$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3190ab49-03b4-4927-9701-854402692d1e.roa File: 3190ab49-03b4-4927-9701-854402692d1e.roa (raw, json) Hash identifier: Hwu7JN0cgBeBpcluj3qn/wgOEeIw7vX8LYub/FSNPRY= Subject key identifier: 11:36:36:2B:CD:73:0E:CD:F0:8E:7D:74:0E:F4:73:1E:A7:29:B5:7D Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 6C21333938C06E4412F9EF5BEFE96B248B025E3B Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3190ab49-03b4-4927-9701-854402692d1e.roa Signing time: Fri 31 Oct 2025 03:21:58 +0000 ROA not before: Fri 31 Oct 2025 03:21:58 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1fc8::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:21:33:39:38:c0:6e:44:12:f9:ef:5b:ef:e9:6b:24:8b:02:5e:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 03:21:58 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=29c6825d759df9cf1085da750aa243a0ba063282f11feb06a37504ac3b72ef1d, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:37:d0:eb:35:70:2b:98:72:81:9f:eb:1e:db: 50:08:65:0d:3c:8b:50:f6:f1:3c:68:7b:12:04:11: 37:83:93:15:6a:25:27:53:47:e7:7c:d8:87:ae:71: 7f:32:52:4b:85:fb:53:2c:cf:00:bb:27:33:d4:6c: 81:a5:f2:15:1b:e1:17:9e:c6:b0:6f:19:83:f1:91: e5:09:7c:a7:e0:c3:8b:f6:15:c9:77:07:c5:72:b7: 4b:6f:8b:9a:8d:2b:6b:9d:51:49:2a:ce:8b:5f:ec: 7f:d3:dc:ac:3b:1c:89:51:92:a7:3f:ed:98:3e:b1: 35:b7:5d:07:2b:bb:ec:d0:ba:6b:02:34:d3:ae:f4: 3e:42:4e:86:48:65:95:dc:45:4c:e7:1c:f2:e5:9e: 64:15:d2:b9:02:7b:a0:bb:96:19:60:c4:d7:bc:eb: f9:b5:a8:76:6e:90:09:24:06:d1:a4:5b:27:1f:0d: 79:27:9a:d2:8e:2f:19:0a:6b:99:cd:e0:ab:48:db: 7c:45:ae:0b:b2:09:f3:59:c5:ca:00:ea:b8:5e:1e: 36:a1:b3:e5:85:ce:23:30:a2:19:f5:b3:b4:18:2a: 92:79:3c:44:14:33:a3:c6:8a:4e:47:a3:19:5d:2a: 25:34:b9:e9:60:f3:3b:a5:dc:3c:d9:72:51:a8:f7: 32:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:36:36:2B:CD:73:0E:CD:F0:8E:7D:74:0E:F4:73:1E:A7:29:B5:7D X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3190ab49-03b4-4927-9701-854402692d1e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1fc8::/46 Signature Algorithm: sha256WithRSAEncryption 5c:e0:66:dc:82:f0:76:06:bc:6d:07:49:6c:68:41:fd:60:33: eb:18:69:a0:f1:76:88:fc:20:ec:87:62:d8:20:6b:46:0f:59: a2:77:bb:f4:e4:25:7e:96:c1:8a:42:0e:2f:a8:7a:a0:f3:d1: 67:79:5b:46:94:3b:5d:89:19:93:6f:30:a8:40:c9:0c:f0:fe: 81:93:4b:86:7c:15:6b:04:e7:59:b6:98:5f:71:a3:e0:34:f8: bd:5e:e8:e1:bb:aa:2b:e8:73:a0:54:2a:0f:58:ab:65:ce:a6: e5:38:c7:a4:50:16:fe:22:c3:b6:ff:ea:cb:e8:46:42:02:a3: 3b:82:14:8a:14:c6:8c:72:40:30:b1:b3:e7:4f:f1:28:76:8f: 93:b2:20:96:44:bb:d0:b3:f1:16:4a:db:ee:f4:ba:e9:5b:90: 9a:8b:ef:a5:f7:07:3a:77:8a:30:88:8d:9d:f3:3f:ca:16:91: b9:83:15:d3:22:fa:86:1c:fb:76:d3:7b:eb:0a:07:a6:7c:83: 2c:ba:98:cc:df:2d:2c:79:96:99:e4:78:19:68:bb:c4:5a:0b: 87:87:fb:54:e9:75:2f:71:c2:e1:02:1f:a2:bf:71:f4:0a:8a: fd:12:66:12:2c:47:40:24:2f:24:13:31:22:ee:47:53:2b:bd: d7:69:07:f5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbCEzOTjAbkQS+e9b7+lrJIsCXjswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDMyMTU4WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOWM2ODI1ZDc1OWRmOWNmMTA4NWRhNzUwYWEyNDNhMGJh MDYzMjgyZjExZmViMDZhMzc1MDRhYzNiNzJlZjFkMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2N9DrNXArmHKBn+se21AIZQ08i1D28TxoexIEETeDkxVq JSdTR+d82IeucX8yUkuF+1MszwC7JzPUbIGl8hUb4ReexrBvGYPxkeUJfKfgw4v2 Fcl3B8Vyt0tvi5qNK2udUUkqzotf7H/T3Kw7HIlRkqc/7Zg+sTW3XQcru+zQumsC NNOu9D5CToZIZZXcRUznHPLlnmQV0rkCe6C7lhlgxNe86/m1qHZukAkkBtGkWycf DXknmtKOLxkKa5nN4KtI23xFrguyCfNZxcoA6rheHjahs+WFziMwohn1s7QYKpJ5 PEQUM6PGik5HoxldKiU0uelg8zul3DzZclGo9zKpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUETY2K81zDs3wjn10DvRzHqcptX0wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzMxOTBhYjQ5LTAzYjQtNDkyNy05NzAxLTg1NDQwMjY5MmQxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAH8gwDQYJKoZIhvcNAQELBQADggEBAFzgZtyC8HYGvG0HSWxoQf1g M+sYaaDxdoj8IOyHYtgga0YPWaJ3u/TkJX6WwYpCDi+oeqDz0Wd5W0aUO12JGZNv MKhAyQzw/oGTS4Z8FWsE51m2mF9xo+A0+L1e6OG7qivoc6BUKg9Yq2XOpuU4x6RQ Fv4iw7b/6svoRkICozuCFIoUxoxyQDCxs+dP8Sh2j5OyIJZEu9Cz8RZK2+70uulb kJqL76X3Bzp3ijCIjZ3zP8oWkbmDFdMi+oYc+3bTe+sKB6Z8gyy6mMzfLSx5lpnk eBlou8RaC4eH+1TpdS9xwuECH6K/cfQKiv0SZhIsR0AkLyQTMSLuR1MrvddpB/U= -----END CERTIFICATE-----Generated at Wed Nov 5 11:07:40 2025 by rpki-client