$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/28476f1b-f33d-423c-ad29-b9c8e25cbcea.roa File: 28476f1b-f33d-423c-ad29-b9c8e25cbcea.roa (raw, json) Hash identifier: kE4LrI7YcSar8e/P7OhrLWadIpLOxSHmNCNSv27jHu4= Subject key identifier: 49:7E:23:C4:44:7A:9D:1C:73:DE:21:5E:05:87:31:32:5D:8E:93:36 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3E221C6AE11BAF7CF2B6B6016EBFC7EA1245C409 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/28476f1b-f33d-423c-ad29-b9c8e25cbcea.roa Signing time: Fri 31 Oct 2025 04:21:45 +0000 ROA not before: Fri 31 Oct 2025 04:21:45 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:36a0::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:22:1c:6a:e1:1b:af:7c:f2:b6:b6:01:6e:bf:c7:ea:12:45:c4:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 04:21:45 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=da7f9e22a2665b1fb97e4cd6a9c24c30313b708a6f96bdbed883d578bc2337e1, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:03:1b:17:c6:8b:b1:02:eb:96:be:ba:3a:bc: c0:d4:cd:04:50:85:20:e6:0c:87:28:fc:e8:a5:ca: 25:e1:6b:74:d7:c5:a9:46:1c:1b:10:47:65:58:f3: bc:68:d6:02:a8:50:2e:7e:f1:43:1a:57:a5:e2:c8: 06:8d:28:d0:6c:29:2b:af:78:f6:94:74:0b:b5:31: 44:c6:b5:d1:b4:7e:74:c0:a8:3b:42:cc:c1:08:d8: 11:6b:38:98:6f:20:2a:00:76:59:5f:bb:21:17:e4: 81:60:cc:c6:7e:e7:b9:a2:01:1c:0e:e1:20:fc:fd: e8:dc:72:e6:1d:28:22:56:d9:57:8c:b6:7c:fe:ae: 86:5d:af:42:9f:de:cd:2d:9e:c4:16:9d:41:2c:14: 7c:06:71:58:3f:6b:c3:04:6f:d2:93:79:2f:a4:87: 10:40:a6:a8:11:38:4d:b2:c4:28:ca:e6:f4:41:ce: ce:87:de:ed:91:71:f4:e5:d6:4f:c6:c9:12:1c:41: 44:49:19:62:97:4a:51:7d:4e:29:02:5d:36:ee:62: 7c:6d:e4:5c:37:28:2b:68:e7:66:d3:ef:7c:e9:e1: 16:8e:8f:b1:20:eb:a0:ca:e9:b6:ad:47:1d:41:4f: a6:35:ce:67:e0:94:65:8b:de:2a:49:ef:06:94:36: 37:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:7E:23:C4:44:7A:9D:1C:73:DE:21:5E:05:87:31:32:5D:8E:93:36 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/28476f1b-f33d-423c-ad29-b9c8e25cbcea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:36a0::/46 Signature Algorithm: sha256WithRSAEncryption 58:42:9f:6c:73:52:25:25:c9:00:df:42:12:77:77:f6:10:2b: 5c:47:7a:b5:95:20:39:7a:74:6c:38:bd:d0:c9:5b:3b:13:98: 0a:37:67:55:fd:6b:3b:bb:75:7c:f2:05:ec:a2:c7:a5:43:9d: 00:d3:e1:d1:d1:b6:73:59:8b:7e:6d:69:62:ef:89:4b:11:de: f9:eb:a4:cf:08:92:ae:11:b7:dd:87:6b:a8:29:92:ba:76:22: 84:b4:08:fa:e8:0d:37:9d:d0:47:44:6d:bf:2c:70:27:b2:25: e9:e8:ca:54:b1:24:5d:9c:5e:01:58:5f:5f:c9:83:5d:39:71: 13:2d:73:5a:a0:99:a5:17:41:64:b2:df:5d:e6:74:20:1e:3d: 5f:49:09:f9:bf:cb:a7:37:3b:78:46:a1:86:7b:5b:cb:ba:98: b2:53:7a:65:7d:21:b2:a8:20:e7:4f:4c:58:c9:fa:1e:a4:2b: 62:d7:37:72:f3:bf:eb:db:f6:73:1f:a3:03:7b:25:f6:3d:4e: d9:ac:93:16:7e:84:44:65:bc:74:00:8c:32:d1:f3:79:39:49: 0e:54:d7:31:28:ad:f5:89:8a:52:b3:d4:36:da:62:f8:56:03: dd:48:88:6b:4a:13:4f:01:0d:25:2e:9e:06:d4:aa:13:b8:d1: f1:e6:3c:f7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPiIcauEbr3zytrYBbr/H6hJFxAkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDQyMTQ1WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYTdmOWUyMmEyNjY1YjFmYjk3ZTRjZDZhOWMyNGMzMDMx M2I3MDhhNmY5NmJkYmVkODgzZDU3OGJjMjMzN2UxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7AxsXxouxAuuWvro6vMDUzQRQhSDmDIco/OilyiXha3TX xalGHBsQR2VY87xo1gKoUC5+8UMaV6XiyAaNKNBsKSuvePaUdAu1MUTGtdG0fnTA qDtCzMEI2BFrOJhvICoAdllfuyEX5IFgzMZ+57miARwO4SD8/ejccuYdKCJW2VeM tnz+roZdr0Kf3s0tnsQWnUEsFHwGcVg/a8MEb9KTeS+khxBApqgROE2yxCjK5vRB zs6H3u2RcfTl1k/GyRIcQURJGWKXSlF9TikCXTbuYnxt5Fw3KCto52bT73zp4RaO j7Eg66DK6batRx1BT6Y1zmfglGWL3ipJ7waUNjc7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUSX4jxER6nRxz3iFeBYcxMl2OkzYwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzI4NDc2ZjFiLWYzM2QtNDIzYy1hZDI5LWI5YzhlMjVjYmNlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAANqAwDQYJKoZIhvcNAQELBQADggEBAFhCn2xzUiUlyQDfQhJ3d/YQ K1xHerWVIDl6dGw4vdDJWzsTmAo3Z1X9azu7dXzyBeyix6VDnQDT4dHRtnNZi35t aWLviUsR3vnrpM8Ikq4Rt92Ha6gpkrp2IoS0CProDTed0EdEbb8scCeyJenoylSx JF2cXgFYX1/Jg105cRMtc1qgmaUXQWSy313mdCAePV9JCfm/y6c3O3hGoYZ7W8u6 mLJTemV9IbKoIOdPTFjJ+h6kK2LXN3Lzv+vb9nMfowN7JfY9TtmskxZ+hERlvHQA jDLR83k5SQ5U1zEorfWJilKz1DbaYvhWA91IiGtKE08BDSUungbUqhO40fHmPPc= -----END CERTIFICATE-----Generated at Wed Nov 5 10:55:36 2025 by rpki-client