$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/245576c4-866d-4491-a1bc-ed3332f631b3.roa File: 245576c4-866d-4491-a1bc-ed3332f631b3.roa (raw, json) Hash identifier: 2wAmnTol7sLScpnBw9mjLSPgd+CwvwzOas1QqYKNcis= Subject key identifier: AC:32:A8:33:F8:90:94:20:90:F6:2E:38:EB:E2:96:4E:D2:FC:D4:76 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 20287E91FE31A0C6FDCE87E1E85FA52ED6521072 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/245576c4-866d-4491-a1bc-ed3332f631b3.roa Signing time: Thu 30 Oct 2025 23:10:28 +0000 ROA not before: Thu 30 Oct 2025 23:10:28 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2b88::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:28:7e:91:fe:31:a0:c6:fd:ce:87:e1:e8:5f:a5:2e:d6:52:10:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 23:10:28 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=98202c43f8c42d382c362aba87de42b645e6109f29972ae60a2534c51e691a75, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:03:c4:f4:45:55:25:7a:55:f1:07:8e:e5:75: 06:96:76:18:6a:3b:e1:ad:a1:c7:20:f3:18:90:93: 5d:4f:67:f7:5d:74:c1:f1:a7:e9:f8:1f:f0:6b:29: 97:4e:46:0a:27:54:a5:e4:e0:0a:ca:c7:a1:47:c7: e6:93:9c:56:50:d9:d7:be:07:d9:25:51:58:79:81: 3b:04:17:72:5d:dc:f0:5e:8a:90:fb:b8:9e:0b:a4: 6a:6a:fd:bd:d0:3b:4d:34:44:60:c6:62:d8:2f:aa: e2:d4:8a:29:5b:36:e2:ad:9d:05:03:71:cb:bf:73: 92:9e:3f:f2:cc:3b:aa:7a:6d:52:c2:a0:60:99:5d: 3e:8b:c1:08:1f:2b:f6:ca:39:b4:47:3a:cc:c3:5c: 5d:32:ff:35:38:33:7d:fb:6d:34:21:1d:a2:e2:23: 15:f8:83:b6:bb:38:16:5a:cf:e5:0c:d4:4b:32:92: 8c:5a:e0:27:64:06:38:47:07:72:4c:19:37:50:4f: 27:fa:26:d3:b0:21:af:75:a4:7b:08:0a:bf:a5:c8: 0b:e3:c6:4a:50:80:eb:d4:32:53:ee:d4:e9:3b:0d: 30:a3:49:12:f6:9c:3a:cc:90:a6:aa:6f:b5:b1:fc: cb:1e:6e:63:cd:09:bd:ad:30:38:1f:40:ad:07:38: 90:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:32:A8:33:F8:90:94:20:90:F6:2E:38:EB:E2:96:4E:D2:FC:D4:76 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/245576c4-866d-4491-a1bc-ed3332f631b3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2b88::/47 Signature Algorithm: sha256WithRSAEncryption 8d:fc:0b:37:9e:ba:85:3c:74:f6:f0:40:62:8f:af:40:a2:8f: f7:a8:b8:5f:3b:49:5f:28:83:0c:65:fe:d7:84:a1:a9:f5:01: 1c:aa:42:d1:76:e4:04:cc:bb:bc:9d:cd:35:83:a0:52:f8:0a: 7f:a4:13:60:38:9c:35:df:ef:de:a2:66:c9:68:47:b7:25:df: e1:f5:01:c4:81:d5:92:57:a7:08:33:71:f5:c1:14:ae:f4:2c: ac:a2:6f:7f:6b:29:2c:0d:a0:d3:7d:a9:c1:75:3c:c8:f9:60: f0:26:a9:14:0f:26:d2:13:ec:67:2b:5c:bf:95:50:f6:9d:54: ce:18:97:9e:07:13:2b:b7:85:c4:48:9d:1b:14:8b:aa:9b:51: e3:a5:b0:5f:cd:2a:06:62:5b:93:b9:a9:9a:f4:66:ca:bf:df: 63:11:cc:3b:e1:90:54:b8:31:22:62:e9:f4:92:9d:b8:f4:bb: 1e:40:8d:06:e6:2f:53:ec:29:1d:33:ab:46:88:41:65:0b:79: 07:4f:ef:8c:3e:69:f7:5c:07:e3:c2:ce:b6:5a:05:93:f4:19: 9b:33:1d:67:77:6f:21:ec:5a:68:8d:99:78:75:bc:0b:09:96: 84:cd:cb:9d:dd:22:57:54:40:8a:58:05:d3:95:c2:e0:0f:36: f6:cc:a7:b7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUICh+kf4xoMb9zofh6F+lLtZSEHIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjMxMDI4WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ODIwMmM0M2Y4YzQyZDM4MmMzNjJhYmE4N2RlNDJiNjQ1 ZTYxMDlmMjk5NzJhZTYwYTI1MzRjNTFlNjkxYTc1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6A8T0RVUlelXxB47ldQaWdhhqO+Gtoccg8xiQk11PZ/dd dMHxp+n4H/BrKZdORgonVKXk4ArKx6FHx+aTnFZQ2de+B9klUVh5gTsEF3Jd3PBe ipD7uJ4LpGpq/b3QO000RGDGYtgvquLUiilbNuKtnQUDccu/c5KeP/LMO6p6bVLC oGCZXT6LwQgfK/bKObRHOszDXF0y/zU4M337bTQhHaLiIxX4g7a7OBZaz+UM1Esy koxa4CdkBjhHB3JMGTdQTyf6JtOwIa91pHsICr+lyAvjxkpQgOvUMlPu1Ok7DTCj SRL2nDrMkKaqb7Wx/MsebmPNCb2tMDgfQK0HOJCrAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUrDKoM/iQlCCQ9i446+KWTtL81HYwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzI0NTU3NmM0LTg2NmQtNDQ5MS1hMWJjLWVkMzMzMmY2MzFiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAK4gwDQYJKoZIhvcNAQELBQADggEBAI38CzeeuoU8dPbwQGKPr0Ci j/eouF87SV8ogwxl/teEoan1ARyqQtF25ATMu7ydzTWDoFL4Cn+kE2A4nDXf796i ZsloR7cl3+H1AcSB1ZJXpwgzcfXBFK70LKyib39rKSwNoNN9qcF1PMj5YPAmqRQP JtIT7GcrXL+VUPadVM4Yl54HEyu3hcRInRsUi6qbUeOlsF/NKgZiW5O5qZr0Zsq/ 32MRzDvhkFS4MSJi6fSSnbj0ux5AjQbmL1PsKR0zq0aIQWULeQdP74w+afdcB+PC zrZaBZP0GZszHWd3byHsWmiNmXh1vAsJloTNy53dIldUQIpYBdOVwuAPNvbMp7c= -----END CERTIFICATE-----Generated at Wed Nov 5 07:40:34 2025 by rpki-client