$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3ca692d0-391b-4265-86ba-de6124c631f7.roa File: 3ca692d0-391b-4265-86ba-de6124c631f7.roa (raw, json) Hash identifier: IIoXftP/0Ir+w6C7OwamSWAill/ux+imlv34VBbblw0= Subject key identifier: 70:A5:AD:AD:FF:1C:6E:4E:B6:0F:AB:9C:07:28:DF:86:1E:23:41:D8 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 12C67BD0F90DE0D3291B0DDF59805C74D995F6C0 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3ca692d0-391b-4265-86ba-de6124c631f7.roa Signing time: Fri 31 Oct 2025 05:42:15 +0000 ROA not before: Fri 31 Oct 2025 05:42:15 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2b68::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:c6:7b:d0:f9:0d:e0:d3:29:1b:0d:df:59:80:5c:74:d9:95:f6:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 05:42:15 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=8e2427eee0bdd8b59eca8e216b0cea45ecea30f8f97cccc08cb8c5992130d9d0, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:68:a8:bd:4f:4a:3d:7c:ce:d9:e4:29:30:78: 30:9b:a8:db:6d:a4:43:db:32:22:4b:16:4c:e1:dc: bd:3e:0f:2b:1c:55:a1:b6:26:1d:ee:ed:e7:a0:2b: 9c:4d:ed:73:03:48:52:b8:8b:33:0f:1e:26:91:e1: f6:d3:5e:1e:7d:61:81:14:3b:45:f7:f8:54:ff:32: 57:91:65:3c:db:57:80:d1:b8:f1:6b:71:94:03:da: e8:9d:ee:ee:b1:a5:27:10:97:d0:1b:9f:9a:57:a8: cb:18:18:1a:5a:d8:b9:c9:7e:d3:dc:04:19:da:4a: b3:c6:0a:1f:a5:75:4c:34:6c:d1:51:49:2a:67:70: 52:ad:70:57:b1:62:5f:b7:c4:42:75:2e:85:6f:1a: 46:ba:d2:eb:e9:4a:d3:ff:6b:59:dc:91:1b:72:b9: 8f:11:2e:e8:b1:e2:45:9b:11:73:59:5b:b6:75:e3: 2a:33:7f:62:2c:61:8a:ee:bf:4f:39:b4:7b:e6:c4: 0c:1a:13:db:5d:80:d5:66:ca:8e:c8:3e:61:c5:80: c5:03:46:6e:c1:53:52:e4:99:06:df:42:e4:4b:b6: 8a:cb:e4:9d:e9:4a:42:be:9d:98:a0:51:bb:1d:52: 16:a8:20:3d:82:15:b7:0b:6f:ce:65:83:8e:6f:92: df:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:A5:AD:AD:FF:1C:6E:4E:B6:0F:AB:9C:07:28:DF:86:1E:23:41:D8 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3ca692d0-391b-4265-86ba-de6124c631f7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2b68::/45 Signature Algorithm: sha256WithRSAEncryption ab:62:e4:6e:88:48:6f:23:bb:3f:df:e7:13:e5:aa:65:9a:d3: 2f:a0:b7:cc:11:21:21:d3:98:eb:a0:eb:fb:6a:b1:d5:05:76: 65:a3:21:79:38:9a:95:a4:1c:df:47:ca:37:37:c7:02:c6:a1: ab:78:49:91:ad:13:a9:f9:49:8d:7d:a8:d6:84:ec:d2:c6:44: 7f:65:6b:60:ac:20:c8:d9:ba:c2:c8:69:90:ad:75:44:39:3a: 4e:5c:83:88:3f:f9:01:19:18:75:4c:f8:fd:cb:04:3f:a8:75: c4:f8:af:c8:65:e0:9a:be:95:dc:0e:50:a2:90:a6:c4:2c:24: f6:bb:94:76:96:d4:4a:80:01:e7:5c:1b:1c:0a:ad:aa:a1:8e: bd:46:fa:b3:a5:eb:09:5b:c6:b1:22:33:e6:ad:b7:cd:13:af: 18:6b:aa:0e:ce:19:b3:20:26:5a:d9:dc:4b:9a:f7:7b:a1:92: 58:6d:20:59:1d:d3:cb:e7:1d:eb:81:44:eb:fb:1d:19:3e:50: 13:1a:02:fb:1f:29:15:e7:de:50:86:7e:15:29:5d:d2:05:61: 25:7a:a8:8d:0c:bc:6e:7d:d4:5d:d7:92:4c:3e:22:2c:a1:12: 45:74:f6:3d:51:b2:a3:e2:17:a4:f3:1d:a0:88:da:96:97:7a: 85:30:a9:f1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEsZ70PkN4NMpGw3fWYBcdNmV9sAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDU0MjE1WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZTI0MjdlZWUwYmRkOGI1OWVjYThlMjE2YjBjZWE0NWVj ZWEzMGY4Zjk3Y2NjYzA4Y2I4YzU5OTIxMzBkOWQwMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBaKi9T0o9fM7Z5CkweDCbqNttpEPbMiJLFkzh3L0+Dysc VaG2Jh3u7eegK5xN7XMDSFK4izMPHiaR4fbTXh59YYEUO0X3+FT/MleRZTzbV4DR uPFrcZQD2uid7u6xpScQl9Abn5pXqMsYGBpa2LnJftPcBBnaSrPGCh+ldUw0bNFR SSpncFKtcFexYl+3xEJ1LoVvGka60uvpStP/a1nckRtyuY8RLuix4kWbEXNZW7Z1 4yozf2IsYYruv085tHvmxAwaE9tdgNVmyo7IPmHFgMUDRm7BU1LkmQbfQuRLtorL 5J3pSkK+nZigUbsdUhaoID2CFbcLb85lg45vkt/RAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcKWtrf8cbk62D6ucByjfhh4jQdgwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzNjYTY5MmQwLTM5MWItNDI2NS04NmJhLWRlNjEyNGM2MzFmNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAK2gwDQYJKoZIhvcNAQELBQADggEBAKti5G6ISG8juz/f5xPlqmWa 0y+gt8wRISHTmOug6/tqsdUFdmWjIXk4mpWkHN9Hyjc3xwLGoat4SZGtE6n5SY19 qNaE7NLGRH9la2CsIMjZusLIaZCtdUQ5Ok5cg4g/+QEZGHVM+P3LBD+odcT4r8hl 4Jq+ldwOUKKQpsQsJPa7lHaW1EqAAedcGxwKraqhjr1G+rOl6wlbxrEiM+att80T rxhrqg7OGbMgJlrZ3Eua93uhklhtIFkd08vnHeuBROv7HRk+UBMaAvsfKRXn3lCG fhUpXdIFYSV6qI0MvG591F3Xkkw+IiyhEkV09j1RsqPiF6TzHaCI2paXeoUwqfE= -----END CERTIFICATE-----Generated at Wed Nov 5 11:08:03 2025 by rpki-client