$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2bb836d0-28d8-43aa-bab1-8a2eee37eb63.roa File: 2bb836d0-28d8-43aa-bab1-8a2eee37eb63.roa (raw, json) Hash identifier: nIGhnrrZfFZ506kehjhKMs6hoXMlPY5gwFC1JUpEnWc= Subject key identifier: A7:CC:FB:96:34:82:28:81:03:BC:58:97:A8:32:8E:94:C0:B0:7C:27 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 21AE646CF56686FC74362B30C03748F0B8208BD4 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2bb836d0-28d8-43aa-bab1-8a2eee37eb63.roa Signing time: Fri 31 Oct 2025 06:29:06 +0000 ROA not before: Fri 31 Oct 2025 06:29:06 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1680::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:ae:64:6c:f5:66:86:fc:74:36:2b:30:c0:37:48:f0:b8:20:8b:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 06:29:06 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=c68ba7bc6038893eeaa14e4c7181c4fd5d4a970fb504612e699df063526638f3, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c2:f1:58:e8:d0:b3:77:62:5a:c1:6c:2f:9a: 20:43:42:8d:aa:9f:34:b2:3e:ac:8a:6a:05:a3:31: ed:8e:e4:a4:b5:84:f0:c9:16:2f:0e:69:fd:d2:e7: 06:97:67:fd:5a:9d:3e:4d:a0:2e:9d:48:23:0b:51: 2d:64:df:8b:e0:a3:b8:23:a5:7c:8f:a5:30:48:76: 43:54:cb:51:b3:5f:bb:76:b5:f6:4c:44:6c:c5:41: 46:ce:4a:5d:7b:a2:21:64:ca:1b:57:92:e7:0a:a6: 39:ab:fd:6c:cd:ee:07:51:4a:cb:da:cf:01:29:db: f1:d0:65:c5:68:82:d5:c0:a8:d5:16:f4:e4:29:b5: 9c:81:bd:d2:4a:7f:91:62:e5:e5:60:59:af:1e:06: 13:e2:7a:b1:19:d5:19:df:80:c1:44:cf:a4:7e:26: 67:79:93:74:65:2c:22:77:c0:ab:39:87:b3:66:ef: 64:30:1d:8d:c8:7f:04:fd:d7:41:20:5a:59:d7:8b: 97:e4:36:7d:dd:0e:3c:93:43:b8:20:45:1f:ae:63: 0f:69:d1:68:54:c8:15:f6:5f:98:8d:24:be:f2:b0: e3:34:a9:7b:cf:e5:28:a3:bd:97:1e:da:46:11:b8: a2:d3:b4:31:87:fc:7a:16:d5:dc:13:fc:5a:28:c0: 20:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:CC:FB:96:34:82:28:81:03:BC:58:97:A8:32:8E:94:C0:B0:7C:27 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2bb836d0-28d8-43aa-bab1-8a2eee37eb63.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1680::/44 Signature Algorithm: sha256WithRSAEncryption 0a:fe:33:62:b1:0b:a4:68:1c:d3:2f:f4:b2:d4:c5:05:dd:04: 79:32:28:71:87:db:24:b8:91:fd:1f:3b:4e:bf:c9:77:1f:8e: fb:bf:30:ab:a4:5e:6f:b7:57:13:92:5c:54:7a:b7:44:6d:b0: bf:c5:27:b2:92:50:22:e4:ee:3b:d6:78:32:8e:c3:b0:a0:7d: 9a:b1:07:36:e4:d7:43:1a:02:f1:be:e4:dc:ac:8d:d8:99:46: 10:8c:e4:ec:03:c2:48:ab:ae:b7:c0:12:f1:03:15:98:d5:eb: 60:ee:59:02:36:7d:e7:ec:de:88:5a:09:d0:68:13:0f:f3:8a: 3b:36:29:78:a0:f4:3d:78:37:9f:4c:f9:a2:af:67:be:a5:5f: e4:74:02:fb:3f:89:3f:31:79:cb:a5:de:1d:28:26:de:56:cb: 16:a1:35:fc:fe:81:6a:65:df:84:e0:ed:0f:d6:bf:a1:3a:e7: 5b:04:09:f3:f4:67:49:7d:db:77:d8:13:b7:45:59:08:6d:43: 3a:56:da:39:6b:c0:bf:46:46:a9:83:32:07:f4:b3:41:d1:5e: 34:79:51:5e:a6:ef:d2:74:4a:fb:61:ea:e7:02:23:d0:55:b1: 17:ef:de:59:c6:1d:bd:38:f0:0e:99:f8:ee:7a:74:34:f0:d6: fe:b1:1c:ad -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIa5kbPVmhvx0NiswwDdI8Lggi9QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDYyOTA2WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNjhiYTdiYzYwMzg4OTNlZWFhMTRlNGM3MTgxYzRmZDVk NGE5NzBmYjUwNDYxMmU2OTlkZjA2MzUyNjYzOGYzMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkwvFY6NCzd2JawWwvmiBDQo2qnzSyPqyKagWjMe2O5KS1 hPDJFi8Oaf3S5waXZ/1anT5NoC6dSCMLUS1k34vgo7gjpXyPpTBIdkNUy1GzX7t2 tfZMRGzFQUbOSl17oiFkyhtXkucKpjmr/WzN7gdRSsvazwEp2/HQZcVogtXAqNUW 9OQptZyBvdJKf5Fi5eVgWa8eBhPierEZ1RnfgMFEz6R+Jmd5k3RlLCJ3wKs5h7Nm 72QwHY3IfwT910EgWlnXi5fkNn3dDjyTQ7ggRR+uYw9p0WhUyBX2X5iNJL7ysOM0 qXvP5SijvZce2kYRuKLTtDGH/HoW1dwT/FoowCDxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUp8z7ljSCKIEDvFiXqDKOlMCwfCcwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzJiYjgzNmQwLTI4ZDgtNDNhYS1iYWIxLThhMmVlZTM3ZWI2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAJAAFoAwDQYJKoZIhvcNAQELBQADggEBAAr+M2KxC6RoHNMv9LLUxQXd BHkyKHGH2yS4kf0fO06/yXcfjvu/MKukXm+3VxOSXFR6t0RtsL/FJ7KSUCLk7jvW eDKOw7CgfZqxBzbk10MaAvG+5NysjdiZRhCM5OwDwkirrrfAEvEDFZjV62DuWQI2 fefs3ohaCdBoEw/zijs2KXig9D14N59M+aKvZ76lX+R0Avs/iT8xecul3h0oJt5W yxahNfz+gWpl34Tg7Q/Wv6E651sECfP0Z0l923fYE7dFWQhtQzpW2jlrwL9GRqmD Mgf0s0HRXjR5UV6m79J0Svth6ucCI9BVsRfv3lnGHb048A6Z+O56dDTw1v6xHK0= -----END CERTIFICATE-----Generated at Wed Nov 5 07:45:41 2025 by rpki-client