$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2051c931-2fb8-4cb9-a970-9e531972a9db.roa File: 2051c931-2fb8-4cb9-a970-9e531972a9db.roa (raw, json) Hash identifier: 7/2x0AxCL1RT5XfnS0el/xz++lv4TCAVTCW4LTFiOvQ= Subject key identifier: D8:6F:A4:4D:B8:67:6E:9D:C5:9D:95:44:53:6E:74:EE:66:6B:32:C4 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 40C38FE84B6E379BC70EA39423396C87C7B0498F Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2051c931-2fb8-4cb9-a970-9e531972a9db.roa Signing time: Thu 30 Oct 2025 23:28:54 +0000 ROA not before: Thu 30 Oct 2025 23:28:54 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2dac::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:c3:8f:e8:4b:6e:37:9b:c7:0e:a3:94:23:39:6c:87:c7:b0:49:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 23:28:54 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=578f8b3d55f1f37da3d6f9fc4bf5c8f823b57ab241d366e895215860a6f8f71c, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d0:e5:06:7d:66:4f:e7:1d:2e:d0:de:40:9d: f2:ee:1a:08:f0:84:88:00:96:54:b9:95:14:cd:5f: b9:ce:54:d9:bb:9f:c6:98:71:80:67:be:93:51:6c: 82:82:b0:54:25:83:61:db:66:21:2d:92:28:88:1d: ee:dc:8a:a8:b9:55:48:fb:3c:b6:1a:58:75:87:9f: 2a:70:88:ff:b8:9d:f9:70:57:84:31:fe:41:a6:d3: 01:99:2c:34:6a:7b:a1:32:05:4d:5f:7a:39:0a:b8: be:b0:07:0c:e8:57:50:ba:ec:6d:a7:e1:ce:cd:d5: b7:67:1c:3f:0b:cc:1a:5c:9f:e6:fe:ca:02:fb:01: 5c:f4:2b:1b:4a:40:ad:14:7d:0d:5c:e9:ce:0e:87: 86:3d:6a:d3:d1:3a:c7:43:43:01:fe:c9:2c:8f:bb: ed:6c:87:f4:90:dd:40:c4:e7:9c:17:72:58:82:c3: 8b:59:60:86:d5:ec:4f:6d:bb:cd:61:d1:3f:64:f8: c2:03:7b:d1:cf:e8:ff:89:6d:de:f1:94:82:54:07: ac:f5:ff:fd:b8:36:8f:99:e3:fc:41:ff:8b:2f:a3: 5a:49:3c:fc:d7:b6:b0:39:c3:b6:42:c1:37:29:fa: b9:f1:76:ef:96:2b:21:71:e1:86:65:75:e6:4c:24: 4a:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:6F:A4:4D:B8:67:6E:9D:C5:9D:95:44:53:6E:74:EE:66:6B:32:C4 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2051c931-2fb8-4cb9-a970-9e531972a9db.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2dac::/47 Signature Algorithm: sha256WithRSAEncryption c2:bc:46:5d:57:06:b4:ac:5d:0f:01:b4:6c:64:95:f8:37:cb: 4f:c4:5e:be:18:c8:44:e5:bc:18:b5:c5:3a:8c:8f:79:c2:c3: c0:b9:5c:74:c4:f0:04:7b:11:04:a0:f5:38:89:2e:d8:9a:1f: 55:61:7a:c2:67:4c:9a:ab:dd:dc:13:ef:af:b5:a8:f8:59:d9: 7c:00:be:d2:42:9c:1f:f4:96:a2:fc:8c:24:0f:a4:9a:23:48: 2d:ae:3a:60:bb:62:3a:30:99:78:b4:0e:ad:78:7a:8b:f7:1f: f2:36:fa:24:87:83:24:27:33:2a:8d:55:e7:b0:ae:ae:19:f5: 7a:63:3a:0c:0b:eb:81:c4:e7:eb:de:1e:e5:37:a6:d3:1c:b4: b8:66:1c:40:2a:48:e7:41:67:e0:72:3d:27:aa:fd:b3:bc:c8: 7f:e4:37:62:7c:05:de:7a:bd:0a:6e:47:ae:83:c3:df:40:95: d6:28:f7:34:fe:e5:d7:d1:36:1e:c3:87:15:97:60:bb:77:5d: 42:ff:d5:13:f1:d4:47:f9:49:a5:13:a3:b7:19:8d:6b:04:9e: b6:de:fb:47:83:ae:fd:4b:db:d3:cd:70:fc:30:40:f1:84:0a: 76:fa:95:f3:db:fa:0b:78:72:59:e7:2b:d5:a9:8f:54:f6:e6: 59:3a:4b:00 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQMOP6EtuN5vHDqOUIzlsh8ewSY8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjMyODU0WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NzhmOGIzZDU1ZjFmMzdkYTNkNmY5ZmM0YmY1YzhmODIz YjU3YWIyNDFkMzY2ZTg5NTIxNTg2MGE2ZjhmNzFjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCw0OUGfWZP5x0u0N5AnfLuGgjwhIgAllS5lRTNX7nOVNm7 n8aYcYBnvpNRbIKCsFQlg2HbZiEtkiiIHe7ciqi5VUj7PLYaWHWHnypwiP+4nflw V4Qx/kGm0wGZLDRqe6EyBU1fejkKuL6wBwzoV1C67G2n4c7N1bdnHD8LzBpcn+b+ ygL7AVz0KxtKQK0UfQ1c6c4Oh4Y9atPROsdDQwH+ySyPu+1sh/SQ3UDE55wXcliC w4tZYIbV7E9tu81h0T9k+MIDe9HP6P+Jbd7xlIJUB6z1//24No+Z4/xB/4svo1pJ PPzXtrA5w7ZCwTcp+rnxdu+WKyFx4YZldeZMJEoPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2G+kTbhnbp3FnZVEU2507mZrMsQwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzIwNTFjOTMxLTJmYjgtNGNiOS1hOTcwLTllNTMxOTcyYTlkYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAALawwDQYJKoZIhvcNAQELBQADggEBAMK8Rl1XBrSsXQ8BtGxklfg3 y0/EXr4YyETlvBi1xTqMj3nCw8C5XHTE8AR7EQSg9TiJLtiaH1VhesJnTJqr3dwT 76+1qPhZ2XwAvtJCnB/0lqL8jCQPpJojSC2uOmC7YjowmXi0Dq14eov3H/I2+iSH gyQnMyqNVeewrq4Z9XpjOgwL64HE5+veHuU3ptMctLhmHEAqSOdBZ+ByPSeq/bO8 yH/kN2J8Bd56vQpuR66Dw99AldYo9zT+5dfRNh7DhxWXYLt3XUL/1RPx1Ef5SaUT o7cZjWsEnrbe+0eDrv1L29PNcPwwQPGECnb6lfPb+gt4clnnK9Wpj1T25lk6SwA= -----END CERTIFICATE-----Generated at Wed Nov 5 15:27:35 2025 by rpki-client