$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/36e4caa6-d224-40f8-9adc-63a1a3024343.roa File: 36e4caa6-d224-40f8-9adc-63a1a3024343.roa (raw, json) Hash identifier: 0AQkg/zpoQd36s9Kd+gDgVz4TMY5CfY8i6VMy1ZAqAY= Subject key identifier: 05:BA:64:20:E2:D1:89:8B:A9:11:C6:77:38:AC:56:45:98:DC:51:75 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 674FF0C60A27F69D0B76D6A60DAC9519017CE74E Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/36e4caa6-d224-40f8-9adc-63a1a3024343.roa Signing time: Fri 31 Oct 2025 06:23:51 +0000 ROA not before: Fri 31 Oct 2025 06:23:51 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3e28::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:4f:f0:c6:0a:27:f6:9d:0b:76:d6:a6:0d:ac:95:19:01:7c:e7:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 06:23:51 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=a531f5191aa84c620fb31159070a6917f733ecd4d002b2ae1d54020ceeaacd28, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:96:5e:f8:c3:05:a7:b4:7e:fa:9e:bb:3c:68: 86:b8:b8:cc:89:54:cb:fc:21:b9:db:9d:f0:8a:62: 34:4d:ea:f3:96:3c:d9:de:63:89:23:fc:77:21:7e: 9f:d6:9e:9c:c7:96:07:cf:e2:e4:75:36:c9:cc:92: c0:ff:0d:51:ca:6f:27:30:16:49:85:b1:5e:5d:ee: 5a:7f:9b:73:b6:16:f8:e5:8c:6f:7f:00:02:0c:83: e7:73:9b:29:bc:05:61:3c:f3:ed:f5:51:c8:35:be: d4:21:6d:ec:b9:13:e5:d6:64:56:7d:7c:7f:74:28: 60:60:81:3b:df:e3:9a:0b:e9:e7:fb:d1:f8:0d:11: 81:81:ac:65:cd:5e:19:75:77:07:49:8b:eb:7a:5a: c3:73:4b:fb:5b:c0:c4:2f:14:cf:59:70:f1:17:7e: dd:60:55:5f:84:c3:51:f5:63:7e:22:95:92:98:41: f3:1b:5c:25:4a:df:43:bd:d3:8e:55:eb:6f:3c:88: a2:70:c6:9c:65:ee:13:86:c7:aa:10:a4:79:60:47: ea:ee:44:90:6f:ef:b8:4e:84:db:af:d1:a6:e5:7c: dc:5f:5c:ef:e1:ad:64:20:87:24:19:3e:aa:07:20: ac:21:9e:ad:30:46:04:26:cb:2f:95:83:e5:03:03: 63:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:BA:64:20:E2:D1:89:8B:A9:11:C6:77:38:AC:56:45:98:DC:51:75 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/36e4caa6-d224-40f8-9adc-63a1a3024343.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3e28::/45 Signature Algorithm: sha256WithRSAEncryption 56:a9:96:ad:f6:b1:2c:3f:3f:97:75:df:7c:22:59:48:8f:f5: 4e:be:32:ee:8e:17:e7:56:8c:b9:a0:64:cc:13:2f:a7:81:8e: 08:92:e5:52:74:e5:2e:0a:7c:c6:75:20:f9:ed:59:41:4f:bf: 7b:33:97:1d:51:25:c9:2b:82:2b:2d:1c:9e:67:25:a6:6f:9e: a5:e8:03:a4:f8:aa:cd:31:dd:d3:37:f4:16:d1:09:36:33:e9: 91:6c:9e:b0:14:64:4e:da:97:b1:a5:ac:63:b9:f3:16:31:34: 82:3e:91:d2:bf:23:f2:9c:90:56:82:c4:ce:ac:e0:ac:53:84: 3b:f6:93:19:9c:31:5a:1c:8a:ed:f8:76:bc:3f:89:0e:24:35: 9e:52:97:ad:bd:e1:6c:2f:b5:15:2e:24:b0:a4:31:9d:7f:c2: dc:2a:98:aa:29:b7:cb:06:9c:45:54:1a:23:a5:25:99:cb:27: 79:bf:1b:e2:7a:e7:a5:36:d4:9b:36:ec:f9:19:60:fe:4e:f6: 4e:0f:14:27:ca:87:63:71:9d:8f:71:48:d3:97:3c:78:5c:3b: 45:b2:89:c0:b8:73:0e:80:b3:ef:2c:f2:3e:28:2c:c3:7a:2b: 4b:61:6f:9b:3a:a0:dd:fa:96:6b:83:02:5e:6e:07:3d:ad:a1: e1:00:27:53 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZ0/wxgon9p0LdtamDayVGQF8504wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDYyMzUxWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNTMxZjUxOTFhYTg0YzYyMGZiMzExNTkwNzBhNjkxN2Y3 MzNlY2Q0ZDAwMmIyYWUxZDU0MDIwY2VlYWFjZDI4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbll74wwWntH76nrs8aIa4uMyJVMv8IbnbnfCKYjRN6vOW PNneY4kj/Hchfp/WnpzHlgfP4uR1NsnMksD/DVHKbycwFkmFsV5d7lp/m3O2Fvjl jG9/AAIMg+dzmym8BWE88+31Ucg1vtQhbey5E+XWZFZ9fH90KGBggTvf45oL6ef7 0fgNEYGBrGXNXhl1dwdJi+t6WsNzS/tbwMQvFM9ZcPEXft1gVV+Ew1H1Y34ilZKY QfMbXCVK30O9045V6288iKJwxpxl7hOGx6oQpHlgR+ruRJBv77hOhNuv0ablfNxf XO/hrWQghyQZPqoHIKwhnq0wRgQmyy+Vg+UDA2OjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUBbpkIOLRiYupEcZ3OKxWRZjcUXUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzM2ZTRjYWE2LWQyMjQtNDBmOC05YWRjLTYzYTFhMzAyNDM0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAPigwDQYJKoZIhvcNAQELBQADggEBAFaplq32sSw/P5d133wiWUiP 9U6+Mu6OF+dWjLmgZMwTL6eBjgiS5VJ05S4KfMZ1IPntWUFPv3szlx1RJckrgist HJ5nJaZvnqXoA6T4qs0x3dM39BbRCTYz6ZFsnrAUZE7al7GlrGO58xYxNII+kdK/ I/KckFaCxM6s4KxThDv2kxmcMVociu34drw/iQ4kNZ5Sl6294WwvtRUuJLCkMZ1/ wtwqmKopt8sGnEVUGiOlJZnLJ3m/G+J656U21Js27PkZYP5O9k4PFCfKh2NxnY9x SNOXPHhcO0WyicC4cw6As+8s8j4oLMN6K0thb5s6oN36lmuDAl5uBz2toeEAJ1M= -----END CERTIFICATE-----Generated at Wed Nov 5 05:34:46 2025 by rpki-client