$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4406d065-cc1a-4ae8-a860-3a0481d554af.roa File: 4406d065-cc1a-4ae8-a860-3a0481d554af.roa (raw, json) Hash identifier: gGeipv72y+QNy9OL4k5X/57yObp7YbBWrN1yqpanSvU= Subject key identifier: DD:56:03:19:30:6F:39:39:A3:EE:30:99:E4:9E:CC:A6:AB:7E:AE:E2 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2D3610A229F6C5E7A432E34835AFAF2088AF82AA Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4406d065-cc1a-4ae8-a860-3a0481d554af.roa Signing time: Fri 31 Oct 2025 00:12:13 +0000 ROA not before: Fri 31 Oct 2025 00:12:13 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:33f2::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:36:10:a2:29:f6:c5:e7:a4:32:e3:48:35:af:af:20:88:af:82:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 00:12:13 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=db4c74c40dba2fb90f8ca113fb981331d6c60fce4b0bd8f6f53f961284d1d9ce, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:07:73:56:02:af:32:53:d5:7c:42:40:c1:a6: ab:db:41:75:b8:84:5b:ed:27:29:0e:f8:3d:ed:de: 4b:11:91:68:d4:15:6f:68:03:74:27:48:18:da:8a: 59:10:f6:ba:8d:7e:5a:e2:8a:c1:41:00:8d:d1:38: 08:08:2c:84:44:4a:c1:3b:69:33:26:13:e0:fa:e7: 25:19:27:19:6c:57:0a:c4:a2:2b:0a:45:7d:d7:d5: 5e:29:fe:72:e4:02:2e:f8:a2:c4:3f:e1:18:ab:1a: 0d:02:9d:2d:15:53:14:f2:bf:02:89:dd:bb:9d:8c: 13:fa:d6:b5:80:26:4e:5c:d6:b1:c6:b7:4c:e5:8e: 44:35:ea:4e:82:6c:6c:87:8b:a6:1a:05:80:8c:05: ad:14:e8:35:fe:cb:c7:d5:1a:87:88:ee:10:02:a2: d1:d3:2a:17:c5:89:74:8f:0d:7e:c6:de:0c:0d:8a: 23:67:12:56:a7:5b:c4:0d:eb:bf:49:99:ce:ea:86: fc:d3:bb:35:73:70:54:00:5b:55:93:75:8a:6d:54: 09:f3:bf:b1:e2:29:24:14:47:3c:8e:55:8a:87:7c: d3:47:4b:dd:d3:f5:61:5c:da:ab:3d:1a:cf:e9:90: 28:97:53:6b:cd:53:67:a0:6c:71:ed:e2:15:47:f4: c4:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:56:03:19:30:6F:39:39:A3:EE:30:99:E4:9E:CC:A6:AB:7E:AE:E2 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4406d065-cc1a-4ae8-a860-3a0481d554af.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:33f2::/47 Signature Algorithm: sha256WithRSAEncryption 88:a9:37:4e:ce:17:80:b8:4e:92:2b:13:e1:56:ba:91:01:43: ac:17:bd:17:69:6c:61:19:f0:d5:5c:10:74:f1:84:b3:c2:12: 3f:5f:23:eb:f7:0a:00:49:8c:23:43:14:c6:b9:62:ab:d8:12: a2:71:28:10:47:2a:ca:d1:e3:9f:d4:6c:30:3d:36:ce:25:0f: 64:ba:03:85:81:d0:a9:f5:63:95:63:b7:2b:86:3f:5a:84:75: d0:7e:ac:d5:f9:02:fe:6c:4c:aa:5f:ef:e6:71:8a:7b:5f:55: 1f:b9:88:f4:ae:ed:7e:a0:7c:1c:e1:c8:b3:9a:ba:98:19:3c: 7d:01:88:db:de:82:5e:37:42:2a:f5:01:f3:71:87:ad:c4:19: 43:2c:38:17:f9:55:d2:6c:27:d6:c9:ed:a8:90:64:d0:6e:ef: 10:87:08:b4:ed:62:e5:f6:bf:58:8b:7f:3f:f0:e9:22:75:ca: e4:fa:68:d8:7a:a1:e4:15:c4:76:d4:a2:94:9a:e4:00:3b:e8: 7c:46:a4:7f:a2:3d:95:63:a6:7d:71:55:69:98:be:42:21:5f: fe:f4:5b:a3:42:00:37:aa:4f:ff:4b:92:2f:17:23:03:b5:8f: 8e:8e:71:c8:ec:ba:e1:68:48:e0:39:35:91:c1:ab:36:fc:bf: 71:53:06:d8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULTYQoin2xeekMuNINa+vIIivgqowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDAxMjEzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYjRjNzRjNDBkYmEyZmI5MGY4Y2ExMTNmYjk4MTMzMWQ2 YzYwZmNlNGIwYmQ4ZjZmNTNmOTYxMjg0ZDFkOWNlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoB3NWAq8yU9V8QkDBpqvbQXW4hFvtJykO+D3t3ksRkWjU FW9oA3QnSBjailkQ9rqNflriisFBAI3ROAgILIRESsE7aTMmE+D65yUZJxlsVwrE oisKRX3X1V4p/nLkAi74osQ/4RirGg0CnS0VUxTyvwKJ3budjBP61rWAJk5c1rHG t0zljkQ16k6CbGyHi6YaBYCMBa0U6DX+y8fVGoeI7hACotHTKhfFiXSPDX7G3gwN iiNnElanW8QN679Jmc7qhvzTuzVzcFQAW1WTdYptVAnzv7HiKSQURzyOVYqHfNNH S93T9WFc2qs9Gs/pkCiXU2vNU2egbHHt4hVH9MQdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3VYDGTBvOTmj7jCZ5J7Mpqt+ruIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzQ0MDZkMDY1LWNjMWEtNGFlOC1hODYwLTNhMDQ4MWQ1NTRhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAM/IwDQYJKoZIhvcNAQELBQADggEBAIipN07OF4C4TpIrE+FWupEB Q6wXvRdpbGEZ8NVcEHTxhLPCEj9fI+v3CgBJjCNDFMa5YqvYEqJxKBBHKsrR45/U bDA9Ns4lD2S6A4WB0Kn1Y5VjtyuGP1qEddB+rNX5Av5sTKpf7+ZxintfVR+5iPSu 7X6gfBzhyLOaupgZPH0BiNvegl43Qir1AfNxh63EGUMsOBf5VdJsJ9bJ7aiQZNBu 7xCHCLTtYuX2v1iLfz/w6SJ1yuT6aNh6oeQVxHbUopSa5AA76HxGpH+iPZVjpn1x VWmYvkIhX/70W6NCADeqT/9Lki8XIwO1j46OccjsuuFoSOA5NZHBqzb8v3FTBtg= -----END CERTIFICATE-----Generated at Wed Nov 5 07:40:44 2025 by rpki-client