$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3c3951fb-3970-47a3-95d6-95c9e273a018.roa File: 3c3951fb-3970-47a3-95d6-95c9e273a018.roa (raw, json) Hash identifier: QY1u07OrXhOp//L7mp771GaOxn20f1aWpnd1iD0HCpU= Subject key identifier: 89:DB:37:D5:0B:A0:BC:7F:CF:63:FB:23:3B:9E:60:04:B2:8F:D7:CC Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 1E8884762F1D9ACBCD2121D4D9FED2F19D092D60 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3c3951fb-3970-47a3-95d6-95c9e273a018.roa Signing time: Fri 31 Oct 2025 01:41:16 +0000 ROA not before: Fri 31 Oct 2025 01:41:16 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3d36::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:88:84:76:2f:1d:9a:cb:cd:21:21:d4:d9:fe:d2:f1:9d:09:2d:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 01:41:16 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=ecb9ba9fad562705685e7ebbad6ad8ab5b72d460c6b68fc22d69865989150e67, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:69:bc:3f:14:de:23:68:6e:1a:f0:62:62:bb: 50:fe:f4:36:38:ec:93:6c:e0:9e:62:50:4d:c4:7e: 53:ac:d2:17:5a:fb:38:1f:7a:a6:61:1e:58:de:e3: 3d:ca:98:1a:9c:87:39:44:e2:9c:64:07:76:4c:cc: d6:eb:ed:97:75:94:83:e6:6d:20:d3:80:92:f9:30: 74:17:b9:19:05:ed:95:98:b8:fb:90:78:3f:b5:95: a5:eb:3c:58:2c:81:df:72:4f:1f:f3:b7:e8:79:0f: 52:3e:3a:f8:60:da:d0:5b:61:10:99:15:b0:15:bd: 72:91:42:a3:79:9c:af:d0:bd:eb:3b:aa:c7:d7:0d: 5d:9c:8f:ae:1f:53:0c:36:b3:14:f0:10:28:af:ed: fd:36:f3:93:38:05:73:f8:75:17:54:6a:c5:c1:99: f7:60:78:b3:08:b7:53:fc:8c:02:77:da:db:55:8e: a7:b7:9d:18:81:96:06:98:90:a1:ad:26:b6:55:01: 5d:91:f2:b3:01:42:19:85:71:8a:fc:b2:26:63:86: 6e:d8:e0:c5:47:19:a4:f7:7d:bf:c3:c4:e5:de:d6: f4:d6:46:97:d8:37:1a:aa:2b:c6:d7:ce:aa:f1:cc: 60:07:e4:fb:cb:75:d8:bb:2b:15:2b:2c:5d:6c:eb: c3:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:DB:37:D5:0B:A0:BC:7F:CF:63:FB:23:3B:9E:60:04:B2:8F:D7:CC X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3c3951fb-3970-47a3-95d6-95c9e273a018.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3d36::/47 Signature Algorithm: sha256WithRSAEncryption b8:8f:85:93:7b:9c:24:9a:2e:39:91:be:d1:72:86:3f:56:a4: 8a:0e:c0:f5:c7:37:1e:7e:7b:b8:6e:08:66:e9:61:8a:4a:47: 04:d7:90:15:07:c3:8d:60:5c:f9:11:49:d1:ef:43:c3:1e:ad: 01:b3:37:b1:85:00:1d:bf:45:63:1d:b8:54:03:58:88:16:49: 26:9c:d5:e9:67:11:f7:21:a6:49:cc:fa:61:97:aa:03:3d:40: eb:23:7a:7e:35:61:35:98:94:66:9c:a6:48:40:4d:0b:2c:9f: 4c:61:8f:8c:96:9b:25:9a:76:8e:c3:5f:b7:0a:12:67:85:ab: fd:5a:4c:83:34:99:d0:a8:56:ab:d3:45:4a:97:b1:79:7b:49: 0f:dd:f6:a9:75:61:dd:cc:29:06:b2:89:71:e5:cb:aa:4e:2b: cc:ec:52:34:a2:70:36:84:dd:9a:57:7d:f9:0f:16:ad:ca:1e: 7e:78:92:1d:8f:1d:8d:32:59:6d:e1:6c:cb:bf:e5:9d:de:69: ed:8d:1b:3a:64:7c:9e:3e:ab:87:af:92:bc:bb:8f:58:7e:c1: 21:07:69:97:fa:91:66:e8:5b:11:4e:c7:28:01:2b:bb:21:86: 20:81:70:4e:2e:48:71:0a:da:11:4c:7f:c7:a3:7b:47:aa:ba: f6:96:0d:eb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHoiEdi8dmsvNISHU2f7S8Z0JLWAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDE0MTE2WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlY2I5YmE5ZmFkNTYyNzA1Njg1ZTdlYmJhZDZhZDhhYjVi NzJkNDYwYzZiNjhmYzIyZDY5ODY1OTg5MTUwZTY3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxabw/FN4jaG4a8GJiu1D+9DY47JNs4J5iUE3EflOs0hda +zgfeqZhHlje4z3KmBqchzlE4pxkB3ZMzNbr7Zd1lIPmbSDTgJL5MHQXuRkF7ZWY uPuQeD+1laXrPFgsgd9yTx/zt+h5D1I+Ovhg2tBbYRCZFbAVvXKRQqN5nK/Qves7 qsfXDV2cj64fUww2sxTwECiv7f0285M4BXP4dRdUasXBmfdgeLMIt1P8jAJ32ttV jqe3nRiBlgaYkKGtJrZVAV2R8rMBQhmFcYr8siZjhm7Y4MVHGaT3fb/DxOXe1vTW RpfYNxqqK8bXzqrxzGAH5PvLddi7KxUrLF1s68PDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUids31QugvH/PY/sjO55gBLKP18wwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzNjMzk1MWZiLTM5NzAtNDdhMy05NWQ2LTk1YzllMjczYTAxOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAPTYwDQYJKoZIhvcNAQELBQADggEBALiPhZN7nCSaLjmRvtFyhj9W pIoOwPXHNx5+e7huCGbpYYpKRwTXkBUHw41gXPkRSdHvQ8MerQGzN7GFAB2/RWMd uFQDWIgWSSac1elnEfchpknM+mGXqgM9QOsjen41YTWYlGacpkhATQssn0xhj4yW myWado7DX7cKEmeFq/1aTIM0mdCoVqvTRUqXsXl7SQ/d9ql1Yd3MKQayiXHly6pO K8zsUjSicDaE3ZpXffkPFq3KHn54kh2PHY0yWW3hbMu/5Z3eae2NGzpkfJ4+q4ev kry7j1h+wSEHaZf6kWboWxFOxygBK7shhiCBcE4uSHEK2hFMf8eje0equvaWDes= -----END CERTIFICATE-----Generated at Wed Nov 5 10:32:50 2025 by rpki-client