$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1d3cf3ef-5178-42f8-b72f-cad5c9eb438b.roa File: 1d3cf3ef-5178-42f8-b72f-cad5c9eb438b.roa (raw, json) Hash identifier: MJZ1B7NXtGtsbH+AJC6fE/iihZiUggUDRnSUEQkypSE= Subject key identifier: 08:B7:60:DD:C8:B6:07:09:23:DF:E3:1D:47:F1:7C:C8:C1:70:FB:7F Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 568BE352A182715E151B37BD998980614F4F9D Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1d3cf3ef-5178-42f8-b72f-cad5c9eb438b.roa Signing time: Fri 31 Oct 2025 06:22:05 +0000 ROA not before: Fri 31 Oct 2025 06:22:05 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3cd0::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:8b:e3:52:a1:82:71:5e:15:1b:37:bd:99:89:80:61:4f:4f:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 06:22:05 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=b954ddae6dc8e04828eb190e8be4027e3941e42e1c9ab91475da9fe9266b2ec8, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0f:1a:ba:8c:77:82:96:97:80:ff:bb:5e:78: 1a:b6:98:bf:6d:ec:7b:2e:27:97:bc:78:6e:f8:35: 3b:43:fc:5b:d5:28:0b:5b:14:c8:7b:aa:01:dc:51: 24:e6:84:0b:19:9f:fc:07:dc:89:2e:c7:78:fc:95: 4b:82:50:cf:e6:2d:f7:a1:79:0f:ba:f1:0c:20:7d: 3d:22:64:b8:5c:21:4b:1f:df:22:00:53:43:54:54: ab:4a:da:87:4b:b3:22:f5:4e:10:47:76:21:72:40: 93:b7:c5:9d:e7:76:cd:a5:5f:ae:c1:84:0c:9c:51: ba:9e:3d:a5:c3:d6:8e:a4:ba:63:68:a0:c8:7b:f4: 75:56:98:d2:8b:ae:d1:d8:0e:8c:92:75:fd:44:8c: 2a:1c:63:72:3c:9a:b4:b1:23:c9:3a:31:06:0e:d1: 25:e5:81:e6:88:e5:01:7e:34:8a:d0:dc:f4:1b:bf: 76:2f:9b:17:86:c6:82:d2:4b:e0:bc:a8:50:f7:cf: 93:51:3f:99:3f:22:ee:6d:f8:4e:59:7a:c1:6c:81: 43:10:b7:22:0c:bb:e3:36:6d:a1:32:d2:78:1c:a0: 77:6d:46:db:bb:d0:81:50:dd:c8:f3:7d:6a:ee:44: b2:36:9b:ae:5f:fe:66:ac:d1:52:4c:3a:f3:ac:1d: bf:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:B7:60:DD:C8:B6:07:09:23:DF:E3:1D:47:F1:7C:C8:C1:70:FB:7F X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1d3cf3ef-5178-42f8-b72f-cad5c9eb438b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3cd0::/45 Signature Algorithm: sha256WithRSAEncryption 20:e7:be:a7:49:93:7d:e8:76:13:5d:bc:a0:6a:d6:6d:9f:ff: 45:ff:8e:1b:b7:82:97:81:7a:60:01:8b:63:da:39:9f:66:03: 1c:25:34:16:e6:d9:46:e4:59:1e:bc:3c:b7:da:70:86:90:9a: 0c:25:4f:a0:79:da:79:b3:2b:41:4b:24:cc:69:01:c0:7f:12: f3:ab:3e:c9:55:d8:c9:4e:a1:8f:c4:ac:ba:a5:3f:af:b1:e4: 73:3f:e9:af:6e:f0:24:56:db:89:c9:84:3d:a9:3c:2a:bc:0e: 27:77:cb:e4:f1:f9:05:44:20:1e:22:ff:8f:c4:6e:39:d5:15: 61:7d:10:03:fd:ba:31:f8:28:9a:bf:5c:07:ce:cd:39:a9:32: 22:70:55:ae:7d:78:e4:5e:cf:63:9e:c0:db:f3:37:97:88:4b: ce:ca:ca:fc:9a:c5:f8:28:c9:78:9e:ff:bf:a1:ae:d2:27:19: 08:24:38:85:e0:31:d9:0d:3b:1c:ed:5f:bb:c0:d0:4f:e7:6d: 45:83:b0:82:e4:ff:dd:e4:b6:df:c1:0a:22:70:de:2a:9c:78: a1:fe:1a:10:82:a9:37:d5:da:bc:3a:d1:a9:4d:a1:55:78:b8: ff:ea:93:b0:36:3d:67:23:57:49:45:25:10:ea:5d:54:c4:50: b0:19:22:70 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgITVovjUqGCcV4VGze9mYmAYU9PnTANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI1NTEyMDkwMjdmNWU3YWQ1NGUwNGYwNDJlNGFjMGU5ZTY1 YzU2ZTU1Yzc3NDc4ZDJjZTAeFw0yNTEwMzEwNjIyMDVaFw0yNTEyMDUyMzU5NTla MHoxSTBHBgNVBAUTQGI5NTRkZGFlNmRjOGUwNDgyOGViMTkwZThiZTQwMjdlMzk0 MWU0MmUxYzlhYjkxNDc1ZGE5ZmU5MjY2YjJlYzgxLTArBgNVBAMTJDlmMjMwZmE5 LWFhMmYtNDAyMC1hZTJhLTFhNjAzNzQwODRiODCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBALAPGrqMd4KWl4D/u154GraYv23sey4nl7x4bvg1O0P8W9Uo C1sUyHuqAdxRJOaECxmf/AfciS7HePyVS4JQz+Yt96F5D7rxDCB9PSJkuFwhSx/f IgBTQ1RUq0rah0uzIvVOEEd2IXJAk7fFned2zaVfrsGEDJxRup49pcPWjqS6Y2ig yHv0dVaY0ouu0dgOjJJ1/USMKhxjcjyatLEjyToxBg7RJeWB5ojlAX40itDc9Bu/ di+bF4bGgtJL4LyoUPfPk1E/mT8i7m34Tll6wWyBQxC3Igy74zZtoTLSeBygd21G 27vQgVDdyPN9au5Esjabrl/+ZqzRUkw686wdvykCAwEAAaOCArQwggKwMB0GA1Ud DgQWBBQIt2DdyLYHCSPf4x1H8XzIwXD7fzAfBgNVHSMEGDAWgBTo88Ug4g7yXTq3 oha7FAQxajc48TAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv ZjYwYzlmMzItYTg3Yy00MzM5LWEyZjMtNjI5OWEzYjAyZTI5Lzk5ZjhmZWQyLTI5 MmItNDcyMi1iOTI4LWZlZTdiZjBhNTkxMC81NTEyMDkwMjdmNWU3YWQ1NGUwNGYw NDJlNGFjMGU5ZTY1YzU2ZTU1Yzc3NDc4ZDJjZS5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9lNzUxOGFmNS1hMzQzLTQyOGQtYmY3OC1mOTgy YjZlNjA1MDUvMWQzY2YzZWYtNTE3OC00MmY4LWI3MmYtY2FkNWM5ZWI0MzhiLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgt Zjk4MmI2ZTYwNTA1L1huclZUZ1R3UXVTc0RwNWx4VzVWeDNSNDBzNC5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHAyYAkAA80DANBgkqhkiG9w0BAQsFAAOCAQEAIOe+p0mTfeh2E128oGrWbZ// Rf+OG7eCl4F6YAGLY9o5n2YDHCU0FubZRuRZHrw8t9pwhpCaDCVPoHnaebMrQUsk zGkBwH8S86s+yVXYyU6hj8SsuqU/r7Hkcz/pr27wJFbbicmEPak8KrwOJ3fL5PH5 BUQgHiL/j8RuOdUVYX0QA/26Mfgomr9cB87NOakyInBVrn145F7PY57A2/M3l4hL zsrK/JrF+CjJeJ7/v6Gu0icZCCQ4heAx2Q07HO1fu8DQT+dtRYOwguT/3eS238EK InDeKpx4of4aEIKpN9XavDrRqU2hVXi4/+qTsDY9ZyNXSUUlEOpdVMRQsBkicA== -----END CERTIFICATE-----Generated at Wed Nov 5 10:42:36 2025 by rpki-client