$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1ecfd60d-7236-49d7-a058-39ceb6b6743a.roa File: 1ecfd60d-7236-49d7-a058-39ceb6b6743a.roa (raw, json) Hash identifier: d3nNIC3P9TO2faYhSTLDntmCIYnTG8Gv45kb4IWHbB4= Subject key identifier: D3:84:E3:FC:20:B2:C1:EF:E5:00:FC:25:62:7E:F2:A2:2C:72:59:BB Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3E17F9104EDC4C6BFA2EF6D8BB6C2E170003F303 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1ecfd60d-7236-49d7-a058-39ceb6b6743a.roa Signing time: Thu 30 Oct 2025 23:43:56 +0000 ROA not before: Thu 30 Oct 2025 23:43:56 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2f40::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:17:f9:10:4e:dc:4c:6b:fa:2e:f6:d8:bb:6c:2e:17:00:03:f3:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 23:43:56 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=a5a2907ffd172ff9706345fbfd9f20417223293059aad605c9e3aebeb8a184d6, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:67:8e:b6:4b:3f:7f:b7:ce:5b:7f:b1:e2:85: c1:19:15:52:fd:d7:e6:3c:56:dc:31:9c:35:87:51: 0d:e5:13:b8:90:80:76:5f:d0:56:1a:25:67:07:c0: 77:7c:65:ab:c1:f0:13:22:ad:83:53:d6:25:d3:12: d9:0b:9f:7c:74:84:69:d2:31:c5:f8:87:51:f0:7d: 45:a9:97:c4:6a:3f:98:25:ce:aa:6f:30:1f:7f:5f: 54:ab:f3:2a:1a:3a:60:5d:03:08:25:7b:23:ab:16: f8:8c:27:54:66:1b:94:4b:0e:db:f0:37:bf:9a:89: 0a:5e:a5:a6:38:d6:c3:5a:8b:15:7a:80:5f:65:4f: d3:59:ea:1b:3d:bc:36:2b:3b:6b:56:85:ff:88:5c: 1b:e7:da:e1:9f:49:e9:87:4b:e8:26:e8:e7:a0:5c: ed:15:e8:6e:ff:99:ae:b7:f1:3f:5f:44:ec:8c:42: 4d:b0:da:1b:0f:39:4c:a6:58:da:71:06:d9:75:36: 29:a6:5c:09:7c:8a:04:cd:00:a5:45:75:67:90:00: 87:69:24:df:97:7b:76:98:5f:be:ec:d6:c2:7b:17: 64:96:98:72:e1:87:bb:14:49:36:76:63:51:5c:2e: e5:ee:d2:55:0a:ad:de:4f:24:b1:b8:df:21:aa:c7: d1:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:84:E3:FC:20:B2:C1:EF:E5:00:FC:25:62:7E:F2:A2:2C:72:59:BB X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1ecfd60d-7236-49d7-a058-39ceb6b6743a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2f40::/47 Signature Algorithm: sha256WithRSAEncryption a8:d6:30:d3:53:fd:97:b5:4a:e7:04:6d:6d:7e:f7:a3:3d:d2: 76:11:af:e9:69:e1:78:c5:da:88:38:51:68:01:02:f3:79:46: a1:b3:37:fa:fb:ad:bb:bb:8d:ac:37:e0:57:b6:7e:7f:e0:8e: 6a:02:84:33:03:f2:82:ec:5f:52:61:25:80:64:6f:77:2b:ec: da:ab:06:8f:62:09:a9:00:8a:4c:43:c8:41:87:7f:d9:08:9f: 55:66:c4:d6:27:16:ec:b7:92:88:09:76:9d:79:57:6c:72:d7: f4:7f:c7:46:9f:77:3c:d2:92:00:35:ff:29:96:d2:e7:ee:ce: 81:7c:81:d4:b5:d7:f9:ec:1e:79:60:46:47:fb:99:86:db:7f: ae:97:0e:ae:69:fc:4d:38:4f:c1:17:21:24:a4:e6:f4:3d:ee: 61:b5:8a:bc:e0:94:2d:ec:aa:d8:dc:57:18:e0:da:4c:f2:67: 32:79:7f:fd:49:69:bd:3a:18:ec:60:29:01:f4:aa:fa:50:1c: 9d:2c:83:be:03:70:a6:37:31:cf:0a:43:f9:ef:dd:54:5a:ec: e4:3e:4e:e4:0e:80:1e:4c:df:41:24:d3:73:d4:ac:47:94:0e: 46:1e:3b:af:af:41:a5:78:20:fa:5f:0a:28:ec:a7:72:2f:3b: 4a:0b:ca:d8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPhf5EE7cTGv6LvbYu2wuFwAD8wMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjM0MzU2WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNWEyOTA3ZmZkMTcyZmY5NzA2MzQ1ZmJmZDlmMjA0MTcy MjMyOTMwNTlhYWQ2MDVjOWUzYWViZWI4YTE4NGQ2MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAZ462Sz9/t85bf7HihcEZFVL91+Y8VtwxnDWHUQ3lE7iQ gHZf0FYaJWcHwHd8ZavB8BMirYNT1iXTEtkLn3x0hGnSMcX4h1HwfUWpl8RqP5gl zqpvMB9/X1Sr8yoaOmBdAwgleyOrFviMJ1RmG5RLDtvwN7+aiQpepaY41sNaixV6 gF9lT9NZ6hs9vDYrO2tWhf+IXBvn2uGfSemHS+gm6OegXO0V6G7/ma638T9fROyM Qk2w2hsPOUymWNpxBtl1NimmXAl8igTNAKVFdWeQAIdpJN+Xe3aYX77s1sJ7F2SW mHLhh7sUSTZ2Y1FcLuXu0lUKrd5PJLG43yGqx9FVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU04Tj/CCywe/lAPwlYn7yoixyWbswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzFlY2ZkNjBkLTcyMzYtNDlkNy1hMDU4LTM5Y2ViNmI2NzQzYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAL0AwDQYJKoZIhvcNAQELBQADggEBAKjWMNNT/Ze1SucEbW1+96M9 0nYRr+lp4XjF2og4UWgBAvN5RqGzN/r7rbu7jaw34Fe2fn/gjmoChDMD8oLsX1Jh JYBkb3cr7NqrBo9iCakAikxDyEGHf9kIn1VmxNYnFuy3kogJdp15V2xy1/R/x0af dzzSkgA1/ymW0ufuzoF8gdS11/nsHnlgRkf7mYbbf66XDq5p/E04T8EXISSk5vQ9 7mG1irzglC3sqtjcVxjg2kzyZzJ5f/1Jab06GOxgKQH0qvpQHJ0sg74DcKY3Mc8K Q/nv3VRa7OQ+TuQOgB5M30Ek03PUrEeUDkYeO6+vQaV4IPpfCijsp3IvO0oLytg= -----END CERTIFICATE-----Generated at Wed Nov 5 07:45:38 2025 by rpki-client