$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3ccfe482-55e6-425e-9278-8760c78ef288.roa File: 3ccfe482-55e6-425e-9278-8760c78ef288.roa (raw, json) Hash identifier: du6BoKvE5bZrkGCG5SHf9ssP5kP4HSpAkzZqgdQJCHo= Subject key identifier: C8:A9:B9:01:01:03:DD:21:D8:3A:FB:8D:19:7B:E1:6C:25:66:EB:1D Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4BD1C41E64613D0E10075F517D0AAC6692B26C38 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3ccfe482-55e6-425e-9278-8760c78ef288.roa Signing time: Fri 31 Oct 2025 01:21:40 +0000 ROA not before: Fri 31 Oct 2025 01:21:40 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3aa4::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:d1:c4:1e:64:61:3d:0e:10:07:5f:51:7d:0a:ac:66:92:b2:6c:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 01:21:40 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=1f564ec27fa65e25e669de900ae191b4922da873379b3dc8f7c0433b956dc656, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3c:06:b3:0b:27:04:1a:7b:14:0a:f8:e7:4e: e9:85:8a:18:82:b5:74:ca:c3:64:22:25:af:4e:0d: 96:db:e9:70:d5:55:14:94:3b:c7:20:24:6f:77:10: fe:e7:5c:7a:b7:c9:72:95:f7:a6:1d:fe:f3:47:36: 14:3f:39:47:3b:5e:55:3c:1e:cb:9b:89:24:9d:4f: 2f:87:65:68:de:fe:d9:01:1b:2c:78:a6:5d:7d:7d: b7:d5:06:81:39:12:9f:0b:fe:09:c8:0c:38:36:c5: dd:09:33:5d:1d:29:e6:9a:03:de:7d:b4:19:2a:13: d1:cf:be:4c:4b:12:d4:1c:20:9a:a8:ee:37:bb:ee: da:fd:09:ea:54:9b:e0:9c:bf:ce:bb:51:46:98:dd: 3b:7a:c6:a2:37:04:5d:2c:12:61:e8:d1:a1:3e:e1: 03:f9:48:de:cc:8b:fe:3e:8a:56:88:32:33:80:a2: e2:c6:5b:40:fc:ea:3a:e3:73:96:65:fb:06:75:a9: 1c:b0:c5:61:94:4a:fd:f7:7f:6d:e0:e2:c6:47:38: a0:cf:39:34:e1:b9:72:81:66:2b:30:ec:65:2f:20: 24:5a:6d:f5:80:46:e2:24:a8:b8:f3:49:02:1c:27: bb:46:60:34:46:ae:b8:bd:25:f0:33:c9:4d:fb:a2: ce:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:A9:B9:01:01:03:DD:21:D8:3A:FB:8D:19:7B:E1:6C:25:66:EB:1D X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3ccfe482-55e6-425e-9278-8760c78ef288.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3aa4::/47 Signature Algorithm: sha256WithRSAEncryption 72:99:46:72:00:36:0a:3f:1e:2b:de:3b:d0:a0:f6:dc:53:f3: 82:8b:89:91:f4:1e:96:84:6a:b9:8f:b3:84:76:95:10:d3:f5: 84:5c:f3:ac:b4:94:6c:ac:2e:3f:30:01:9c:4e:49:f1:f0:ca: df:25:b3:74:8f:da:44:80:be:93:70:1e:91:20:15:4b:5c:0b: 17:69:54:73:2d:c3:05:dd:0b:fd:e5:3f:e8:0f:2e:d6:ed:e0: b3:d5:da:24:19:57:4b:db:81:ea:dc:f9:a2:19:32:7e:05:21: 4f:06:f0:36:3f:3d:48:a6:fa:b7:16:09:8e:19:3a:f9:73:77: f2:2a:55:4e:44:05:f1:c1:20:b1:86:23:04:ff:94:8e:95:c0: 80:bf:e2:c9:3b:3c:b8:ca:b1:7a:33:9f:86:7b:cf:93:6e:c7: c7:55:5d:bf:5e:de:07:b5:bf:43:d0:5c:f7:ca:19:8e:cd:16: 7e:8a:0d:db:26:6e:fd:5d:37:be:b3:51:f8:54:2b:b7:5d:35: 21:ce:25:e4:ff:32:f6:52:7a:ee:c9:23:e1:27:fa:00:f4:41: 4b:77:29:ea:0f:db:d9:25:06:20:48:f1:02:ed:29:04:c3:c0: fa:ba:1e:f1:81:1a:fe:ae:7f:11:97:e5:2c:7f:b4:fa:fb:4d: 89:7e:f0:fe -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUS9HEHmRhPQ4QB19RfQqsZpKybDgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDEyMTQwWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZjU2NGVjMjdmYTY1ZTI1ZTY2OWRlOTAwYWUxOTFiNDky MmRhODczMzc5YjNkYzhmN2MwNDMzYjk1NmRjNjU2MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyPAazCycEGnsUCvjnTumFihiCtXTKw2QiJa9ODZbb6XDV VRSUO8cgJG93EP7nXHq3yXKV96Yd/vNHNhQ/OUc7XlU8HsubiSSdTy+HZWje/tkB Gyx4pl19fbfVBoE5Ep8L/gnIDDg2xd0JM10dKeaaA959tBkqE9HPvkxLEtQcIJqo 7je77tr9CepUm+Ccv867UUaY3Tt6xqI3BF0sEmHo0aE+4QP5SN7Mi/4+ilaIMjOA ouLGW0D86jrjc5Zl+wZ1qRywxWGUSv33f23g4sZHOKDPOTThuXKBZisw7GUvICRa bfWARuIkqLjzSQIcJ7tGYDRGrri9JfAzyU37os5nAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUyKm5AQED3SHYOvuNGXvhbCVm6x0wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzNjY2ZlNDgyLTU1ZTYtNDI1ZS05Mjc4LTg3NjBjNzhlZjI4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOqQwDQYJKoZIhvcNAQELBQADggEBAHKZRnIANgo/HiveO9Cg9txT 84KLiZH0HpaEarmPs4R2lRDT9YRc86y0lGysLj8wAZxOSfHwyt8ls3SP2kSAvpNw HpEgFUtcCxdpVHMtwwXdC/3lP+gPLtbt4LPV2iQZV0vbgerc+aIZMn4FIU8G8DY/ PUim+rcWCY4ZOvlzd/IqVU5EBfHBILGGIwT/lI6VwIC/4sk7PLjKsXozn4Z7z5Nu x8dVXb9e3ge1v0PQXPfKGY7NFn6KDdsmbv1dN76zUfhUK7ddNSHOJeT/MvZSeu7J I+En+gD0QUt3KeoP29klBiBI8QLtKQTDwPq6HvGBGv6ufxGX5Sx/tPr7TYl+8P4= -----END CERTIFICATE-----Generated at Wed Nov 5 15:28:31 2025 by rpki-client