$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/22df2505-9406-456a-8266-5f0d355fac4b.roa File: 22df2505-9406-456a-8266-5f0d355fac4b.roa (raw, json) Hash identifier: CDxehyDD84tKBf+u+jvf/qfEZfy5kfO7UwLyicBJOWY= Subject key identifier: 04:9A:75:32:31:A3:53:D4:7E:5B:91:4C:A5:F9:37:9C:79:F3:8F:91 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0BC6405FA551666591B4A5192668021050B41401 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/22df2505-9406-456a-8266-5f0d355fac4b.roa Signing time: Thu 30 Oct 2025 20:08:39 +0000 ROA not before: Thu 30 Oct 2025 20:08:39 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2170::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:c6:40:5f:a5:51:66:65:91:b4:a5:19:26:68:02:10:50:b4:14:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 20:08:39 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=19c078a57ba0a220272d685d135f6dbc9da84a0c92f610128c6a672f59d0c4e4, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:09:a2:c6:ae:bb:2d:04:01:57:99:59:96:8e: b6:87:11:8d:4f:31:79:36:c9:f9:b3:26:01:ab:1d: 07:ff:85:a7:59:1a:e0:74:79:37:cc:10:a4:32:04: 1a:69:4c:ff:27:17:a2:f5:eb:93:93:b6:51:4f:5d: 00:b2:fe:88:0e:ac:28:2d:be:d3:4a:9c:4f:32:a4: c2:82:05:59:2a:7c:07:24:9b:f5:c1:44:c8:4a:77: ee:f4:7e:aa:2d:c0:5d:8c:53:ee:e3:47:29:e7:fb: 60:41:64:93:93:50:8d:b7:ca:f5:9f:0c:9e:39:b5: c4:a7:7f:5a:0c:f8:05:a5:3e:b9:25:c3:4a:32:0a: 0d:d4:18:d0:fd:a4:12:13:bb:6c:8e:e8:f8:1c:11: 27:0a:64:4d:2f:1a:94:a9:a5:9d:82:70:11:b8:a5: 09:15:0d:60:47:d1:a6:4d:ce:23:de:ce:a4:21:00: bd:40:ed:aa:22:1b:6b:47:5c:c8:96:72:08:37:a9: 5e:9c:11:d4:ba:e2:51:60:20:5f:d2:c0:97:e9:c7: e8:15:4b:35:b3:39:7d:6d:76:df:9a:db:60:a0:7c: 6d:67:5b:48:b2:98:ff:45:38:5b:ce:16:2e:ec:8e: 60:3b:40:7d:0b:c7:27:1d:be:38:64:2c:e0:ec:09: 62:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:9A:75:32:31:A3:53:D4:7E:5B:91:4C:A5:F9:37:9C:79:F3:8F:91 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/22df2505-9406-456a-8266-5f0d355fac4b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2170::/44 Signature Algorithm: sha256WithRSAEncryption 10:a7:df:89:64:53:13:8c:9c:25:68:fb:f2:bc:77:9c:32:ee: 4c:23:db:53:5d:71:6c:fa:e5:3c:7a:0e:e1:cf:c0:33:22:3f: b6:48:f4:3a:5b:36:20:62:ea:51:64:46:a2:d7:bc:8e:73:37: 73:8e:ab:25:ef:b0:7a:92:e8:c7:24:8c:00:29:7b:90:35:37: 0e:1a:4e:32:3f:54:c3:45:ce:cd:67:ac:d6:d7:e2:97:20:66: 4a:fd:4d:73:71:17:c5:e2:45:95:c5:fd:84:3b:8a:4b:8d:10: 4c:85:6d:f3:cb:b8:ab:0b:00:3d:5b:26:99:1a:c9:2c:39:cb: e2:f6:60:ed:f5:e2:08:13:73:fc:46:bd:eb:ad:f9:a5:9f:cf: b2:c9:d1:14:7b:60:64:62:14:49:4b:a6:fd:71:e8:88:c7:91: 3d:b7:85:fa:28:3f:45:04:f7:3e:93:79:1a:7b:cf:52:8f:26: 9c:99:90:09:44:e9:ef:61:14:4b:15:dd:0a:89:e1:dc:ca:59: 9c:67:01:76:f8:34:8e:71:9c:f4:24:f4:6a:8d:a3:10:1c:c0: 29:ce:e8:a5:fd:2d:c0:67:ff:8f:d0:18:62:1b:3e:53:1a:78: a7:13:53:da:d5:41:bc:fe:7e:4d:48:1c:ae:53:90:83:4e:19: 5b:57:2f:2a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUC8ZAX6VRZmWRtKUZJmgCEFC0FAEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjAwODM5WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxOWMwNzhhNTdiYTBhMjIwMjcyZDY4NWQxMzVmNmRiYzlk YTg0YTBjOTJmNjEwMTI4YzZhNjcyZjU5ZDBjNGU0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4CaLGrrstBAFXmVmWjraHEY1PMXk2yfmzJgGrHQf/hadZ GuB0eTfMEKQyBBppTP8nF6L165OTtlFPXQCy/ogOrCgtvtNKnE8ypMKCBVkqfAck m/XBRMhKd+70fqotwF2MU+7jRynn+2BBZJOTUI23yvWfDJ45tcSnf1oM+AWlPrkl w0oyCg3UGND9pBITu2yO6PgcEScKZE0vGpSppZ2CcBG4pQkVDWBH0aZNziPezqQh AL1A7aoiG2tHXMiWcgg3qV6cEdS64lFgIF/SwJfpx+gVSzWzOX1tdt+a22CgfG1n W0iymP9FOFvOFi7sjmA7QH0LxycdvjhkLODsCWKPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUBJp1MjGjU9R+W5FMpfk3nHnzj5EwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzIyZGYyNTA1LTk0MDYtNDU2YS04MjY2LTVmMGQzNTVmYWM0Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAJAAIXAwDQYJKoZIhvcNAQELBQADggEBABCn34lkUxOMnCVo+/K8d5wy 7kwj21NdcWz65Tx6DuHPwDMiP7ZI9DpbNiBi6lFkRqLXvI5zN3OOqyXvsHqS6Mck jAApe5A1Nw4aTjI/VMNFzs1nrNbX4pcgZkr9TXNxF8XiRZXF/YQ7ikuNEEyFbfPL uKsLAD1bJpkaySw5y+L2YO314ggTc/xGveut+aWfz7LJ0RR7YGRiFElLpv1x6IjH kT23hfooP0UE9z6TeRp7z1KPJpyZkAlE6e9hFEsV3QqJ4dzKWZxnAXb4NI5xnPQk 9GqNoxAcwCnO6KX9LcBn/4/QGGIbPlMaeKcTU9rVQbz+fk1IHK5TkINOGVtXLyo= -----END CERTIFICATE-----Generated at Wed Nov 5 12:57:29 2025 by rpki-client