$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/21432dda-6a83-4719-ae81-009538b33b88.roa File: 21432dda-6a83-4719-ae81-009538b33b88.roa (raw, json) Hash identifier: 6QjPcP6SeYYFObYyMlAEtuwWBWjJT8/HKOEAJ1P8V2E= Subject key identifier: 34:44:CC:56:CF:8A:31:BD:2C:08:4E:03:45:08:53:A4:49:9A:DD:E0 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3BA8C0E2DD970E8525F4B25ECBD8B57014534F24 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/21432dda-6a83-4719-ae81-009538b33b88.roa Signing time: Fri 31 Oct 2025 01:39:53 +0000 ROA not before: Fri 31 Oct 2025 01:39:53 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3d16::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:a8:c0:e2:dd:97:0e:85:25:f4:b2:5e:cb:d8:b5:70:14:53:4f:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 01:39:53 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=50bb1f43fe3934e0aa434c5555450544a30dcb784859a96631396b379594ea56, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a5:82:c3:69:e5:df:bb:4d:a7:b7:f1:b0:6d: db:b3:2d:29:78:4c:de:5d:92:0c:b2:c4:2c:4d:32: 18:a5:f0:52:8c:c1:f7:2e:ed:3a:c7:cc:69:4e:fc: 29:86:5a:22:87:2b:d3:e4:73:9b:6b:62:da:77:a7: 3d:20:1c:bc:44:06:6a:13:4e:ac:00:5e:66:ab:eb: 2a:32:7d:db:44:29:d0:a4:86:7f:33:46:f8:0c:f5: ad:65:fa:17:43:7d:54:5f:2d:73:54:a8:24:4a:dc: 1d:c4:fd:c9:9b:a0:2c:40:6d:da:35:f6:bf:9d:cd: f4:22:46:ca:4d:cf:21:b2:38:25:6e:31:78:d9:4e: 10:3f:32:e9:b8:ea:13:22:84:a5:e5:ed:f1:9d:99: 17:3a:00:00:27:18:62:a4:95:d2:72:c8:1d:47:98: 07:92:f7:da:fa:56:cf:69:67:5f:ae:3e:a6:0e:b1: 5d:8d:6c:91:c3:0f:6d:b1:27:e2:e5:cc:bf:fd:78: 37:6b:7e:55:9d:1f:42:32:fa:aa:32:91:8d:95:dc: 85:8b:76:92:5b:46:b7:71:15:58:46:03:b0:fb:b4: 8c:ad:54:ea:ce:4d:b4:cb:65:35:d2:01:ea:75:46: 6a:45:81:5d:61:22:ba:96:d2:33:57:1b:58:db:61: a7:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:44:CC:56:CF:8A:31:BD:2C:08:4E:03:45:08:53:A4:49:9A:DD:E0 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/21432dda-6a83-4719-ae81-009538b33b88.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3d16::/47 Signature Algorithm: sha256WithRSAEncryption 98:67:ab:af:74:49:f0:8c:a8:70:7f:ff:2a:fa:f8:30:f2:9a: 7e:7b:44:64:3f:10:9d:d9:3f:bb:c8:56:29:70:32:a6:84:b4: 7c:b9:bd:24:f4:4f:41:fe:a7:7b:f7:1c:15:a6:94:fa:e9:8b: 64:e4:3c:12:2e:4e:1a:c3:bd:64:dc:19:ea:47:45:73:94:b4: f0:23:78:3c:5f:a5:da:57:cb:3d:89:25:44:78:bf:cb:40:94: d8:a4:91:cc:58:ed:3c:d4:b0:50:e2:3c:7e:ca:3d:21:4b:79: 90:1a:0f:73:d2:ad:d8:3b:8a:cf:99:63:00:20:aa:e7:1e:fb: a6:2b:36:88:85:1d:c1:d1:c6:41:21:35:64:c1:07:57:36:db: 50:24:c2:b2:30:21:bf:e7:9f:2e:bd:69:b4:41:a2:f4:4f:37: f7:63:21:77:e3:a5:8b:b7:8b:5c:1a:88:c5:d1:fc:a4:ce:e2: 88:7a:47:f1:36:8f:aa:5e:ba:54:38:3c:94:9d:52:db:0b:33: aa:db:e1:fc:0f:60:a0:d0:13:9c:24:46:07:6c:81:ea:c1:cf: 79:22:3e:97:5c:b3:df:36:ba:9c:18:5c:9c:ba:c9:44:57:e0: d6:dc:d5:3a:dc:4c:c9:6d:04:aa:18:6f:6a:ab:5b:3a:bc:3f: 2a:fe:9c:33 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUO6jA4t2XDoUl9LJey9i1cBRTTyQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDEzOTUzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MGJiMWY0M2ZlMzkzNGUwYWE0MzRjNTU1NTQ1MDU0NGEz MGRjYjc4NDg1OWE5NjYzMTM5NmIzNzk1OTRlYTU2MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+pYLDaeXfu02nt/GwbduzLSl4TN5dkgyyxCxNMhil8FKM wfcu7TrHzGlO/CmGWiKHK9Pkc5trYtp3pz0gHLxEBmoTTqwAXmar6yoyfdtEKdCk hn8zRvgM9a1l+hdDfVRfLXNUqCRK3B3E/cmboCxAbdo19r+dzfQiRspNzyGyOCVu MXjZThA/Mum46hMihKXl7fGdmRc6AAAnGGKkldJyyB1HmAeS99r6Vs9pZ1+uPqYO sV2NbJHDD22xJ+LlzL/9eDdrflWdH0Iy+qoykY2V3IWLdpJbRrdxFVhGA7D7tIyt VOrOTbTLZTXSAep1RmpFgV1hIrqW0jNXG1jbYadjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUNETMVs+KMb0sCE4DRQhTpEma3eAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzIxNDMyZGRhLTZhODMtNDcxOS1hZTgxLTAwOTUzOGIzM2I4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAPRYwDQYJKoZIhvcNAQELBQADggEBAJhnq690SfCMqHB//yr6+DDy mn57RGQ/EJ3ZP7vIVilwMqaEtHy5vST0T0H+p3v3HBWmlPrpi2TkPBIuThrDvWTc GepHRXOUtPAjeDxfpdpXyz2JJUR4v8tAlNikkcxY7TzUsFDiPH7KPSFLeZAaD3PS rdg7is+ZYwAgquce+6YrNoiFHcHRxkEhNWTBB1c221AkwrIwIb/nny69abRBovRP N/djIXfjpYu3i1waiMXR/KTO4oh6R/E2j6peulQ4PJSdUtsLM6rb4fwPYKDQE5wk RgdsgerBz3kiPpdcs982upwYXJy6yURX4Nbc1TrcTMltBKoYb2qrWzq8Pyr+nDM= -----END CERTIFICATE-----Generated at Wed Nov 5 07:42:22 2025 by rpki-client