$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2bd00010-215b-4019-8b27-c03f7f58e44d.roa File: 2bd00010-215b-4019-8b27-c03f7f58e44d.roa (raw, json) Hash identifier: si6rIyZE/V/XJr2DNhy54zX5GB3wcoSfK6brvYuFzb0= Subject key identifier: 57:49:D4:0B:1F:25:C2:55:01:47:7D:6B:29:40:7F:78:38:80:7D:36 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 798E0DB453BB886F8C62F1FDC790728ED7EC64BC Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2bd00010-215b-4019-8b27-c03f7f58e44d.roa Signing time: Thu 30 Oct 2025 22:13:45 +0000 ROA not before: Thu 30 Oct 2025 22:13:45 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1bec::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:8e:0d:b4:53:bb:88:6f:8c:62:f1:fd:c7:90:72:8e:d7:ec:64:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 22:13:45 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=2fa3f499698bcd21463204885886b8ef42a4785192a1d8b7d912188aef9d4f14, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e9:ae:11:b9:ad:9a:d4:4a:6b:23:04:56:b0: fe:ac:35:22:7c:c0:ca:3e:e3:de:07:f0:80:6d:95: 47:a7:56:e4:09:66:1d:8b:56:57:9c:07:9f:80:bc: 8f:93:39:f8:9f:c6:0e:83:1f:68:e2:79:b3:bb:a9: 56:9a:6f:fa:44:e4:55:be:86:3a:21:04:b1:18:2d: ee:ce:f6:5c:2b:65:ce:a3:5a:96:e1:77:1d:e1:83: 6b:8c:12:82:b4:b4:eb:5a:ae:c8:65:c7:26:00:91: 69:b0:1c:f5:8c:58:74:aa:eb:96:ec:c1:0b:35:49: 08:0c:54:9c:3c:4d:bf:65:aa:87:d2:cd:50:34:f6: 3f:8b:19:82:6b:cc:28:1b:0f:11:1c:de:1c:7e:47: ac:c9:3e:d3:30:1a:0c:20:8b:c3:1c:20:79:d6:41: 4c:a2:3c:d0:20:23:63:d4:48:cf:f1:6f:7d:2d:f8: 58:41:91:1c:1b:58:b8:47:aa:a5:b0:07:b7:09:7a: a5:45:61:2e:2b:b3:fb:55:6b:c0:3a:8d:4a:7f:2b: b5:a6:5e:07:37:b7:5f:10:08:57:b3:89:ad:ee:40: da:14:1a:19:78:38:d2:ed:60:f2:72:50:4f:65:27: 96:bf:02:ea:1a:c2:11:fd:78:ef:6d:60:c4:ba:28: 2d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:49:D4:0B:1F:25:C2:55:01:47:7D:6B:29:40:7F:78:38:80:7D:36 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2bd00010-215b-4019-8b27-c03f7f58e44d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1bec::/47 Signature Algorithm: sha256WithRSAEncryption 5b:91:98:93:f7:11:b1:3c:63:7d:e6:eb:39:e9:fd:db:88:1b: e6:25:a9:87:5c:b5:7e:10:41:6e:ec:65:8a:05:11:2a:be:23: f6:c7:70:50:46:66:a4:7d:38:1c:03:f0:93:64:4a:45:54:88: f6:38:10:f5:69:9c:50:5b:d6:d4:b1:eb:a4:de:b2:be:e6:f6: 59:cb:9a:66:41:94:16:76:fc:4f:05:0e:5e:04:7d:54:2c:7d: f6:33:7e:f9:27:34:65:46:0d:af:b3:ae:54:65:14:2a:55:07: a1:6a:d9:06:37:f6:15:e2:fe:a9:a8:dd:6c:9f:35:1c:5e:50: 89:fc:34:59:ec:85:13:a1:09:47:f8:7d:16:c7:7f:6b:23:c8: e7:6e:2b:32:93:1e:bb:5a:12:08:f8:5b:d7:05:0e:27:8e:ab: 99:e3:81:5b:40:e0:94:cd:57:fa:07:0c:a4:50:9f:8a:bc:39: 19:73:8d:d6:4e:ff:4c:c5:2e:10:b9:ee:ea:d6:ef:08:0a:a0: af:2e:b4:3b:18:22:6e:a5:98:3e:0a:29:c5:04:37:96:c1:c3: f5:a8:9d:b2:7f:5e:ed:ef:fe:c4:71:d5:eb:77:3a:f9:91:ca: c8:ca:e0:2a:e1:4a:54:4d:80:18:3b:47:7d:df:00:9d:bb:91: d4:39:38:1e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUeY4NtFO7iG+MYvH9x5ByjtfsZLwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjIxMzQ1WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZmEzZjQ5OTY5OGJjZDIxNDYzMjA0ODg1ODg2YjhlZjQy YTQ3ODUxOTJhMWQ4YjdkOTEyMTg4YWVmOWQ0ZjE0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCl6a4Rua2a1EprIwRWsP6sNSJ8wMo+494H8IBtlUenVuQJ Zh2LVlecB5+AvI+TOfifxg6DH2jiebO7qVaab/pE5FW+hjohBLEYLe7O9lwrZc6j Wpbhdx3hg2uMEoK0tOtarshlxyYAkWmwHPWMWHSq65bswQs1SQgMVJw8Tb9lqofS zVA09j+LGYJrzCgbDxEc3hx+R6zJPtMwGgwgi8McIHnWQUyiPNAgI2PUSM/xb30t +FhBkRwbWLhHqqWwB7cJeqVFYS4rs/tVa8A6jUp/K7WmXgc3t18QCFezia3uQNoU Ghl4ONLtYPJyUE9lJ5a/AuoawhH9eO9tYMS6KC1tAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUV0nUCx8lwlUBR31rKUB/eDiAfTYwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzJiZDAwMDEwLTIxNWItNDAxOS04YjI3LWMwM2Y3ZjU4ZTQ0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAG+wwDQYJKoZIhvcNAQELBQADggEBAFuRmJP3EbE8Y33m6znp/duI G+YlqYdctX4QQW7sZYoFESq+I/bHcFBGZqR9OBwD8JNkSkVUiPY4EPVpnFBb1tSx 66Tesr7m9lnLmmZBlBZ2/E8FDl4EfVQsffYzfvknNGVGDa+zrlRlFCpVB6Fq2QY3 9hXi/qmo3WyfNRxeUIn8NFnshROhCUf4fRbHf2sjyOduKzKTHrtaEgj4W9cFDieO q5njgVtA4JTNV/oHDKRQn4q8ORlzjdZO/0zFLhC57urW7wgKoK8utDsYIm6lmD4K KcUEN5bBw/WonbJ/Xu3v/sRx1et3OvmRysjK4CrhSlRNgBg7R33fAJ27kdQ5OB4= -----END CERTIFICATE-----Generated at Wed Nov 5 10:55:09 2025 by rpki-client