$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1c53f083-e781-42f5-819e-5a86e7bdf537.roa File: 1c53f083-e781-42f5-819e-5a86e7bdf537.roa (raw, json) Hash identifier: uqArsS7Bi47o4FUqZpi5dJZjsk+s9rrqkhoUxVGwKjo= Subject key identifier: D7:65:A7:98:6E:E8:77:02:9E:DF:FC:0F:89:B6:51:5A:94:AC:0B:BD Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 350D81FF6CDEF661672F3C616565D017AFD4A64B Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1c53f083-e781-42f5-819e-5a86e7bdf537.roa Signing time: Thu 30 Oct 2025 23:59:10 +0000 ROA not before: Thu 30 Oct 2025 23:59:10 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:32b4::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:0d:81:ff:6c:de:f6:61:67:2f:3c:61:65:65:d0:17:af:d4:a6:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 23:59:10 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=4a650221d9b432a7fbd9b6e96c920171b11bd6d3d4e740f19974c895ea8937eb, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:cb:a3:72:80:6c:79:e4:eb:6b:00:b5:4f:8e: 35:5f:34:d5:ff:72:64:dc:c6:d3:d5:a4:28:e3:a9: 80:c7:d6:64:6c:84:ff:b2:66:0e:9b:97:08:62:17: 86:57:88:43:ac:d1:5e:4f:78:f3:59:12:6b:56:96: 59:6c:09:7f:89:5c:9a:05:d0:0e:a9:56:d6:92:3d: 0b:70:93:d6:d9:98:f4:95:ec:98:17:23:28:5e:0d: f1:23:86:09:0e:44:8c:c1:5c:e1:69:9d:08:67:a6: b3:4a:98:c8:70:6e:b1:5c:23:1e:ed:f0:6e:95:09: 81:13:6d:3b:6f:4d:8c:52:fe:aa:54:11:55:2b:44: 78:df:19:04:f3:29:ab:2f:88:42:7d:01:43:9a:83: f0:dd:af:42:ca:8d:e0:6c:08:15:79:c8:40:77:59: 56:cf:f3:f1:22:85:17:eb:73:43:30:06:24:2c:05: 39:9a:e2:8c:9f:78:a8:e7:ce:37:60:aa:f6:a1:c8: a6:53:93:38:c3:c0:b3:a5:df:e0:75:29:93:fe:78: cd:f5:ca:33:c5:3f:e6:05:8e:77:f5:f1:e4:9a:04: 3b:a5:0b:db:12:c3:95:e8:55:8f:f1:11:a8:a5:ee: 49:d7:39:a0:82:93:c2:58:dc:15:89:08:08:b6:c0: ec:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:65:A7:98:6E:E8:77:02:9E:DF:FC:0F:89:B6:51:5A:94:AC:0B:BD X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1c53f083-e781-42f5-819e-5a86e7bdf537.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:32b4::/47 Signature Algorithm: sha256WithRSAEncryption 70:7b:6e:50:8b:e4:bb:47:62:00:72:65:8e:a6:1f:31:35:35: fe:62:1d:c9:4e:35:ff:68:ce:61:9a:24:31:ee:11:84:48:e9: ea:b2:c4:5a:5c:71:02:3d:45:d3:35:47:70:cf:d8:2a:a2:99: 4b:52:a2:79:59:b0:16:44:04:b4:16:f4:d7:32:fa:33:d1:da: c6:c4:90:0c:b5:70:23:a8:5b:18:b5:66:ca:e8:db:32:31:3f: 2b:1a:39:06:16:0e:0c:6a:cb:10:68:af:b0:4d:07:af:5d:a4: d5:3b:38:7f:74:f3:87:f8:ec:ce:a2:16:dd:dd:1f:d9:82:6f: d2:8b:ea:de:e5:8d:9c:80:5f:2e:4b:2d:a9:1a:a8:50:28:51: eb:43:f2:93:8b:0c:81:f2:0b:b3:e5:75:37:72:bb:1b:60:3b: a3:46:7f:64:2c:a7:a6:8c:96:de:2d:c5:4c:fc:c2:80:02:30: 2a:d4:fa:4b:6e:8e:c5:22:3c:37:55:92:a4:0c:ca:fb:f5:ba: 88:40:31:47:fe:98:26:c1:a0:30:1f:92:fc:f3:96:c2:0d:3c: 18:a1:08:55:42:f0:59:5f:05:b8:48:73:80:e9:49:f8:9f:8f: 11:e5:f0:04:5b:60:c3:31:8b:a8:ae:9c:fe:d2:09:6b:48:e5: 6d:0e:e1:2a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNQ2B/2ze9mFnLzxhZWXQF6/UpkswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjM1OTEwWhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YTY1MDIyMWQ5YjQzMmE3ZmJkOWI2ZTk2YzkyMDE3MWIx MWJkNmQzZDRlNzQwZjE5OTc0Yzg5NWVhODkzN2ViMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDsy6NygGx55OtrALVPjjVfNNX/cmTcxtPVpCjjqYDH1mRs hP+yZg6blwhiF4ZXiEOs0V5PePNZEmtWlllsCX+JXJoF0A6pVtaSPQtwk9bZmPSV 7JgXIyheDfEjhgkORIzBXOFpnQhnprNKmMhwbrFcIx7t8G6VCYETbTtvTYxS/qpU EVUrRHjfGQTzKasviEJ9AUOag/Ddr0LKjeBsCBV5yEB3WVbP8/EihRfrc0MwBiQs BTma4oyfeKjnzjdgqvahyKZTkzjDwLOl3+B1KZP+eM31yjPFP+YFjnf18eSaBDul C9sSw5XoVY/xEail7knXOaCCk8JY3BWJCAi2wOyxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU12WnmG7odwKe3/wPibZRWpSsC70wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzFjNTNmMDgzLWU3ODEtNDJmNS04MTllLTVhODZlN2JkZjUzNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAMrQwDQYJKoZIhvcNAQELBQADggEBAHB7blCL5LtHYgByZY6mHzE1 Nf5iHclONf9ozmGaJDHuEYRI6eqyxFpccQI9RdM1R3DP2CqimUtSonlZsBZEBLQW 9Ncy+jPR2sbEkAy1cCOoWxi1Zsro2zIxPysaOQYWDgxqyxBor7BNB69dpNU7OH90 84f47M6iFt3dH9mCb9KL6t7ljZyAXy5LLakaqFAoUetD8pOLDIHyC7PldTdyuxtg O6NGf2Qsp6aMlt4txUz8woACMCrU+ktujsUiPDdVkqQMyvv1uohAMUf+mCbBoDAf kvzzlsINPBihCFVC8FlfBbhIc4DpSfifjxHl8ARbYMMxi6iunP7SCWtI5W0O4So= -----END CERTIFICATE-----Generated at Wed Nov 5 10:54:49 2025 by rpki-client