$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2209978c-140c-43c1-857a-b5198dea55be.roa File: 2209978c-140c-43c1-857a-b5198dea55be.roa (raw, json) Hash identifier: hwzAV1XqzWEf8OSr46WIQwnAMAnaz1c2UXxBDKV0fXM= Subject key identifier: B1:D9:ED:70:05:51:FD:40:99:39:80:79:E4:B4:71:3A:36:5D:A9:15 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3EB3C400B5F7B2A6567B565F73D90760136A5385 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2209978c-140c-43c1-857a-b5198dea55be.roa Signing time: Fri 31 Oct 2025 00:28:03 +0000 ROA not before: Fri 31 Oct 2025 00:28:03 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:35c2::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:b3:c4:00:b5:f7:b2:a6:56:7b:56:5f:73:d9:07:60:13:6a:53:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 00:28:03 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=0bb3a1e9d45943937dce9e48a81ffd9bee65b9f68ed6679e2d5d785194c092b4, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:17:df:d1:54:e6:88:1d:c3:13:53:24:40:b5: d4:1b:30:a2:09:de:4a:26:a3:b4:af:be:0b:8a:71: 43:b9:85:83:23:98:9a:8b:58:c0:91:a8:44:74:3c: d6:b0:15:cd:75:3a:e8:03:a0:5e:d5:a7:cc:69:1a: f0:74:55:26:ca:d6:0d:3e:6f:67:c7:79:49:a4:e6: 31:a8:98:8d:6c:53:4b:00:e4:28:62:da:b7:75:b0: cb:ce:6c:37:aa:b6:80:cf:3d:9f:a3:e1:22:1b:45: c2:46:47:0a:dc:1b:51:39:90:1c:a0:e3:e6:5b:f3: ed:18:7f:9f:39:44:46:3e:76:ce:c6:f0:e9:c7:c7: f6:a2:aa:3e:e4:dd:2e:4d:fd:24:90:a2:94:b3:b5: aa:b2:81:b5:23:94:36:d7:2e:56:5c:99:de:5f:c7: 2a:22:8c:76:74:92:89:3e:48:1e:5b:64:ca:ec:7e: 1c:54:8d:98:c8:a5:6b:35:c2:3f:a1:eb:6f:79:5e: d6:a9:3d:86:3d:23:14:8d:fb:bd:a8:94:5b:c3:e6: a0:44:3b:c6:2d:af:e3:14:ea:7b:f1:8b:00:e0:b6: 55:5b:84:97:b8:61:93:3f:83:0f:6e:d7:df:80:69: df:cd:ed:82:0a:09:3b:5e:4c:33:6a:98:40:01:5d: 83:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:D9:ED:70:05:51:FD:40:99:39:80:79:E4:B4:71:3A:36:5D:A9:15 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2209978c-140c-43c1-857a-b5198dea55be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:35c2::/47 Signature Algorithm: sha256WithRSAEncryption 99:0e:86:76:68:f4:69:2b:87:c7:a6:f6:25:c8:83:17:bb:b9: 0f:a3:be:bd:ba:ae:77:a2:a0:a9:a0:54:86:f3:22:dd:d8:f9: 49:17:35:c2:8a:0d:a6:09:ec:bb:16:14:60:5a:38:a0:02:7a: d7:6c:df:15:27:34:3e:cf:a2:fc:24:6e:22:a1:62:96:2f:8f: 76:6d:d3:45:63:a8:df:1e:fd:75:fd:3b:a2:d5:cc:17:a5:6e: d8:a6:2f:69:75:bb:e5:b8:a0:9d:52:bf:58:09:b9:5b:98:75: c3:a5:89:84:63:6c:69:2f:d4:3c:1b:ff:45:5e:57:aa:5f:39: 7d:2d:48:89:6b:06:1a:e8:46:62:ea:0c:29:4b:bf:ff:a3:b3: 10:90:c5:bd:8f:f3:5b:54:49:c1:a1:84:76:f1:e4:cb:7c:97: f7:8f:d0:21:32:f8:5d:eb:36:8e:9a:50:99:3a:95:c1:b5:c4: 50:da:14:f1:b8:49:04:10:cd:6c:ff:16:f9:5d:db:13:a8:79: 87:d2:c9:18:69:f3:5f:15:06:30:33:1f:29:e1:19:9a:8f:f9: 7e:a4:45:d6:c7:73:4d:67:87:da:dc:23:c5:da:20:30:c3:71: 35:ff:75:7a:eb:aa:14:67:0d:05:69:27:af:b8:e7:3d:30:97: 4e:2e:4d:92 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPrPEALX3sqZWe1Zfc9kHYBNqU4UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDAyODAzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYmIzYTFlOWQ0NTk0MzkzN2RjZTllNDhhODFmZmQ5YmVl NjViOWY2OGVkNjY3OWUyZDVkNzg1MTk0YzA5MmI0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1F9/RVOaIHcMTUyRAtdQbMKIJ3komo7SvvguKcUO5hYMj mJqLWMCRqER0PNawFc11OugDoF7Vp8xpGvB0VSbK1g0+b2fHeUmk5jGomI1sU0sA 5Chi2rd1sMvObDeqtoDPPZ+j4SIbRcJGRwrcG1E5kByg4+Zb8+0Yf585REY+ds7G 8OnHx/aiqj7k3S5N/SSQopSztaqygbUjlDbXLlZcmd5fxyoijHZ0kok+SB5bZMrs fhxUjZjIpWs1wj+h6295XtapPYY9IxSN+72olFvD5qBEO8Ytr+MU6nvxiwDgtlVb hJe4YZM/gw9u19+Aad/N7YIKCTteTDNqmEABXYMfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUsdntcAVR/UCZOYB55LRxOjZdqRUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzIyMDk5NzhjLTE0MGMtNDNjMS04NTdhLWI1MTk4ZGVhNTViZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAANcIwDQYJKoZIhvcNAQELBQADggEBAJkOhnZo9Gkrh8em9iXIgxe7 uQ+jvr26rneioKmgVIbzIt3Y+UkXNcKKDaYJ7LsWFGBaOKACetds3xUnND7Povwk biKhYpYvj3Zt00VjqN8e/XX9O6LVzBelbtimL2l1u+W4oJ1Sv1gJuVuYdcOliYRj bGkv1Dwb/0VeV6pfOX0tSIlrBhroRmLqDClLv/+jsxCQxb2P81tUScGhhHbx5Mt8 l/eP0CEy+F3rNo6aUJk6lcG1xFDaFPG4SQQQzWz/Fvld2xOoeYfSyRhp818VBjAz HynhGZqP+X6kRdbHc01nh9rcI8XaIDDDcTX/dXrrqhRnDQVpJ6+45z0wl04uTZI= -----END CERTIFICATE-----Generated at Wed Nov 5 11:07:55 2025 by rpki-client