$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4250154e-6b6b-470a-bb26-8edecc898094.roa File: 4250154e-6b6b-470a-bb26-8edecc898094.roa (raw, json) Hash identifier: cjgd7SZk70sehx/wm8VQTBB6V3iIytjExi9bVqhHfnc= Subject key identifier: 47:6A:E2:D7:8E:DD:27:61:44:2E:E5:93:3F:08:7B:08:FB:58:A9:AA Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 7E05ADF121685B3769FA92AB222C27530709C861 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4250154e-6b6b-470a-bb26-8edecc898094.roa Signing time: Fri 31 Oct 2025 01:38:05 +0000 ROA not before: Fri 31 Oct 2025 01:38:05 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3c84::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:05:ad:f1:21:68:5b:37:69:fa:92:ab:22:2c:27:53:07:09:c8:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 01:38:05 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=629bd02d3fd9cadb37a2c3f56be92739939d6c7e6fef6bb91fb7dd3995e3443f, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ab:80:dd:81:a7:75:29:69:01:f5:dc:f7:50: aa:87:4f:98:92:6e:29:f1:d9:24:a1:06:cc:60:99: 50:c6:ed:60:11:99:7e:8e:76:be:69:f6:6e:cd:0d: 35:dc:20:e9:67:a6:bb:52:39:0c:0d:3d:cb:dd:0a: 4b:19:61:52:2b:a3:ac:8e:d3:b4:95:ca:86:05:d3: de:c2:e7:be:93:5a:ca:e7:f9:73:6c:05:49:ca:eb: 70:3b:99:b9:33:ac:c4:46:34:29:88:66:f8:5f:99: e8:e7:ee:5a:9b:c1:f2:4e:88:14:bd:c3:d1:30:49: 98:39:f7:54:f2:9b:1a:67:8f:bb:5e:86:97:66:9c: ca:46:0b:b6:66:5e:a9:de:db:79:f6:f8:62:88:56: a6:37:95:38:8a:89:18:74:72:cd:7e:4c:c8:30:fd: ab:d2:2c:56:73:e4:aa:c6:78:09:5e:2c:a8:93:24: 45:9a:13:dc:03:83:43:3c:99:39:fe:10:14:f7:40: d0:26:72:d7:f4:2c:46:49:5f:f2:5c:4a:73:c7:54: 65:be:25:4a:bb:66:2c:12:0d:05:b8:60:a5:74:dc: 61:40:5c:f6:c6:b5:e9:44:c1:e4:3e:67:dd:91:14: 5c:f0:ff:97:c2:ed:72:c9:fd:da:c0:02:ae:1d:14: a9:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:6A:E2:D7:8E:DD:27:61:44:2E:E5:93:3F:08:7B:08:FB:58:A9:AA X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4250154e-6b6b-470a-bb26-8edecc898094.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3c84::/47 Signature Algorithm: sha256WithRSAEncryption 38:cd:07:03:6e:e9:c6:cb:97:2a:d5:c1:fa:e3:f5:e7:02:0d: 40:6d:03:0b:fb:f6:b8:51:bc:e5:2f:cb:d9:30:5e:bb:84:ca: 3c:7f:c1:6d:79:0e:eb:e6:82:53:9a:da:67:b9:54:cc:ea:a9: 23:d2:5f:bf:40:34:65:b3:3e:d1:30:97:45:a4:6a:71:1b:03: d3:c4:c1:d0:50:12:90:7a:2c:e3:98:ce:ee:e5:d7:ca:c8:5d: fb:98:d0:47:71:e4:a6:70:bb:61:e2:54:73:a2:d9:cc:68:54: 12:93:db:a8:0f:69:ab:f4:7d:20:4c:41:5d:16:84:8a:1b:47: e2:7f:0a:d9:73:71:64:57:1e:b3:4f:aa:cf:39:4e:08:9f:7c: b1:0c:68:d1:ae:46:d6:05:97:b5:fd:32:4f:dc:e5:80:f3:b2: 2f:b7:21:ad:c4:5a:34:b6:1d:1d:86:2b:80:49:42:33:6e:d5: 53:44:91:95:a4:d8:37:fe:cb:7b:fd:5f:ae:d0:7c:66:45:3f: 59:d4:72:64:a1:57:95:ab:a7:5b:de:2f:a6:01:56:6c:a5:25: cd:ac:be:86:e3:f3:1b:b1:0b:6c:65:c3:26:d3:ca:77:ec:5c: 3f:77:15:12:12:33:79:40:f7:4d:e4:1f:70:0b:3b:cf:2f:6c: 78:cf:4b:7b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfgWt8SFoWzdp+pKrIiwnUwcJyGEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDEzODA1WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MjliZDAyZDNmZDljYWRiMzdhMmMzZjU2YmU5MjczOTkz OWQ2YzdlNmZlZjZiYjkxZmI3ZGQzOTk1ZTM0NDNmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1q4Ddgad1KWkB9dz3UKqHT5iSbinx2SShBsxgmVDG7WAR mX6Odr5p9m7NDTXcIOlnprtSOQwNPcvdCksZYVIro6yO07SVyoYF097C576TWsrn +XNsBUnK63A7mbkzrMRGNCmIZvhfmejn7lqbwfJOiBS9w9EwSZg591Tymxpnj7te hpdmnMpGC7ZmXqne23n2+GKIVqY3lTiKiRh0cs1+TMgw/avSLFZz5KrGeAleLKiT JEWaE9wDg0M8mTn+EBT3QNAmctf0LEZJX/JcSnPHVGW+JUq7ZiwSDQW4YKV03GFA XPbGtelEweQ+Z92RFFzw/5fC7XLJ/drAAq4dFKmPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUR2ri147dJ2FELuWTPwh7CPtYqaowHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzQyNTAxNTRlLTZiNmItNDcwYS1iYjI2LThlZGVjYzg5ODA5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAPIQwDQYJKoZIhvcNAQELBQADggEBADjNBwNu6cbLlyrVwfrj9ecC DUBtAwv79rhRvOUvy9kwXruEyjx/wW15DuvmglOa2me5VMzqqSPSX79ANGWzPtEw l0WkanEbA9PEwdBQEpB6LOOYzu7l18rIXfuY0Edx5KZwu2HiVHOi2cxoVBKT26gP aav0fSBMQV0WhIobR+J/CtlzcWRXHrNPqs85TgiffLEMaNGuRtYFl7X9Mk/c5YDz si+3Ia3EWjS2HR2GK4BJQjNu1VNEkZWk2Df+y3v9X67QfGZFP1nUcmShV5Wrp1ve L6YBVmylJc2svobj8xuxC2xlwybTynfsXD93FRISM3lA903kH3ALO88vbHjPS3s= -----END CERTIFICATE-----Generated at Wed Nov 5 09:25:31 2025 by rpki-client