$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2d7de881-6844-422c-bb6f-261baf9f9428.roa File: 2d7de881-6844-422c-bb6f-261baf9f9428.roa (raw, json) Hash identifier: C25s/4ogGXuAi5JM4rh70FQfJMmnzQBmWKRQ5EZ0AsU= Subject key identifier: CB:39:F5:E8:22:BB:6B:A0:37:8D:09:76:FE:F6:AF:A8:8E:60:6D:E1 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5F82A7199E723961D0CC33AD9C538BE3478F41A1 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2d7de881-6844-422c-bb6f-261baf9f9428.roa Signing time: Fri 31 Oct 2025 07:25:51 +0000 ROA not before: Fri 31 Oct 2025 07:25:51 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3540::/43 maxlen: 43 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:82:a7:19:9e:72:39:61:d0:cc:33:ad:9c:53:8b:e3:47:8f:41:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 07:25:51 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=6727c6c66038885a1778112c10be91ab5166566ccf52c66986cd7df92be574d3, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ae:12:d3:ff:b0:2c:00:a9:f1:12:ba:2c:e1: f0:b4:b9:47:a2:89:93:f0:56:39:b8:10:65:a7:75: af:37:66:fd:c1:e5:ae:d7:ed:61:e6:2c:09:f2:d5: 03:17:f1:d3:ae:a7:6a:fc:f3:c8:6a:af:7d:dd:95: fc:0e:ef:10:fe:d5:4f:7f:c9:20:95:ec:99:9d:a7: fc:22:11:c4:26:76:9a:b1:d4:9e:ef:bb:55:78:d6: 7e:2e:a3:96:d2:1f:28:07:e2:5b:b3:99:f9:da:f2: d5:3a:97:9b:4e:13:c1:e8:99:42:f9:a0:0e:fd:2e: c5:bf:0e:4b:c5:a0:2a:3b:a0:a7:1b:f2:2b:17:94: 3b:5d:b2:74:90:3f:0b:8f:a0:04:26:56:6a:6d:7e: dc:8c:e5:b5:31:c9:2e:ec:d8:45:f6:e2:c8:75:17: 5a:f3:2f:18:35:e5:da:8a:5c:a7:cc:9b:cc:f7:e4: 99:dc:96:0b:93:d4:52:0d:29:2f:02:a9:2a:d3:4e: 4d:62:3b:02:73:b8:52:17:1e:41:13:aa:ad:f3:80: 3c:84:f4:75:f7:49:21:ac:b3:76:ea:b9:08:68:db: 1d:4f:04:c2:26:52:3e:2f:db:a5:c0:da:0a:24:49: 83:e1:84:00:81:37:1d:e1:83:27:c9:34:2f:38:9c: 5d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:39:F5:E8:22:BB:6B:A0:37:8D:09:76:FE:F6:AF:A8:8E:60:6D:E1 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2d7de881-6844-422c-bb6f-261baf9f9428.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3540::/43 Signature Algorithm: sha256WithRSAEncryption b1:07:68:81:35:6d:68:45:91:43:bc:8b:22:89:d4:20:aa:b0: 82:cf:93:d0:ab:43:cc:00:45:6c:2e:57:c6:52:54:fc:41:ee: 73:e7:ec:92:a3:c4:86:a8:80:27:71:a1:18:cb:f6:0a:b4:71: 37:05:ff:1d:6f:61:21:ca:cb:fd:c7:af:44:63:10:6e:8c:b9: 96:73:6c:e1:55:66:c6:76:47:14:bb:21:de:32:0d:1a:51:15: 19:6c:5c:00:27:41:8b:ed:5c:e1:4e:0c:ec:0f:7d:fb:c8:d1: bc:b6:31:99:67:4a:3c:91:5e:ef:e8:2d:01:f5:cb:68:74:01: 9c:19:c1:7c:00:03:c2:ea:82:b2:ef:79:57:04:a7:49:d2:23: 33:89:9b:68:7c:2d:44:c7:8e:51:e8:11:b9:4c:7a:f7:13:70: 47:fc:3e:44:fd:48:b9:f4:77:ed:cb:27:22:52:61:a3:19:f6: fd:9f:eb:af:83:79:ec:a6:82:af:43:08:4c:ba:97:a4:c7:1c: 22:2d:e0:36:0d:74:77:db:30:88:c9:73:40:89:46:d2:3a:a0: d6:fc:14:07:a2:5f:ef:57:45:01:b6:67:5f:8b:cb:14:37:9c: a1:00:c4:81:dd:39:0c:d9:83:92:62:3c:ef:40:35:2a:cc:47: f9:0f:50:6a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUX4KnGZ5yOWHQzDOtnFOL40ePQaEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDcyNTUxWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NzI3YzZjNjYwMzg4ODVhMTc3ODExMmMxMGJlOTFhYjUx NjY1NjZjY2Y1MmM2Njk4NmNkN2RmOTJiZTU3NGQzMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyrhLT/7AsAKnxEros4fC0uUeiiZPwVjm4EGWnda83Zv3B 5a7X7WHmLAny1QMX8dOup2r888hqr33dlfwO7xD+1U9/ySCV7Jmdp/wiEcQmdpqx 1J7vu1V41n4uo5bSHygH4luzmfna8tU6l5tOE8HomUL5oA79LsW/DkvFoCo7oKcb 8isXlDtdsnSQPwuPoAQmVmptftyM5bUxyS7s2EX24sh1F1rzLxg15dqKXKfMm8z3 5JnclguT1FINKS8CqSrTTk1iOwJzuFIXHkETqq3zgDyE9HX3SSGss3bquQho2x1P BMImUj4v26XA2gokSYPhhACBNx3hgyfJNC84nF29AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUyzn16CK7a6A3jQl2/vavqI5gbeEwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzJkN2RlODgxLTY4NDQtNDIyYy1iYjZmLTI2MWJhZjlmOTQyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwUmAJAANUAwDQYJKoZIhvcNAQELBQADggEBALEHaIE1bWhFkUO8iyKJ1CCq sILPk9CrQ8wARWwuV8ZSVPxB7nPn7JKjxIaogCdxoRjL9gq0cTcF/x1vYSHKy/3H r0RjEG6MuZZzbOFVZsZ2RxS7Id4yDRpRFRlsXAAnQYvtXOFODOwPffvI0by2MZln SjyRXu/oLQH1y2h0AZwZwXwAA8LqgrLveVcEp0nSIzOJm2h8LUTHjlHoEblMevcT cEf8PkT9SLn0d+3LJyJSYaMZ9v2f66+Deeymgq9DCEy6l6THHCIt4DYNdHfbMIjJ c0CJRtI6oNb8FAeiX+9XRQG2Z1+LyxQ3nKEAxIHdOQzZg5JiPO9ANSrMR/kPUGo= -----END CERTIFICATE-----Generated at Wed Nov 5 12:57:10 2025 by rpki-client