$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/20b2deff-6b6f-4e03-82f1-42c69790dc8c.roa File: 20b2deff-6b6f-4e03-82f1-42c69790dc8c.roa (raw, json) Hash identifier: Jj2PGHGlurEFEAE+vg1ozdURPaWumE4HeG7jWINZyFU= Subject key identifier: 2A:EA:51:7A:C5:74:EC:FE:F4:1D:78:52:7A:A2:06:BF:BF:20:5F:E8 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 522B194539FE9D07F90C3B5011AE22FEA8AA6AA7 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/20b2deff-6b6f-4e03-82f1-42c69790dc8c.roa Signing time: Fri 31 Oct 2025 04:25:09 +0000 ROA not before: Fri 31 Oct 2025 04:25:09 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3820::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:2b:19:45:39:fe:9d:07:f9:0c:3b:50:11:ae:22:fe:a8:aa:6a:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 04:25:09 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=b99e6682da84e9ecae7020814755baa486745764b0eb031d9718d05e3223ce2f, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:26:ad:b7:7f:3a:24:a7:a4:d3:1b:86:02:ae: ae:2a:a3:3a:f4:0d:a6:d3:5f:7e:98:3c:28:d1:7a: 1d:27:14:97:92:e1:bd:be:90:14:55:e6:07:c7:82: 12:e2:ec:8f:d2:e5:67:c9:84:6a:43:a7:00:28:5f: 82:c4:a8:00:9b:c3:a5:6b:5a:38:34:ab:d9:02:3f: dc:72:fc:fc:91:4a:b2:3f:44:c5:5e:20:9c:7b:c5: 02:89:83:98:4b:be:ef:b9:a2:69:f9:72:23:15:d9: 31:2a:af:4d:c2:ba:42:01:b1:d4:73:7c:ba:92:1a: 70:72:d1:e7:63:be:c6:66:77:17:c0:4f:c9:da:db: 24:75:1c:2e:0b:c3:48:5f:2c:e6:d0:0a:89:6f:3a: 7c:c5:f0:2f:64:bd:f5:c7:e0:88:b8:b3:33:ad:e3: c6:71:dc:d2:6e:e0:fa:36:14:70:4b:f2:16:07:fc: 86:dd:8b:e9:43:8a:7c:cd:1b:5d:06:c0:2c:02:1e: 9a:7f:20:69:23:6d:75:6d:bb:b6:6a:8a:77:26:93: 0e:15:71:0f:92:e4:05:f2:05:53:40:4a:b7:79:3f: 58:3e:40:2f:c0:c2:5c:25:92:b4:0e:c7:75:32:83: 0c:6f:e7:03:fc:13:33:87:e7:80:61:35:7a:a3:ba: cb:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:EA:51:7A:C5:74:EC:FE:F4:1D:78:52:7A:A2:06:BF:BF:20:5F:E8 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/20b2deff-6b6f-4e03-82f1-42c69790dc8c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3820::/46 Signature Algorithm: sha256WithRSAEncryption 1a:63:37:c0:df:6b:b1:00:a0:1c:13:5f:b2:c3:3d:6f:fb:f9: a7:2f:e0:e4:72:8f:61:a8:98:1e:c5:71:f1:37:a8:0b:2d:df: 37:dd:0d:65:6c:e5:fc:08:97:fc:b0:4e:a2:37:f0:5e:0b:bd: 06:a4:87:17:31:47:49:58:b1:62:a9:05:7d:72:2a:1b:ea:cb: 3e:a6:9c:db:67:74:02:55:8d:1f:67:99:d7:ac:69:5c:a5:c3: c1:2c:08:29:1a:17:99:65:12:92:5f:31:9c:1c:10:1a:76:7b: 7c:90:12:53:95:42:f8:37:1b:0e:85:65:36:7b:21:91:8d:bd: 0b:6a:64:d8:b5:2a:1b:f8:38:97:28:cc:d9:3c:fa:d2:37:dc: d7:7b:56:3b:3a:17:6e:db:e2:74:43:90:bc:ba:29:c0:c3:a3: ef:53:22:ef:d5:28:21:80:2d:23:7e:6c:c9:29:2b:f4:80:59: fa:e2:02:1e:81:16:5f:35:7d:4f:98:9a:23:fa:b4:2f:10:6a: 87:e7:72:2e:97:83:f0:41:fc:5e:ec:ff:71:ca:93:b4:3d:74: b9:de:f6:3b:6e:cc:10:4b:a4:82:39:e5:d9:a4:65:37:c5:21: be:94:39:2c:3c:a3:d9:44:06:5f:c6:c9:b6:c1:e2:54:ab:70: b2:a4:ee:16 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUisZRTn+nQf5DDtQEa4i/qiqaqcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDQyNTA5WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOTllNjY4MmRhODRlOWVjYWU3MDIwODE0NzU1YmFhNDg2 NzQ1NzY0YjBlYjAzMWQ5NzE4ZDA1ZTMyMjNjZTJmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCHJq23fzokp6TTG4YCrq4qozr0DabTX36YPCjReh0nFJeS 4b2+kBRV5gfHghLi7I/S5WfJhGpDpwAoX4LEqACbw6VrWjg0q9kCP9xy/PyRSrI/ RMVeIJx7xQKJg5hLvu+5omn5ciMV2TEqr03CukIBsdRzfLqSGnBy0edjvsZmdxfA T8na2yR1HC4Lw0hfLObQColvOnzF8C9kvfXH4Ii4szOt48Zx3NJu4Po2FHBL8hYH /Ibdi+lDinzNG10GwCwCHpp/IGkjbXVtu7Zqincmkw4VcQ+S5AXyBVNASrd5P1g+ QC/AwlwlkrQOx3Uygwxv5wP8EzOH54BhNXqjussfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKupResV07P70HXhSeqIGv78gX+gwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzIwYjJkZWZmLTZiNmYtNGUwMy04MmYxLTQyYzY5NzkwZGM4Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAOCAwDQYJKoZIhvcNAQELBQADggEBABpjN8Dfa7EAoBwTX7LDPW/7 +acv4ORyj2GomB7FcfE3qAst3zfdDWVs5fwIl/ywTqI38F4LvQakhxcxR0lYsWKp BX1yKhvqyz6mnNtndAJVjR9nmdesaVylw8EsCCkaF5llEpJfMZwcEBp2e3yQElOV Qvg3Gw6FZTZ7IZGNvQtqZNi1Khv4OJcozNk8+tI33Nd7Vjs6F27b4nRDkLy6KcDD o+9TIu/VKCGALSN+bMkpK/SAWfriAh6BFl81fU+YmiP6tC8Qaofnci6Xg/BB/F7s /3HKk7Q9dLne9jtuzBBLpII55dmkZTfFIb6UOSw8o9lEBl/GybbB4lSrcLKk7hY= -----END CERTIFICATE-----Generated at Wed Nov 5 07:38:01 2025 by rpki-client