$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2ed8cef5-ee46-4f9e-894b-e1395177987d.roa File: 2ed8cef5-ee46-4f9e-894b-e1395177987d.roa (raw, json) Hash identifier: ImD8rZ9hXUgPkKzy8RfPrjm6H7vJH41Z6FMiugtyT9M= Subject key identifier: F2:18:F5:84:C4:44:9A:02:59:A3:13:27:DD:78:D6:A0:47:47:49:4E Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 420180826447A576CF50C25E2F75C141890A64AF Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2ed8cef5-ee46-4f9e-894b-e1395177987d.roa Signing time: Fri 31 Oct 2025 00:10:23 +0000 ROA not before: Fri 31 Oct 2025 00:10:23 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3382::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:01:80:82:64:47:a5:76:cf:50:c2:5e:2f:75:c1:41:89:0a:64:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 00:10:23 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=06ae425471a8ec8f0ce9d4309a85e7e430910bc73c59053e9777274264227dd7, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7f:1a:b9:1b:5a:95:44:01:71:93:bc:fa:df: 82:1f:7a:68:f1:b7:b3:0c:b8:9f:39:c1:8b:7f:2f: 5b:d5:b7:34:33:8c:46:17:58:8e:6f:90:76:3a:80: f9:b0:57:b6:5b:0f:76:03:41:b8:fe:9e:11:35:bf: 70:f3:9f:ec:f2:47:98:0e:9e:a1:40:09:0e:d0:fb: ce:78:18:b7:c9:9b:c2:02:ba:43:c6:b2:bc:98:f3: 17:c4:86:36:98:46:5c:ec:94:17:e0:36:35:53:4a: 6f:7a:e6:63:4a:3d:f5:0c:e1:b8:a5:db:ec:85:2d: c4:16:9f:bf:51:52:14:75:b0:ad:a7:ca:3f:d8:bd: 31:2f:50:e7:e9:ed:c0:cd:79:d2:b3:1c:89:58:ac: 0c:e2:ff:54:b3:bd:7b:11:1f:bc:59:16:56:aa:96: 60:68:05:10:1f:45:fd:b6:48:5f:20:9d:eb:81:34: 40:9f:80:29:00:3a:12:6a:38:23:75:44:88:4a:12: 1b:9a:fe:49:ac:0a:48:22:61:c4:47:2b:2d:f3:46: 29:af:4d:97:c7:76:c6:45:72:5f:91:7b:d4:a6:d5: b9:5c:23:bf:13:d0:bc:a4:70:76:ba:e1:c8:4a:a4: 2f:4b:ac:ac:7f:ee:e2:5c:79:1d:34:91:fb:6b:5b: 42:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:18:F5:84:C4:44:9A:02:59:A3:13:27:DD:78:D6:A0:47:47:49:4E X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2ed8cef5-ee46-4f9e-894b-e1395177987d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3382::/47 Signature Algorithm: sha256WithRSAEncryption 35:33:4a:36:75:89:74:d3:4d:9e:df:e1:28:54:5e:0f:1c:06: 1c:94:ad:ef:23:28:d7:c3:3a:14:be:a3:02:bc:2b:c7:53:5d: 8d:8c:4b:51:09:23:35:76:db:15:ab:5b:e1:54:50:2c:b9:94: 4e:98:1b:a7:00:ee:d9:26:df:4e:66:e2:1c:fe:9b:71:c9:41: 52:e9:7a:69:a1:f8:84:a7:3c:00:9c:ed:0c:63:c0:47:52:59: a2:9f:5c:5c:34:95:1b:14:8d:63:8c:c2:e5:b0:a6:fa:18:2c: 7f:f6:a0:ac:2d:07:c5:1b:a0:a3:82:9d:31:72:19:7b:d7:54: 01:d7:e2:c5:cd:91:1b:91:db:8b:c7:f6:1b:ea:45:fc:5e:c0: 79:a6:45:a3:1a:30:e9:90:d7:64:38:3f:a5:ce:87:f5:a0:ef: 8c:b4:f4:44:ea:b2:78:cf:d1:f1:9e:7d:24:72:60:93:98:4e: 3a:47:5a:21:6b:6f:03:8b:b7:78:18:c0:73:f6:43:b0:35:17: 34:6d:4c:3e:13:dd:39:cb:bf:47:b3:72:6e:8f:03:35:aa:bc: ed:64:95:01:08:2c:12:ca:d1:e5:ab:03:81:fb:44:07:94:2b: 77:ba:4e:03:16:12:61:bd:98:25:fb:de:65:6a:c5:9d:3d:ff: c1:9a:6f:5f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQgGAgmRHpXbPUMJeL3XBQYkKZK8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDAxMDIzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNmFlNDI1NDcxYThlYzhmMGNlOWQ0MzA5YTg1ZTdlNDMw OTEwYmM3M2M1OTA1M2U5Nzc3Mjc0MjY0MjI3ZGQ3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9fxq5G1qVRAFxk7z634Ifemjxt7MMuJ85wYt/L1vVtzQz jEYXWI5vkHY6gPmwV7ZbD3YDQbj+nhE1v3Dzn+zyR5gOnqFACQ7Q+854GLfJm8IC ukPGsryY8xfEhjaYRlzslBfgNjVTSm965mNKPfUM4bil2+yFLcQWn79RUhR1sK2n yj/YvTEvUOfp7cDNedKzHIlYrAzi/1SzvXsRH7xZFlaqlmBoBRAfRf22SF8gneuB NECfgCkAOhJqOCN1RIhKEhua/kmsCkgiYcRHKy3zRimvTZfHdsZFcl+Re9Sm1blc I78T0LykcHa64chKpC9LrKx/7uJceR00kftrW0KDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8hj1hMREmgJZoxMn3XjWoEdHSU4wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzJlZDhjZWY1LWVlNDYtNGY5ZS04OTRiLWUxMzk1MTc3OTg3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAM4IwDQYJKoZIhvcNAQELBQADggEBADUzSjZ1iXTTTZ7f4ShUXg8c BhyUre8jKNfDOhS+owK8K8dTXY2MS1EJIzV22xWrW+FUUCy5lE6YG6cA7tkm305m 4hz+m3HJQVLpemmh+ISnPACc7QxjwEdSWaKfXFw0lRsUjWOMwuWwpvoYLH/2oKwt B8UboKOCnTFyGXvXVAHX4sXNkRuR24vH9hvqRfxewHmmRaMaMOmQ12Q4P6XOh/Wg 74y09ETqsnjP0fGefSRyYJOYTjpHWiFrbwOLt3gYwHP2Q7A1FzRtTD4T3TnLv0ez cm6PAzWqvO1klQEILBLK0eWrA4H7RAeUK3e6TgMWEmG9mCX73mVqxZ09/8Gab18= -----END CERTIFICATE-----Generated at Wed Nov 5 10:32:22 2025 by rpki-client