$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3bd9e0ec-dee8-4afd-bf76-001748989860.roa File: 3bd9e0ec-dee8-4afd-bf76-001748989860.roa (raw, json) Hash identifier: l35u8QiVzeZ0CXbHF32JiDKCZDio7I3IsrkSIhYGJJM= Subject key identifier: 29:94:11:1D:89:22:EF:26:B3:98:11:46:60:0B:4A:50:8E:10:51:6D Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 44C0A24B442DA533287A2F059EE2FD47697FFC1A Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3bd9e0ec-dee8-4afd-bf76-001748989860.roa Signing time: Thu 30 Oct 2025 23:58:59 +0000 ROA not before: Thu 30 Oct 2025 23:58:59 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3286::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:c0:a2:4b:44:2d:a5:33:28:7a:2f:05:9e:e2:fd:47:69:7f:fc:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 23:58:59 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=0c9d2c85a7c27f9050b4f90fe9a7e1a206b637e79e41b7309bc49fee91251b9e, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:ac:53:f7:e4:fb:09:4f:c7:0a:40:b3:41:d5: 9f:39:9b:3c:dd:e4:e8:f4:bb:ae:ff:b5:e0:85:cc: de:06:f0:d6:56:47:72:dc:08:26:78:0a:19:fe:0c: c5:49:44:60:f4:37:38:4a:9b:f2:4c:91:07:af:b8: 7e:d1:03:62:69:fe:8b:a3:90:13:61:d7:a0:cc:96: 11:fb:d8:87:87:31:77:3f:f2:63:95:0f:cf:af:4d: 7e:bb:6d:e7:22:01:e0:05:c6:c1:88:0f:99:44:71: eb:2f:aa:80:43:29:f6:33:b3:2b:7a:bb:82:fb:50: 14:9e:47:37:06:04:64:5e:02:e1:40:bb:67:af:7c: 21:cb:61:83:b4:77:71:a4:34:9d:20:25:bd:24:ad: 21:37:fb:2c:46:a3:be:89:c0:55:4e:94:ed:a9:9c: 84:ac:22:f0:8f:60:a5:a5:62:fa:98:98:e6:b3:1d: b0:92:7a:08:99:b3:8c:e2:b5:93:03:7e:6b:63:38: c6:d9:12:09:fb:71:52:4d:33:4f:7a:19:8e:6f:87: bf:e4:e5:b6:6a:09:08:10:44:60:2a:17:5e:28:45: 91:c4:40:54:81:5f:4d:1e:2d:df:79:08:a7:4d:82: d4:50:3e:6c:80:c4:6f:d3:5a:cb:61:17:7b:95:4f: a3:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:94:11:1D:89:22:EF:26:B3:98:11:46:60:0B:4A:50:8E:10:51:6D X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3bd9e0ec-dee8-4afd-bf76-001748989860.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3286::/47 Signature Algorithm: sha256WithRSAEncryption 2c:8a:a5:a1:af:2d:63:c4:2e:12:3e:db:73:fe:3a:21:2a:d4: 24:45:56:b2:dd:a1:34:ce:fe:2a:34:fc:66:7b:01:21:b4:6f: 04:a9:97:0b:07:ef:54:13:18:b3:4c:23:3f:aa:51:8f:1b:11: 01:9b:e0:a2:90:57:c0:a3:bf:6a:81:b5:0d:2c:c6:ed:54:e9: 08:7c:84:34:a3:bc:ca:2a:f7:33:61:1b:e1:74:f6:27:31:0c: 6d:8c:f3:83:47:19:78:24:9c:59:79:4f:f8:ef:41:57:cc:e1: 03:3d:93:79:15:5d:be:75:24:17:b6:22:cd:9e:c2:33:c0:de: cb:e5:a0:b0:70:f3:cb:9a:be:12:19:76:05:44:55:8a:21:6f: 81:fd:b7:4d:46:28:b9:da:23:8d:e0:17:54:34:40:1f:38:d2: 38:ed:bd:c1:11:d0:16:52:2b:41:01:98:6d:dd:f9:e7:51:6b: ea:82:ca:fe:03:9e:72:71:cc:f9:2d:c4:b5:5d:bf:d7:11:3e: 8d:ef:44:d1:aa:af:9d:2a:25:11:3e:4f:7a:e0:e7:e9:93:c8: a5:e9:a1:88:47:04:23:db:07:f5:ca:33:5d:59:e6:c7:a3:99: 6b:85:96:fe:d2:b0:33:f5:35:5b:9f:b9:f1:73:1b:ca:c8:ad: 1f:16:44:54 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURMCiS0QtpTMoei8FnuL9R2l//BowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjM1ODU5WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYzlkMmM4NWE3YzI3ZjkwNTBiNGY5MGZlOWE3ZTFhMjA2 YjYzN2U3OWU0MWI3MzA5YmM0OWZlZTkxMjUxYjllMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD1rFP35PsJT8cKQLNB1Z85mzzd5Oj0u67/teCFzN4G8NZW R3LcCCZ4Chn+DMVJRGD0NzhKm/JMkQevuH7RA2Jp/oujkBNh16DMlhH72IeHMXc/ 8mOVD8+vTX67beciAeAFxsGID5lEcesvqoBDKfYzsyt6u4L7UBSeRzcGBGReAuFA u2evfCHLYYO0d3GkNJ0gJb0krSE3+yxGo76JwFVOlO2pnISsIvCPYKWlYvqYmOaz HbCSegiZs4zitZMDfmtjOMbZEgn7cVJNM096GY5vh7/k5bZqCQgQRGAqF14oRZHE QFSBX00eLd95CKdNgtRQPmyAxG/TWsthF3uVT6OzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKZQRHYki7yazmBFGYAtKUI4QUW0wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzNiZDllMGVjLWRlZTgtNGFmZC1iZjc2LTAwMTc0ODk4OTg2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAMoYwDQYJKoZIhvcNAQELBQADggEBACyKpaGvLWPELhI+23P+OiEq 1CRFVrLdoTTO/io0/GZ7ASG0bwSplwsH71QTGLNMIz+qUY8bEQGb4KKQV8Cjv2qB tQ0sxu1U6Qh8hDSjvMoq9zNhG+F09icxDG2M84NHGXgknFl5T/jvQVfM4QM9k3kV Xb51JBe2Is2ewjPA3svloLBw88uavhIZdgVEVYohb4H9t01GKLnaI43gF1Q0QB84 0jjtvcER0BZSK0EBmG3d+edRa+qCyv4DnnJxzPktxLVdv9cRPo3vRNGqr50qJRE+ T3rg5+mTyKXpoYhHBCPbB/XKM11Z5sejmWuFlv7SsDP1NVufufFzG8rIrR8WRFQ= -----END CERTIFICATE-----Generated at Wed Nov 5 09:28:48 2025 by rpki-client