$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/24e68bb5-6227-4195-a0a6-8eedbe425439.roa File: 24e68bb5-6227-4195-a0a6-8eedbe425439.roa (raw, json) Hash identifier: lIuMJM3hue8FJjtFJMU2WEAItRBtx+uH2mtZmBlBWYw= Subject key identifier: D2:0F:00:44:D5:03:66:AD:91:44:BE:60:28:EA:47:37:6D:FE:6B:8E Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5B182E10D5832363144CF7CEE6ED73BCC5B5C7B6 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/24e68bb5-6227-4195-a0a6-8eedbe425439.roa Signing time: Thu 30 Oct 2025 20:08:29 +0000 ROA not before: Thu 30 Oct 2025 20:08:29 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2220::/43 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:18:2e:10:d5:83:23:63:14:4c:f7:ce:e6:ed:73:bc:c5:b5:c7:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 20:08:29 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=4311ecffb48bdf473eff4929f2e917d269d052561076913aa8f6b8de6e2f8c13, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:3d:06:6a:09:e1:48:e9:c6:3f:97:91:08:aa: c5:3f:90:52:b9:1c:ea:1a:a3:89:3f:28:7d:65:6b: 77:8e:1e:6b:56:fb:a3:fe:ac:af:b9:02:0c:e1:bb: 58:a1:f4:fc:26:c9:af:bf:3f:d2:b7:a1:2f:98:68: 47:a4:1c:4d:62:8d:5b:eb:8d:84:68:c3:1a:f3:7a: 40:35:4f:e5:dd:3d:07:b5:5f:4f:fa:c6:0b:59:ce: b5:75:ef:a6:62:5d:f4:5b:45:33:ad:18:34:ba:3f: a2:fa:e3:b5:0b:f1:f4:a1:87:75:7d:cb:c3:16:9c: 03:64:97:a2:f5:35:21:1e:2e:43:56:33:32:00:04: 15:de:a4:d1:61:ef:5e:51:c7:67:d5:ea:93:98:30: b2:3e:46:04:b0:ba:b4:a4:ae:d4:3e:85:16:e5:99: b1:f7:48:3c:e4:2e:a6:61:fa:2c:8a:62:10:64:fe: 54:b1:16:0a:74:7d:e1:17:67:26:fb:be:83:cf:54: 3f:24:b4:6d:c1:c0:32:5e:18:e9:c6:b6:b3:0e:14: ce:2b:06:c4:dc:4f:b0:7c:69:29:53:d4:b6:1f:02: 0d:1d:71:16:1d:33:2a:5b:b3:da:91:d3:82:9a:5e: a7:d8:77:69:ef:fe:26:f3:d2:53:4e:21:8b:9c:0b: 02:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:0F:00:44:D5:03:66:AD:91:44:BE:60:28:EA:47:37:6D:FE:6B:8E X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/24e68bb5-6227-4195-a0a6-8eedbe425439.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2220::/43 Signature Algorithm: sha256WithRSAEncryption 46:d7:a2:5e:6f:85:df:4f:1a:8b:db:d1:63:f8:e8:0a:03:b7: 25:48:50:57:0a:80:d9:15:c7:b1:f3:b0:04:ae:45:48:f0:ac: 14:07:cd:d2:92:ae:bf:8e:20:41:66:ad:bf:e2:c4:17:19:b2: cb:cd:2b:44:c2:39:bc:28:35:1b:9d:f6:41:cd:30:e6:d5:70: d9:66:81:92:7a:18:41:30:f8:41:54:41:e7:c1:b8:13:80:5b: 96:cf:d8:c7:cd:ce:0d:ec:84:2b:f0:98:58:0a:72:72:fc:09: ad:ee:72:26:4f:05:47:a5:ca:76:25:8c:0d:fb:72:41:01:60: 47:a5:0a:62:4f:d4:51:69:b3:69:87:b9:40:10:1e:c1:b7:d0: 66:1a:bf:8a:13:b2:29:19:1c:a2:49:26:2a:9b:71:e4:e0:c5: ce:b7:30:b9:ca:fe:66:14:e3:fc:ae:f1:ef:e9:ed:60:80:35: f8:3c:18:d5:ef:de:61:e7:d9:b0:42:b6:b9:e9:59:f2:e3:a1: 37:bf:f2:8b:06:b0:1f:d5:23:48:77:9e:bd:b0:f3:e8:94:40: 12:0e:e0:32:c6:7f:be:61:b7:94:65:ce:c7:fd:7e:dc:8f:81: 6f:be:94:a7:5c:2a:ee:ec:2c:b4:e2:4c:cc:72:47:76:81:3b: 35:8b:6e:4d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWxguENWDI2MUTPfO5u1zvMW1x7YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjAwODI5WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MzExZWNmZmI0OGJkZjQ3M2VmZjQ5MjlmMmU5MTdkMjY5 ZDA1MjU2MTA3NjkxM2FhOGY2YjhkZTZlMmY4YzEzMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTPQZqCeFI6cY/l5EIqsU/kFK5HOoao4k/KH1la3eOHmtW +6P+rK+5Agzhu1ih9Pwmya+/P9K3oS+YaEekHE1ijVvrjYRowxrzekA1T+XdPQe1 X0/6xgtZzrV176ZiXfRbRTOtGDS6P6L647UL8fShh3V9y8MWnANkl6L1NSEeLkNW MzIABBXepNFh715Rx2fV6pOYMLI+RgSwurSkrtQ+hRblmbH3SDzkLqZh+iyKYhBk /lSxFgp0feEXZyb7voPPVD8ktG3BwDJeGOnGtrMOFM4rBsTcT7B8aSlT1LYfAg0d cRYdMypbs9qR04KaXqfYd2nv/ibz0lNOIYucCwJHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU0g8ARNUDZq2RRL5gKOpHN23+a44wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzI0ZTY4YmI1LTYyMjctNDE5NS1hMGE2LThlZWRiZTQyNTQzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwUmAJAAIiAwDQYJKoZIhvcNAQELBQADggEBAEbXol5vhd9PGovb0WP46AoD tyVIUFcKgNkVx7HzsASuRUjwrBQHzdKSrr+OIEFmrb/ixBcZssvNK0TCObwoNRud 9kHNMObVcNlmgZJ6GEEw+EFUQefBuBOAW5bP2MfNzg3shCvwmFgKcnL8Ca3uciZP BUelynYljA37ckEBYEelCmJP1FFps2mHuUAQHsG30GYav4oTsikZHKJJJiqbceTg xc63MLnK/mYU4/yu8e/p7WCANfg8GNXv3mHn2bBCtrnpWfLjoTe/8osGsB/VI0h3 nr2w8+iUQBIO4DLGf75ht5Rlzsf9ftyPgW++lKdcKu7sLLTiTMxyR3aBOzWLbk0= -----END CERTIFICATE-----Generated at Wed Nov 5 05:36:22 2025 by rpki-client