$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3625e6ba-a691-495a-874f-9470cdd0571b.roa File: 3625e6ba-a691-495a-874f-9470cdd0571b.roa (raw, json) Hash identifier: I17DuonK7xgyXbTVBRRaOvmpGKlfgm56+HgtYXPV+xk= Subject key identifier: 3E:EC:8C:E2:BC:7F:85:91:D7:4D:61:CC:1A:85:C8:E9:F9:E6:EC:23 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 725AA2004304FBBA37D06E26394F69BA84BEEE66 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3625e6ba-a691-495a-874f-9470cdd0571b.roa Signing time: Fri 31 Oct 2025 05:40:42 +0000 ROA not before: Fri 31 Oct 2025 05:40:42 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2ae8::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:5a:a2:00:43:04:fb:ba:37:d0:6e:26:39:4f:69:ba:84:be:ee:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 05:40:42 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=9d4353dd77bcc54f7c4fd7a0dd2ffff33e6621b53472b7e34588522ebde7b524, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:f5:cc:f2:f1:f4:d2:32:88:5d:c7:79:3e:b7: d0:16:8a:1f:92:a1:c8:80:a7:f6:ce:1f:07:6f:7f: a3:15:21:30:ae:48:07:a2:32:23:13:c4:50:ee:7f: 6c:af:a9:cc:5f:c6:ed:4f:76:eb:68:e7:89:a8:79: e2:4d:be:ac:28:78:1a:4d:21:45:03:0c:bd:e3:e0: 1c:97:d1:0d:a8:a2:5d:44:aa:24:a5:28:18:57:ed: 90:50:aa:1a:a0:98:ce:0a:35:1e:da:71:9b:7b:79: 9a:da:04:c1:13:2b:05:f2:42:45:5b:41:21:18:ad: f2:92:de:ce:29:dd:ae:5a:bc:ff:19:0d:da:d2:15: b1:fb:2c:a2:26:8c:0b:9a:e3:97:5e:52:5a:9f:6c: ad:f4:24:47:40:9f:2d:15:9b:97:36:62:a7:fd:8c: 4d:7a:94:d6:36:73:e5:e7:fc:09:74:9b:a3:d2:92: 2a:e2:33:12:2c:ea:6c:b9:5b:84:1f:11:31:db:7b: 8d:f7:91:a3:1d:83:56:b5:73:22:a9:12:3e:b4:d9: 16:3d:14:df:94:ad:17:e5:5e:bb:fe:85:64:78:85: 7f:29:91:bc:73:46:0d:0c:51:d3:aa:5d:43:b7:51: 67:bc:ff:33:77:31:e3:87:2d:8f:64:4b:00:22:1b: ca:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:EC:8C:E2:BC:7F:85:91:D7:4D:61:CC:1A:85:C8:E9:F9:E6:EC:23 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3625e6ba-a691-495a-874f-9470cdd0571b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2ae8::/45 Signature Algorithm: sha256WithRSAEncryption a4:97:df:7e:80:a0:42:8f:e6:87:9a:47:8c:4c:07:de:7b:cb: 01:0a:b3:67:1a:92:5c:d9:51:6e:f9:3a:20:26:93:0e:29:94: cc:c6:54:f3:80:79:61:2c:64:5b:22:bc:a1:8c:5c:e6:63:80: 43:f6:4e:be:c3:5b:82:a0:61:6d:de:ab:ca:0e:0a:79:e0:3c: f6:43:fc:ac:cd:c5:d4:3f:76:ec:52:4e:92:13:f5:82:df:4e: 45:2f:9f:5f:3f:bc:12:f5:d2:c4:c4:1e:b6:8e:99:d9:b5:f4: 58:c8:9d:01:5e:8d:fc:26:87:f7:6e:33:1f:01:f4:89:a0:fc: 52:97:fd:03:5c:b5:9d:26:07:f8:1a:6c:ea:3b:aa:c2:f2:14: 7d:cf:6d:66:d4:49:02:3b:2d:3f:84:02:58:eb:27:fc:39:7f: a8:dd:98:a7:dd:0c:91:7b:67:61:45:ba:76:6c:66:84:b6:e0: 8a:49:4d:c5:29:b7:09:e7:e0:85:e1:aa:db:d8:e4:08:0a:e2: 80:ec:58:28:c1:df:9e:ab:5e:1a:b6:d3:b4:82:1d:98:89:12: ac:2b:09:02:02:45:56:bd:20:ab:2f:87:e5:d4:49:9a:5d:46: 39:47:ca:7e:7a:82:63:7f:23:ee:f4:d6:78:1b:6e:c6:ae:7c: fd:5b:c0:01 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUclqiAEME+7o30G4mOU9puoS+7mYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDU0MDQyWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZDQzNTNkZDc3YmNjNTRmN2M0ZmQ3YTBkZDJmZmZmMzNl NjYyMWI1MzQ3MmI3ZTM0NTg4NTIyZWJkZTdiNTI0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDk9czy8fTSMohdx3k+t9AWih+SociAp/bOHwdvf6MVITCu SAeiMiMTxFDuf2yvqcxfxu1Pduto54moeeJNvqwoeBpNIUUDDL3j4ByX0Q2ool1E qiSlKBhX7ZBQqhqgmM4KNR7acZt7eZraBMETKwXyQkVbQSEYrfKS3s4p3a5avP8Z DdrSFbH7LKImjAua45deUlqfbK30JEdAny0Vm5c2Yqf9jE16lNY2c+Xn/Al0m6PS kiriMxIs6my5W4QfETHbe433kaMdg1a1cyKpEj602RY9FN+UrRflXrv+hWR4hX8p kbxzRg0MUdOqXUO3UWe8/zN3MeOHLY9kSwAiG8oZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUPuyM4rx/hZHXTWHMGoXI6fnm7CMwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzM2MjVlNmJhLWE2OTEtNDk1YS04NzRmLTk0NzBjZGQwNTcxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAKugwDQYJKoZIhvcNAQELBQADggEBAKSX336AoEKP5oeaR4xMB957 ywEKs2caklzZUW75OiAmkw4plMzGVPOAeWEsZFsivKGMXOZjgEP2Tr7DW4KgYW3e q8oOCnngPPZD/KzNxdQ/duxSTpIT9YLfTkUvn18/vBL10sTEHraOmdm19FjInQFe jfwmh/duMx8B9Img/FKX/QNctZ0mB/gabOo7qsLyFH3PbWbUSQI7LT+EAljrJ/w5 f6jdmKfdDJF7Z2FFunZsZoS24IpJTcUptwnn4IXhqtvY5AgK4oDsWCjB356rXhq2 07SCHZiJEqwrCQICRVa9IKsvh+XUSZpdRjlHyn56gmN/I+701ngbbsaufP1bwAE= -----END CERTIFICATE-----Generated at Wed Nov 5 10:53:41 2025 by rpki-client