$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2408f821-b441-4fb3-aa20-eaa68b3efb5e.roa File: 2408f821-b441-4fb3-aa20-eaa68b3efb5e.roa (raw, json) Hash identifier: X5lRFHYiMOMtp+/hqQSSaZG3nGHh7awseXfCnY2emjs= Subject key identifier: F6:31:93:DB:A5:B0:5F:3E:AF:30:84:2E:FD:E3:9E:3B:E8:A8:48:38 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5487EC2710E18BA33A52CC4A213EFFE10376DB57 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2408f821-b441-4fb3-aa20-eaa68b3efb5e.roa Signing time: Thu 30 Oct 2025 22:08:58 +0000 ROA not before: Thu 30 Oct 2025 22:08:58 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1b42::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:87:ec:27:10:e1:8b:a3:3a:52:cc:4a:21:3e:ff:e1:03:76:db:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 22:08:58 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=cb44e5a5e7c2425a739710fa3e4782d4bf9e471a53c31dd043977d3f0c6d0b93, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:e6:f4:36:44:d5:16:ee:6d:1b:e3:8a:0e:56: f8:27:8e:d0:2d:83:74:6e:38:0c:53:69:fb:fa:0e: e9:a2:8d:2f:51:19:01:fc:e4:da:e7:a7:ed:30:c1: d8:a1:9e:da:47:67:73:31:c3:9e:cb:d0:ce:6a:99: 75:8d:77:50:1c:8d:e7:58:52:7f:78:d7:37:e7:b1: d0:31:2e:38:61:22:5d:13:81:6e:e8:f0:40:c0:90: 4a:28:c7:eb:d9:29:a5:67:c7:05:4f:19:1d:77:c3: a9:8c:61:41:34:57:5a:8f:17:df:64:87:a6:ac:48: 46:5d:27:a6:5e:3f:04:b2:c7:c8:3c:07:db:94:77: ce:d9:e2:d7:3e:87:aa:6d:a5:33:55:0b:4e:62:70: a9:37:b3:05:b9:00:75:bc:1c:47:22:ac:d1:d0:a0: 9f:3f:13:62:dc:3d:88:88:48:5f:68:43:d8:52:dd: 7c:29:2e:6a:95:b7:f1:2e:db:98:6d:b0:8f:77:a9: f9:94:02:63:2a:02:f4:83:a4:60:6c:94:18:7b:fe: 9d:d7:72:89:a7:3e:41:6c:ec:97:1b:6b:ba:13:5c: 76:69:65:4f:e9:c7:04:a5:76:78:40:96:04:09:4b: 6b:71:91:b0:0d:28:8e:66:ed:1d:5d:d9:68:64:bd: 7f:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:31:93:DB:A5:B0:5F:3E:AF:30:84:2E:FD:E3:9E:3B:E8:A8:48:38 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2408f821-b441-4fb3-aa20-eaa68b3efb5e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1b42::/47 Signature Algorithm: sha256WithRSAEncryption 09:4b:71:45:48:34:fc:89:eb:89:d4:0b:6a:90:78:6b:1a:b3: 9a:ec:90:e2:74:80:3c:f7:64:1f:d8:70:20:01:4c:11:86:d3: 7e:eb:40:64:54:5e:28:ed:c6:81:a8:3c:27:d9:11:af:22:f5: aa:3f:ab:fe:67:b6:07:38:7c:fe:68:b1:20:cf:fd:9f:8d:66: 4f:af:6c:b3:fd:7b:c6:24:5b:2a:20:8c:f8:98:0d:25:19:e1: 8c:fc:98:53:7f:93:41:39:ce:7c:a2:92:bd:1b:c7:e4:4f:f0: 53:db:e0:04:3d:32:f7:68:7b:48:b9:32:01:6a:c4:4c:ec:7c: 7f:31:ed:bf:57:07:ac:2d:f5:c0:f2:5d:43:ca:9d:8a:dc:33: d7:43:79:f8:93:0a:c3:50:7d:be:7c:c9:c8:e0:fb:11:46:0c: f2:bb:77:cd:4e:59:b1:14:70:f8:db:b3:2d:9b:f3:9c:08:e5: 3b:de:4e:3a:76:61:7a:c9:35:0d:cb:3c:f5:10:21:bb:f6:16: cc:86:4c:d4:20:43:be:14:59:3d:c5:f0:5c:65:38:64:09:1f: c5:5d:c8:73:26:5b:10:eb:a2:38:2d:91:b1:31:97:ba:ca:fc: 2b:d7:b7:cc:55:ff:6a:52:c4:77:ec:b1:a2:87:84:3f:9f:5d: bb:87:c2:5e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVIfsJxDhi6M6UsxKIT7/4QN221cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjIwODU4WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYjQ0ZTVhNWU3YzI0MjVhNzM5NzEwZmEzZTQ3ODJkNGJm OWU0NzFhNTNjMzFkZDA0Mzk3N2QzZjBjNmQwYjkzMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCL5vQ2RNUW7m0b44oOVvgnjtAtg3RuOAxTafv6DumijS9R GQH85Nrnp+0wwdihntpHZ3Mxw57L0M5qmXWNd1AcjedYUn941zfnsdAxLjhhIl0T gW7o8EDAkEoox+vZKaVnxwVPGR13w6mMYUE0V1qPF99kh6asSEZdJ6ZePwSyx8g8 B9uUd87Z4tc+h6ptpTNVC05icKk3swW5AHW8HEcirNHQoJ8/E2LcPYiISF9oQ9hS 3XwpLmqVt/Eu25htsI93qfmUAmMqAvSDpGBslBh7/p3XcomnPkFs7Jcba7oTXHZp ZU/pxwSldnhAlgQJS2txkbANKI5m7R1d2WhkvX+jAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU9jGT26WwXz6vMIQu/eOeO+ioSDgwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzI0MDhmODIxLWI0NDEtNGZiMy1hYTIwLWVhYTY4YjNlZmI1ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAG0IwDQYJKoZIhvcNAQELBQADggEBAAlLcUVINPyJ64nUC2qQeGsa s5rskOJ0gDz3ZB/YcCABTBGG037rQGRUXijtxoGoPCfZEa8i9ao/q/5ntgc4fP5o sSDP/Z+NZk+vbLP9e8YkWyogjPiYDSUZ4Yz8mFN/k0E5znyikr0bx+RP8FPb4AQ9 Mvdoe0i5MgFqxEzsfH8x7b9XB6wt9cDyXUPKnYrcM9dDefiTCsNQfb58ycjg+xFG DPK7d81OWbEUcPjbsy2b85wI5TveTjp2YXrJNQ3LPPUQIbv2FsyGTNQgQ74UWT3F 8FxlOGQJH8VdyHMmWxDrojgtkbExl7rK/CvXt8xV/2pSxHfssaKHhD+fXbuHwl4= -----END CERTIFICATE-----Generated at Wed Nov 5 09:29:58 2025 by rpki-client