$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1a8fb0c9-223a-4454-90bb-bc1b64f429c0.roa File: 1a8fb0c9-223a-4454-90bb-bc1b64f429c0.roa (raw, json) Hash identifier: CJy2DbrtRgQ7NECAb7vPRNZhtmMoEG1QZOYr+ZsMD6w= Subject key identifier: A0:F6:EA:E0:73:52:3D:84:E4:CE:F2:B0:78:75:CA:51:D7:ED:1F:EF Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3BC393408428D9533A751BDE58D94E22A096EA9B Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1a8fb0c9-223a-4454-90bb-bc1b64f429c0.roa Signing time: Fri 31 Oct 2025 03:54:56 +0000 ROA not before: Fri 31 Oct 2025 03:54:56 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2f90::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:c3:93:40:84:28:d9:53:3a:75:1b:de:58:d9:4e:22:a0:96:ea:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 03:54:56 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=17ea959de1aa859c618549591efafff846c7860b44e05e19bab6925614464251, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:66:e4:32:00:20:21:5a:8d:87:32:68:11:df: c4:05:a5:96:80:9b:6b:34:44:c5:4a:22:7e:66:bb: 29:92:fd:e6:a1:9e:29:52:20:12:86:2a:cb:19:3a: 66:ba:c7:ae:41:b6:db:31:66:e1:71:27:06:b2:4e: 0b:d3:ed:d3:ab:60:02:dc:67:a1:ac:be:56:33:a6: 47:5b:c6:12:4f:a6:2f:63:01:58:16:d8:b2:0a:16: 74:08:aa:a3:30:15:45:40:14:94:c5:56:bc:9c:08: be:81:76:6b:ca:61:44:49:d4:db:c9:27:f1:cf:a9: f0:ef:e7:e8:88:28:bc:b1:64:0a:3c:c7:f1:8e:f7: 3a:c4:c5:37:41:15:df:31:37:74:21:bf:0b:08:54: d7:3e:3b:7b:f9:ad:9f:17:9f:84:20:36:97:ab:f0: fc:a6:28:62:b1:92:c5:ad:5a:96:bf:17:cf:a9:a7: 7d:8a:15:b5:ae:db:ba:6a:b5:c0:9c:93:1a:73:58: c4:44:c5:be:d1:1f:63:cc:61:86:c6:8e:ba:f9:a7: 7f:ad:0b:ef:01:6b:72:2f:c0:94:fc:4f:30:5a:98: ef:86:5d:e8:3a:7f:46:ab:2a:b0:e0:99:e2:75:5e: c1:de:08:a5:a8:55:bc:b6:83:fb:06:d4:4e:f1:eb: 29:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:F6:EA:E0:73:52:3D:84:E4:CE:F2:B0:78:75:CA:51:D7:ED:1F:EF X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1a8fb0c9-223a-4454-90bb-bc1b64f429c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2f90::/46 Signature Algorithm: sha256WithRSAEncryption 22:23:ca:63:ac:c2:12:d6:d3:23:b9:4c:3a:e8:9c:d6:1f:90: da:b6:15:b3:61:ae:6f:5f:fd:b1:cb:e9:ff:15:ad:0d:be:d2: 86:0d:85:65:a1:93:bc:73:17:46:0d:c8:00:e0:b2:56:fa:50: ea:35:57:38:d3:f5:3a:ef:ec:fa:8f:4f:cb:05:f4:20:69:b0: cb:0e:1b:df:2e:6a:db:cb:c7:48:f9:47:64:ec:dd:0e:fd:82: 92:3d:fd:cd:d9:f9:61:45:e6:77:cd:34:97:79:be:e9:d3:d1: 5e:dd:b7:b0:ff:b5:ed:c1:cc:1e:1a:b6:13:83:79:20:5c:e7: 5d:51:8a:ca:50:5c:96:5b:a2:55:cc:0b:49:5a:66:4b:a3:37: ad:5c:07:3b:ce:d6:0a:a5:28:2a:fc:62:fe:1d:85:e7:07:c2: 1f:32:61:76:0e:62:00:d9:9f:12:39:a0:be:0f:29:78:f7:fd: 6a:f7:3e:9c:e9:43:08:52:bc:30:7b:70:61:34:1c:42:d3:e7: bb:da:d0:0f:3d:48:88:2b:1e:c8:11:e6:65:16:81:f0:0f:73: 2c:ad:32:a2:29:f5:56:f2:91:40:1e:8d:d6:c4:c7:5d:74:b8: da:62:e0:68:c0:95:3c:1f:3b:85:cc:26:fc:4b:10:17:f5:84: e1:f1:aa:9e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUO8OTQIQo2VM6dRveWNlOIqCW6pswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDM1NDU2WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxN2VhOTU5ZGUxYWE4NTljNjE4NTQ5NTkxZWZhZmZmODQ2 Yzc4NjBiNDRlMDVlMTliYWI2OTI1NjE0NDY0MjUxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCMZuQyACAhWo2HMmgR38QFpZaAm2s0RMVKIn5muymS/eah nilSIBKGKssZOma6x65BttsxZuFxJwayTgvT7dOrYALcZ6GsvlYzpkdbxhJPpi9j AVgW2LIKFnQIqqMwFUVAFJTFVrycCL6BdmvKYURJ1NvJJ/HPqfDv5+iIKLyxZAo8 x/GO9zrExTdBFd8xN3QhvwsIVNc+O3v5rZ8Xn4QgNper8PymKGKxksWtWpa/F8+p p32KFbWu27pqtcCckxpzWMRExb7RH2PMYYbGjrr5p3+tC+8Ba3IvwJT8TzBamO+G Xeg6f0arKrDgmeJ1XsHeCKWoVby2g/sG1E7x6ynpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUoPbq4HNSPYTkzvKweHXKUdftH+8wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzFhOGZiMGM5LTIyM2EtNDQ1NC05MGJiLWJjMWI2NGY0MjljMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAL5AwDQYJKoZIhvcNAQELBQADggEBACIjymOswhLW0yO5TDronNYf kNq2FbNhrm9f/bHL6f8VrQ2+0oYNhWWhk7xzF0YNyADgslb6UOo1VzjT9Trv7PqP T8sF9CBpsMsOG98uatvLx0j5R2Ts3Q79gpI9/c3Z+WFF5nfNNJd5vunT0V7dt7D/ te3BzB4athODeSBc511RispQXJZbolXMC0laZkujN61cBzvO1gqlKCr8Yv4dhecH wh8yYXYOYgDZnxI5oL4PKXj3/Wr3PpzpQwhSvDB7cGE0HELT57va0A89SIgrHsgR 5mUWgfAPcyytMqIp9VbykUAejdbEx110uNpi4GjAlTwfO4XMJvxLEBf1hOHxqp4= -----END CERTIFICATE-----Generated at Wed Nov 5 10:55:58 2025 by rpki-client