$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/32f2ef7f-b4a8-446e-b971-496077515d2f.roa File: 32f2ef7f-b4a8-446e-b971-496077515d2f.roa (raw, json) Hash identifier: XSPPZu1w+XNZ/czUP6/KtoZHDDPjtcExCUy7O635lgI= Subject key identifier: FB:E6:1D:7F:30:EC:94:4A:D7:3F:8A:86:79:83:D0:E8:97:C5:94:3F Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5B7B41F206069AC0E64D33B22BEE5CFF8AD5DF1C Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/32f2ef7f-b4a8-446e-b971-496077515d2f.roa Signing time: Fri 31 Oct 2025 04:23:39 +0000 ROA not before: Fri 31 Oct 2025 04:23:39 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:37a4::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:7b:41:f2:06:06:9a:c0:e6:4d:33:b2:2b:ee:5c:ff:8a:d5:df:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 04:23:39 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=838427d9d000b85a51f0449ca6115a0e7de35b912de524e07e614ef04cc83339, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d0:18:c7:91:9c:55:17:c5:1b:5c:c4:07:6e: e1:39:14:e1:42:7d:88:cd:d3:af:ba:71:01:31:9c: 48:c9:f8:f5:01:f9:55:60:fd:bf:8a:5d:a8:3a:53: d6:fd:f3:9e:5b:a7:4e:63:d2:d5:4a:5a:09:f6:55: 29:64:29:1a:42:68:49:57:91:bf:89:d6:54:f6:1b: 40:ff:4f:4e:7b:de:a6:26:8e:84:05:b1:5e:eb:ae: 82:d0:fe:df:82:e4:19:5c:2d:c6:92:e9:02:6e:9d: 89:7f:9c:18:78:e8:22:36:33:48:0e:48:10:04:2f: a3:a4:9f:5f:07:41:62:2d:f8:c7:4a:91:e4:3c:39: ac:c1:de:e0:27:7b:c8:aa:49:a8:24:a9:b9:c4:2a: bc:bd:f4:4b:43:37:8c:a1:68:c8:d5:ab:3a:9f:6d: 85:0f:53:d0:cc:c8:5f:db:de:ed:de:24:a4:94:ba: 09:c2:9e:c0:bd:b2:ef:4f:84:bb:ba:fa:6e:f3:f8: 76:c7:a2:f9:85:85:36:95:fd:96:55:65:7a:60:d5: 91:78:cc:19:71:94:97:f9:fe:9a:cc:b3:9c:d3:61: ed:4c:b0:c9:01:6f:3c:23:6f:3d:c8:81:a2:4d:59: 42:40:86:ad:b4:6c:54:c1:3c:fd:da:f5:f2:a7:34: 0a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:E6:1D:7F:30:EC:94:4A:D7:3F:8A:86:79:83:D0:E8:97:C5:94:3F X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/32f2ef7f-b4a8-446e-b971-496077515d2f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:37a4::/46 Signature Algorithm: sha256WithRSAEncryption 9d:73:fa:b3:1f:95:8f:dd:1f:86:e8:c8:ce:45:68:54:78:03: 4b:62:24:c0:fb:fd:94:c3:ba:b8:15:75:2a:1b:89:f0:b6:bd: 3d:6e:93:71:58:e0:9a:47:e6:5b:32:e2:89:9b:13:ac:3a:e2: 00:cd:8a:f1:b3:51:fb:7f:98:40:9a:32:b4:d8:02:d9:fe:0e: bd:be:50:cd:ac:57:b4:7b:fb:0d:f0:b9:67:62:68:e4:c8:a4: bd:19:7b:d2:f6:70:28:2b:7e:14:8e:70:1c:92:ad:d9:21:12: 17:59:9b:e2:e5:7d:e0:d6:e0:74:0c:7d:25:5d:57:01:dd:8e: 02:ac:98:1d:23:4c:ba:32:1d:c0:45:31:86:8b:82:21:fd:45: 25:37:d6:22:3d:fd:76:07:85:7e:ff:ee:6a:9f:d9:de:a4:25: 00:ef:5f:11:ba:35:9e:16:3e:da:99:0b:54:5d:47:f4:ee:8d: 36:56:80:72:4b:44:ff:a6:99:9c:b5:19:bd:49:c3:31:0b:e6: d8:d9:ea:ae:e5:48:a6:72:56:ed:b3:b2:d8:36:11:35:21:df: 50:89:da:ef:a7:4e:27:39:5d:3f:34:98:75:e3:8d:f0:e1:14: 83:0a:cc:ae:03:ae:e5:7b:92:9b:47:2a:bb:bd:5e:b5:d5:22: 3c:0e:e5:15 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUW3tB8gYGmsDmTTOyK+5c/4rV3xwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDQyMzM5WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4Mzg0MjdkOWQwMDBiODVhNTFmMDQ0OWNhNjExNWEwZTdk ZTM1YjkxMmRlNTI0ZTA3ZTYxNGVmMDRjYzgzMzM5MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQ0BjHkZxVF8UbXMQHbuE5FOFCfYjN06+6cQExnEjJ+PUB +VVg/b+KXag6U9b9855bp05j0tVKWgn2VSlkKRpCaElXkb+J1lT2G0D/T0573qYm joQFsV7rroLQ/t+C5BlcLcaS6QJunYl/nBh46CI2M0gOSBAEL6Okn18HQWIt+MdK keQ8OazB3uAne8iqSagkqbnEKry99EtDN4yhaMjVqzqfbYUPU9DMyF/b3u3eJKSU ugnCnsC9su9PhLu6+m7z+HbHovmFhTaV/ZZVZXpg1ZF4zBlxlJf5/prMs5zTYe1M sMkBbzwjbz3IgaJNWUJAhq20bFTBPP3a9fKnNAoTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU++YdfzDslErXP4qGeYPQ6JfFlD8wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzMyZjJlZjdmLWI0YTgtNDQ2ZS1iOTcxLTQ5NjA3NzUxNWQyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAN6QwDQYJKoZIhvcNAQELBQADggEBAJ1z+rMflY/dH4boyM5FaFR4 A0tiJMD7/ZTDurgVdSobifC2vT1uk3FY4JpH5lsy4ombE6w64gDNivGzUft/mECa MrTYAtn+Dr2+UM2sV7R7+w3wuWdiaOTIpL0Ze9L2cCgrfhSOcBySrdkhEhdZm+Ll feDW4HQMfSVdVwHdjgKsmB0jTLoyHcBFMYaLgiH9RSU31iI9/XYHhX7/7mqf2d6k JQDvXxG6NZ4WPtqZC1RdR/TujTZWgHJLRP+mmZy1Gb1JwzEL5tjZ6q7lSKZyVu2z stg2ETUh31CJ2u+nTic5XT80mHXjjfDhFIMKzK4DruV7kptHKru9XrXVIjwO5RU= -----END CERTIFICATE-----Generated at Wed Nov 5 10:55:25 2025 by rpki-client