$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1c38a8d6-5588-44e3-ad96-60a84c571ccf.roa File: 1c38a8d6-5588-44e3-ad96-60a84c571ccf.roa (raw, json) Hash identifier: 9ONEKCDLqVW7Ce2CS4JjV4lmj6ipZ/Whl1r0XdToLBg= Subject key identifier: DA:34:81:A7:D0:EC:57:3C:3A:7A:10:D6:E4:5B:C4:51:1F:64:FB:5B Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 61C760945A45C3920618AAEF70E05EAF5A2755A4 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1c38a8d6-5588-44e3-ad96-60a84c571ccf.roa Signing time: Thu 30 Oct 2025 20:57:25 +0000 ROA not before: Thu 30 Oct 2025 20:57:25 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:144a::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:c7:60:94:5a:45:c3:92:06:18:aa:ef:70:e0:5e:af:5a:27:55:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 20:57:25 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=783cc73c188b9f21725f325e030b8c8e59e3e24e010cbed6e10717f243183798, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:5c:b1:36:cb:6e:30:ec:44:84:c4:e1:96:fe: 6f:50:06:05:bc:e9:81:b1:64:09:39:c5:8b:ff:f8: eb:76:61:36:71:5a:81:d3:e7:b2:f4:a5:d6:f0:2c: 35:ff:7f:3a:f2:86:d5:04:b2:f0:7c:ff:5e:80:94: 65:c1:d9:ff:4e:39:4c:11:7e:9c:6b:9c:74:37:fa: 99:66:cb:32:51:b7:da:5d:ee:a8:fc:d9:4a:4e:52: 57:99:12:5b:ca:67:f3:03:e4:f4:c2:98:79:a3:ee: 66:e6:0c:68:64:2e:7e:c1:a8:3c:d6:d5:d0:56:40: af:bd:21:62:7a:07:44:c4:9e:0d:ce:ef:98:55:67: 01:75:ee:9f:fe:34:0d:85:5b:b5:96:f5:13:04:5b: 18:76:23:10:43:19:e3:79:23:99:ab:58:34:11:b0: 09:82:30:90:31:70:cf:41:87:dd:58:fb:e7:b2:d3: 67:85:85:d7:79:ae:0b:52:40:a1:93:1e:4d:f1:7d: db:4f:f3:3a:28:b7:c7:7c:2f:79:97:62:c1:55:d2: ab:b5:3f:7a:40:14:6c:ef:45:e9:31:01:7b:3e:20: 39:06:c9:ef:f6:64:50:89:fc:ca:1e:88:c1:b6:e0: 2c:74:80:21:64:9e:48:9b:03:9a:ef:3d:12:1a:fa: 9d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:34:81:A7:D0:EC:57:3C:3A:7A:10:D6:E4:5B:C4:51:1F:64:FB:5B X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1c38a8d6-5588-44e3-ad96-60a84c571ccf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:144a::/47 Signature Algorithm: sha256WithRSAEncryption 28:0a:d7:eb:b9:0d:cf:f8:16:3f:d0:78:5c:3e:ca:28:a5:db: 14:24:f7:14:fd:14:2f:f4:c4:b8:ee:09:39:3b:9f:42:34:cb: dc:3a:19:0a:4b:a8:82:6e:1e:17:7a:a4:ea:ec:95:c1:ed:88: c0:41:a2:c1:7c:35:93:04:8c:4b:96:d8:a1:8b:d8:1b:cc:4a: b3:1d:6e:0d:e8:40:4f:12:8e:34:d2:bd:28:33:cc:b7:35:db: c7:0c:4a:1e:98:80:b4:aa:cd:75:72:45:3d:fb:5c:d5:08:e6: e8:ec:ee:93:aa:65:c6:1d:30:5c:0e:fd:3b:58:50:93:ad:87: bd:cd:54:fa:89:df:53:ca:42:cb:dd:72:01:2c:44:b3:35:c6: de:49:f8:6f:19:03:c5:6a:e0:a5:11:a8:29:1d:03:3c:ac:80: 88:4a:78:b2:5f:25:c9:5c:6b:62:d1:22:85:75:25:8b:2a:6c: d4:3f:5f:de:e8:97:a7:f3:cf:3d:73:9a:77:26:df:ba:5d:f3: e7:a3:5b:9e:aa:3d:16:43:ea:09:23:09:b7:9d:ce:f3:9a:f0: f3:7f:0b:bb:ca:4f:40:24:0c:65:bd:bd:41:f8:da:25:65:63: d2:68:1a:99:fb:81:34:31:82:86:6f:c6:1c:58:33:16:e2:48: 2a:39:66:18 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYcdglFpFw5IGGKrvcOBer1onVaQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjA1NzI1WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ODNjYzczYzE4OGI5ZjIxNzI1ZjMyNWUwMzBiOGM4ZTU5 ZTNlMjRlMDEwY2JlZDZlMTA3MTdmMjQzMTgzNzk4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOXLE2y24w7ESExOGW/m9QBgW86YGxZAk5xYv/+Ot2YTZx WoHT57L0pdbwLDX/fzryhtUEsvB8/16AlGXB2f9OOUwRfpxrnHQ3+plmyzJRt9pd 7qj82UpOUleZElvKZ/MD5PTCmHmj7mbmDGhkLn7BqDzW1dBWQK+9IWJ6B0TEng3O 75hVZwF17p/+NA2FW7WW9RMEWxh2IxBDGeN5I5mrWDQRsAmCMJAxcM9Bh91Y++ey 02eFhdd5rgtSQKGTHk3xfdtP8zoot8d8L3mXYsFV0qu1P3pAFGzvRekxAXs+IDkG ye/2ZFCJ/MoeiMG24Cx0gCFknkibA5rvPRIa+p0XAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2jSBp9DsVzw6ehDW5FvEUR9k+1swHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzFjMzhhOGQ2LTU1ODgtNDRlMy1hZDk2LTYwYTg0YzU3MWNjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAFEowDQYJKoZIhvcNAQELBQADggEBACgK1+u5Dc/4Fj/QeFw+yiil 2xQk9xT9FC/0xLjuCTk7n0I0y9w6GQpLqIJuHhd6pOrslcHtiMBBosF8NZMEjEuW 2KGL2BvMSrMdbg3oQE8SjjTSvSgzzLc128cMSh6YgLSqzXVyRT37XNUI5ujs7pOq ZcYdMFwO/TtYUJOth73NVPqJ31PKQsvdcgEsRLM1xt5J+G8ZA8Vq4KURqCkdAzys gIhKeLJfJclca2LRIoV1JYsqbNQ/X97ol6fzzz1zmncm37pd8+ejW56qPRZD6gkj CbedzvOa8PN/C7vKT0AkDGW9vUH42iVlY9JoGpn7gTQxgoZvxhxYMxbiSCo5Zhg= -----END CERTIFICATE-----Generated at Wed Nov 5 12:57:07 2025 by rpki-client