e4:14:f5:f0:c7:97:da:4a:21:40: 51:a2:0f:3c:28:8e:e7:cc:91:b0:1c:52:c1:f5:a6:a4:54:20: 79:f9:70:ed:fb:6b:8f:c9:47:cb:66:b6:95:e5:22:0f:f7:c8: 7b:31:32:4b:a8:9f:7e:2c:64:67:78:ab:6a:65:0d:e6:3c:d7: 6c:b3:5f:4a:1d:ad:4b:c6:c5:7a:1f:13:ad:71:9d:28:b4:8f: a1:67:6e:96:fd:2b:2e:a8:2b:40:12:a1:17:d3:99:0f:c3:65: 69:b3:36:db:bc:96:3b:07:60:f8:d4:98:8e:0b:4a:7f:32:d2: 1d:af:1a:79:cf:a0:40:0c:5c:02:4e:68:f4:cc:48:e8:9b:13: 3b:bf:c8:66:54:6e:51:68:e1:e8:bc:ae:a3:2d:4f:e1:9e:09: 43:77:85:8f:ae:ad:3e:85:29:e5:1a:e1:9f:ba:cd:1e:94:14: 57:65:46:27:5a:0b:0b:73:c2:d0:bd:77:14:2a:64:8a:00:78: f9:3e:e2:f9:06:f8:c9:39:16:86:fb:3a:4d:6c:69:9d:cc:64: ce:48:95:87:98:73:75:d1:f7:f9:b9:68:8c:cc:62:a4:a8:27: d3:f1:43:92 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUaH+3fR8dOJWx+CC/1V3NOADkw0swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDUyNTMwWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NDE2MGUyYTA2ODdmOTMzZDdjYTNlYjQ1MDAxNDEzNWI3 NTI5NmI4NjY0NzkwN2JmM2Y5ZDFiODU4MjM1N2FjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3xWr75STV85OptQOQwVN8ANhEuj4O4jfjG6gokp6qjap+ oGADjA3/kVJn4exsCYGW3cUR5OrIFfb1VNg24EerHWvT+tRGSFP5Z3RGuYCkghcE n5gVO0ZuCrFg1749Q3rD75pG9IlzVg8tkYL7BWG3TCI7c6m9wdMjP9h2u4zoe5qu aFGm6lp0MRS0rqu2WH8YUkdf1gEtqD8WUj2yFmODO3EUHR4sbWDCeDYBoqeeNCig lprg6ebnPCGXug12+SgQ51MQr2zoWYML129htVDnOl4kdE3CjKhcJ5OfikSaT8mH YuJXTkiXRer1kJwi58q/1mrB2Fx3HdOscGjRlaSnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZWmpjZjPDqHZx3Z+h5SIpZH7gnAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzE4ZTM4ZmNiLTg0NDctNDcxYi1hMWZjLTBkZThkZGIzOTE5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAG6gwDQYJKoZIhvcNAQELBQADggEBAHIdHPg2QkTvBeU+gm5W6t/I XwAyTbeG1Rvf5BT18MeX2kohQFGiDzwojufMkbAcUsH1pqRUIHn5cO37a4/JR8tm tpXlIg/3yHsxMkuon34sZGd4q2plDeY812yzX0odrUvGxXofE61xnSi0j6Fnbpb9 Ky6oK0ASoRfTmQ/DZWmzNtu8ljsHYPjUmI4LSn8y0h2vGnnPoEAMXAJOaPTMSOib Ezu/yGZUblFo4ei8rqMtT+GeCUN3hY+urT6FKeUa4Z+6zR6UFFdlRidaCwtzwtC9 dxQqZIoAePk+4vkG+Mk5Fob7Ok1saZ3MZM5IlYeYc3XR9/m5aIzMYqSoJ9PxQ5I= -----END CERTIFICATE-----Generated at Wed Nov 5 07:46:22 2025 by rpki-client