$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/35384e31-c0bb-4711-b448-7cdc181e3629.roa File: 35384e31-c0bb-4711-b448-7cdc181e3629.roa (raw, json) Hash identifier: Mv3im7Qvc2fv9s6ztmTzs2jWc7f3vUa50In8TJx2uPs= Subject key identifier: 2A:B8:49:50:D2:F9:FE:EF:69:43:14:FD:AF:54:FD:FB:43:B2:DC:AB Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 635F6075E67BFDFC0B1FAA8E0547B0909168ABE7 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/35384e31-c0bb-4711-b448-7cdc181e3629.roa Signing time: Fri 31 Oct 2025 01:10:08 +0000 ROA not before: Fri 31 Oct 2025 01:10:08 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:39f0::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:5f:60:75:e6:7b:fd:fc:0b:1f:aa:8e:05:47:b0:90:91:68:ab:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 01:10:08 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=8043bcb1ac14526f93be0a9543b88498f56d871fab6902ca42fc43408d371fd5, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ad:fc:a2:5d:ac:fe:00:23:2b:93:33:27:93: 10:66:18:18:9c:7c:03:e3:2a:5c:0a:91:ba:55:41: 0f:fa:a7:c8:73:d5:93:d8:90:94:f9:2a:90:96:34: 4c:cd:d9:38:c9:16:60:24:c9:95:64:96:31:8a:6b: 14:18:c6:95:96:03:d4:03:82:f2:c2:2e:2c:94:44: 1b:71:a6:fe:c7:60:27:05:6a:65:3b:9c:04:9e:09: 45:7d:48:6e:51:02:c6:cd:4a:fb:25:ae:62:e9:6f: 77:6d:d4:75:d5:2d:7e:55:58:ec:af:e9:ce:b1:33: ce:a0:1f:16:63:bd:87:4f:6e:43:e0:4e:d7:b0:8c: 64:a6:a8:f8:14:e9:28:25:ae:3e:6d:23:d0:33:b5: 96:ff:19:e6:17:d2:6a:25:2f:5f:e9:d5:f4:65:0a: 38:46:ac:e4:11:a6:15:e8:7b:48:f6:02:eb:2d:52: 86:2a:10:70:16:5b:6a:0e:7f:88:cd:70:1a:87:db: 58:3b:92:4c:0f:e3:70:55:19:1f:86:76:42:94:55: 23:f4:c0:5f:83:c2:e1:2c:43:41:06:1c:22:fd:fa: cd:5c:71:1e:2f:7d:b0:da:0a:ea:aa:9a:e8:52:6d: 33:71:e7:37:d0:49:3a:7b:eb:50:1e:0e:a8:36:52: 26:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:B8:49:50:D2:F9:FE:EF:69:43:14:FD:AF:54:FD:FB:43:B2:DC:AB X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/35384e31-c0bb-4711-b448-7cdc181e3629.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:39f0::/47 Signature Algorithm: sha256WithRSAEncryption 68:83:7d:01:fe:6c:13:3f:11:82:c5:a8:13:eb:33:ba:fa:01: 98:de:9d:7d:ea:97:6f:e7:a0:28:e6:8f:de:cf:a2:fb:ed:47: 31:30:43:38:4c:b4:73:c3:a4:d0:56:56:20:4e:c6:2c:ff:fe: 98:a0:03:42:8f:e3:22:3c:fe:78:8c:98:07:3c:ea:1e:85:b9: 85:94:f7:55:21:8c:ad:fc:c8:ad:4e:26:36:40:aa:78:bb:a3: 27:f8:ae:13:f4:d4:10:68:2c:27:ae:09:d2:ad:9f:b1:c6:34: ef:b1:ec:d0:c7:5e:dc:13:33:a8:51:f6:f7:ae:f0:de:d3:02: 3a:bf:70:3c:00:9e:ae:c8:d1:89:c3:43:c8:17:ee:95:78:c4: 48:6f:39:43:70:77:c5:ac:c8:68:ab:a6:e2:7c:c2:28:29:1f: 11:fb:9f:90:7c:ae:18:77:4f:c7:60:f2:6d:2c:2f:59:aa:e1: da:b8:6b:95:68:92:5e:23:7c:28:a5:ac:ee:3c:ae:7f:73:0d: 10:d1:87:17:a4:82:b2:d3:9c:29:48:f9:af:62:a8:45:c3:3b: 02:91:1a:7e:de:a1:c9:cd:f7:a3:8b:60:9f:28:84:df:de:a8: 8c:05:a9:2b:e1:e6:04:cf:c1:a7:48:b2:f4:4f:09:90:a3:56: e6:23:cb:9a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUY19gdeZ7/fwLH6qOBUewkJFoq+cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDExMDA4WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDQzYmNiMWFjMTQ1MjZmOTNiZTBhOTU0M2I4ODQ5OGY1 NmQ4NzFmYWI2OTAyY2E0MmZjNDM0MDhkMzcxZmQ1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsrfyiXaz+ACMrkzMnkxBmGBicfAPjKlwKkbpVQQ/6p8hz 1ZPYkJT5KpCWNEzN2TjJFmAkyZVkljGKaxQYxpWWA9QDgvLCLiyURBtxpv7HYCcF amU7nASeCUV9SG5RAsbNSvslrmLpb3dt1HXVLX5VWOyv6c6xM86gHxZjvYdPbkPg TtewjGSmqPgU6Sglrj5tI9AztZb/GeYX0molL1/p1fRlCjhGrOQRphXoe0j2Aust UoYqEHAWW2oOf4jNcBqH21g7kkwP43BVGR+GdkKUVSP0wF+DwuEsQ0EGHCL9+s1c cR4vfbDaCuqqmuhSbTNx5zfQSTp761AeDqg2UiYlAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKrhJUNL5/u9pQxT9r1T9+0Oy3KswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzM1Mzg0ZTMxLWMwYmItNDcxMS1iNDQ4LTdjZGMxODFlMzYyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOfAwDQYJKoZIhvcNAQELBQADggEBAGiDfQH+bBM/EYLFqBPrM7r6 AZjenX3ql2/noCjmj97PovvtRzEwQzhMtHPDpNBWViBOxiz//pigA0KP4yI8/niM mAc86h6FuYWU91UhjK38yK1OJjZAqni7oyf4rhP01BBoLCeuCdKtn7HGNO+x7NDH XtwTM6hR9veu8N7TAjq/cDwAnq7I0YnDQ8gX7pV4xEhvOUNwd8WsyGirpuJ8wigp HxH7n5B8rhh3T8dg8m0sL1mq4dq4a5Vokl4jfCilrO48rn9zDRDRhxekgrLTnClI +a9iqEXDOwKRGn7eocnN96OLYJ8ohN/eqIwFqSvh5gTPwadIsvRPCZCjVuYjy5o= -----END CERTIFICATE-----Generated at Wed Nov 5 05:36:48 2025 by rpki-client