$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1cd45df2-5b12-4252-84ab-afd54fb0596a.roa File: 1cd45df2-5b12-4252-84ab-afd54fb0596a.roa (raw, json) Hash identifier: EsYWR3UhHhhmOhxq5qg9Lg/nkNcGKDNjYosObL4igdE= Subject key identifier: F3:D1:A6:18:2B:B6:81:FB:EF:83:B6:6F:73:9B:68:0F:59:A1:BE:AB Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 03231DC77A8786C0DB348FBAF8143432D70BCC27 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1cd45df2-5b12-4252-84ab-afd54fb0596a.roa Signing time: Fri 31 Oct 2025 03:40:19 +0000 ROA not before: Fri 31 Oct 2025 03:40:19 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2c8c::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:23:1d:c7:7a:87:86:c0:db:34:8f:ba:f8:14:34:32:d7:0b:cc:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 03:40:19 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=68838460043422ce4d704a01e8c343247839bd6d552d8d040b8160b39ed7ecaa, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a1:46:6e:bf:32:5b:30:51:0c:7e:45:91:e9: 74:96:2a:af:3b:e9:bb:7c:b3:e4:9d:16:3b:be:a1: 8e:26:7a:01:58:34:9e:9b:8b:6e:db:47:a4:fc:33: cc:f1:41:5b:c0:ce:11:34:8f:e9:f7:a2:47:08:63: 5e:61:2c:c2:45:d9:3d:03:ad:af:ec:6d:33:56:be: 82:b0:49:e1:0c:ae:27:d6:e2:55:98:e1:3e:7f:68: be:9c:45:4a:f7:68:22:96:89:00:40:42:f7:33:8f: 08:32:a9:b2:11:75:2c:cd:91:a9:cd:25:ab:68:55: cb:9b:2b:97:30:74:2a:51:ec:42:e0:a6:10:2a:1c: 56:29:e0:87:7f:6b:74:fd:fb:40:7c:f4:c6:57:19: a3:cf:f7:ea:cf:f3:59:76:81:b3:17:5c:07:ff:80: 7c:ac:0b:43:57:ef:76:dc:fe:d0:9f:6e:64:b0:36: f9:9d:71:e5:4e:bf:71:1b:25:91:a7:4d:e0:2a:d1: a1:2a:77:5b:39:99:57:a2:f7:6d:ec:f9:3f:0d:49: 89:3b:27:f5:fc:92:b3:a4:0c:75:55:f4:25:ab:d5: 6b:37:e8:1f:11:78:d8:fc:61:26:59:d9:c2:f4:76: a4:9a:3e:d0:b3:59:b0:fd:48:af:e7:1b:61:c8:37: 81:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:D1:A6:18:2B:B6:81:FB:EF:83:B6:6F:73:9B:68:0F:59:A1:BE:AB X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1cd45df2-5b12-4252-84ab-afd54fb0596a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2c8c::/46 Signature Algorithm: sha256WithRSAEncryption 74:07:a5:22:8d:84:8f:24:96:cb:fd:3d:c7:f9:2c:1d:93:1c: a1:f1:90:0d:85:f9:ee:18:91:84:16:13:20:72:69:64:49:f7: d3:87:cc:c1:c0:bd:0a:78:f1:cf:18:52:6b:f1:ff:6b:cf:2b: 2e:8f:2b:b8:12:29:3b:f0:ab:90:3a:f0:a4:c6:f1:09:72:a6: ef:5c:f4:23:8b:00:4b:a5:f2:3b:70:9b:9b:e0:f0:68:8f:8f: e0:11:71:47:36:c0:09:b9:4f:50:d0:12:39:ad:47:84:81:e9: ee:fc:fb:2f:ad:b6:4a:da:fe:5e:93:38:0c:9b:b5:80:f0:5e: b1:cc:2a:e4:4b:5d:3f:b1:5f:2b:bf:fb:f0:02:3e:27:e2:11: 35:60:3c:aa:1f:88:70:3b:fb:22:bb:3a:92:a3:5a:ae:d1:e5: 60:8a:50:87:d3:d0:db:6f:07:50:55:08:f4:e0:4d:8c:15:4d: d9:9e:0b:fd:d2:49:4b:b0:d4:cb:0a:28:eb:9c:f1:cd:f0:e9: 51:a8:4d:c4:32:4c:53:af:18:41:a2:c4:6a:aa:27:70:8e:e8: 05:6c:50:97:01:0c:aa:d9:14:44:2b:51:c3:11:7c:b9:6c:b5: 22:ce:86:55:f3:b6:53:fd:0a:d8:51:a6:62:21:d8:76:b8:ba: e8:93:6c:09 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUAyMdx3qHhsDbNI+6+BQ0MtcLzCcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDM0MDE5WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ODgzODQ2MDA0MzQyMmNlNGQ3MDRhMDFlOGMzNDMyNDc4 MzliZDZkNTUyZDhkMDQwYjgxNjBiMzllZDdlY2FhMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCooUZuvzJbMFEMfkWR6XSWKq876bt8s+SdFju+oY4megFY NJ6bi27bR6T8M8zxQVvAzhE0j+n3okcIY15hLMJF2T0Dra/sbTNWvoKwSeEMrifW 4lWY4T5/aL6cRUr3aCKWiQBAQvczjwgyqbIRdSzNkanNJatoVcubK5cwdCpR7ELg phAqHFYp4Id/a3T9+0B89MZXGaPP9+rP81l2gbMXXAf/gHysC0NX73bc/tCfbmSw NvmdceVOv3EbJZGnTeAq0aEqd1s5mVei923s+T8NSYk7J/X8krOkDHVV9CWr1Ws3 6B8ReNj8YSZZ2cL0dqSaPtCzWbD9SK/nG2HIN4GdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU89GmGCu2gfvvg7Zvc5toD1mhvqswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzFjZDQ1ZGYyLTViMTItNDI1Mi04NGFiLWFmZDU0ZmIwNTk2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAALIwwDQYJKoZIhvcNAQELBQADggEBAHQHpSKNhI8klsv9Pcf5LB2T HKHxkA2F+e4YkYQWEyByaWRJ99OHzMHAvQp48c8YUmvx/2vPKy6PK7gSKTvwq5A6 8KTG8Qlypu9c9COLAEul8jtwm5vg8GiPj+ARcUc2wAm5T1DQEjmtR4SB6e78+y+t tkra/l6TOAybtYDwXrHMKuRLXT+xXyu/+/ACPifiETVgPKofiHA7+yK7OpKjWq7R 5WCKUIfT0NtvB1BVCPTgTYwVTdmeC/3SSUuw1MsKKOuc8c3w6VGoTcQyTFOvGEGi xGqqJ3CO6AVsUJcBDKrZFEQrUcMRfLlstSLOhlXztlP9CthRpmIh2Ha4uuiTbAk= -----END CERTIFICATE-----Generated at Wed Nov 5 05:36:20 2025 by rpki-client