$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/25cbaf18-0d35-4f7b-83ae-f5164ad50299.roa File: 25cbaf18-0d35-4f7b-83ae-f5164ad50299.roa (raw, json) Hash identifier: onMd9bsI4Vm4LK5KfrzP23PoSbuKoueFxVV6aUnIh9M= Subject key identifier: FC:DD:C9:DD:78:23:A0:1E:0A:91:09:EF:D0:A1:0E:7F:30:E1:3A:4A Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3C29D04EACE456CB0A8B1C2EC260554677994776 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/25cbaf18-0d35-4f7b-83ae-f5164ad50299.roa Signing time: Fri 31 Oct 2025 01:13:23 +0000 ROA not before: Fri 31 Oct 2025 01:13:23 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3aa0::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:29:d0:4e:ac:e4:56:cb:0a:8b:1c:2e:c2:60:55:46:77:99:47:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 01:13:23 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=237e955076561fb3d69582196d4c183a76318dc8e5ae5cb66bb0b09f94c828ce, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:a4:b8:fb:f3:d5:af:02:0b:f0:4f:7f:08:cc: 46:f4:e6:f9:bc:db:b7:77:60:9e:e9:b1:26:4b:ac: b5:24:f2:11:d4:3e:c6:4e:dc:4f:97:62:86:c4:c7: 0d:aa:81:bb:5d:32:66:c7:62:35:91:fd:dd:a0:7a: 1c:96:db:3a:2c:3b:b2:fd:55:60:32:5c:de:95:f2: fb:46:b2:57:c9:8c:58:8f:94:b6:68:79:56:58:59: 93:1e:e6:d3:45:22:04:ab:fe:b8:03:59:92:87:48: 8f:06:6a:33:d0:a7:c3:d9:a2:d2:b5:e9:3d:ac:8a: 23:8e:a7:c4:8d:18:cb:ae:92:f4:12:7c:96:a5:92: a1:ad:bf:6d:4f:8b:e2:1f:ec:5e:fa:3e:3a:92:e9: c1:4e:7d:a2:da:aa:1f:f1:e9:b8:6d:af:58:92:38: 2c:cb:40:23:27:ce:d2:91:a4:58:13:2c:8b:f6:f5: 47:0d:e4:af:72:a3:aa:9c:2d:bc:2d:05:f7:7c:b7: a1:ba:3a:89:b4:0d:bb:c8:c5:db:f7:f2:43:ac:e8: d2:61:7c:c5:3d:8f:8d:9b:9d:13:1b:9f:0d:8d:1d: 17:26:de:9f:12:6b:be:ea:73:08:11:e6:a0:b1:4c: 73:aa:ea:e9:0f:cf:07:3e:b4:6b:a9:33:ae:1b:ed: 71:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:DD:C9:DD:78:23:A0:1E:0A:91:09:EF:D0:A1:0E:7F:30:E1:3A:4A X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/25cbaf18-0d35-4f7b-83ae-f5164ad50299.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3aa0::/47 Signature Algorithm: sha256WithRSAEncryption 6e:ae:e1:f1:49:9e:ef:e6:d1:d0:03:a7:d3:59:1c:4e:11:94: 3c:1c:64:4e:ad:e1:95:85:fc:06:d6:f2:c5:94:56:d0:2f:45: e6:c2:45:14:9e:85:6a:9b:ff:88:97:ed:a7:3d:0b:6f:22:6d: d1:7b:18:b8:78:7c:d5:a3:16:f5:ce:32:cd:59:d3:91:1c:35: c3:69:22:21:a2:2c:0e:3f:9c:d0:72:c0:88:77:bb:58:76:2a: f4:01:72:74:4f:f2:fc:fc:9f:16:89:85:69:ec:c6:c8:bb:2f: 3e:8d:8c:49:2b:60:3d:4f:ab:5a:52:59:ac:de:72:0f:69:0d: 16:7a:64:a4:94:63:3a:59:ee:58:ae:28:8f:88:74:be:5d:bd: 7b:4a:99:34:67:d6:2c:2e:49:b5:be:d7:60:b5:a8:a3:d3:ef: 46:8a:79:ab:25:46:13:6e:26:43:46:c0:34:bc:a1:fa:ec:6f: c1:e5:e4:9a:78:9e:7a:ce:8e:3e:36:3a:01:e0:05:ab:3a:f1: 07:3c:20:4b:9e:f2:96:82:e4:9a:23:49:6a:c9:ba:71:ab:ad: 77:15:b8:1f:0b:f1:4e:88:fa:61:53:00:9c:81:2e:d5:d1:79: 38:1d:44:b1:4f:b8:1d:46:2d:da:09:e8:8f:8f:6b:87:49:c9: 2f:70:fa:6e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPCnQTqzkVssKixwuwmBVRneZR3YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDExMzIzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMzdlOTU1MDc2NTYxZmIzZDY5NTgyMTk2ZDRjMTgzYTc2 MzE4ZGM4ZTVhZTVjYjY2YmIwYjA5Zjk0YzgyOGNlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDipLj789WvAgvwT38IzEb05vm827d3YJ7psSZLrLUk8hHU PsZO3E+XYobExw2qgbtdMmbHYjWR/d2gehyW2zosO7L9VWAyXN6V8vtGslfJjFiP lLZoeVZYWZMe5tNFIgSr/rgDWZKHSI8GajPQp8PZotK16T2siiOOp8SNGMuukvQS fJalkqGtv21Pi+If7F76PjqS6cFOfaLaqh/x6bhtr1iSOCzLQCMnztKRpFgTLIv2 9UcN5K9yo6qcLbwtBfd8t6G6Oom0DbvIxdv38kOs6NJhfMU9j42bnRMbnw2NHRcm 3p8Sa77qcwgR5qCxTHOq6ukPzwc+tGupM64b7XGHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU/N3J3XgjoB4KkQnv0KEOfzDhOkowHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzI1Y2JhZjE4LTBkMzUtNGY3Yi04M2FlLWY1MTY0YWQ1MDI5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOqAwDQYJKoZIhvcNAQELBQADggEBAG6u4fFJnu/m0dADp9NZHE4R lDwcZE6t4ZWF/AbW8sWUVtAvRebCRRSehWqb/4iX7ac9C28ibdF7GLh4fNWjFvXO Ms1Z05EcNcNpIiGiLA4/nNBywIh3u1h2KvQBcnRP8vz8nxaJhWnsxsi7Lz6NjEkr YD1Pq1pSWazecg9pDRZ6ZKSUYzpZ7liuKI+IdL5dvXtKmTRn1iwuSbW+12C1qKPT 70aKeaslRhNuJkNGwDS8ofrsb8Hl5Jp4nnrOjj42OgHgBas68Qc8IEue8paC5Joj SWrJunGrrXcVuB8L8U6I+mFTAJyBLtXReTgdRLFPuB1GLdoJ6I+Pa4dJyS9w+m4= -----END CERTIFICATE-----Generated at Wed Nov 5 09:29:05 2025 by rpki-client