$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/34e777d4-e2f9-48fa-8de9-bd601f5e824c.roa File: 34e777d4-e2f9-48fa-8de9-bd601f5e824c.roa (raw, json) Hash identifier: /+JlS/sp6IzzqTa75qABShr6yRGVdlJFzFekHP030dg= Subject key identifier: 47:64:75:CD:15:F5:2B:C2:17:F3:1B:87:DF:3A:4B:44:57:B1:76:1A Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 23193492B49076A999BBC0EAA6632BCF311BB9CB Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/34e777d4-e2f9-48fa-8de9-bd601f5e824c.roa Signing time: Thu 30 Oct 2025 22:53:49 +0000 ROA not before: Thu 30 Oct 2025 22:53:49 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:29a8::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:19:34:92:b4:90:76:a9:99:bb:c0:ea:a6:63:2b:cf:31:1b:b9:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 22:53:49 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=15f370d950059cfd8e5281c98efb10202bff70d7cbf0affede116212ba244b26, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:40:4a:25:80:19:72:f1:6f:75:2e:56:ca:46: 69:3c:cb:41:ee:56:b7:f0:14:7d:9b:19:8e:10:28: ab:8a:fd:28:11:70:fa:69:3c:ea:6a:f2:53:26:49: 40:fe:e2:00:98:f5:0a:11:72:98:ec:97:5c:8c:fa: ec:9e:8a:89:77:2d:5c:27:d2:43:55:8a:f4:50:57: 9e:03:df:92:f7:02:52:96:59:2f:80:cb:4c:32:64: 4f:4f:3b:d0:52:0a:37:47:74:73:96:f7:5a:34:81: 95:1f:2b:c4:33:cd:55:ff:74:64:58:49:27:3e:2f: cc:ba:cb:97:a9:b4:0e:5d:c6:03:5e:2c:4b:f0:a3: 40:63:88:9f:03:51:37:59:d2:8f:88:ac:4a:d2:b5: 02:91:5c:c9:7b:9f:55:ad:76:64:47:bd:10:11:8c: 13:2c:5f:33:ac:71:83:ef:e6:50:ec:d3:8e:33:b7: 96:45:08:8b:d4:d9:c4:86:39:d5:d3:13:5a:ad:40: b3:63:55:da:22:03:39:aa:f1:4c:06:7c:db:ba:b3: 63:5f:a3:bb:ae:df:33:93:b6:18:39:a4:50:d2:54: 59:40:d3:2a:7e:0d:f5:32:11:57:bb:76:9e:9c:de: 02:e1:76:33:38:1c:0d:3f:7b:94:d5:a5:8d:01:de: e3:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:64:75:CD:15:F5:2B:C2:17:F3:1B:87:DF:3A:4B:44:57:B1:76:1A X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/34e777d4-e2f9-48fa-8de9-bd601f5e824c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:29a8::/47 Signature Algorithm: sha256WithRSAEncryption 48:bf:83:96:0a:5c:9e:aa:96:9e:95:4b:de:a5:ae:15:68:a5: 14:de:10:95:8f:9f:ff:98:33:51:95:c1:5b:a7:33:b2:fd:33: 60:78:30:aa:e1:4f:0a:39:cc:46:73:a4:45:14:b1:ad:71:d2: 08:af:1e:99:b1:a8:94:bb:ae:2c:86:52:a0:aa:e5:49:15:ac: 93:92:a9:be:1c:fb:4d:4b:c4:ec:5b:54:58:e3:17:1f:6c:e9: 8f:72:de:0f:fc:0e:62:e1:96:ed:8b:a5:90:cc:64:df:e7:19: 72:83:1c:08:4d:5c:bc:ca:ed:2d:14:26:63:e3:6f:af:40:b4: 6f:7a:1b:4e:03:18:88:3c:d3:ca:81:7e:e5:e9:dd:c7:0d:87: dd:8f:d7:a6:20:76:05:ea:86:3a:61:75:fa:67:7c:36:b1:a5: b1:0e:66:37:9a:c4:0b:63:01:f4:be:d7:ad:60:1d:f7:15:b0: 92:de:01:a0:05:30:cd:7a:56:44:c0:b4:7b:6d:ef:8b:7f:56: 4a:3e:29:89:39:9a:ed:3c:a1:26:06:8e:b4:22:a9:7a:1a:24: 65:30:df:d1:b5:f2:64:af:d3:4d:49:af:68:c1:21:ae:ac:7b: 1d:c4:a2:dc:3c:41:a3:b9:ec:56:2f:2c:6c:6a:59:eb:a2:b9: 7a:63:dd:66 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIxk0krSQdqmZu8DqpmMrzzEbucswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjI1MzQ5WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNWYzNzBkOTUwMDU5Y2ZkOGU1MjgxYzk4ZWZiMTAyMDJi ZmY3MGQ3Y2JmMGFmZmVkZTExNjIxMmJhMjQ0YjI2MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYQEolgBly8W91LlbKRmk8y0HuVrfwFH2bGY4QKKuK/SgR cPppPOpq8lMmSUD+4gCY9QoRcpjsl1yM+uyeiol3LVwn0kNVivRQV54D35L3AlKW WS+Ay0wyZE9PO9BSCjdHdHOW91o0gZUfK8QzzVX/dGRYSSc+L8y6y5eptA5dxgNe LEvwo0BjiJ8DUTdZ0o+IrErStQKRXMl7n1WtdmRHvRARjBMsXzOscYPv5lDs044z t5ZFCIvU2cSGOdXTE1qtQLNjVdoiAzmq8UwGfNu6s2Nfo7uu3zOTthg5pFDSVFlA 0yp+DfUyEVe7dp6c3gLhdjM4HA0/e5TVpY0B3uPnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUR2R1zRX1K8IX8xuH3zpLRFexdhowHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzM0ZTc3N2Q0LWUyZjktNDhmYS04ZGU5LWJkNjAxZjVlODI0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAKagwDQYJKoZIhvcNAQELBQADggEBAEi/g5YKXJ6qlp6VS96lrhVo pRTeEJWPn/+YM1GVwVunM7L9M2B4MKrhTwo5zEZzpEUUsa1x0givHpmxqJS7riyG UqCq5UkVrJOSqb4c+01LxOxbVFjjFx9s6Y9y3g/8DmLhlu2LpZDMZN/nGXKDHAhN XLzK7S0UJmPjb69AtG96G04DGIg808qBfuXp3ccNh92P16YgdgXqhjphdfpnfDax pbEOZjeaxAtjAfS+161gHfcVsJLeAaAFMM16VkTAtHtt74t/Vko+KYk5mu08oSYG jrQiqXoaJGUw39G18mSv001Jr2jBIa6sex3Eotw8QaO57FYvLGxqWeuiuXpj3WY= -----END CERTIFICATE-----Generated at Wed Nov 5 07:38:23 2025 by rpki-client