$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2c3f84ad-5778-4d41-902a-824d453a73c8.roa File: 2c3f84ad-5778-4d41-902a-824d453a73c8.roa (raw, json) Hash identifier: T1XKsk+qBILl5n9oMqJX9ayokd5uLUN6SNnzt/CodzU= Subject key identifier: AC:1E:1E:0D:E1:27:21:93:E1:49:87:A7:5D:B1:E2:4C:24:06:B7:EB Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 15B222AE79D98872270AD367D17BC37467EBBF Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2c3f84ad-5778-4d41-902a-824d453a73c8.roa Signing time: Thu 30 Oct 2025 22:13:53 +0000 ROA not before: Thu 30 Oct 2025 22:13:53 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1c0a::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:b2:22:ae:79:d9:88:72:27:0a:d3:67:d1:7b:c3:74:67:eb:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 22:13:53 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=122f591dd5733ffd19cf8d318e3d7a70e7fe50ccf6b23d0aa00179a9a34e8fd0, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:fd:1a:aa:0d:09:38:52:5d:57:22:1b:97:bc: 49:ab:f8:99:e2:da:eb:bb:e0:3e:e4:dc:d8:3f:d0: ea:03:24:0c:f5:65:62:d9:b8:05:de:a0:f0:9c:4a: d8:b0:db:5b:85:c4:bb:58:01:dc:7c:00:15:1c:71: 07:0a:06:96:42:12:5f:07:0b:50:8b:36:2d:c2:f6: a8:cc:6e:4b:00:46:47:e3:75:16:e6:1e:e7:e2:ec: 30:95:2d:f3:2c:9d:db:b3:f9:14:a9:72:54:fc:b5: a8:e5:26:70:f6:ad:07:29:52:61:72:f5:ad:6d:39: f3:f6:6d:65:e3:c2:7d:a8:8f:60:f5:7d:90:17:0b: f8:63:3e:a7:b1:f3:52:ef:77:46:8a:81:c1:0e:fc: 31:f8:e0:b6:d6:24:7a:c3:79:1a:3a:aa:99:f3:e4: 14:8f:d2:f0:95:00:d2:05:ef:88:de:6a:13:9e:15: 37:46:6e:c6:7d:d5:7c:d6:f7:37:fb:9a:95:61:a5: 51:9f:52:bd:82:14:96:d3:24:94:2b:5c:db:03:d7: af:5b:0a:e8:ff:07:ce:1c:66:3d:a1:1b:e7:3d:20: dd:09:bf:7b:b9:5c:db:d4:60:4b:e8:1c:08:53:ca: c5:2f:81:19:a2:bf:9a:81:86:ff:ab:68:be:ec:26: cb:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:1E:1E:0D:E1:27:21:93:E1:49:87:A7:5D:B1:E2:4C:24:06:B7:EB X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2c3f84ad-5778-4d41-902a-824d453a73c8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1c0a::/47 Signature Algorithm: sha256WithRSAEncryption 77:7d:e7:12:0e:74:5b:c1:87:6d:94:63:6b:b9:eb:b1:87:cb: a5:c5:74:e1:b6:f2:ae:13:fc:79:b6:56:29:74:f0:28:b8:9d: f0:8b:78:e6:42:61:64:dc:94:14:c8:a7:17:2f:16:60:01:db: a8:8a:71:75:06:ad:65:c0:4d:a4:6b:5d:fc:d9:ee:53:fb:4d: 6c:c3:78:79:84:7a:b1:df:29:37:fe:62:67:1e:42:35:f7:9c: 11:c6:90:24:a1:f9:c9:36:49:81:c8:3c:f4:a6:af:1f:66:99: 39:a0:82:14:6b:37:3e:8d:eb:d6:a7:b2:af:f2:43:fe:cd:5c: 5e:99:17:2a:17:f8:dc:24:fe:53:22:ce:6c:10:7e:39:da:8e: 48:7b:98:3e:90:43:86:0e:f5:e7:7a:b9:9f:ee:c2:39:9f:e8: 49:15:c4:fa:80:43:fa:50:06:12:10:a6:9c:71:39:57:b6:58: f6:05:be:c8:e3:d5:52:c1:5e:4f:8a:81:d2:08:e3:27:97:e1: 8f:b9:40:17:41:74:1c:c3:97:f4:2c:bf:9c:10:44:6c:34:1f: 3e:f5:36:0a:e5:92:c2:49:ca:ed:67:e3:8f:d0:93:cf:20:6f: 75:82:b9:2e:f2:42:06:a7:ef:eb:f5:43:c3:3b:4a:83:d6:67: 63:09:70:30 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgITFbIirnnZiHInCtNn0XvDdGfrvzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI1NTEyMDkwMjdmNWU3YWQ1NGUwNGYwNDJlNGFjMGU5ZTY1 YzU2ZTU1Yzc3NDc4ZDJjZTAeFw0yNTEwMzAyMjEzNTNaFw0yNTEyMDQyMzU5NTla MHoxSTBHBgNVBAUTQDEyMmY1OTFkZDU3MzNmZmQxOWNmOGQzMThlM2Q3YTcwZTdm ZTUwY2NmNmIyM2QwYWEwMDE3OWE5YTM0ZThmZDAxLTArBgNVBAMTJDlmMjMwZmE5 LWFhMmYtNDAyMC1hZTJhLTFhNjAzNzQwODRiODCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMb9GqoNCThSXVciG5e8Sav4meLa67vgPuTc2D/Q6gMkDPVl Ytm4Bd6g8JxK2LDbW4XEu1gB3HwAFRxxBwoGlkISXwcLUIs2LcL2qMxuSwBGR+N1 FuYe5+LsMJUt8yyd27P5FKlyVPy1qOUmcPatBylSYXL1rW058/ZtZePCfaiPYPV9 kBcL+GM+p7HzUu93RoqBwQ78MfjgttYkesN5GjqqmfPkFI/S8JUA0gXviN5qE54V N0Zuxn3VfNb3N/ualWGlUZ9SvYIUltMklCtc2wPXr1sK6P8HzhxmPaEb5z0g3Qm/ e7lc29RgS+gcCFPKxS+BGaK/moGG/6tovuwmy80CAwEAAaOCArQwggKwMB0GA1Ud DgQWBBSsHh4N4Schk+FJh6ddseJMJAa36zAfBgNVHSMEGDAWgBTo88Ug4g7yXTq3 oha7FAQxajc48TAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv ZjYwYzlmMzItYTg3Yy00MzM5LWEyZjMtNjI5OWEzYjAyZTI5Lzk5ZjhmZWQyLTI5 MmItNDcyMi1iOTI4LWZlZTdiZjBhNTkxMC81NTEyMDkwMjdmNWU3YWQ1NGUwNGYw NDJlNGFjMGU5ZTY1YzU2ZTU1Yzc3NDc4ZDJjZS5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9lNzUxOGFmNS1hMzQzLTQyOGQtYmY3OC1mOTgy YjZlNjA1MDUvMmMzZjg0YWQtNTc3OC00ZDQxLTkwMmEtODI0ZDQ1M2E3M2M4LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgt Zjk4MmI2ZTYwNTA1L1huclZUZ1R3UXVTc0RwNWx4VzVWeDNSNDBzNC5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHASYAkAAcCjANBgkqhkiG9w0BAQsFAAOCAQEAd33nEg50W8GHbZRja7nrsYfL pcV04bbyrhP8ebZWKXTwKLid8It45kJhZNyUFMinFy8WYAHbqIpxdQatZcBNpGtd /NnuU/tNbMN4eYR6sd8pN/5iZx5CNfecEcaQJKH5yTZJgcg89KavH2aZOaCCFGs3 Po3r1qeyr/JD/s1cXpkXKhf43CT+UyLObBB+OdqOSHuYPpBDhg7153q5n+7COZ/o SRXE+oBD+lAGEhCmnHE5V7ZY9gW+yOPVUsFeT4qB0gjjJ5fhj7lAF0F0HMOX9Cy/ nBBEbDQfPvU2CuWSwknK7Wfjj9CTzyBvdYK5LvJCBqfv6/VDwztKg9ZnYwlwMA== -----END CERTIFICATE-----Generated at Wed Nov 5 10:53:41 2025 by rpki-client