$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/343fa514-4a29-4502-9249-63acc9e09746.roa File: 343fa514-4a29-4502-9249-63acc9e09746.roa (raw, json) Hash identifier: 9/lysVDNfO9uROKtsSCzGTuYeFssXh9xQh+8ja/GSMo= Subject key identifier: 26:DC:5A:C7:F0:80:57:A1:55:A7:94:0D:26:4B:15:DD:4D:10:3B:43 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4366962C538F7E258151430648A772735C81DD53 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/343fa514-4a29-4502-9249-63acc9e09746.roa Signing time: Fri 31 Oct 2025 01:26:16 +0000 ROA not before: Fri 31 Oct 2025 01:26:16 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3b94::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:66:96:2c:53:8f:7e:25:81:51:43:06:48:a7:72:73:5c:81:dd:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 01:26:16 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=1aea2ee2c7f4958469d489c5e2531ef9601f2583eca2656ab0780ca83c26d7c5, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:01:7e:8d:53:45:74:85:91:5f:c2:7a:9e:0e: f9:8f:c6:81:bc:10:50:59:06:57:4b:5c:2d:09:af: e6:4e:7c:87:3a:ff:0c:d1:7a:55:08:b5:d9:d0:df: 67:ae:22:bf:21:97:cc:d6:c3:6d:13:97:8c:7d:cf: ad:7a:ea:0b:57:58:fb:e9:7e:1d:87:cc:64:fb:0d: 8c:ef:b9:d2:ea:d0:3b:7c:4e:14:42:fd:88:50:d4: db:23:5f:9c:15:cb:60:4e:ee:f2:48:a6:bb:2a:0d: c5:d4:84:58:52:fa:65:53:af:f5:ae:27:68:c0:50: 82:a0:6d:3c:ae:2e:cd:51:f9:ba:f4:58:26:2e:6c: 12:78:57:81:2d:dd:cd:5e:46:33:eb:20:de:f8:39: fc:6a:74:18:e5:f4:75:57:0b:8e:ad:a0:87:62:be: 37:be:5a:63:f4:3e:3d:78:71:77:a5:bc:71:47:22: f0:50:15:42:0d:df:59:48:a3:86:89:f6:88:0e:e3: 22:17:04:4c:60:64:a4:b5:a9:88:7e:9f:03:03:44: c8:1f:5e:46:83:47:68:21:fb:49:81:8c:89:b6:32: d4:0a:d0:9d:a5:0a:68:95:ee:a5:05:82:88:37:3e: da:57:14:28:72:d4:a7:f5:17:9a:f8:f2:76:57:25: a2:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:DC:5A:C7:F0:80:57:A1:55:A7:94:0D:26:4B:15:DD:4D:10:3B:43 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/343fa514-4a29-4502-9249-63acc9e09746.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3b94::/47 Signature Algorithm: sha256WithRSAEncryption 58:3b:6a:81:6e:9c:3b:37:da:02:e1:0d:28:0e:e8:a6:da:ad: 97:64:39:e9:68:ae:c4:4d:de:96:aa:3e:a3:b5:e0:66:f5:7e: ee:f5:df:5c:f5:39:3c:dc:5d:57:18:78:56:e2:4c:fc:e4:d8: f1:5f:d2:bc:01:89:5c:6c:9b:13:18:2b:3b:65:55:41:90:8e: a8:c0:f6:2f:2f:db:e9:b1:ff:6f:50:06:8c:91:31:a1:5c:d4: f9:93:94:8b:d3:1c:7b:05:59:f3:14:0f:3e:77:d5:bd:f8:50: 2f:e2:c3:15:90:c8:eb:c0:28:fe:bb:ed:82:98:13:ab:dc:41: 81:b8:9f:d9:d7:0f:09:26:73:66:01:a1:26:5b:77:42:5e:75: 84:2b:08:19:13:92:45:3e:5f:a3:ad:9a:f6:43:e8:cf:6d:e8: ef:4a:76:aa:0c:2a:1b:67:02:af:7e:0c:9e:7c:f3:9d:6a:33: c5:8b:a1:c3:e7:24:0e:3f:23:e6:a6:4a:40:8d:21:b0:94:f8: 5c:ff:cb:32:67:7d:cb:a8:66:b6:e4:3b:13:83:4a:5c:5c:39: 7e:2f:f7:2f:ad:25:bf:99:cf:26:9b:12:96:5f:58:49:b2:34: c5:52:ff:8c:58:e8:47:6b:40:26:0e:66:34:4c:44:80:0a:c2: 97:e0:ca:b9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQ2aWLFOPfiWBUUMGSKdyc1yB3VMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDEyNjE2WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYWVhMmVlMmM3ZjQ5NTg0NjlkNDg5YzVlMjUzMWVmOTYw MWYyNTgzZWNhMjY1NmFiMDc4MGNhODNjMjZkN2M1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmAX6NU0V0hZFfwnqeDvmPxoG8EFBZBldLXC0Jr+ZOfIc6 /wzRelUItdnQ32euIr8hl8zWw20Tl4x9z6166gtXWPvpfh2HzGT7DYzvudLq0Dt8 ThRC/YhQ1NsjX5wVy2BO7vJIprsqDcXUhFhS+mVTr/WuJ2jAUIKgbTyuLs1R+br0 WCYubBJ4V4Et3c1eRjPrIN74OfxqdBjl9HVXC46toIdivje+WmP0Pj14cXelvHFH IvBQFUIN31lIo4aJ9ogO4yIXBExgZKS1qYh+nwMDRMgfXkaDR2gh+0mBjIm2MtQK 0J2lCmiV7qUFgog3PtpXFChy1Kf1F5r48nZXJaIRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUJtxax/CAV6FVp5QNJksV3U0QO0MwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzM0M2ZhNTE0LTRhMjktNDUwMi05MjQ5LTYzYWNjOWUwOTc0Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAO5QwDQYJKoZIhvcNAQELBQADggEBAFg7aoFunDs32gLhDSgO6Kba rZdkOelorsRN3paqPqO14Gb1fu7131z1OTzcXVcYeFbiTPzk2PFf0rwBiVxsmxMY KztlVUGQjqjA9i8v2+mx/29QBoyRMaFc1PmTlIvTHHsFWfMUDz531b34UC/iwxWQ yOvAKP677YKYE6vcQYG4n9nXDwkmc2YBoSZbd0JedYQrCBkTkkU+X6OtmvZD6M9t 6O9KdqoMKhtnAq9+DJ58851qM8WLocPnJA4/I+amSkCNIbCU+Fz/yzJnfcuoZrbk OxODSlxcOX4v9y+tJb+ZzyabEpZfWEmyNMVS/4xY6EdrQCYOZjRMRIAKwpfgyrk= -----END CERTIFICATE-----Generated at Wed Nov 5 05:38:42 2025 by rpki-client