$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/268bac8b-26cf-416d-8e33-a4fde662b0a0.roa File: 268bac8b-26cf-416d-8e33-a4fde662b0a0.roa (raw, json) Hash identifier: at8jJPxwdouRq7+rayvDVEpTTqoUWKS9aZ3Mt7ycR6A= Subject key identifier: 9A:FC:8D:3D:B3:E9:28:85:2C:69:8B:46:50:FB:4E:0E:6B:27:82:46 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2157A9D028A788A89160728436653351135B55AB Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/268bac8b-26cf-416d-8e33-a4fde662b0a0.roa Signing time: Fri 31 Oct 2025 07:51:56 +0000 ROA not before: Fri 31 Oct 2025 07:51:56 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3180::/41 maxlen: 41 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:57:a9:d0:28:a7:88:a8:91:60:72:84:36:65:33:51:13:5b:55:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 07:51:56 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=d17916b7d6e7c67366cf8a79652f08d6266b547923f56abc89222ea182b3549b, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:de:a4:53:4a:58:7a:82:55:16:c7:2d:23:b5: 04:e1:72:06:b6:b3:99:07:2e:c5:d8:0e:92:56:c1: 21:7c:a5:72:54:33:3c:7c:6a:19:0e:ed:fb:75:6a: e6:6c:c0:fd:9f:50:6f:04:30:6e:ff:34:74:0e:13: 2e:a0:d5:bd:f4:d4:22:d8:b1:9a:05:f0:b7:1e:a4: 19:e9:18:f3:6e:87:cd:cd:4a:f6:2e:05:90:0c:12: 00:8c:1b:6c:d8:45:e5:f0:41:4d:73:a4:1c:7b:c1: 23:2a:7c:91:05:d3:96:e2:c7:06:99:eb:8b:c7:77: 7a:3b:c5:6c:25:ae:db:04:3b:82:29:17:74:80:21: f7:7a:f5:1c:62:91:9e:f1:7b:34:51:b0:8f:10:ca: 31:0a:58:8f:04:55:e0:4b:19:2a:bb:02:6a:7b:53: 2b:5d:3f:9e:d1:10:36:22:a4:c8:59:3b:36:02:b8: 60:d3:42:0d:a6:46:89:93:f0:16:33:8b:22:a3:00: 97:7e:e3:65:0e:31:e6:8d:2c:8c:8e:3b:ae:db:27: b6:6a:8e:29:5c:fc:f9:b7:21:cc:92:7f:c4:d8:1f: 18:87:68:b3:cd:14:61:a8:96:b3:7e:92:32:30:7f: 86:f8:91:6a:4a:9b:f0:54:d6:d5:0d:c7:b5:8f:02: a2:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:FC:8D:3D:B3:E9:28:85:2C:69:8B:46:50:FB:4E:0E:6B:27:82:46 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/268bac8b-26cf-416d-8e33-a4fde662b0a0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3180::/41 Signature Algorithm: sha256WithRSAEncryption 45:a5:1e:92:53:97:7a:4f:28:d2:11:45:f1:f4:d2:1a:79:1a: 5e:f7:33:65:ad:8e:d3:70:7a:09:d4:bd:5f:a6:9f:27:f4:0d: 04:27:eb:0b:d3:82:bd:c7:b8:e7:6c:d8:78:1d:c1:1c:07:4b: 4b:27:39:41:ad:c5:41:16:e2:1a:85:f1:21:2e:07:e3:f1:5b: 5c:5d:45:c5:ec:55:70:0c:6f:1c:68:61:30:8e:f9:03:7d:7e: b6:46:93:5e:9a:30:75:c2:7a:ac:36:13:b9:49:52:32:35:fb: ba:5b:a2:b2:21:e0:13:a6:68:8e:c5:68:d9:91:03:cb:f6:51: 24:a9:16:8e:88:25:9b:c0:5a:7f:d5:7e:83:6c:26:ac:e1:af: 7d:5c:db:d5:96:8a:c7:3d:36:a9:fd:a6:e6:25:3f:d2:42:65: ee:50:71:58:b6:b4:2a:f8:aa:3d:e4:e4:a5:ba:86:06:61:b9: 75:3f:6d:3b:f7:36:3b:5e:b5:32:ed:7a:c5:b6:34:08:de:ef: a0:09:c9:f0:fd:e3:fe:eb:b0:77:86:63:1b:b1:df:14:f0:fb: 7f:35:82:d5:28:a6:e3:7f:71:ba:89:f7:ca:fd:91:f2:18:e6: 3c:27:e5:02:e0:92:0b:7b:d5:f7:92:26:2a:93:4f:79:94:14: f1:46:96:36 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIVep0CiniKiRYHKENmUzURNbVaswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDc1MTU2WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMTc5MTZiN2Q2ZTdjNjczNjZjZjhhNzk2NTJmMDhkNjI2 NmI1NDc5MjNmNTZhYmM4OTIyMmVhMTgyYjM1NDliMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCx3qRTSlh6glUWxy0jtQThcga2s5kHLsXYDpJWwSF8pXJU Mzx8ahkO7ft1auZswP2fUG8EMG7/NHQOEy6g1b301CLYsZoF8LcepBnpGPNuh83N SvYuBZAMEgCMG2zYReXwQU1zpBx7wSMqfJEF05bixwaZ64vHd3o7xWwlrtsEO4Ip F3SAIfd69RxikZ7xezRRsI8QyjEKWI8EVeBLGSq7Amp7UytdP57REDYipMhZOzYC uGDTQg2mRomT8BYziyKjAJd+42UOMeaNLIyOO67bJ7Zqjilc/Pm3IcySf8TYHxiH aLPNFGGolrN+kjIwf4b4kWpKm/BU1tUNx7WPAqIxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUmvyNPbPpKIUsaYtGUPtODmsngkYwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzI2OGJhYzhiLTI2Y2YtNDE2ZC04ZTMzLWE0ZmRlNjYyYjBhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwcmAJAAMYAwDQYJKoZIhvcNAQELBQADggEBAEWlHpJTl3pPKNIRRfH00hp5 Gl73M2WtjtNwegnUvV+mnyf0DQQn6wvTgr3HuOds2HgdwRwHS0snOUGtxUEW4hqF 8SEuB+PxW1xdRcXsVXAMbxxoYTCO+QN9frZGk16aMHXCeqw2E7lJUjI1+7pborIh 4BOmaI7FaNmRA8v2USSpFo6IJZvAWn/VfoNsJqzhr31c29WWisc9Nqn9puYlP9JC Ze5QcVi2tCr4qj3k5KW6hgZhuXU/bTv3NjtetTLtesW2NAje76AJyfD94/7rsHeG Yxux3xTw+381gtUopuN/cbqJ98r9kfIY5jwn5QLgkgt71feSJiqTT3mUFPFGljY= -----END CERTIFICATE-----Generated at Wed Nov 5 10:55:16 2025 by rpki-client