$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/23deec6c-a13e-4c96-b091-ce88665eaf1c.roa File: 23deec6c-a13e-4c96-b091-ce88665eaf1c.roa (raw, json) Hash identifier: JINIPs/RXSkXkiqzBsYKKC61BBW/1lnnga3l7MzJn9U= Subject key identifier: 76:6C:D2:60:EC:19:6F:B0:C6:E3:7B:1B:67:32:4C:18:36:3E:AB:97 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 430DB3F4334F2CB9BBF9D3F2F9DB24820EF0ACA7 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/23deec6c-a13e-4c96-b091-ce88665eaf1c.roa Signing time: Fri 31 Oct 2025 05:12:22 +0000 ROA not before: Fri 31 Oct 2025 05:12:22 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1660::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:0d:b3:f4:33:4f:2c:b9:bb:f9:d3:f2:f9:db:24:82:0e:f0:ac:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 05:12:22 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=53f01cf723d6285d2ef79b873b2936f228f4454da0d483f2cf5aa5856647f593, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:67:67:a7:20:a9:11:7c:a9:7d:57:59:8b:72: 43:a8:09:81:1f:6a:cc:8d:4c:0f:d7:97:38:69:39: 37:81:17:6a:93:db:d5:52:c8:c0:02:a0:e9:ca:53: b7:19:fc:95:e6:8b:9e:3c:9a:2d:1e:7e:db:e3:d9: 6a:bc:c4:9b:5a:be:4d:00:47:09:ed:8e:8d:3f:e1: 90:9c:18:ea:38:45:b0:b1:01:02:66:4c:f2:ac:1e: 89:5f:32:ed:98:de:0c:5b:20:61:bc:3f:cf:84:d6: f9:de:17:92:ab:f1:c5:83:69:2d:e1:61:bb:0b:31: 9c:0f:80:ca:88:69:27:e5:e4:f5:cd:3c:20:5c:5c: 59:10:9e:25:15:41:6d:d3:84:a4:f9:0c:3c:3e:e4: 35:80:e3:3a:79:73:f7:9f:59:b7:9c:d0:12:24:71: 98:c2:01:27:8e:18:36:15:c1:d5:29:61:30:1c:5c: 4c:0d:cd:22:1d:58:c7:f8:df:a3:2c:d9:a2:75:87: 91:84:59:d3:e2:84:fe:6d:54:5b:e8:fd:30:6c:ae: 8d:e7:28:b6:76:a8:08:b1:fd:00:29:6b:a8:f4:bd: e2:0f:b0:a9:46:2b:ba:e2:8b:62:ea:39:00:28:ed: cd:c2:0d:c7:8e:88:7a:15:0a:7f:a0:e5:82:7c:cb: 1d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:6C:D2:60:EC:19:6F:B0:C6:E3:7B:1B:67:32:4C:18:36:3E:AB:97 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/23deec6c-a13e-4c96-b091-ce88665eaf1c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1660::/45 Signature Algorithm: sha256WithRSAEncryption 0f:2d:06:7e:55:7a:99:d4:b0:b6:22:67:84:d8:79:5d:9b:a9: 88:78:50:60:45:2a:9b:0f:34:99:10:3f:4e:ea:58:2b:ae:47: aa:41:b2:79:7f:24:77:e2:97:70:a8:24:ca:a3:45:8b:20:5e: a2:c8:af:d4:6a:d8:2e:d3:06:41:11:d1:53:83:63:46:b5:8a: 2d:ea:f5:51:47:cc:bb:f6:c9:7b:da:42:1e:b5:50:15:93:ac: 21:eb:48:91:a0:dd:ae:ff:37:07:39:96:7c:0e:d6:23:3f:46: 59:e1:51:b9:7f:2d:63:a9:66:15:0c:4c:a7:5c:bf:4c:12:ba: fa:9b:76:59:3c:8b:0b:3a:04:8b:93:d4:00:f0:01:76:78:26: de:3a:1b:b5:e9:cc:2f:47:db:7c:9d:3a:3b:f7:25:af:a1:23: d6:9c:3e:84:58:23:c9:10:80:b3:d9:0e:20:0b:49:8f:d1:f4: b4:66:21:4e:bc:e5:b9:26:35:ba:ff:7a:a6:41:90:d4:c7:32: 28:a6:cb:35:43:e0:29:1c:e4:c5:5a:83:ea:ea:a8:f8:4d:5b: 54:51:ab:4b:79:a7:bc:f2:cd:95:c5:c5:57:59:94:dd:48:f0: ec:bb:b7:b1:41:90:37:47:9c:64:40:e8:c9:47:d7:39:c2:15: ab:dd:1f:81 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQw2z9DNPLLm7+dPy+dskgg7wrKcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDUxMjIyWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1M2YwMWNmNzIzZDYyODVkMmVmNzliODczYjI5MzZmMjI4 ZjQ0NTRkYTBkNDgzZjJjZjVhYTU4NTY2NDdmNTkzMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgZ2enIKkRfKl9V1mLckOoCYEfasyNTA/XlzhpOTeBF2qT 29VSyMACoOnKU7cZ/JXmi548mi0eftvj2Wq8xJtavk0ARwntjo0/4ZCcGOo4RbCx AQJmTPKsHolfMu2Y3gxbIGG8P8+E1vneF5Kr8cWDaS3hYbsLMZwPgMqIaSfl5PXN PCBcXFkQniUVQW3ThKT5DDw+5DWA4zp5c/efWbec0BIkcZjCASeOGDYVwdUpYTAc XEwNzSIdWMf436Ms2aJ1h5GEWdPihP5tVFvo/TBsro3nKLZ2qAix/QApa6j0veIP sKlGK7rii2LqOQAo7c3CDceOiHoVCn+g5YJ8yx2vAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUdmzSYOwZb7DG43sbZzJMGDY+q5cwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzIzZGVlYzZjLWExM2UtNGM5Ni1iMDkxLWNlODg2NjVlYWYxYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAFmAwDQYJKoZIhvcNAQELBQADggEBAA8tBn5VepnUsLYiZ4TYeV2b qYh4UGBFKpsPNJkQP07qWCuuR6pBsnl/JHfil3CoJMqjRYsgXqLIr9Rq2C7TBkER 0VODY0a1ii3q9VFHzLv2yXvaQh61UBWTrCHrSJGg3a7/Nwc5lnwO1iM/RlnhUbl/ LWOpZhUMTKdcv0wSuvqbdlk8iws6BIuT1ADwAXZ4Jt46G7XpzC9H23ydOjv3Ja+h I9acPoRYI8kQgLPZDiALSY/R9LRmIU685bkmNbr/eqZBkNTHMiimyzVD4Ckc5MVa g+rqqPhNW1RRq0t5p7zyzZXFxVdZlN1I8Oy7t7FBkDdHnGRA6MlH1znCFavdH4E= -----END CERTIFICATE-----Generated at Wed Nov 5 07:46:38 2025 by rpki-client