$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2f96be47-176c-4915-a9ab-64998e83ef2f.roa File: 2f96be47-176c-4915-a9ab-64998e83ef2f.roa (raw, json) Hash identifier: bqYAQvXoPymnvhV9s3XDD9XUjoDVrGBpY6OXccbqyKU= Subject key identifier: 39:E5:91:4A:E0:8A:15:55:B3:6A:D3:13:59:9C:01:C1:80:81:B9:0F Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 1CBD81E0B7FA26E0669110451CCE56D6DCB9DC69 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2f96be47-176c-4915-a9ab-64998e83ef2f.roa Signing time: Fri 31 Oct 2025 07:11:36 +0000 ROA not before: Fri 31 Oct 2025 07:11:36 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1800::/43 maxlen: 43 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:bd:81:e0:b7:fa:26:e0:66:91:10:45:1c:ce:56:d6:dc:b9:dc:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 07:11:36 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=3a298f09c689c211124dc2f639acd6aad6679531f5adb9e41d6f3fae60b73d32, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:26:f6:a6:34:f4:7d:9d:1c:6c:19:ec:db:c2: cb:f0:0b:8b:bd:9f:c6:16:ec:e6:fd:46:a8:ed:6e: dd:fa:84:ff:4a:ba:f8:c2:0d:45:49:b7:20:fa:0f: 1e:ae:f0:68:66:7c:ff:d8:42:36:b2:24:95:b6:a9: ba:12:54:e6:bf:7e:9c:2e:5c:cb:23:b3:da:1a:8b: d5:03:a1:01:95:a0:be:8f:4e:74:ca:52:79:87:06: ca:5a:4b:d0:16:b7:58:33:b0:d0:21:f8:ba:c6:44: cd:f3:a6:9e:59:b3:42:71:e1:15:4d:e9:55:ef:29: 6e:bf:18:ec:c3:e1:f3:be:f6:77:f5:3c:59:71:54: a7:d7:af:9a:b2:c7:8e:01:47:18:af:41:8d:c4:cb: 90:25:d8:51:53:29:ad:06:d1:3e:91:ae:20:f6:ac: 41:42:74:84:3a:83:35:1b:ec:11:a5:7f:0c:16:9c: d5:2b:0c:34:cf:d4:31:7d:29:6b:88:5b:65:59:7e: 29:28:f0:77:d4:16:36:ec:46:10:69:cb:eb:b2:78: 4b:20:d5:aa:af:a7:3b:d1:01:31:25:80:a3:bd:96: d8:48:20:a6:f4:23:6f:32:7f:09:f4:27:ec:72:1f: a8:13:75:be:fa:4b:4d:7a:03:57:68:13:92:50:92: 83:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:E5:91:4A:E0:8A:15:55:B3:6A:D3:13:59:9C:01:C1:80:81:B9:0F X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/2f96be47-176c-4915-a9ab-64998e83ef2f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1800::/43 Signature Algorithm: sha256WithRSAEncryption ac:45:ae:76:47:a3:2c:c4:c9:ea:48:af:e3:33:6c:88:56:2e: 60:44:73:53:b9:7f:cb:1a:eb:4e:af:a4:a4:b3:6d:93:b4:c1: 7f:da:a1:c4:1b:0f:9d:e5:b3:c6:cc:4c:65:2f:3a:58:ff:66: ac:1b:20:ac:d6:4e:b8:0f:bc:1f:dc:7a:74:6c:1b:f9:c1:a0: 78:41:3f:32:ea:a7:af:d1:a8:7e:fe:11:0d:7a:21:86:7e:6e: 38:da:af:d5:2c:01:0e:06:ab:20:35:2f:a6:81:90:b0:c8:66: 8e:36:d5:07:b5:1d:50:68:53:5b:24:c5:c2:14:97:28:b8:b5: 18:ef:d9:f7:da:81:6f:a2:6e:49:c0:fd:40:0d:ac:bb:bf:6e: e9:bd:c9:52:ba:97:87:ff:db:f3:a1:ce:e5:77:59:7a:66:67: 00:cc:3e:38:94:ad:75:7c:82:b4:47:a7:6c:0a:c8:40:2d:51: 36:e1:0e:5a:6c:46:a5:0d:22:cf:6a:af:3f:58:69:45:d7:77: 30:10:89:b1:88:6e:99:81:46:0d:13:ef:cf:49:59:43:82:1a: 0a:95:9b:31:0a:39:c0:42:c3:96:3d:1e:73:67:9e:f8:fd:6c: 96:12:4b:fe:b2:c3:a6:c3:e3:91:1f:32:36:3c:77:cb:83:cf: e0:fa:0e:16 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHL2B4Lf6JuBmkRBFHM5W1ty53GkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDcxMTM2WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYTI5OGYwOWM2ODljMjExMTI0ZGMyZjYzOWFjZDZhYWQ2 Njc5NTMxZjVhZGI5ZTQxZDZmM2ZhZTYwYjczZDMyMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvJvamNPR9nRxsGezbwsvwC4u9n8YW7Ob9Rqjtbt36hP9K uvjCDUVJtyD6Dx6u8GhmfP/YQjayJJW2qboSVOa/fpwuXMsjs9oai9UDoQGVoL6P TnTKUnmHBspaS9AWt1gzsNAh+LrGRM3zpp5Zs0Jx4RVN6VXvKW6/GOzD4fO+9nf1 PFlxVKfXr5qyx44BRxivQY3Ey5Al2FFTKa0G0T6RriD2rEFCdIQ6gzUb7BGlfwwW nNUrDDTP1DF9KWuIW2VZfiko8HfUFjbsRhBpy+uyeEsg1aqvpzvRATElgKO9lthI IKb0I28yfwn0J+xyH6gTdb76S016A1doE5JQkoNtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUOeWRSuCKFVWzatMTWZwBwYCBuQ8wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzJmOTZiZTQ3LTE3NmMtNDkxNS1hOWFiLTY0OTk4ZTgzZWYyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwUmAJAAGAAwDQYJKoZIhvcNAQELBQADggEBAKxFrnZHoyzEyepIr+MzbIhW LmBEc1O5f8sa606vpKSzbZO0wX/aocQbD53ls8bMTGUvOlj/ZqwbIKzWTrgPvB/c enRsG/nBoHhBPzLqp6/RqH7+EQ16IYZ+bjjar9UsAQ4GqyA1L6aBkLDIZo421Qe1 HVBoU1skxcIUlyi4tRjv2ffagW+ibknA/UANrLu/bum9yVK6l4f/2/OhzuV3WXpm ZwDMPjiUrXV8grRHp2wKyEAtUTbhDlpsRqUNIs9qrz9YaUXXdzAQibGIbpmBRg0T 789JWUOCGgqVmzEKOcBCw5Y9HnNnnvj9bJYSS/6yw6bD45EfMjY8d8uDz+D6DhY= -----END CERTIFICATE-----Generated at Wed Nov 5 09:28:17 2025 by rpki-client