$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/32a0872d-55e5-4fde-a145-bc04d22ff39c.roa File: 32a0872d-55e5-4fde-a145-bc04d22ff39c.roa (raw, json) Hash identifier: RQ2S8VIJjndukd8QGilIvOnkvat/A8vKHOoM96drccQ= Subject key identifier: C3:25:DE:36:45:CD:55:E4:9B:12:DB:28:FB:65:18:64:3F:FC:08:6F Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 6D202C7C172BD91A71A88D30D0E6AD20AF2DB4E6 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/32a0872d-55e5-4fde-a145-bc04d22ff39c.roa Signing time: Fri 31 Oct 2025 03:28:07 +0000 ROA not before: Fri 31 Oct 2025 03:28:07 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2ab8::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:20:2c:7c:17:2b:d9:1a:71:a8:8d:30:d0:e6:ad:20:af:2d:b4:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 03:28:07 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=2143aa972f1d8cc238ea7858d6ad1893db8df5348dbf59cda6cee7a49187e62d, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:23:4b:d3:81:45:d8:c8:28:c0:25:b1:e8:9c: b9:de:7b:53:03:88:21:23:8a:e0:78:5d:1a:02:3d: 1c:a5:db:30:07:c9:2e:7f:e9:1a:3e:f2:5e:5c:9e: f4:3a:19:e8:6a:72:f7:3f:5a:cb:21:8f:6d:46:96: 52:db:59:ac:7e:43:2d:6b:0a:f0:36:7d:94:40:40: 1d:d9:ff:cb:c3:ee:4e:7d:26:c8:dc:08:ea:f6:3c: 58:3e:57:e1:a1:73:52:54:37:69:fb:2e:0b:8e:f7: 8f:91:5f:e1:d2:70:73:9d:cd:e0:8c:bd:1f:72:34: 1f:99:b7:29:0d:cf:97:b9:9d:e9:4f:5b:93:95:5a: 9c:6e:24:44:fb:75:ea:0c:77:ff:81:02:42:c5:f8: 3d:d0:4f:b5:22:ae:10:62:3e:51:f3:80:f0:ea:07: 86:f0:04:30:8b:14:f3:19:2d:29:20:01:6a:7b:97: f3:92:76:ec:ee:91:b0:bf:6a:b3:8c:22:37:9b:a5: 0e:c8:19:67:8e:1c:6b:78:10:44:e8:fc:70:b4:5d: 98:f4:b6:1e:fc:64:1d:58:6f:94:33:93:33:44:c8: 33:5c:ce:fa:9c:ec:89:90:fe:35:5d:1b:56:40:67: 5c:81:0d:21:39:ce:d0:a9:f6:dc:1d:70:0e:c0:07: 67:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:25:DE:36:45:CD:55:E4:9B:12:DB:28:FB:65:18:64:3F:FC:08:6F X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/32a0872d-55e5-4fde-a145-bc04d22ff39c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2ab8::/46 Signature Algorithm: sha256WithRSAEncryption 3c:a0:c1:bf:70:74:5b:17:c1:ac:ed:4a:39:da:c3:8c:3d:7b: 6f:05:19:b4:5a:6f:18:29:8a:d8:ca:cf:ee:bb:07:cb:6f:04: 8b:40:08:ab:53:9b:70:c3:51:19:84:dd:54:f5:81:e0:94:6a: b9:9a:88:ef:b8:2d:1b:70:36:3c:75:dd:ea:49:1f:3a:10:12: 0a:13:1b:a7:57:5e:9c:ce:59:8b:4c:88:30:17:b4:05:57:5b: e7:a6:48:f7:be:15:5f:63:71:5e:90:f3:25:a0:e2:46:fb:29: 0f:fe:41:db:30:bb:33:41:ae:4d:32:3a:1d:61:0b:67:3b:23: 8e:83:71:fa:ba:3c:8f:06:58:2b:25:73:c6:54:85:55:3b:dc: 5f:79:d3:53:b2:34:0c:c9:a4:31:6f:fd:86:28:9b:e2:38:90: 35:9e:6e:1b:22:ad:a4:52:77:e4:12:6d:b6:5c:d4:71:64:6f: 00:95:5e:f5:c1:d6:b9:3b:5b:bd:5a:b3:70:62:65:c8:43:06: c2:d5:47:fb:31:f8:94:95:62:3b:c2:08:70:ac:3a:9d:1b:ea: e1:a5:e9:ce:e4:4f:5d:46:56:15:21:86:fb:72:18:ba:f3:ff: b6:ab:04:54:05:19:6e:6c:4a:83:ac:ca:09:34:d2:54:76:fe: 84:57:85:2c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbSAsfBcr2RpxqI0w0OatIK8ttOYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDMyODA3WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMTQzYWE5NzJmMWQ4Y2MyMzhlYTc4NThkNmFkMTg5M2Ri OGRmNTM0OGRiZjU5Y2RhNmNlZTdhNDkxODdlNjJkMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+I0vTgUXYyCjAJbHonLnee1MDiCEjiuB4XRoCPRyl2zAH yS5/6Ro+8l5cnvQ6Gehqcvc/Wsshj21GllLbWax+Qy1rCvA2fZRAQB3Z/8vD7k59 JsjcCOr2PFg+V+Ghc1JUN2n7LguO94+RX+HScHOdzeCMvR9yNB+ZtykNz5e5nelP W5OVWpxuJET7deoMd/+BAkLF+D3QT7UirhBiPlHzgPDqB4bwBDCLFPMZLSkgAWp7 l/OSduzukbC/arOMIjebpQ7IGWeOHGt4EETo/HC0XZj0th78ZB1Yb5QzkzNEyDNc zvqc7ImQ/jVdG1ZAZ1yBDSE5ztCp9twdcA7AB2dVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUwyXeNkXNVeSbEtso+2UYZD/8CG8wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzMyYTA4NzJkLTU1ZTUtNGZkZS1hMTQ1LWJjMDRkMjJmZjM5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAKrgwDQYJKoZIhvcNAQELBQADggEBADygwb9wdFsXwaztSjnaw4w9 e28FGbRabxgpitjKz+67B8tvBItACKtTm3DDURmE3VT1geCUarmaiO+4LRtwNjx1 3epJHzoQEgoTG6dXXpzOWYtMiDAXtAVXW+emSPe+FV9jcV6Q8yWg4kb7KQ/+Qdsw uzNBrk0yOh1hC2c7I46Dcfq6PI8GWCslc8ZUhVU73F9501OyNAzJpDFv/YYom+I4 kDWebhsiraRSd+QSbbZc1HFkbwCVXvXB1rk7W71as3BiZchDBsLVR/sx+JSVYjvC CHCsOp0b6uGl6c7kT11GVhUhhvtyGLrz/7arBFQFGW5sSoOsygk00lR2/oRXhSw= -----END CERTIFICATE-----Generated at Wed Nov 5 10:42:28 2025 by rpki-client