$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/40bc02a7-8d16-4f21-975b-656ec256092e.roa File: 40bc02a7-8d16-4f21-975b-656ec256092e.roa (raw, json) Hash identifier: Vfdj+I8fyENe7Hk1knQ1tZhYgo5i+zqTFvQaX3p7lL0= Subject key identifier: ED:17:B2:E4:28:AE:51:97:B4:9D:1B:13:E2:10:00:8C:85:C0:1B:00 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3C50A2AC08447E32D1FB9828B57CC57DB6548CDD Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/40bc02a7-8d16-4f21-975b-656ec256092e.roa Signing time: Thu 30 Oct 2025 23:13:44 +0000 ROA not before: Thu 30 Oct 2025 23:13:44 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2c0a::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:50:a2:ac:08:44:7e:32:d1:fb:98:28:b5:7c:c5:7d:b6:54:8c:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 23:13:44 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=a18bc498c73535a513766aa02fc29f37fa5bdc1b30b4f5d95cb9dd17f01f4419, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:fd:f9:59:41:a2:6c:33:9f:de:78:4c:fc:61: 5f:a7:70:b6:81:a5:7b:0a:1b:a8:bd:7d:37:6a:7f: 7a:08:70:54:e9:8c:6c:7a:fa:9a:45:fe:68:0b:ff: c8:13:de:95:de:da:78:d6:87:3b:4c:86:f2:cb:40: 31:00:ce:71:50:df:ea:ff:67:a6:4f:b9:ed:c8:33: bb:c4:8c:64:86:a2:97:55:79:de:eb:44:38:fc:f1: c5:e8:e3:7f:3c:4c:b3:8c:4a:78:a8:47:ec:3f:50: 72:03:1c:24:51:59:fc:3b:01:17:ec:34:48:9b:4b: 27:11:8c:bf:50:af:7f:12:84:cd:7b:cc:da:8f:03: 5a:a4:c8:87:c5:90:3f:c6:4c:34:6b:e2:67:0d:6e: 52:14:34:75:40:5b:61:03:5c:68:e6:bb:af:ae:80: 40:22:d6:13:c6:54:41:52:6a:34:87:7f:bc:0e:28: 61:2c:a7:d0:e3:f9:bc:2a:d4:ac:10:e4:c7:fd:0f: cf:6b:3e:7e:68:a7:51:93:68:84:5e:bc:c6:f0:35: f2:04:81:3f:36:6f:38:c9:57:e2:18:04:b6:dc:e8: aa:17:c3:f4:25:3f:61:ff:b0:39:82:0e:2c:16:37: f0:77:e9:61:24:5b:b9:54:8c:c1:64:7c:2b:04:c4: f4:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:17:B2:E4:28:AE:51:97:B4:9D:1B:13:E2:10:00:8C:85:C0:1B:00 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/40bc02a7-8d16-4f21-975b-656ec256092e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2c0a::/47 Signature Algorithm: sha256WithRSAEncryption 30:5e:f6:cf:fd:f6:a2:cc:bf:f7:a0:dc:7b:0c:47:da:3f:9a: 13:4b:d6:e4:c1:fa:0f:44:01:03:08:73:b4:4e:d3:e5:59:8d: ec:05:db:46:56:e0:cf:30:cd:bd:42:5c:6a:a1:0a:3a:04:4c: 61:51:c8:52:cd:b2:60:62:9c:29:f0:4d:47:ce:dc:2e:5d:1c: 67:7c:35:ea:cf:81:d6:83:9a:ae:11:f5:1f:9e:c5:5d:80:29: 37:48:46:b7:b5:2a:01:78:f9:6a:93:0a:cf:51:fb:38:76:59: 8e:3b:6f:73:e2:50:3f:81:c6:40:78:b9:7f:af:b4:b0:78:c9: 0f:f3:e7:1b:fe:4b:e9:06:91:77:87:2a:76:53:8f:da:8f:2e: 75:d6:ce:cd:3d:d8:ce:32:07:f2:8a:af:d0:86:20:3f:3e:31: 27:aa:97:14:05:95:ad:e3:81:bd:15:3a:ab:8b:37:af:ad:0c: a8:2a:90:33:50:8d:71:2e:c1:c4:cb:3c:70:38:9c:42:23:c5: 00:8b:b8:45:28:18:bf:b7:31:25:f9:e0:27:99:3c:73:5f:f4: 2d:28:e6:ce:64:b6:c8:9b:45:1d:ee:f7:e8:15:d2:12:f1:6a: d0:42:a1:92:40:6d:ba:ff:ce:26:e9:51:a3:ed:05:e8:49:b9: be:63:3e:e5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPFCirAhEfjLR+5gotXzFfbZUjN0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjMxMzQ0WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMThiYzQ5OGM3MzUzNWE1MTM3NjZhYTAyZmMyOWYzN2Zh NWJkYzFiMzBiNGY1ZDk1Y2I5ZGQxN2YwMWY0NDE5MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCf/flZQaJsM5/eeEz8YV+ncLaBpXsKG6i9fTdqf3oIcFTp jGx6+ppF/mgL/8gT3pXe2njWhztMhvLLQDEAznFQ3+r/Z6ZPue3IM7vEjGSGopdV ed7rRDj88cXo4388TLOMSnioR+w/UHIDHCRRWfw7ARfsNEibSycRjL9Qr38ShM17 zNqPA1qkyIfFkD/GTDRr4mcNblIUNHVAW2EDXGjmu6+ugEAi1hPGVEFSajSHf7wO KGEsp9Dj+bwq1KwQ5Mf9D89rPn5op1GTaIRevMbwNfIEgT82bzjJV+IYBLbc6KoX w/QlP2H/sDmCDiwWN/B36WEkW7lUjMFkfCsExPTjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU7Rey5CiuUZe0nRsT4hAAjIXAGwAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzQwYmMwMmE3LThkMTYtNGYyMS05NzViLTY1NmVjMjU2MDkyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAALAowDQYJKoZIhvcNAQELBQADggEBADBe9s/99qLMv/eg3HsMR9o/ mhNL1uTB+g9EAQMIc7RO0+VZjewF20ZW4M8wzb1CXGqhCjoETGFRyFLNsmBinCnw TUfO3C5dHGd8NerPgdaDmq4R9R+exV2AKTdIRre1KgF4+WqTCs9R+zh2WY47b3Pi UD+BxkB4uX+vtLB4yQ/z5xv+S+kGkXeHKnZTj9qPLnXWzs092M4yB/KKr9CGID8+ MSeqlxQFla3jgb0VOquLN6+tDKgqkDNQjXEuwcTLPHA4nEIjxQCLuEUoGL+3MSX5 4CeZPHNf9C0o5s5ktsibRR3u9+gV0hLxatBCoZJAbbr/zibpUaPtBehJub5jPuU= -----END CERTIFICATE-----Generated at Wed Nov 5 09:27:15 2025 by rpki-client