$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4107f04a-eeeb-4c9f-bbd4-999d121a036d.roa File: 4107f04a-eeeb-4c9f-bbd4-999d121a036d.roa (raw, json) Hash identifier: ZlovWfwnhFKAMwFUIa8Wd17knGrVT40f7XyFH+OXlEQ= Subject key identifier: DB:16:D5:89:E9:36:84:04:52:4B:22:EA:07:25:D2:63:D8:C6:FB:C7 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3889B4FC502D283997D3109F4EB58101EF294C46 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4107f04a-eeeb-4c9f-bbd4-999d121a036d.roa Signing time: Fri 31 Oct 2025 05:40:23 +0000 ROA not before: Fri 31 Oct 2025 05:40:23 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:29c8::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:89:b4:fc:50:2d:28:39:97:d3:10:9f:4e:b5:81:01:ef:29:4c:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 05:40:23 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=71a7787db2854205b913550d5e3d9e0fd931ffd9d5a02672b49b6d871eec7184, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:85:13:9e:9c:a0:ae:7f:bf:89:d5:23:b1:82: 09:31:35:9d:bf:dc:2d:fa:e0:e5:4f:32:70:ae:4d: 66:e1:7c:bf:6a:74:fd:72:56:08:d8:07:fb:6b:5c: bd:be:97:a7:74:36:4d:04:e8:04:0f:ae:7b:23:b9: ee:6f:10:5f:50:47:22:59:92:87:3b:3b:50:83:33: 23:87:4f:3d:c1:71:00:62:b2:99:e7:e1:b4:b0:1f: 2d:23:2b:f0:88:c2:2c:9d:50:89:e2:53:3f:7f:72: 97:e9:14:72:96:6c:fb:29:9b:a7:f6:24:e3:91:fc: a9:51:1c:b7:0d:15:95:d2:e1:52:58:20:3b:66:00: a1:e4:94:13:49:f2:bc:12:df:35:3d:44:0b:be:0f: 6f:a5:1d:fc:a1:10:42:22:31:da:39:a5:21:91:a9: 9d:24:c5:03:08:46:7b:2e:fb:07:d2:dd:7e:c4:59: 18:bf:99:d3:c1:6d:dc:af:ea:c8:48:54:8c:54:a9: 2e:d0:1b:00:88:fe:89:39:8f:1c:1d:27:29:9a:5f: b1:7f:58:41:c6:0f:49:15:c4:f0:61:74:75:6f:99: 28:43:57:0e:a5:0f:6b:46:dd:dc:a1:92:61:1a:a3: 54:d7:d8:1f:41:4c:46:a6:d9:84:f9:6e:cc:b2:b9: b9:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:16:D5:89:E9:36:84:04:52:4B:22:EA:07:25:D2:63:D8:C6:FB:C7 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4107f04a-eeeb-4c9f-bbd4-999d121a036d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:29c8::/45 Signature Algorithm: sha256WithRSAEncryption 73:6e:74:a8:1f:13:dd:1a:37:2a:e6:b5:7c:7a:e4:90:bf:17: b9:d2:68:27:fd:22:17:9c:40:ee:f6:2f:47:c1:51:3d:51:6b: 16:31:03:14:13:d7:37:04:ec:a8:dc:9f:2d:fe:bd:3e:0a:05: 19:b7:7e:0c:a4:0f:65:0a:28:22:28:b2:f4:29:b9:2c:48:6f: 80:8d:94:ab:bf:c3:a1:da:e1:0a:9e:79:c2:0d:51:1a:ce:b2: ef:74:da:cb:61:d4:26:8d:16:39:eb:b9:aa:bf:b2:82:2d:da: 68:1c:fd:5d:ab:03:5f:0e:63:6c:f2:d2:51:ba:5f:6a:90:f1: 56:9f:8b:52:f3:d8:5c:8a:1f:d9:c3:d2:02:a2:e0:98:0f:b7: 55:1b:36:ad:0d:65:62:f3:1d:ce:4c:61:31:26:e8:c2:02:16: b2:e7:c0:fa:d8:aa:88:7d:e7:8b:eb:f2:c6:1c:31:c6:12:b9: a2:cb:c1:0b:c5:f0:04:6e:7d:54:a4:e8:fc:d0:41:63:43:3b: b2:cb:8e:b2:ea:b0:8a:eb:48:36:01:f9:f6:87:2f:1f:66:20: c1:78:f2:b1:6a:12:5f:c0:27:a9:d2:4e:92:24:bb:f9:bf:fa: c0:2b:67:6f:40:5f:07:6c:cd:8f:ab:a8:38:e2:84:69:a8:a9: ee:03:05:ee -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOIm0/FAtKDmX0xCfTrWBAe8pTEYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDU0MDIzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MWE3Nzg3ZGIyODU0MjA1YjkxMzU1MGQ1ZTNkOWUwZmQ5 MzFmZmQ5ZDVhMDI2NzJiNDliNmQ4NzFlZWM3MTg0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCihROenKCuf7+J1SOxggkxNZ2/3C364OVPMnCuTWbhfL9q dP1yVgjYB/trXL2+l6d0Nk0E6AQPrnsjue5vEF9QRyJZkoc7O1CDMyOHTz3BcQBi spnn4bSwHy0jK/CIwiydUIniUz9/cpfpFHKWbPspm6f2JOOR/KlRHLcNFZXS4VJY IDtmAKHklBNJ8rwS3zU9RAu+D2+lHfyhEEIiMdo5pSGRqZ0kxQMIRnsu+wfS3X7E WRi/mdPBbdyv6shIVIxUqS7QGwCI/ok5jxwdJymaX7F/WEHGD0kVxPBhdHVvmShD Vw6lD2tG3dyhkmEao1TX2B9BTEam2YT5bsyyubkjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2xbViek2hARSSyLqByXSY9jG+8cwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzQxMDdmMDRhLWVlZWItNGM5Zi1iYmQ0LTk5OWQxMjFhMDM2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAKcgwDQYJKoZIhvcNAQELBQADggEBAHNudKgfE90aNyrmtXx65JC/ F7nSaCf9IhecQO72L0fBUT1RaxYxAxQT1zcE7Kjcny3+vT4KBRm3fgykD2UKKCIo svQpuSxIb4CNlKu/w6Ha4QqeecINURrOsu902sth1CaNFjnruaq/soIt2mgc/V2r A18OY2zy0lG6X2qQ8Vafi1Lz2FyKH9nD0gKi4JgPt1UbNq0NZWLzHc5MYTEm6MIC FrLnwPrYqoh954vr8sYcMcYSuaLLwQvF8ARufVSk6PzQQWNDO7LLjrLqsIrrSDYB +faHLx9mIMF48rFqEl/AJ6nSTpIku/m/+sArZ29AXwdszY+rqDjihGmoqe4DBe4= -----END CERTIFICATE-----Generated at Wed Nov 5 09:27:31 2025 by rpki-client