$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/317ff6ff-564f-492a-b37f-29fa70e29931.roa File: 317ff6ff-564f-492a-b37f-29fa70e29931.roa (raw, json) Hash identifier: 2RtYqyPL7IKTvnkkub0ck0GpqVKtUL9n7OULRfY4+Qg= Subject key identifier: 43:77:F0:B6:EF:FA:AB:7A:0E:6B:A3:18:B9:3D:9D:DA:27:19:01:E0 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0AB089E1BFBAA82F94569AC5BC8150E22616CDDA Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/317ff6ff-564f-492a-b37f-29fa70e29931.roa Signing time: Fri 31 Oct 2025 05:07:14 +0000 ROA not before: Fri 31 Oct 2025 05:07:14 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1340::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:b0:89:e1:bf:ba:a8:2f:94:56:9a:c5:bc:81:50:e2:26:16:cd:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 05:07:14 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=72a1aacc2d54286dd3efd9d447496996062f6dfeca17e4133c4730cba4fcaf67, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0a:e0:52:c9:7f:19:81:a4:41:85:d1:27:45: d6:09:42:fa:61:1a:cc:39:cf:9f:5a:36:bf:bd:18: 75:af:87:38:fa:38:06:8c:e5:e7:d7:aa:0b:de:c6: 55:14:c7:26:3f:a1:9b:58:66:f2:68:a3:52:fa:d3: 86:c7:f2:d4:5a:65:ab:f8:5f:9c:07:0a:6e:a3:ce: 0f:69:f7:c5:a4:8c:27:cf:d7:71:a8:1c:f2:ec:36: 07:e9:13:cc:9b:30:7b:3a:40:87:c9:29:62:6b:f2: cb:82:d7:7c:b1:08:75:53:59:d8:7e:d2:cb:94:8d: 1a:50:29:4b:78:8c:f1:12:ce:8b:be:f0:37:61:d9: 3e:07:56:01:10:43:c0:44:ae:08:2f:97:a7:48:c2: be:6c:87:e6:dc:b1:10:fc:8b:51:7d:43:cc:a6:18: 44:67:66:32:ea:5b:de:99:2a:bd:38:61:97:64:c3: 02:dc:3b:f8:8a:2f:1f:c7:43:30:07:37:10:8f:32: f6:0e:0f:ad:5d:26:52:fe:5a:17:b1:46:fb:16:36: 83:cf:f9:9a:86:ea:72:79:fc:60:96:71:b3:66:cf: 47:8a:52:63:94:7a:0c:ed:25:ee:71:94:3f:67:fc: fc:a5:8d:fb:fd:05:79:fd:30:55:87:34:20:06:24: 2f:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:77:F0:B6:EF:FA:AB:7A:0E:6B:A3:18:B9:3D:9D:DA:27:19:01:E0 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/317ff6ff-564f-492a-b37f-29fa70e29931.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1340::/45 Signature Algorithm: sha256WithRSAEncryption 0e:ec:b0:36:c1:98:98:25:c8:3f:00:c1:cf:28:65:39:cb:7f: d1:f7:d7:07:79:24:e0:82:dc:94:d4:e0:b2:05:ff:55:f1:80: 8a:db:41:45:15:cb:3b:20:c3:1c:5b:aa:cf:cc:c5:52:94:b3: a0:ef:a6:c1:62:30:ee:d4:95:e8:bb:8a:cf:40:36:25:81:43: a8:49:46:f3:77:1a:d8:f9:ab:f0:9f:d7:b9:13:f3:67:45:79: ff:2a:70:37:ac:b6:e5:e8:ca:52:15:da:32:bb:c1:c6:24:62: a2:b8:5e:00:94:a2:ab:fe:c0:38:9e:83:f7:47:e1:cf:38:80: c2:3a:f2:32:ac:e7:c0:21:ce:2a:13:fc:2a:0f:f2:6b:c8:e4: da:5c:f8:3b:62:a3:94:ee:29:7b:46:f3:63:6e:ca:87:ab:3e: 33:91:08:14:c0:fa:73:6e:21:fe:c6:35:87:fa:1d:b4:26:77: e8:ef:53:f9:a8:2e:49:f4:8e:fa:83:a6:65:0e:7d:a1:75:3e: a6:40:8a:ff:b6:51:3f:6e:12:2d:85:23:9e:c6:a1:b9:b0:25: e3:52:49:a9:ad:5d:ab:ca:d7:65:24:e9:96:b8:f3:9f:03:79: d5:e9:30:68:c6:73:d5:1e:0c:d2:65:13:e7:70:23:5e:2a:ae: 3a:ac:f0:b0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCrCJ4b+6qC+UVprFvIFQ4iYWzdowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDUwNzE0WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MmExYWFjYzJkNTQyODZkZDNlZmQ5ZDQ0NzQ5Njk5NjA2 MmY2ZGZlY2ExN2U0MTMzYzQ3MzBjYmE0ZmNhZjY3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyCuBSyX8ZgaRBhdEnRdYJQvphGsw5z59aNr+9GHWvhzj6 OAaM5efXqgvexlUUxyY/oZtYZvJoo1L604bH8tRaZav4X5wHCm6jzg9p98WkjCfP 13GoHPLsNgfpE8ybMHs6QIfJKWJr8suC13yxCHVTWdh+0suUjRpQKUt4jPESzou+ 8Ddh2T4HVgEQQ8BErggvl6dIwr5sh+bcsRD8i1F9Q8ymGERnZjLqW96ZKr04YZdk wwLcO/iKLx/HQzAHNxCPMvYOD61dJlL+WhexRvsWNoPP+ZqG6nJ5/GCWcbNmz0eK UmOUegztJe5xlD9n/Pyljfv9BXn9MFWHNCAGJC/9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQ3fwtu/6q3oOa6MYuT2d2icZAeAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzMxN2ZmNmZmLTU2NGYtNDkyYS1iMzdmLTI5ZmE3MGUyOTkzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAE0AwDQYJKoZIhvcNAQELBQADggEBAA7ssDbBmJglyD8Awc8oZTnL f9H31wd5JOCC3JTU4LIF/1XxgIrbQUUVyzsgwxxbqs/MxVKUs6DvpsFiMO7Ulei7 is9ANiWBQ6hJRvN3Gtj5q/Cf17kT82dFef8qcDestuXoylIV2jK7wcYkYqK4XgCU oqv+wDieg/dH4c84gMI68jKs58AhzioT/CoP8mvI5Npc+Dtio5TuKXtG82Nuyoer PjORCBTA+nNuIf7GNYf6HbQmd+jvU/moLkn0jvqDpmUOfaF1PqZAiv+2UT9uEi2F I57GobmwJeNSSamtXavK12Uk6Za4858DedXpMGjGc9UeDNJlE+dwI14qrjqs8LA= -----END CERTIFICATE-----Generated at Wed Nov 5 05:36:39 2025 by rpki-client