$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/23708281-eb06-4ef4-800e-24ad32b93d2c.roa File: 23708281-eb06-4ef4-800e-24ad32b93d2c.roa (raw, json) Hash identifier: Tzp1TtiAAP1xnCs99Oz+2kOrnRzk70IxPGJc6KoTawA= Subject key identifier: 42:08:C0:E2:C5:0F:D5:52:16:A1:94:8B:A8:56:D1:88:C8:74:9F:CE Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4F2CA65ECBF4084301E8EC3E2BD9BAC2BF68EFA5 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/23708281-eb06-4ef4-800e-24ad32b93d2c.roa Signing time: Thu 30 Oct 2025 23:13:47 +0000 ROA not before: Thu 30 Oct 2025 23:13:47 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2c18::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:2c:a6:5e:cb:f4:08:43:01:e8:ec:3e:2b:d9:ba:c2:bf:68:ef:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 23:13:47 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=7a49fdeb7b8f32a8d4e4babd7b03c7f738c8381d07874a25a4823c3ce63756e8, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ba:56:a2:d7:21:dd:87:13:62:4a:a2:9c:5b: 26:4d:2a:91:9f:32:24:25:76:f3:50:5c:ee:7c:a0: 7b:c1:be:5b:6d:4b:d4:a2:00:6a:90:bd:31:6a:14: 98:f4:df:16:e0:5d:09:f8:f3:27:2d:b8:c6:af:e1: df:d7:63:cc:4e:b2:f7:d8:a6:06:29:8f:3a:cc:ec: b3:42:e1:32:34:f3:96:db:1b:73:80:f5:91:be:f5: b4:0a:91:cf:ec:2a:9b:65:59:b0:f8:d4:ef:3f:b8: 5d:c9:6c:3b:50:a2:e9:b2:5e:76:98:1e:55:14:ec: b8:82:cb:b1:3e:55:90:5c:41:34:67:4b:81:06:92: 51:4d:55:27:cf:68:7f:e7:11:cf:72:81:f3:60:02: f6:75:67:f9:de:ec:19:ff:91:eb:96:4f:85:e7:8a: ca:af:19:7b:eb:ae:3c:be:1d:61:df:8a:3c:cf:99: 97:c1:0b:41:d5:43:b7:7a:e6:49:5f:06:c5:3a:83: 16:0c:2a:2c:c4:a6:62:44:00:86:c9:92:c0:9d:50: f6:1d:62:e3:26:07:e8:85:5c:72:dc:d3:05:90:33: d6:21:b3:cb:50:d3:61:31:b1:a7:34:ee:b8:55:60: bb:86:f6:5d:41:a6:f6:8a:be:63:e1:98:c0:de:5e: f9:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:08:C0:E2:C5:0F:D5:52:16:A1:94:8B:A8:56:D1:88:C8:74:9F:CE X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/23708281-eb06-4ef4-800e-24ad32b93d2c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2c18::/47 Signature Algorithm: sha256WithRSAEncryption 65:3e:c6:f3:1f:81:a3:fb:64:ed:01:e4:3f:6b:e2:ec:48:78: 9a:6e:a4:bb:50:74:f9:33:02:dc:70:ea:87:a9:27:73:df:db: cb:77:39:86:c2:73:df:8c:02:97:b9:16:c8:e1:ae:84:67:04: 6c:9a:1e:65:56:38:3b:c0:1d:6b:ac:60:45:14:d2:a1:52:1b: d7:48:f9:25:aa:1b:14:99:a5:66:49:3f:ae:52:80:c4:a1:26: 79:11:57:de:f0:6f:97:7e:12:ab:97:c1:00:3b:55:b3:99:90: 92:d5:3c:35:6c:4c:ce:04:e8:eb:6a:ca:60:ee:5f:9e:a6:8b: 37:7e:aa:a9:01:5c:bb:5b:1d:ac:36:0d:c8:1a:24:85:2c:c5: bf:dc:04:a9:d8:67:d4:34:d8:37:ce:c4:f4:69:25:98:d7:1b: fd:7b:28:c8:85:32:cc:3f:12:cf:f9:74:93:37:d9:3b:af:d1: 29:ee:8a:41:2b:3d:12:1d:9e:02:e4:c6:9a:b2:a8:36:5f:29: eb:4f:89:b3:59:4d:36:9f:b2:b6:ce:3f:34:82:f7:06:24:14: c4:82:a2:e3:36:8a:4b:0d:3c:7d:3e:34:4d:96:dc:6a:32:73: 53:63:d4:29:8b:bd:5c:f1:34:ff:98:91:a0:d8:92:f6:55:c3: 6e:9e:6b:59 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTyymXsv0CEMB6Ow+K9m6wr9o76UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjMxMzQ3WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YTQ5ZmRlYjdiOGYzMmE4ZDRlNGJhYmQ3YjAzYzdmNzM4 YzgzODFkMDc4NzRhMjVhNDgyM2MzY2U2Mzc1NmU4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDulai1yHdhxNiSqKcWyZNKpGfMiQldvNQXO58oHvBvltt S9SiAGqQvTFqFJj03xbgXQn48yctuMav4d/XY8xOsvfYpgYpjzrM7LNC4TI085bb G3OA9ZG+9bQKkc/sKptlWbD41O8/uF3JbDtQoumyXnaYHlUU7LiCy7E+VZBcQTRn S4EGklFNVSfPaH/nEc9ygfNgAvZ1Z/ne7Bn/keuWT4XnisqvGXvrrjy+HWHfijzP mZfBC0HVQ7d65klfBsU6gxYMKizEpmJEAIbJksCdUPYdYuMmB+iFXHLc0wWQM9Yh s8tQ02Exsac07rhVYLuG9l1BpvaKvmPhmMDeXvkrAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQgjA4sUP1VIWoZSLqFbRiMh0n84wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzIzNzA4MjgxLWViMDYtNGVmNC04MDBlLTI0YWQzMmI5M2QyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAALBgwDQYJKoZIhvcNAQELBQADggEBAGU+xvMfgaP7ZO0B5D9r4uxI eJpupLtQdPkzAtxw6oepJ3Pf28t3OYbCc9+MApe5FsjhroRnBGyaHmVWODvAHWus YEUU0qFSG9dI+SWqGxSZpWZJP65SgMShJnkRV97wb5d+EquXwQA7VbOZkJLVPDVs TM4E6OtqymDuX56mizd+qqkBXLtbHaw2DcgaJIUsxb/cBKnYZ9Q02DfOxPRpJZjX G/17KMiFMsw/Es/5dJM32Tuv0SnuikErPRIdngLkxpqyqDZfKetPibNZTTafsrbO PzSC9wYkFMSCouM2iksNPH0+NE2W3Goyc1Nj1CmLvVzxNP+YkaDYkvZVw26ea1k= -----END CERTIFICATE-----Generated at Wed Nov 5 09:27:43 2025 by rpki-client