$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2afa3025-2d28-4eb4-93b3-cc2fa83e92df.roa File: 2afa3025-2d28-4eb4-93b3-cc2fa83e92df.roa (raw, json) Hash identifier: kYF+U8AfEVtk/4PcbdcjdS1Hac1PUerOG7NdMLR3ioA= Subject key identifier: 19:4E:57:61:2E:C0:45:87:72:D4:41:EC:5C:11:38:A5:40:AC:7B:C4 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3E8CE44519274460841747FBFE53D0FA4A5E6E8C Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2afa3025-2d28-4eb4-93b3-cc2fa83e92df.roa Signing time: Fri 31 Oct 2025 03:43:37 +0000 ROA not before: Fri 31 Oct 2025 03:43:37 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2e1c::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:8c:e4:45:19:27:44:60:84:17:47:fb:fe:53:d0:fa:4a:5e:6e:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 03:43:37 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=2af62d21ffbd72acda102a417223ea442637438c9241d15814b23457eb8e67c7, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:aa:5d:cc:14:47:c0:80:5f:46:5f:fb:7d:96: ae:b3:ab:21:a0:e1:b3:de:90:bc:1c:20:9c:d4:ff: 72:44:45:f3:84:2b:70:16:e0:ad:13:00:4c:80:9d: 0c:f4:d4:fe:a6:cc:1d:bc:6b:20:ad:a6:9b:32:9f: 49:9d:04:ca:ad:88:e7:28:44:39:22:d8:8e:ac:8b: 75:1f:e4:e6:5c:a1:b6:57:65:7a:d6:6a:29:f6:aa: ae:17:f7:75:59:01:dd:7e:9a:f6:22:dd:72:c1:e4: f1:0e:c4:93:03:4d:fe:be:3e:09:1d:63:b0:2a:6c: 19:a0:13:34:dc:f9:f9:1c:f1:ee:70:4e:e2:52:ff: 05:45:4d:95:80:a5:7d:5a:c7:c8:2a:64:0c:19:07: 31:0f:a8:46:01:c2:68:ee:81:3a:0a:96:32:24:11: 95:b4:7a:80:82:b3:fc:c5:e2:6f:58:d2:44:d2:af: 98:e0:7d:ae:5c:b8:56:ec:4c:fa:05:db:40:7b:8a: 43:7b:50:08:fe:45:c9:04:8e:40:b5:57:cf:9a:1f: 65:37:c4:55:3f:ba:43:cf:d2:8b:4c:b7:35:3c:b1: 13:4c:7e:d4:7d:00:ff:0a:cb:ac:de:9d:a0:82:a7: ba:2b:51:78:8b:1d:89:9c:56:0b:ed:09:f3:d1:8c: 29:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:4E:57:61:2E:C0:45:87:72:D4:41:EC:5C:11:38:A5:40:AC:7B:C4 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2afa3025-2d28-4eb4-93b3-cc2fa83e92df.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2e1c::/46 Signature Algorithm: sha256WithRSAEncryption 76:fc:cb:33:f4:52:31:03:ff:39:38:f3:b4:34:d2:4c:33:1f: d8:69:cc:3b:5f:1e:91:3c:5e:07:be:cd:6e:f2:57:be:a5:1c: 0e:28:e0:92:9f:4e:13:fc:5d:81:99:97:61:74:1c:b8:12:23: 6b:2a:58:17:cd:f5:67:43:36:4e:d6:12:13:0a:97:69:3d:f8: dd:89:04:1d:be:df:87:a4:c0:6b:7d:96:a0:c6:24:1f:ba:9f: d3:a5:35:4c:78:7a:58:d1:49:78:3e:95:50:27:d3:2c:21:c2: fd:aa:d7:ab:51:2d:73:c9:df:fb:a5:31:0e:ce:a2:f7:0b:ce: ff:d7:76:47:a6:b1:97:9d:b4:8e:03:59:67:5e:78:e6:84:4f: c5:d1:f8:79:7a:b8:aa:a3:3b:26:05:1f:40:7c:18:39:73:f8: 7c:d0:0a:81:6a:e0:0a:5e:09:92:cf:dc:3f:fe:5e:c4:07:23: 0b:f1:c9:e4:da:ba:d7:21:2e:7c:73:a9:74:53:9c:1e:44:53: 84:6d:43:1e:37:e4:f8:f1:da:58:37:37:a9:50:84:1d:4b:90: 3d:4c:6f:c3:dd:66:a2:6a:49:bb:2f:71:38:91:10:72:7b:46: 3a:8a:ca:6d:7c:d9:07:d5:e0:c1:2b:63:cd:01:95:cd:10:8a: a7:01:97:e5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPozkRRknRGCEF0f7/lPQ+kpebowwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDM0MzM3WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYWY2MmQyMWZmYmQ3MmFjZGExMDJhNDE3MjIzZWE0NDI2 Mzc0MzhjOTI0MWQxNTgxNGIyMzQ1N2ViOGU2N2M3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjql3MFEfAgF9GX/t9lq6zqyGg4bPekLwcIJzU/3JERfOE K3AW4K0TAEyAnQz01P6mzB28ayCtppsyn0mdBMqtiOcoRDki2I6si3Uf5OZcobZX ZXrWain2qq4X93VZAd1+mvYi3XLB5PEOxJMDTf6+PgkdY7AqbBmgEzTc+fkc8e5w TuJS/wVFTZWApX1ax8gqZAwZBzEPqEYBwmjugToKljIkEZW0eoCCs/zF4m9Y0kTS r5jgfa5cuFbsTPoF20B7ikN7UAj+RckEjkC1V8+aH2U3xFU/ukPP0otMtzU8sRNM ftR9AP8Ky6zenaCCp7orUXiLHYmcVgvtCfPRjClHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUGU5XYS7ARYdy1EHsXBE4pUCse8QwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzJhZmEzMDI1LTJkMjgtNGViNC05M2IzLWNjMmZhODNlOTJkZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAALhwwDQYJKoZIhvcNAQELBQADggEBAHb8yzP0UjED/zk487Q00kwz H9hpzDtfHpE8Xge+zW7yV76lHA4o4JKfThP8XYGZl2F0HLgSI2sqWBfN9WdDNk7W EhMKl2k9+N2JBB2+34ekwGt9lqDGJB+6n9OlNUx4eljRSXg+lVAn0ywhwv2q16tR LXPJ3/ulMQ7OovcLzv/XdkemsZedtI4DWWdeeOaET8XR+Hl6uKqjOyYFH0B8GDlz +HzQCoFq4ApeCZLP3D/+XsQHIwvxyeTautchLnxzqXRTnB5EU4RtQx435Pjx2lg3 N6lQhB1LkD1Mb8PdZqJqSbsvcTiREHJ7RjqKym182QfV4MErY80Blc0QiqcBl+U= -----END CERTIFICATE-----Generated at Wed Nov 5 10:55:07 2025 by rpki-client