$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2f0d8743-d24b-4825-af40-42ed2eb70b7d.roa File: 2f0d8743-d24b-4825-af40-42ed2eb70b7d.roa (raw, json) Hash identifier: LvFbUx8go04nZKgURBu2Ma6JMj+X0O7xwmpuf0kniPU= Subject key identifier: 25:34:A5:8B:AA:56:1A:97:92:27:4C:71:7E:66:4A:94:AB:55:4E:98 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 773D8D442EBBFC6CD6C213798FCB98907D6950D0 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2f0d8743-d24b-4825-af40-42ed2eb70b7d.roa Signing time: Thu 30 Oct 2025 23:37:11 +0000 ROA not before: Thu 30 Oct 2025 23:37:11 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2e24::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:3d:8d:44:2e:bb:fc:6c:d6:c2:13:79:8f:cb:98:90:7d:69:50:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 23:37:11 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=ec6fb9e43f377b5a38472f81b6be4fb29214bdfbabde36924e226f9fa87d5163, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ca:42:c7:5f:7b:30:b7:01:b3:e2:4f:f1:b8: 1c:8b:59:52:20:2d:9f:45:14:ba:23:7d:76:d8:ad: e0:69:79:fc:8a:93:1f:00:2c:20:ee:3d:3f:28:5c: 46:52:05:e1:d8:14:96:c9:f7:ca:80:70:e3:6d:43: 09:0b:e2:5c:a7:d8:fb:f7:96:80:4a:02:96:80:83: 2b:f3:ff:39:18:91:2b:ad:13:aa:17:0b:47:34:a6: 8d:33:62:1e:f4:20:75:88:4b:62:13:a0:20:21:5c: b1:f9:e7:02:78:13:a3:d7:4c:0a:62:67:a3:32:8c: 36:73:76:f8:e4:04:10:26:3c:83:5f:22:17:6a:f4: d0:87:05:ff:39:af:ae:9d:40:aa:62:77:84:74:10: ff:d2:18:0c:a8:32:f1:6d:e4:42:8f:6c:5a:48:15: 0c:e0:74:48:4b:fc:68:cd:95:04:1c:ec:8a:a7:d7: cc:ed:1c:41:23:60:88:7c:97:a9:12:d5:c1:7f:d1: 68:9c:5c:67:50:3e:71:3a:e6:3a:75:69:5a:71:16: 45:65:2c:a8:3c:33:9f:d8:01:5e:4b:ec:30:e9:c4: be:ce:ea:b0:fe:e0:bd:6a:2e:e9:38:da:0e:4e:a9: 61:29:c4:d4:37:3a:ff:14:7b:a3:c1:1d:bc:59:6f: 64:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:34:A5:8B:AA:56:1A:97:92:27:4C:71:7E:66:4A:94:AB:55:4E:98 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2f0d8743-d24b-4825-af40-42ed2eb70b7d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2e24::/47 Signature Algorithm: sha256WithRSAEncryption 32:44:64:71:5c:c0:5d:99:3f:06:74:35:36:71:a6:6b:12:86: 03:84:32:45:4a:32:7d:84:62:7d:71:eb:b6:77:f1:c2:fb:10: 61:87:a9:cc:79:f1:c7:f4:a2:0e:4d:0a:2b:31:55:80:dd:3b: 8e:01:f3:ae:dc:d8:49:5f:a0:9e:7d:96:ab:bc:e3:43:5f:af: 99:c3:88:f7:5c:ea:2a:d9:f5:14:36:50:8c:b9:1f:b9:2f:3d: cb:a4:e0:83:b1:0e:e5:21:01:57:8d:5d:93:69:78:95:c3:af: d5:d0:91:0a:10:b8:48:bb:5e:f6:50:19:4d:ec:58:58:f8:4e: 18:18:d1:5f:8d:38:60:01:46:6b:ed:bd:e2:8c:b6:32:d6:b4: af:35:7d:e1:ad:07:83:48:aa:96:ec:60:d7:59:3c:04:72:81: 73:5f:db:4e:8b:da:57:0c:f7:72:8e:f2:ae:af:1d:ef:01:d9: 4c:74:d1:36:01:b3:f7:1e:74:04:13:50:f4:0e:b3:d4:60:1d: 26:33:cd:d8:b3:b6:c4:c7:91:a6:86:30:6e:fd:32:34:fd:31: ee:d6:df:21:2a:bb:8d:a2:dc:8b:4d:92:85:8e:4b:96:a1:01: 10:75:76:90:27:0a:44:0f:1f:b0:df:f6:34:97:98:55:68:9d: 7a:24:3b:c7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdz2NRC67/GzWwhN5j8uYkH1pUNAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjMzNzExWhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYzZmYjllNDNmMzc3YjVhMzg0NzJmODFiNmJlNGZiMjky MTRiZGZiYWJkZTM2OTI0ZTIyNmY5ZmE4N2Q1MTYzMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmykLHX3swtwGz4k/xuByLWVIgLZ9FFLojfXbYreBpefyK kx8ALCDuPT8oXEZSBeHYFJbJ98qAcONtQwkL4lyn2Pv3loBKApaAgyvz/zkYkSut E6oXC0c0po0zYh70IHWIS2IToCAhXLH55wJ4E6PXTApiZ6MyjDZzdvjkBBAmPINf Ihdq9NCHBf85r66dQKpid4R0EP/SGAyoMvFt5EKPbFpIFQzgdEhL/GjNlQQc7Iqn 18ztHEEjYIh8l6kS1cF/0WicXGdQPnE65jp1aVpxFkVlLKg8M5/YAV5L7DDpxL7O 6rD+4L1qLuk42g5OqWEpxNQ3Ov8Ue6PBHbxZb2RPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUJTSli6pWGpeSJ0xxfmZKlKtVTpgwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzJmMGQ4NzQzLWQyNGItNDgyNS1hZjQwLTQyZWQyZWI3MGI3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAALiQwDQYJKoZIhvcNAQELBQADggEBADJEZHFcwF2ZPwZ0NTZxpmsS hgOEMkVKMn2EYn1x67Z38cL7EGGHqcx58cf0og5NCisxVYDdO44B867c2ElfoJ59 lqu840Nfr5nDiPdc6irZ9RQ2UIy5H7kvPcuk4IOxDuUhAVeNXZNpeJXDr9XQkQoQ uEi7XvZQGU3sWFj4ThgY0V+NOGABRmvtveKMtjLWtK81feGtB4NIqpbsYNdZPARy gXNf206L2lcM93KO8q6vHe8B2Ux00TYBs/cedAQTUPQOs9RgHSYzzdiztsTHkaaG MG79MjT9Me7W3yEqu42i3ItNkoWOS5ahARB1dpAnCkQPH7Df9jSXmFVonXokO8c= -----END CERTIFICATE-----Generated at Wed Nov 5 09:28:16 2025 by rpki-client