$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1e46da69-13d4-41d5-9524-52acf91658d9.roa File: 1e46da69-13d4-41d5-9524-52acf91658d9.roa (raw, json) Hash identifier: v+NKNF+89aYw7yeDVvOmP0nGShqk6gCcjyz3gqRloOo= Subject key identifier: 96:96:ED:B0:01:F3:38:36:40:DC:C3:38:B9:75:A6:41:03:3A:29:35 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2811065653233D2DD7D07929DCDDAED91B1500D5 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1e46da69-13d4-41d5-9524-52acf91658d9.roa Signing time: Fri 31 Oct 2025 07:51:59 +0000 ROA not before: Fri 31 Oct 2025 07:51:59 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3500::/41 maxlen: 41 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:11:06:56:53:23:3d:2d:d7:d0:79:29:dc:dd:ae:d9:1b:15:00:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 07:51:59 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=d6ab0f61312412c34fd343d7e8d4f32ae187c1962b8ce10fa57130ec4d81a55e, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c5:56:01:2b:15:e5:24:95:05:10:5d:2a:fe: 67:18:89:31:48:89:1e:73:fc:20:2e:fc:c6:62:6b: 11:22:da:6b:7d:fb:39:4b:4e:59:ca:80:fe:98:44: 22:db:5b:3f:77:50:88:49:95:99:a6:47:b6:6b:35: ee:0a:31:4a:8c:4e:78:2e:fa:50:83:4d:c5:8b:02: 15:8c:49:a6:7d:e4:79:2f:e6:a9:8b:47:83:47:ab: c4:78:12:9c:dd:f7:c6:95:41:4c:6d:03:76:80:e7: b4:fb:ad:07:3e:5c:f5:de:1a:50:7b:90:77:ae:58: d2:d3:ce:85:ee:71:2c:6c:37:77:58:96:38:40:8e: ec:c6:61:72:da:2e:60:eb:4b:db:5e:c1:da:2b:65: 7d:20:11:5d:19:2a:1a:ea:e0:de:52:21:c1:d4:43: 2b:6e:e3:eb:48:2f:b3:28:67:7e:35:a2:e9:e7:61: 82:6c:8d:f1:98:5e:5e:67:a4:03:09:75:7d:52:e4: f3:a1:7f:96:81:34:56:90:46:69:aa:0b:32:9a:8d: 94:d2:2f:27:73:c9:5c:98:46:24:b7:6a:1d:e1:8b: 92:33:bc:b2:8f:85:2f:a5:7f:12:01:ec:d3:1f:19: b2:26:e1:4b:bc:48:39:d4:c0:17:2b:77:3c:7b:96: 6b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:96:ED:B0:01:F3:38:36:40:DC:C3:38:B9:75:A6:41:03:3A:29:35 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1e46da69-13d4-41d5-9524-52acf91658d9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3500::/41 Signature Algorithm: sha256WithRSAEncryption 7c:70:8a:7f:35:2c:ce:73:e5:df:41:30:9c:03:1c:6d:cb:ee: 00:ae:65:04:da:89:c9:6a:9b:b7:60:ce:2e:d5:ab:4b:c6:a6: 52:cc:3d:21:ab:a1:18:76:e6:16:c9:22:f6:2d:70:28:cb:63: f8:ee:ab:fa:7c:f3:3f:9b:25:9c:15:ba:89:71:7b:99:7e:68: 45:2f:bd:97:9a:0a:ab:7f:68:d5:d0:87:ba:25:f8:a1:35:68: 03:9e:a8:ea:d5:15:10:0f:28:82:2a:23:03:e9:a6:32:44:3d: fe:2b:05:bc:11:29:97:ab:54:d6:24:7d:ef:bb:2f:78:6e:ef: 83:68:f4:6f:d2:6b:3f:b6:5f:64:2a:b3:83:1d:a1:07:f1:82: be:e5:a8:ac:be:a6:9f:9a:a7:ba:66:52:ed:b5:05:8a:3a:6a: e7:d8:aa:b7:dc:44:fe:15:ad:fb:de:0b:ab:e7:78:e5:41:d3: 04:60:97:01:14:14:0f:40:5a:b2:5c:ec:1b:41:73:0f:db:65: cc:e1:1e:2d:6d:49:8b:55:02:1f:a6:88:c7:e8:56:5f:af:6c: 27:02:80:c4:4a:a5:e1:e3:ed:0f:80:35:56:87:aa:75:11:97: 1f:d8:2b:cc:b4:2a:17:6f:28:7b:2c:6d:16:fb:ae:9f:82:cd: 72:56:28:4e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKBEGVlMjPS3X0Hkp3N2u2RsVANUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDc1MTU5WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNmFiMGY2MTMxMjQxMmMzNGZkMzQzZDdlOGQ0ZjMyYWUx ODdjMTk2MmI4Y2UxMGZhNTcxMzBlYzRkODFhNTVlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoxVYBKxXlJJUFEF0q/mcYiTFIiR5z/CAu/MZiaxEi2mt9 +zlLTlnKgP6YRCLbWz93UIhJlZmmR7ZrNe4KMUqMTngu+lCDTcWLAhWMSaZ95Hkv 5qmLR4NHq8R4Epzd98aVQUxtA3aA57T7rQc+XPXeGlB7kHeuWNLTzoXucSxsN3dY ljhAjuzGYXLaLmDrS9tewdorZX0gEV0ZKhrq4N5SIcHUQytu4+tIL7MoZ341ounn YYJsjfGYXl5npAMJdX1S5POhf5aBNFaQRmmqCzKajZTSLydzyVyYRiS3ah3hi5Iz vLKPhS+lfxIB7NMfGbIm4Uu8SDnUwBcrdzx7lmvfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUlpbtsAHzODZA3MM4uXWmQQM6KTUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzFlNDZkYTY5LTEzZDQtNDFkNS05NTI0LTUyYWNmOTE2NThkOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwcmAJAANQAwDQYJKoZIhvcNAQELBQADggEBAHxwin81LM5z5d9BMJwDHG3L 7gCuZQTaiclqm7dgzi7Vq0vGplLMPSGroRh25hbJIvYtcCjLY/juq/p88z+bJZwV uolxe5l+aEUvvZeaCqt/aNXQh7ol+KE1aAOeqOrVFRAPKIIqIwPppjJEPf4rBbwR KZerVNYkfe+7L3hu74No9G/Saz+2X2Qqs4MdoQfxgr7lqKy+pp+ap7pmUu21BYo6 aufYqrfcRP4VrfveC6vneOVB0wRglwEUFA9AWrJc7BtBcw/bZczhHi1tSYtVAh+m iMfoVl+vbCcCgMRKpeHj7Q+ANVaHqnURlx/YK8y0KhdvKHssbRb7rp+CzXJWKE4= -----END CERTIFICATE-----Generated at Wed Nov 5 07:46:11 2025 by rpki-client