$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2efa93e7-8699-4a67-a24b-6e779410423b.roa File: 2efa93e7-8699-4a67-a24b-6e779410423b.roa (raw, json) Hash identifier: FLCqHBvMCW7p4GWlkh5IuKu05Cz76NLGDzGvTaCFKNQ= Subject key identifier: 8D:1F:0F:82:9A:FE:C0:B0:32:76:EF:8E:22:0A:61:83:82:3E:BE:F9 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0DBFDCDFB1659A66ABED1E0DB29E4E1172B8196A Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2efa93e7-8699-4a67-a24b-6e779410423b.roa Signing time: Fri 31 Oct 2025 01:26:34 +0000 ROA not before: Fri 31 Oct 2025 01:26:34 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3bd6::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:bf:dc:df:b1:65:9a:66:ab:ed:1e:0d:b2:9e:4e:11:72:b8:19:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 01:26:34 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=890f34fa36e5333d4e5d674eabc7d4f3380972782e55a2db7f6493d32e2a19d4, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:18:6b:ae:3f:fc:a1:89:7f:2a:f7:cd:2a:80: eb:bb:08:79:c7:17:1e:e5:c4:07:8e:3c:1c:6d:ef: 94:3b:a8:d0:d0:6f:5e:5b:ed:e3:0a:9b:13:d3:99: d9:e7:2b:15:a3:d5:7b:09:70:5a:85:06:7a:51:76: 56:b4:4a:0e:2a:ec:b6:6b:f3:a6:ad:33:bc:fd:f2: 46:1d:cd:24:7c:ee:e3:48:8b:fc:fb:14:41:17:26: ba:73:64:31:65:ac:97:e2:04:94:59:c9:03:ed:58: 70:d3:44:cb:fa:ee:94:24:56:c5:aa:93:fd:db:01: f0:e5:2f:3a:44:4a:a6:dd:9b:e8:bd:71:1e:65:2e: c3:bc:76:e5:98:4b:1b:cf:bb:ff:59:21:be:5c:f9: 89:e6:82:93:ba:7a:18:4d:0f:54:a2:e6:00:35:31: 3d:8f:79:b2:02:0b:c3:53:94:b5:42:d4:8a:19:79: bf:69:e8:80:6e:24:c3:0b:bd:d6:6b:fe:f5:5a:68: 73:7d:6d:34:7a:8b:84:1b:83:d7:7d:88:8c:c5:97: 39:f6:f6:1c:c1:61:a6:15:6b:92:fc:54:81:bb:aa: 0c:31:99:5d:2c:f8:20:a6:dd:6c:de:85:87:e1:43: b1:84:db:9e:8e:c7:f5:21:40:d6:91:97:5f:8f:f0: b2:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:1F:0F:82:9A:FE:C0:B0:32:76:EF:8E:22:0A:61:83:82:3E:BE:F9 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2efa93e7-8699-4a67-a24b-6e779410423b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3bd6::/47 Signature Algorithm: sha256WithRSAEncryption 05:81:53:4f:d3:46:71:50:66:9f:9f:c5:8b:73:2d:12:e0:0b: 17:23:8e:0e:3a:b7:ad:b8:4b:b0:98:36:aa:7a:24:3c:1f:de: 34:f2:4f:79:4a:9b:f0:3d:4c:f4:4a:0e:ad:7b:51:70:6f:bc: ab:43:e3:fd:6f:10:d7:39:1e:87:40:4a:6e:23:46:8d:6c:6e: 6a:25:a1:d0:4c:0e:9d:9a:a5:ee:de:ba:05:f0:c9:6a:72:f5: ec:f2:7d:ef:9a:e5:93:19:05:d7:82:b8:5d:93:fa:57:10:ff: 71:ca:ce:ac:0c:ad:d5:e8:9a:1f:1a:82:78:c5:41:97:71:a4: fe:a0:79:0c:07:3c:bb:bd:cb:09:af:d2:f6:2c:e3:d1:3b:08: 0e:1a:b1:54:53:50:d9:ae:55:b5:f7:c7:51:58:e1:dd:95:f5: 22:48:76:2a:16:7c:ce:a7:0c:4d:92:8b:1d:c8:1b:8e:dc:e7: e9:f3:65:f6:02:97:a2:28:fc:55:18:ac:e5:37:f8:47:8b:86: 8d:36:a0:12:9e:9e:24:79:67:8e:34:75:12:b2:38:3e:3a:da: 29:e2:c1:bc:d2:20:27:42:6a:5a:39:d8:37:dc:22:39:f4:83: 0d:5a:13:ba:40:55:7b:66:80:7f:88:d9:74:2d:82:95:ad:4c: 14:46:3a:12 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDb/c37Flmmar7R4Nsp5OEXK4GWowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDEyNjM0WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4OTBmMzRmYTM2ZTUzMzNkNGU1ZDY3NGVhYmM3ZDRmMzM4 MDk3Mjc4MmU1NWEyZGI3ZjY0OTNkMzJlMmExOWQ0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5GGuuP/yhiX8q980qgOu7CHnHFx7lxAeOPBxt75Q7qNDQ b15b7eMKmxPTmdnnKxWj1XsJcFqFBnpRdla0Sg4q7LZr86atM7z98kYdzSR87uNI i/z7FEEXJrpzZDFlrJfiBJRZyQPtWHDTRMv67pQkVsWqk/3bAfDlLzpESqbdm+i9 cR5lLsO8duWYSxvPu/9ZIb5c+YnmgpO6ehhND1Si5gA1MT2PebICC8NTlLVC1IoZ eb9p6IBuJMMLvdZr/vVaaHN9bTR6i4Qbg9d9iIzFlzn29hzBYaYVa5L8VIG7qgwx mV0s+CCm3WzehYfhQ7GE256Ox/UhQNaRl1+P8LJ5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUjR8Pgpr+wLAydu+OIgphg4I+vvkwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzJlZmE5M2U3LTg2OTktNGE2Ny1hMjRiLTZlNzc5NDEwNDIzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAO9YwDQYJKoZIhvcNAQELBQADggEBAAWBU0/TRnFQZp+fxYtzLRLg Cxcjjg46t624S7CYNqp6JDwf3jTyT3lKm/A9TPRKDq17UXBvvKtD4/1vENc5HodA Sm4jRo1sbmolodBMDp2ape7eugXwyWpy9ezyfe+a5ZMZBdeCuF2T+lcQ/3HKzqwM rdXomh8agnjFQZdxpP6geQwHPLu9ywmv0vYs49E7CA4asVRTUNmuVbX3x1FY4d2V 9SJIdioWfM6nDE2Six3IG47c5+nzZfYCl6Io/FUYrOU3+EeLho02oBKeniR5Z440 dRKyOD462iniwbzSICdCalo52DfcIjn0gw1aE7pAVXtmgH+I2XQtgpWtTBRGOhI= -----END CERTIFICATE-----Generated at Wed Nov 5 10:56:09 2025 by rpki-client