$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2d0f5963-01f4-47ac-8828-a143619108b6.roa File: 2d0f5963-01f4-47ac-8828-a143619108b6.roa (raw, json) Hash identifier: +XP58VWgdpYOnHEn3JL4g1qE5MEbrwMdxMlm3Mmsqcg= Subject key identifier: 1F:86:98:63:40:43:2C:42:EC:6F:20:FB:B3:33:45:6A:45:C8:39:62 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 75DB815D31A6824FFBAC6FA14E3D4E1529091454 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2d0f5963-01f4-47ac-8828-a143619108b6.roa Signing time: Fri 31 Oct 2025 01:58:12 +0000 ROA not before: Fri 31 Oct 2025 01:58:12 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3f3c::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:db:81:5d:31:a6:82:4f:fb:ac:6f:a1:4e:3d:4e:15:29:09:14:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 01:58:12 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=32af44227d9ef4ca902874fcacc5bb9f945d89aa10175289b3fe799340b239dc, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:53:f1:6d:cf:5a:57:b1:14:c6:57:57:08:9f: b9:0b:e9:f1:2f:77:d5:90:c9:cf:62:10:31:96:2b: f5:85:e2:35:c2:95:29:2b:38:4e:4d:81:42:3b:0d: 5c:a0:2d:ab:e2:a7:84:bd:65:02:a6:16:9d:ea:30: 97:ec:04:07:ab:54:e6:97:9e:b5:ad:35:87:13:26: 93:53:56:01:0c:0e:be:d1:48:f6:f2:67:8e:fd:f3: 08:24:3c:c4:6d:2f:b0:78:ff:62:32:a8:61:8d:58: 33:3c:0e:15:cf:f8:78:95:1e:da:35:bb:bd:45:35: ce:eb:57:33:c1:87:9b:b8:61:21:8b:3f:22:06:93: a2:5c:f7:12:e2:23:84:f5:7b:84:06:a4:14:c8:68: 74:df:3e:56:9d:91:91:34:cf:28:6f:ba:f2:1a:09: 6a:d0:91:d4:dd:86:39:f6:55:69:c8:b5:83:ce:41: 93:1e:c5:9c:fd:1a:24:26:54:ad:9e:14:a1:eb:9a: 44:4c:fb:2d:8e:2f:b9:5f:7c:7c:dc:38:15:1b:9d: fd:b1:de:41:cf:28:c3:2b:6d:38:f6:fb:2b:6d:f2: e3:6e:32:09:73:45:22:14:8c:4b:98:aa:d2:ea:d6: df:e0:cb:e1:d8:0c:a4:5b:36:7c:8d:e4:f9:d0:08: 44:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:86:98:63:40:43:2C:42:EC:6F:20:FB:B3:33:45:6A:45:C8:39:62 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2d0f5963-01f4-47ac-8828-a143619108b6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3f3c::/47 Signature Algorithm: sha256WithRSAEncryption 53:86:1f:02:fa:18:46:57:62:5f:11:bc:e4:b6:37:c4:d7:a5: b5:f3:3f:3b:e7:5d:70:76:fb:f6:62:46:1a:91:0e:14:5c:cd: 7e:34:b8:31:d4:07:9c:3f:53:7c:0d:c5:77:54:78:09:81:4b: ac:85:5a:a0:e5:70:4c:84:6b:02:b9:36:1a:68:2a:66:61:14: 06:02:b8:4e:c7:33:03:17:65:8c:e6:a7:b6:0e:89:57:50:0e: 12:5e:16:79:da:02:87:46:4b:d2:19:a1:4c:ae:2a:74:a3:fe: 49:4f:9f:e0:92:70:65:6c:51:b5:4b:51:b9:db:ec:58:31:64: b9:ad:79:d1:c5:6a:ac:57:f7:99:fb:b9:eb:b7:cb:b4:51:0d: e5:b3:ee:a9:b9:a1:db:c9:e6:04:a2:de:7d:d7:53:f2:22:ca: 8e:0c:4a:b7:03:6f:76:7c:4f:81:a0:97:c8:63:43:62:f4:06: 36:56:7a:f2:4c:1e:39:12:7c:ba:d5:85:74:cd:63:dc:c1:af: 75:eb:d6:88:36:54:8f:55:08:bc:f2:f5:75:a7:44:f5:ea:91: a3:0f:ce:2c:e7:b8:fb:bf:57:25:1b:14:f7:e0:1b:d9:24:94: ea:98:db:76:a0:6d:d4:bd:db:90:11:3b:37:37:eb:7d:55:03: 9d:92:ba:66 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdduBXTGmgk/7rG+hTj1OFSkJFFQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDE1ODEyWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMmFmNDQyMjdkOWVmNGNhOTAyODc0ZmNhY2M1YmI5Zjk0 NWQ4OWFhMTAxNzUyODliM2ZlNzk5MzQwYjIzOWRjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4U/Ftz1pXsRTGV1cIn7kL6fEvd9WQyc9iEDGWK/WF4jXC lSkrOE5NgUI7DVygLavip4S9ZQKmFp3qMJfsBAerVOaXnrWtNYcTJpNTVgEMDr7R SPbyZ4798wgkPMRtL7B4/2IyqGGNWDM8DhXP+HiVHto1u71FNc7rVzPBh5u4YSGL PyIGk6Jc9xLiI4T1e4QGpBTIaHTfPladkZE0zyhvuvIaCWrQkdTdhjn2VWnItYPO QZMexZz9GiQmVK2eFKHrmkRM+y2OL7lffHzcOBUbnf2x3kHPKMMrbTj2+ytt8uNu MglzRSIUjEuYqtLq1t/gy+HYDKRbNnyN5PnQCEQ9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUH4aYY0BDLELsbyD7szNFakXIOWIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzJkMGY1OTYzLTAxZjQtNDdhYy04ODI4LWExNDM2MTkxMDhiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAPzwwDQYJKoZIhvcNAQELBQADggEBAFOGHwL6GEZXYl8RvOS2N8TX pbXzPzvnXXB2+/ZiRhqRDhRczX40uDHUB5w/U3wNxXdUeAmBS6yFWqDlcEyEawK5 NhpoKmZhFAYCuE7HMwMXZYzmp7YOiVdQDhJeFnnaAodGS9IZoUyuKnSj/klPn+CS cGVsUbVLUbnb7FgxZLmtedHFaqxX95n7ueu3y7RRDeWz7qm5odvJ5gSi3n3XU/Ii yo4MSrcDb3Z8T4Ggl8hjQ2L0BjZWevJMHjkSfLrVhXTNY9zBr3Xr1og2VI9VCLzy 9XWnRPXqkaMPziznuPu/VyUbFPfgG9kklOqY23agbdS925AROzc3631VA52SumY= -----END CERTIFICATE-----Generated at Wed Nov 5 05:36:19 2025 by rpki-client