$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1d0382f7-2bd3-4491-979a-849a75f6ef91.roa File: 1d0382f7-2bd3-4491-979a-849a75f6ef91.roa (raw, json) Hash identifier: u406hoAYOeUBaPIDjsI1OgMiiQDo6e2fiv1YFA50eao= Subject key identifier: 37:7E:53:4D:F5:95:3F:96:D0:12:21:C4:32:1E:7D:88:5F:00:93:F2 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0111F8930C95805EB899D41AAAA4A38918679628 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1d0382f7-2bd3-4491-979a-849a75f6ef91.roa Signing time: Fri 31 Oct 2025 00:13:52 +0000 ROA not before: Fri 31 Oct 2025 00:13:52 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3436::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:11:f8:93:0c:95:80:5e:b8:99:d4:1a:aa:a4:a3:89:18:67:96:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 00:13:52 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=34405a02312547c2c0f9e114ca851c50d13f55c60f9035ecebe7610cefc232f2, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ff:61:7d:25:4e:e4:dc:d1:0b:f8:03:e6:5a: cb:0e:86:99:73:ae:96:08:31:21:90:79:8f:3a:47: 39:81:6b:0c:43:d1:00:ce:fb:06:bb:bb:bd:b2:ef: 68:e5:ea:cc:16:17:98:f5:6b:39:37:79:56:f8:4a: cc:b2:fc:2a:ae:90:4f:c7:c3:e1:c4:d0:6e:f2:27: b6:42:ad:02:67:36:6d:95:0b:b5:88:12:32:5e:f7: e4:88:db:6f:04:7b:fe:fb:af:da:47:a0:af:62:d5: cb:9c:f9:d8:48:11:99:9e:75:d8:d0:eb:d5:a3:48: 50:d2:99:46:b9:22:61:f4:2a:27:ea:5a:a1:ae:4c: 05:3b:8b:61:5b:0b:aa:d2:c1:2f:22:52:60:09:4f: c5:86:d5:89:eb:e1:1a:42:cf:8b:1c:11:9d:c3:3d: a2:c4:80:39:22:18:7f:08:cf:ac:71:86:2c:8b:cd: cc:6f:bc:88:17:a1:63:6f:cb:7e:d7:2d:7a:63:16: 84:3e:e4:38:dd:f9:23:0e:94:8f:a5:ab:01:f9:71: 13:97:09:cb:c7:9a:1d:ab:24:5c:01:ad:d4:d1:50: 4e:0c:42:24:10:e7:02:44:4f:da:4f:83:f6:f0:e8: 54:ca:24:5d:7c:b1:ae:e1:31:3c:40:52:3b:4b:e7: d8:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:7E:53:4D:F5:95:3F:96:D0:12:21:C4:32:1E:7D:88:5F:00:93:F2 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1d0382f7-2bd3-4491-979a-849a75f6ef91.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3436::/47 Signature Algorithm: sha256WithRSAEncryption be:83:b7:09:6b:ca:50:91:c4:69:95:60:5f:cb:3f:5e:19:d8: fa:72:d8:34:b1:b4:69:66:70:b5:e5:d6:4e:61:9e:b3:df:88: 6d:2e:bb:61:4c:77:bd:63:72:7f:02:9e:f2:49:3e:39:ff:c0: 98:e2:a2:cd:8c:70:fa:b6:07:a7:81:d6:44:df:dd:a9:b0:81: 63:25:d0:da:90:0b:9e:05:c3:4e:b6:18:12:0b:2d:c1:16:0e: 36:32:b7:b6:9a:f4:c7:1c:58:70:1e:0d:a9:a7:9f:1c:6c:87: 47:77:63:cc:4a:22:ce:91:f6:8b:cb:00:3b:92:b1:85:25:5b: 50:20:ec:82:c0:e4:47:62:38:e6:f8:e7:8c:dc:57:2b:3b:f7: 09:85:c6:60:cd:20:1d:da:cd:ad:52:8a:cf:57:34:f7:57:60: 58:08:cd:e2:8e:bf:5c:80:e4:2d:90:e9:3e:7b:3d:9a:f0:63: 3f:98:47:e6:74:10:5d:94:1a:86:6b:c6:07:bb:71:26:47:3f: cf:3f:a7:c3:70:99:76:73:15:58:ce:7f:93:bc:04:3a:bc:07: ce:d9:d4:a9:82:39:c2:be:2e:d8:7a:16:7e:4f:cc:dd:32:9a: d6:12:1a:5d:34:b1:1e:af:39:06:47:b6:31:cb:c2:5b:7b:5f: 20:9a:5e:5b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUARH4kwyVgF64mdQaqqSjiRhnligwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDAxMzUyWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNDQwNWEwMjMxMjU0N2MyYzBmOWUxMTRjYTg1MWM1MGQx M2Y1NWM2MGY5MDM1ZWNlYmU3NjEwY2VmYzIzMmYyMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDH/2F9JU7k3NEL+APmWssOhplzrpYIMSGQeY86RzmBawxD 0QDO+wa7u72y72jl6swWF5j1azk3eVb4Ssyy/CqukE/Hw+HE0G7yJ7ZCrQJnNm2V C7WIEjJe9+SI228Ee/77r9pHoK9i1cuc+dhIEZmeddjQ69WjSFDSmUa5ImH0Kifq WqGuTAU7i2FbC6rSwS8iUmAJT8WG1Ynr4RpCz4scEZ3DPaLEgDkiGH8Iz6xxhiyL zcxvvIgXoWNvy37XLXpjFoQ+5Djd+SMOlI+lqwH5cROXCcvHmh2rJFwBrdTRUE4M QiQQ5wJET9pPg/bw6FTKJF18sa7hMTxAUjtL59iZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUN35TTfWVP5bQEiHEMh59iF8Ak/IwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzFkMDM4MmY3LTJiZDMtNDQ5MS05NzlhLTg0OWE3NWY2ZWY5MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAANDYwDQYJKoZIhvcNAQELBQADggEBAL6DtwlrylCRxGmVYF/LP14Z 2Ppy2DSxtGlmcLXl1k5hnrPfiG0uu2FMd71jcn8CnvJJPjn/wJjios2McPq2B6eB 1kTf3amwgWMl0NqQC54Fw062GBILLcEWDjYyt7aa9MccWHAeDamnnxxsh0d3Y8xK Is6R9ovLADuSsYUlW1Ag7ILA5EdiOOb454zcVys79wmFxmDNIB3aza1Sis9XNPdX YFgIzeKOv1yA5C2Q6T57PZrwYz+YR+Z0EF2UGoZrxge7cSZHP88/p8NwmXZzFVjO f5O8BDq8B87Z1KmCOcK+Lth6Fn5PzN0ymtYSGl00sR6vOQZHtjHLwlt7XyCaXls= -----END CERTIFICATE-----Generated at Wed Nov 5 10:54:32 2025 by rpki-client