$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1f667ca6-4900-467b-a0a2-c02f529e3499.roa File: 1f667ca6-4900-467b-a0a2-c02f529e3499.roa (raw, json) Hash identifier: /UejRn0C2KdbIKNNB/gZNjgg9OG19Nse1CYua6MLg38= Subject key identifier: 41:BF:F8:5E:F4:42:27:76:BB:61:C9:0A:CE:BB:0E:85:E5:A1:FC:49 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 23E67EAD5ABD6DCC95441832490E3AB101091674 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1f667ca6-4900-467b-a0a2-c02f529e3499.roa Signing time: Thu 30 Oct 2025 20:06:56 +0000 ROA not before: Thu 30 Oct 2025 20:06:56 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1e00::/41 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:e6:7e:ad:5a:bd:6d:cc:95:44:18:32:49:0e:3a:b1:01:09:16:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 20:06:56 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=2e158f47d3566dd4436aa1644ef6f6b037ec274347e143a7803074ffd3a1c53a, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f7:24:43:0b:73:9d:f4:68:69:54:3b:25:c1: ed:cf:2e:4e:be:05:51:78:7b:9e:4b:13:ae:a1:39: 6f:09:71:10:2b:0c:a4:6d:19:6a:45:b1:25:76:3f: ad:23:a5:92:48:6f:73:c6:cf:65:29:8c:b9:e8:d2: 9b:35:93:9e:36:5f:7f:ba:2c:a7:d3:55:b4:76:ea: c4:30:16:23:d7:88:6a:76:ed:b2:9e:cf:75:7b:b9: 6f:15:0d:16:24:1b:c6:91:f5:1b:1c:ea:b9:17:57: d1:d9:98:b9:dc:de:7b:5b:62:4a:1b:cf:30:4a:0a: 80:67:b5:e9:ef:dc:93:91:98:71:1e:db:34:db:1f: 77:ce:ad:85:93:db:a2:5f:cf:5d:c9:11:b8:d9:8d: b4:ed:95:74:45:86:a8:db:94:f5:d7:1b:af:d6:e2: a8:8a:fd:c5:20:52:03:0f:11:8d:17:c5:4f:b1:75: cb:20:d4:16:62:0d:14:1c:15:76:df:c1:05:0f:b1: 7e:ae:d1:df:bc:df:85:29:41:14:93:2d:33:1c:be: 07:14:57:db:4b:da:11:11:53:6c:c9:d6:fc:db:17: 4c:e7:bf:17:df:e9:43:de:e4:dd:b9:21:c2:e9:9a: ad:1b:e2:15:cf:97:60:c9:b0:b6:39:37:71:fb:e7: 3f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:BF:F8:5E:F4:42:27:76:BB:61:C9:0A:CE:BB:0E:85:E5:A1:FC:49 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1f667ca6-4900-467b-a0a2-c02f529e3499.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1e00::/41 Signature Algorithm: sha256WithRSAEncryption 7e:54:0e:a2:a7:07:7a:66:cd:f3:c6:86:43:d3:34:cf:ab:f7: 99:2d:ce:5f:2f:36:b1:a1:36:a5:73:a2:dd:39:da:41:2a:72: 07:ec:e3:ef:fd:3b:63:a8:b0:f2:56:77:98:96:ca:95:96:64: b9:f8:9c:e9:d0:66:47:89:69:5d:bd:d4:7e:74:53:a9:e7:98: f1:9e:2f:46:e6:1d:18:34:97:93:d0:e3:e5:19:82:7b:3a:c4: 83:27:ab:b6:c4:04:a1:0a:6f:6c:f0:b7:2a:73:8c:aa:b2:b1: 01:97:91:ad:9a:68:c5:85:9c:3e:8d:52:6f:a1:c9:24:ad:1c: 30:8e:65:d6:5f:4b:b3:32:49:dd:e9:71:01:f9:af:a7:e7:06: 7f:51:73:81:63:47:7e:e5:8a:7e:ba:74:d4:06:32:72:02:53: b1:97:0c:93:dc:5f:bc:44:8d:b1:ab:9a:ce:77:dd:c1:54:94: 72:7e:fa:0b:2e:8c:cb:1f:05:d7:32:a4:59:0a:87:0b:05:de: 31:a4:a5:88:bd:29:24:3c:31:b7:99:40:2a:4b:72:5d:c8:37: a1:b0:7a:c3:f4:6c:2d:0d:79:68:19:6a:b0:ba:15:17:17:a6: b6:76:51:68:f6:fa:16:68:28:ab:20:cb:9e:72:a1:9c:5f:db: 06:51:7d:ed -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUI+Z+rVq9bcyVRBgySQ46sQEJFnQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjAwNjU2WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZTE1OGY0N2QzNTY2ZGQ0NDM2YWExNjQ0ZWY2ZjZiMDM3 ZWMyNzQzNDdlMTQzYTc4MDMwNzRmZmQzYTFjNTNhMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/9yRDC3Od9GhpVDslwe3PLk6+BVF4e55LE66hOW8JcRAr DKRtGWpFsSV2P60jpZJIb3PGz2UpjLno0ps1k542X3+6LKfTVbR26sQwFiPXiGp2 7bKez3V7uW8VDRYkG8aR9Rsc6rkXV9HZmLnc3ntbYkobzzBKCoBntenv3JORmHEe 2zTbH3fOrYWT26Jfz13JEbjZjbTtlXRFhqjblPXXG6/W4qiK/cUgUgMPEY0XxU+x dcsg1BZiDRQcFXbfwQUPsX6u0d+834UpQRSTLTMcvgcUV9tL2hERU2zJ1vzbF0zn vxff6UPe5N25IcLpmq0b4hXPl2DJsLY5N3H75z/rAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQb/4XvRCJ3a7YckKzrsOheWh/EkwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzFmNjY3Y2E2LTQ5MDAtNDY3Yi1hMGEyLWMwMmY1MjllMzQ5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwcmAJAAHgAwDQYJKoZIhvcNAQELBQADggEBAH5UDqKnB3pmzfPGhkPTNM+r 95ktzl8vNrGhNqVzot052kEqcgfs4+/9O2OosPJWd5iWypWWZLn4nOnQZkeJaV29 1H50U6nnmPGeL0bmHRg0l5PQ4+UZgns6xIMnq7bEBKEKb2zwtypzjKqysQGXka2a aMWFnD6NUm+hySStHDCOZdZfS7MySd3pcQH5r6fnBn9Rc4FjR37lin66dNQGMnIC U7GXDJPcX7xEjbGrms533cFUlHJ++gsujMsfBdcypFkKhwsF3jGkpYi9KSQ8MbeZ QCpLcl3IN6GwesP0bC0NeWgZarC6FRcXprZ2UWj2+hZoKKsgy55yoZxf2wZRfe0= -----END CERTIFICATE-----Generated at Wed Nov 5 11:07:49 2025 by rpki-client