$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/407eefde-7dd5-45fe-bac6-67bed8a0b540.roa File: 407eefde-7dd5-45fe-bac6-67bed8a0b540.roa (raw, json) Hash identifier: 3MwEyH1WAtFwFbzyprmG7YQX2dCfE816lPXizESRWnU= Subject key identifier: 5B:39:D7:22:E7:14:87:60:29:9E:0B:3F:54:58:CB:1F:94:36:DF:5C Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2C981E4F614C32A2F55E8B76531475CC1D428F Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/407eefde-7dd5-45fe-bac6-67bed8a0b540.roa Signing time: Fri 31 Oct 2025 03:13:04 +0000 ROA not before: Fri 31 Oct 2025 03:13:04 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1ed8::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:98:1e:4f:61:4c:32:a2:f5:5e:8b:76:53:14:75:cc:1d:42:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 03:13:04 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=1f6f35371d084f2e1c6be9445113c6739412083a4fe56edb871dc7db8501b273, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:04:c2:a9:f9:b9:8e:be:78:cd:7d:7d:12:d5: d1:02:34:77:5a:4c:d2:0b:73:df:b4:c2:08:2d:ad: a0:03:73:0f:32:20:03:29:10:d1:56:89:00:2e:9e: ba:3d:e3:41:19:2d:9c:d7:08:2f:6b:63:15:eb:94: af:eb:76:60:72:b4:ff:df:4a:79:94:cb:74:ff:e2: ce:0e:88:70:cd:c2:3d:f6:ef:98:ca:2c:69:ca:cc: 7a:df:6c:68:25:aa:f6:92:19:b0:be:df:5d:32:40: 4b:09:ff:25:ff:bd:9c:05:82:33:40:40:ed:59:d6: 8d:32:be:90:4e:cf:b9:18:e8:db:2a:ff:cb:3c:47: af:6d:67:30:1a:a0:86:a9:1b:b3:d8:6f:fe:78:cb: fa:6d:ba:48:01:15:7c:97:1b:56:a5:bc:bc:68:45: 11:7a:cd:63:66:d5:3f:4d:e8:b8:17:c5:88:c4:26: dc:1c:d3:fb:d1:bf:eb:ca:1a:91:48:ef:6e:b8:59: 35:50:81:2f:6e:74:c9:b2:fb:65:c3:f1:02:fe:56: cc:0f:c7:52:d9:d4:ca:21:4a:42:c0:15:c6:19:bb: 0a:30:62:5a:de:f5:38:77:a9:05:70:50:c9:50:51: db:09:d0:16:3a:c3:18:4a:12:28:46:1e:4b:93:22: ab:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:39:D7:22:E7:14:87:60:29:9E:0B:3F:54:58:CB:1F:94:36:DF:5C X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/407eefde-7dd5-45fe-bac6-67bed8a0b540.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1ed8::/46 Signature Algorithm: sha256WithRSAEncryption b6:04:e0:d5:01:d3:54:b0:0a:6e:df:35:64:4a:93:6d:d4:46: 72:fd:ac:19:79:bb:af:20:ea:09:07:54:bc:2c:58:99:11:3b: da:fe:38:7e:0c:03:2a:d4:9d:6b:b0:12:e8:d6:37:87:90:4e: 27:1c:f3:18:9c:80:5a:4e:dc:b6:0b:e5:1d:02:f1:c0:06:98: 03:aa:bd:b5:f7:a2:56:4c:4e:5b:3b:be:15:ae:13:20:54:8b: b5:0a:83:d3:ed:8c:fb:10:8f:89:dd:ba:8b:22:7a:4c:ae:36: c4:2f:8e:63:90:b4:09:30:a1:57:ff:f1:3e:72:bf:28:d8:42: 5c:67:d6:eb:03:03:4c:45:52:64:33:48:de:38:02:39:d7:6c: b8:cb:fd:7e:58:85:7c:ae:b9:dc:cc:70:f9:19:e4:a4:ae:2f: 75:58:02:f3:1d:ed:c7:e7:26:48:09:2f:af:ec:bd:9e:7a:ad: 86:aa:a2:d7:f5:0d:60:56:5f:a0:26:e8:4b:6f:55:b8:cd:ac: b1:eb:80:df:de:e0:9a:30:da:52:f0:27:63:b0:9d:22:c3:21: 22:b1:95:99:48:b1:50:0e:b4:3a:58:8c:d6:8f:13:82:f3:df: 04:89:d5:a2:58:65:67:99:4b:88:40:20:e4:55:c5:91:2a:c2: 81:76:ca:4c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgITLJgeT2FMMqL1Xot2UxR1zB1CjzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI1NTEyMDkwMjdmNWU3YWQ1NGUwNGYwNDJlNGFjMGU5ZTY1 YzU2ZTU1Yzc3NDc4ZDJjZTAeFw0yNTEwMzEwMzEzMDRaFw0yNTEyMDUyMzU5NTla MHoxSTBHBgNVBAUTQDFmNmYzNTM3MWQwODRmMmUxYzZiZTk0NDUxMTNjNjczOTQx MjA4M2E0ZmU1NmVkYjg3MWRjN2RiODUwMWIyNzMxLTArBgNVBAMTJDlmMjMwZmE5 LWFhMmYtNDAyMC1hZTJhLTFhNjAzNzQwODRiODCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBALoEwqn5uY6+eM19fRLV0QI0d1pM0gtz37TCCC2toANzDzIg AykQ0VaJAC6euj3jQRktnNcIL2tjFeuUr+t2YHK0/99KeZTLdP/izg6IcM3CPfbv mMosacrMet9saCWq9pIZsL7fXTJASwn/Jf+9nAWCM0BA7VnWjTK+kE7PuRjo2yr/ yzxHr21nMBqghqkbs9hv/njL+m26SAEVfJcbVqW8vGhFEXrNY2bVP03ouBfFiMQm 3BzT+9G/68oakUjvbrhZNVCBL250ybL7ZcPxAv5WzA/HUtnUyiFKQsAVxhm7CjBi Wt71OHepBXBQyVBR2wnQFjrDGEoSKEYeS5Miq4sCAwEAAaOCArQwggKwMB0GA1Ud DgQWBBRbOdci5xSHYCmeCz9UWMsflDbfXDAfBgNVHSMEGDAWgBTo88Ug4g7yXTq3 oha7FAQxajc48TAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv ZjYwYzlmMzItYTg3Yy00MzM5LWEyZjMtNjI5OWEzYjAyZTI5Lzk5ZjhmZWQyLTI5 MmItNDcyMi1iOTI4LWZlZTdiZjBhNTkxMC81NTEyMDkwMjdmNWU3YWQ1NGUwNGYw NDJlNGFjMGU5ZTY1YzU2ZTU1Yzc3NDc4ZDJjZS5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9lNzUxOGFmNS1hMzQzLTQyOGQtYmY3OC1mOTgy YjZlNjA1MDUvNDA3ZWVmZGUtN2RkNS00NWZlLWJhYzYtNjdiZWQ4YTBiNTQwLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgt Zjk4MmI2ZTYwNTA1L1huclZUZ1R3UXVTc0RwNWx4VzVWeDNSNDBzNC5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHAiYAkAAe2DANBgkqhkiG9w0BAQsFAAOCAQEAtgTg1QHTVLAKbt81ZEqTbdRG cv2sGXm7ryDqCQdUvCxYmRE72v44fgwDKtSda7AS6NY3h5BOJxzzGJyAWk7ctgvl HQLxwAaYA6q9tfeiVkxOWzu+Fa4TIFSLtQqD0+2M+xCPid26iyJ6TK42xC+OY5C0 CTChV//xPnK/KNhCXGfW6wMDTEVSZDNI3jgCOddsuMv9fliFfK653Mxw+RnkpK4v dVgC8x3tx+cmSAkvr+y9nnqthqqi1/UNYFZfoCboS29VuM2sseuA397gmjDaUvAn Y7CdIsMhIrGVmUixUA60OliM1o8TgvPfBInVolhlZ5lLiEAg5FXFkSrCgXbKTA== -----END CERTIFICATE-----Generated at Wed Nov 5 11:07:55 2025 by rpki-client