$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2753990e-4463-4a3b-80b5-1a9198823048.roa File: 2753990e-4463-4a3b-80b5-1a9198823048.roa (raw, json) Hash identifier: TJF2hu3qjrfb5agEV+yb5YK1apHmiTGQgvkXtsnuYJA= Subject key identifier: 31:C2:E7:BF:A3:56:ED:F1:CB:C7:B8:52:00:5E:28:0F:81:0F:44:A2 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5112D2FB7BC0F7349885C655850B654D5E5CBBF5 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2753990e-4463-4a3b-80b5-1a9198823048.roa Signing time: Fri 31 Oct 2025 06:10:23 +0000 ROA not before: Fri 31 Oct 2025 06:10:23 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3980::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:12:d2:fb:7b:c0:f7:34:98:85:c6:55:85:0b:65:4d:5e:5c:bb:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 06:10:23 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=41b5c079a2d38e430bb7455d962bf5a5f6c4134110c7abbadaee88d4ae644335, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:1d:0f:ea:32:ee:de:db:95:ae:1a:fc:72:6a: a2:4f:dd:8c:70:f8:9b:76:95:d3:ba:7c:e8:36:20: 23:44:d9:2f:4f:6b:00:22:8f:a0:f6:4f:44:92:a4: ff:50:f5:4f:1a:84:63:18:c7:ff:31:41:c9:bc:cd: d8:54:24:10:e4:31:79:43:3c:b1:d1:e9:a7:a3:b0: 12:dc:dc:74:12:59:b8:f1:74:66:eb:5c:dd:d6:5c: 12:36:33:3f:5c:10:b6:d9:93:fa:9a:82:5a:9f:11: fa:00:da:66:b0:e5:1b:96:5b:d6:d9:b4:f7:f6:56: 82:2a:ef:74:ca:54:fe:1f:ef:1f:ee:a1:c5:b2:58: 5b:82:93:ec:c2:ba:57:e9:fd:43:b5:a7:4c:d1:a5: ea:41:61:de:ae:b3:4b:c5:5c:e7:c5:57:84:4d:81: 38:ea:f3:b5:f6:b8:3a:db:59:bb:07:0c:b6:cf:04: 30:18:82:02:2c:8c:ea:41:12:2e:90:49:f8:05:70: 69:93:93:d6:f5:f2:02:a4:8b:76:22:16:9f:c8:67: 1e:f1:f8:d2:df:06:af:04:bf:ba:ea:59:86:9e:20: 6c:84:d5:78:a3:0d:46:a8:d1:c7:ef:65:f2:d6:e0: ca:17:52:ad:03:da:14:a1:5c:25:44:e0:9f:af:c6: b7:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:C2:E7:BF:A3:56:ED:F1:CB:C7:B8:52:00:5E:28:0F:81:0F:44:A2 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2753990e-4463-4a3b-80b5-1a9198823048.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3980::/45 Signature Algorithm: sha256WithRSAEncryption 28:18:2d:e0:0a:72:2e:0d:94:56:a3:ff:fe:f1:5f:99:8d:58: 2e:74:ca:13:30:7f:17:c9:40:bd:cf:60:c8:7f:a9:15:36:fd: 84:88:4d:d0:9d:19:0d:1c:42:a8:18:a7:27:d7:98:2d:eb:55: 72:57:c1:ad:02:68:07:ae:c8:12:0e:2c:84:55:a0:8b:d2:97: 99:69:53:c2:02:16:75:0a:80:f5:9e:a9:e5:54:d8:8e:50:76: 71:fb:d9:a5:d7:ec:af:4b:5d:38:1e:5f:34:c2:55:26:0a:a2: 18:ee:d0:10:b8:87:5c:08:3b:bc:a3:51:65:0c:93:e8:27:31: cd:61:c4:37:b6:e6:87:f2:43:9e:05:0c:40:9a:85:0a:f7:a5: ae:ce:50:e7:93:a9:95:8b:8b:ce:f6:d1:d9:61:10:00:b5:71: 1a:79:fe:43:b8:68:55:42:a4:d4:ea:de:87:a2:61:dd:aa:f6: da:92:8d:70:c6:66:95:2b:e2:8a:ee:37:cb:5a:13:44:27:97: 5b:0b:66:44:ca:36:78:e9:65:e6:57:42:0d:c5:c6:50:0a:b8: d6:5b:e7:c0:c9:20:42:a2:f7:0c:6e:f6:a8:f5:d5:f1:d9:72: aa:15:df:2f:2c:c8:5b:f4:9d:f5:94:20:50:b5:7a:99:47:48: 75:2e:5c:00 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUURLS+3vA9zSYhcZVhQtlTV5cu/UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDYxMDIzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MWI1YzA3OWEyZDM4ZTQzMGJiNzQ1NWQ5NjJiZjVhNWY2 YzQxMzQxMTBjN2FiYmFkYWVlODhkNGFlNjQ0MzM1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDnHQ/qMu7e25WuGvxyaqJP3Yxw+Jt2ldO6fOg2ICNE2S9P awAij6D2T0SSpP9Q9U8ahGMYx/8xQcm8zdhUJBDkMXlDPLHR6aejsBLc3HQSWbjx dGbrXN3WXBI2Mz9cELbZk/qaglqfEfoA2maw5RuWW9bZtPf2VoIq73TKVP4f7x/u ocWyWFuCk+zCulfp/UO1p0zRpepBYd6us0vFXOfFV4RNgTjq87X2uDrbWbsHDLbP BDAYggIsjOpBEi6QSfgFcGmTk9b18gKki3YiFp/IZx7x+NLfBq8Ev7rqWYaeIGyE 1XijDUao0cfvZfLW4MoXUq0D2hShXCVE4J+vxrcVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUMcLnv6NW7fHLx7hSAF4oD4EPRKIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzI3NTM5OTBlLTQ0NjMtNGEzYi04MGI1LTFhOTE5ODgyMzA0OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAOYAwDQYJKoZIhvcNAQELBQADggEBACgYLeAKci4NlFaj//7xX5mN WC50yhMwfxfJQL3PYMh/qRU2/YSITdCdGQ0cQqgYpyfXmC3rVXJXwa0CaAeuyBIO LIRVoIvSl5lpU8ICFnUKgPWeqeVU2I5QdnH72aXX7K9LXTgeXzTCVSYKohju0BC4 h1wIO7yjUWUMk+gnMc1hxDe25ofyQ54FDECahQr3pa7OUOeTqZWLi8720dlhEAC1 cRp5/kO4aFVCpNTq3oeiYd2q9tqSjXDGZpUr4oruN8taE0Qnl1sLZkTKNnjpZeZX Qg3FxlAKuNZb58DJIEKi9wxu9qj11fHZcqoV3y8syFv0nfWUIFC1eplHSHUuXAA= -----END CERTIFICATE-----Generated at Wed Nov 5 07:41:19 2025 by rpki-client