$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/235ddac9-e1f0-417d-a711-18face3516b5.roa File: 235ddac9-e1f0-417d-a711-18face3516b5.roa (raw, json) Hash identifier: bZ1Gy2Ld7R2bdj2jVKqOy39mOGFn5LIUJXsm4fuZLkI= Subject key identifier: DC:5A:31:B9:1B:E1:4A:47:8B:52:55:80:5B:8C:59:73:A9:47:40:91 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 19D00527796F614389C0728341D9B294DFD64007 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/235ddac9-e1f0-417d-a711-18face3516b5.roa Signing time: Thu 30 Oct 2025 22:58:56 +0000 ROA not before: Thu 30 Oct 2025 22:58:56 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2a9c::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:d0:05:27:79:6f:61:43:89:c0:72:83:41:d9:b2:94:df:d6:40:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 22:58:56 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=95dae1c39d28f894188c740a2c49e21d3cefdac40a5b7d8565f1651639d79e58, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:ac:50:52:d2:95:55:5e:84:bb:f9:7c:49:18: 0c:e3:88:f7:89:43:fe:48:e6:d4:1a:f7:05:12:68: b9:27:5b:2a:c1:43:10:2f:9c:b9:80:0d:c0:f7:6b: 31:2d:ee:52:ff:46:11:a7:b5:af:9d:d6:c0:2b:21: 2e:f7:ff:a5:25:01:7f:7d:83:59:c5:34:cb:7a:ce: db:78:ff:f9:a6:81:ba:cf:81:19:d0:2a:45:09:39: fe:ca:23:87:6b:be:62:2a:58:e0:f1:6d:5d:aa:28: 91:ee:c9:03:e9:32:40:4a:e4:a2:53:b7:8d:21:08: fb:14:b8:f8:08:ba:eb:56:e9:30:7f:ca:e8:b9:b4: 68:2c:a1:43:01:38:ef:7c:0e:7f:28:89:72:a5:07: cb:21:e1:36:72:cd:d4:3a:96:91:ac:8d:e0:27:8f: b0:07:b0:e0:c0:fe:c2:bd:5f:70:2e:50:09:03:bb: a1:a5:88:f4:a9:e8:4b:93:63:1c:21:d9:c1:52:d9: a2:8b:bf:54:67:b8:15:89:15:37:99:1e:b2:99:9b: 28:d6:df:40:35:53:1b:b2:19:33:dd:c2:42:e1:ed: 3c:a8:32:74:94:d1:bc:e4:f8:05:2e:4c:3f:c0:a2: 83:c4:bb:63:15:5c:60:a3:ef:fd:77:92:34:bc:1b: 53:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:5A:31:B9:1B:E1:4A:47:8B:52:55:80:5B:8C:59:73:A9:47:40:91 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/235ddac9-e1f0-417d-a711-18face3516b5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2a9c::/47 Signature Algorithm: sha256WithRSAEncryption 39:eb:38:8e:73:e8:8e:96:91:6f:8e:4f:83:df:35:3a:1c:48: 3c:b1:1e:ae:86:1e:b9:1d:7a:c2:80:f5:9d:65:e6:b2:e0:90: 15:24:0d:59:2a:c0:08:e7:ce:64:07:10:7f:00:f4:1b:d8:5c: df:d9:38:35:a8:0e:33:a2:40:05:05:5c:f5:66:02:c9:22:a4: 25:b4:8b:d5:39:e4:49:3e:c9:14:62:7c:7c:67:e5:a1:e8:38: 86:a5:7c:92:84:e3:02:a5:93:5c:d0:c1:67:f4:09:ce:15:ce: 55:18:9a:2b:b9:c2:56:12:8a:fd:66:5e:4e:5a:7b:2b:11:4e: 30:87:54:37:89:e6:de:5e:9c:b8:06:6c:42:e2:6d:06:06:e3: 49:1b:cb:51:a7:35:96:9c:cb:53:3b:6d:e9:3a:fe:97:68:e3: d5:3c:2c:63:29:f2:0a:88:4c:63:f3:2e:0a:04:87:26:87:bc: f9:bf:d3:6a:6d:ed:4f:95:6b:ca:2a:93:02:9a:7a:2b:f4:27: fd:33:5a:59:1e:d7:3a:6d:4e:73:0f:1c:1a:ea:de:66:03:13: 01:ff:11:32:e8:2b:26:b2:78:57:ba:a3:1a:11:00:f9:b0:ec: 60:76:3a:0c:25:75:97:ba:a4:c0:fd:e9:9c:54:87:65:e2:09: 0b:59:2c:e2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGdAFJ3lvYUOJwHKDQdmylN/WQAcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjI1ODU2WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NWRhZTFjMzlkMjhmODk0MTg4Yzc0MGEyYzQ5ZTIxZDNj ZWZkYWM0MGE1YjdkODU2NWYxNjUxNjM5ZDc5ZTU4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDrrFBS0pVVXoS7+XxJGAzjiPeJQ/5I5tQa9wUSaLknWyrB QxAvnLmADcD3azEt7lL/RhGnta+d1sArIS73/6UlAX99g1nFNMt6ztt4//mmgbrP gRnQKkUJOf7KI4drvmIqWODxbV2qKJHuyQPpMkBK5KJTt40hCPsUuPgIuutW6TB/ yui5tGgsoUMBOO98Dn8oiXKlB8sh4TZyzdQ6lpGsjeAnj7AHsODA/sK9X3AuUAkD u6GliPSp6EuTYxwh2cFS2aKLv1RnuBWJFTeZHrKZmyjW30A1UxuyGTPdwkLh7Tyo MnSU0bzk+AUuTD/AooPEu2MVXGCj7/13kjS8G1NxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3FoxuRvhSkeLUlWAW4xZc6lHQJEwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzIzNWRkYWM5LWUxZjAtNDE3ZC1hNzExLTE4ZmFjZTM1MTZiNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAKpwwDQYJKoZIhvcNAQELBQADggEBADnrOI5z6I6WkW+OT4PfNToc SDyxHq6GHrkdesKA9Z1l5rLgkBUkDVkqwAjnzmQHEH8A9BvYXN/ZODWoDjOiQAUF XPVmAskipCW0i9U55Ek+yRRifHxn5aHoOIalfJKE4wKlk1zQwWf0Cc4VzlUYmiu5 wlYSiv1mXk5aeysRTjCHVDeJ5t5enLgGbELibQYG40kby1GnNZacy1M7bek6/pdo 49U8LGMp8gqITGPzLgoEhyaHvPm/02pt7U+Va8oqkwKaeiv0J/0zWlke1zptTnMP HBrq3mYDEwH/ETLoKyayeFe6oxoRAPmw7GB2OgwldZe6pMD96ZxUh2XiCQtZLOI= -----END CERTIFICATE-----Generated at Wed Nov 5 10:54:51 2025 by rpki-client