$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/20ba53d6-1ab0-41a6-84c3-803ad4611d06.roa File: 20ba53d6-1ab0-41a6-84c3-803ad4611d06.roa (raw, json) Hash identifier: Am3Xwsog/jga9jLg1GG5O5mgODcviAUnk6WUxTNGeU4= Subject key identifier: C7:70:66:D2:D9:EF:FC:4A:C5:27:96:1A:38:FD:7A:1D:10:C2:5D:02 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 457D7E252D586DCFD271C691DEC0F5093304D9C4 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/20ba53d6-1ab0-41a6-84c3-803ad4611d06.roa Signing time: Fri 31 Oct 2025 04:13:31 +0000 ROA not before: Fri 31 Oct 2025 04:13:31 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3658::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:7d:7e:25:2d:58:6d:cf:d2:71:c6:91:de:c0:f5:09:33:04:d9:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 04:13:31 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=58ce089ffd2ab0220d80f95b63d77eefbe8d56db7ff9aeed057b1ff51510199c, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b4:84:14:17:7a:2f:c8:a7:8f:58:d3:f7:7d: ca:0e:ee:2e:78:ce:80:20:fd:fa:8a:44:8e:36:17: a5:44:25:76:b8:23:7d:64:38:41:5a:9c:dd:6b:62: ad:e1:2d:15:e2:39:0b:0d:24:71:b0:f1:e1:9d:16: 6a:5a:30:e5:70:ee:b5:06:aa:23:01:92:31:b4:d5: df:3b:9d:b8:a4:09:2c:8e:97:07:b8:da:38:9a:f2: 85:e3:66:52:06:8c:17:40:c1:01:66:51:f9:a8:db: a2:be:18:5c:2f:6c:3b:dc:45:3b:6a:b5:28:b8:af: d7:48:2d:17:01:40:ca:37:a1:f1:a6:38:c6:7e:a8: f7:b0:04:db:1b:ed:8a:80:37:2b:a4:c6:ec:f4:db: 0e:a4:64:ea:7f:aa:5e:11:40:64:80:e0:4c:d0:39: d8:af:74:03:29:c6:b6:7d:19:9e:77:34:96:5c:67: db:b8:c9:37:f0:9a:92:f5:08:65:88:b6:3b:52:d9: f0:17:fe:e2:f4:5d:90:b1:64:e1:fa:a2:f6:ed:6b: cd:0e:7d:5a:fe:fe:92:40:6c:ca:15:6e:08:ac:b1: 4e:d3:3b:28:49:ea:c4:8a:cf:fe:a5:e9:f9:ed:d0: b4:02:9b:a7:b9:45:89:ee:88:96:b9:12:69:de:5a: b5:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:70:66:D2:D9:EF:FC:4A:C5:27:96:1A:38:FD:7A:1D:10:C2:5D:02 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/20ba53d6-1ab0-41a6-84c3-803ad4611d06.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3658::/46 Signature Algorithm: sha256WithRSAEncryption 5c:20:be:60:51:f2:d0:08:02:39:6c:75:7b:9e:c9:18:8d:27: 6e:f3:7e:7c:63:4c:2c:8a:e9:b2:76:2c:29:2f:2c:03:e1:b9: 4c:6f:16:5d:fa:01:ee:38:16:1b:e5:ec:36:57:a3:96:cc:d8: a3:ac:c8:ee:53:b4:2c:80:e6:97:5a:7e:ab:2d:ae:2e:37:c3: 83:e4:f5:cb:ec:ab:1a:fc:95:32:c2:fd:bc:9a:9b:11:4b:ee: e9:ef:70:0b:17:3f:65:14:54:b5:0b:c4:66:ed:8e:5a:7f:c0: af:dd:43:17:b8:e7:e2:1f:a4:5f:da:84:85:37:a3:64:52:8a: 51:18:f6:80:8d:2d:6b:2b:fd:90:22:c7:aa:33:b6:2f:ff:48: 0c:18:be:30:bc:e3:d7:c0:87:84:12:ae:c6:b2:5b:1f:38:ac: fe:d7:2b:29:4f:1b:bb:d8:f6:78:81:4a:b9:71:d8:15:33:5c: 87:84:8a:6f:73:7d:48:1b:ba:51:58:c7:d7:6b:05:93:20:49: 95:7c:b5:11:9a:32:2a:3f:81:6b:a6:71:7e:67:eb:e7:29:1b: cd:91:1c:c4:42:4b:03:f2:d6:11:9f:e6:c3:81:85:44:c4:d2: 61:d1:1a:dd:16:bc:69:c0:de:9c:a8:38:2d:a7:96:d7:07:64: d6:53:d5:d8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURX1+JS1Ybc/SccaR3sD1CTME2cQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDQxMzMxWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OGNlMDg5ZmZkMmFiMDIyMGQ4MGY5NWI2M2Q3N2VlZmJl OGQ1NmRiN2ZmOWFlZWQwNTdiMWZmNTE1MTAxOTljMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQtIQUF3ovyKePWNP3fcoO7i54zoAg/fqKRI42F6VEJXa4 I31kOEFanN1rYq3hLRXiOQsNJHGw8eGdFmpaMOVw7rUGqiMBkjG01d87nbikCSyO lwe42jia8oXjZlIGjBdAwQFmUfmo26K+GFwvbDvcRTtqtSi4r9dILRcBQMo3ofGm OMZ+qPewBNsb7YqANyukxuz02w6kZOp/ql4RQGSA4EzQOdivdAMpxrZ9GZ53NJZc Z9u4yTfwmpL1CGWItjtS2fAX/uL0XZCxZOH6ovbta80OfVr+/pJAbMoVbgissU7T OyhJ6sSKz/6l6fnt0LQCm6e5RYnuiJa5EmneWrXXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUx3Bm0tnv/ErFJ5YaOP16HRDCXQIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzIwYmE1M2Q2LTFhYjAtNDFhNi04NGMzLTgwM2FkNDYxMWQwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAANlgwDQYJKoZIhvcNAQELBQADggEBAFwgvmBR8tAIAjlsdXueyRiN J27zfnxjTCyK6bJ2LCkvLAPhuUxvFl36Ae44Fhvl7DZXo5bM2KOsyO5TtCyA5pda fqstri43w4Pk9cvsqxr8lTLC/byamxFL7unvcAsXP2UUVLULxGbtjlp/wK/dQxe4 5+IfpF/ahIU3o2RSilEY9oCNLWsr/ZAix6ozti//SAwYvjC849fAh4QSrsayWx84 rP7XKylPG7vY9niBSrlx2BUzXIeEim9zfUgbulFYx9drBZMgSZV8tRGaMio/gWum cX5n6+cpG82RHMRCSwPy1hGf5sOBhUTE0mHRGt0WvGnA3pyoOC2nltcHZNZT1dg= -----END CERTIFICATE-----Generated at Wed Nov 5 05:34:57 2025 by rpki-client