$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/470405d8-1807-43a0-9860-deef62b50d3b.roa File: 470405d8-1807-43a0-9860-deef62b50d3b.roa (raw, json) Hash identifier: VHUV+97JU0mTorY4YIsAKhqbu8JLFzR2aMgX/sj/ED4= Subject key identifier: DF:BC:EE:38:E4:F9:11:69:06:E2:B3:38:6E:99:02:92:F8:57:DB:4B Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0AA8A7BD6FF06D0C9A0D479595114C9E472E28D6 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/470405d8-1807-43a0-9860-deef62b50d3b.roa Signing time: Thu 30 Oct 2025 22:59:01 +0000 ROA not before: Thu 30 Oct 2025 22:59:01 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2aa8::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:a8:a7:bd:6f:f0:6d:0c:9a:0d:47:95:95:11:4c:9e:47:2e:28:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 22:59:01 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=dedd4c8c66bc81454d974292fe9bc91b5a0470f8ae54e68d66ed149a14def883, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:7e:51:fb:af:24:77:72:1d:a2:59:53:f3:d0: 35:b2:7b:e2:26:21:1d:28:80:bd:d2:81:39:34:7d: bb:15:99:84:8e:d2:e0:29:99:29:8e:5f:bc:46:83: c7:03:63:6e:46:7d:ac:6a:ea:7e:30:ab:4b:00:a7: f7:eb:6d:87:0c:87:2a:c9:88:d1:fe:60:9a:53:eb: 57:9c:c2:ee:0b:5a:41:e5:c3:8c:04:84:00:14:d7: d1:37:9d:37:c4:cf:e1:c0:c0:90:b0:1a:f6:47:35: 03:c5:83:a1:7c:19:b7:59:de:49:04:49:3c:e4:77: 82:93:5f:90:3e:a2:35:13:fc:da:84:25:21:3f:d3: 9b:6d:7c:bf:86:db:26:97:21:fc:8a:64:66:22:fa: 00:2d:79:9b:bd:f6:cb:c7:64:c5:14:25:34:1d:11: fc:f9:e7:a9:2f:73:b1:bc:f4:99:aa:90:0c:1d:99: b4:72:6b:cc:8b:ca:d7:01:70:be:c7:37:50:e7:de: 4a:1a:7a:13:17:bb:e7:17:94:ae:68:25:82:e5:eb: 1a:2d:fb:c1:3a:fb:de:5e:92:5a:91:24:4a:79:11: 99:44:92:40:69:93:d3:3f:23:87:8d:33:4d:2f:84: 83:93:d2:6f:ed:e2:57:dc:43:4f:22:2d:8c:f3:e7: 12:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:BC:EE:38:E4:F9:11:69:06:E2:B3:38:6E:99:02:92:F8:57:DB:4B X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/470405d8-1807-43a0-9860-deef62b50d3b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2aa8::/47 Signature Algorithm: sha256WithRSAEncryption 6d:fd:0c:29:8b:f0:9a:b2:fa:10:b3:7a:14:95:ec:c5:94:34: 5e:54:b8:88:bd:7e:af:45:88:d1:de:23:27:76:56:03:5e:52: f1:9a:b2:fa:9a:65:32:e1:c8:12:f9:b1:75:30:44:dc:d4:95: e8:66:05:26:53:d0:fd:34:ab:98:06:4d:eb:ec:09:1f:0b:8f: ae:fe:fd:cd:eb:2e:21:eb:f6:2d:f1:5b:9d:f2:25:56:5d:96: 0e:65:a8:64:03:bc:83:a0:7e:22:ec:30:83:c9:46:b9:41:77: 47:1d:57:22:09:7f:cd:27:e3:11:b9:17:12:dc:7f:49:bd:dd: c0:cd:57:22:35:db:4e:16:74:c4:c2:4a:4b:0b:68:13:99:10: d3:3e:41:aa:a4:42:25:fa:d3:31:c2:f0:ca:02:b1:9c:bf:b3: 2f:db:b5:98:28:57:64:21:48:33:2d:a8:27:7f:51:05:2d:5e: b3:4c:13:5b:1e:ce:c8:3d:19:ef:fc:89:3e:28:f4:50:9a:ac: 2a:11:62:af:9b:45:e3:b7:db:cc:23:28:eb:4f:77:b3:4f:5e: ff:c7:23:1d:7f:80:ca:e8:6d:61:09:e1:06:c2:04:1a:0e:e2: c9:26:1b:fa:8a:b1:bc:6a:75:2b:5d:b0:8a:28:44:a2:43:22: d0:a5:c2:5f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCqinvW/wbQyaDUeVlRFMnkcuKNYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjI1OTAxWhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZWRkNGM4YzY2YmM4MTQ1NGQ5NzQyOTJmZTliYzkxYjVh MDQ3MGY4YWU1NGU2OGQ2NmVkMTQ5YTE0ZGVmODgzMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClflH7ryR3ch2iWVPz0DWye+ImIR0ogL3SgTk0fbsVmYSO 0uApmSmOX7xGg8cDY25Gfaxq6n4wq0sAp/frbYcMhyrJiNH+YJpT61ecwu4LWkHl w4wEhAAU19E3nTfEz+HAwJCwGvZHNQPFg6F8GbdZ3kkESTzkd4KTX5A+ojUT/NqE JSE/05ttfL+G2yaXIfyKZGYi+gAteZu99svHZMUUJTQdEfz556kvc7G89JmqkAwd mbRya8yLytcBcL7HN1Dn3koaehMXu+cXlK5oJYLl6xot+8E6+95eklqRJEp5EZlE kkBpk9M/I4eNM00vhIOT0m/t4lfcQ08iLYzz5xJ1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU37zuOOT5EWkG4rM4bpkCkvhX20swHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzQ3MDQwNWQ4LTE4MDctNDNhMC05ODYwLWRlZWY2MmI1MGQzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAKqgwDQYJKoZIhvcNAQELBQADggEBAG39DCmL8Jqy+hCzehSV7MWU NF5UuIi9fq9FiNHeIyd2VgNeUvGasvqaZTLhyBL5sXUwRNzUlehmBSZT0P00q5gG TevsCR8Lj67+/c3rLiHr9i3xW53yJVZdlg5lqGQDvIOgfiLsMIPJRrlBd0cdVyIJ f80n4xG5FxLcf0m93cDNVyI1204WdMTCSksLaBOZENM+QaqkQiX60zHC8MoCsZy/ sy/btZgoV2QhSDMtqCd/UQUtXrNME1sezsg9Ge/8iT4o9FCarCoRYq+bReO328wj KOtPd7NPXv/HIx1/gMrobWEJ4QbCBBoO4skmG/qKsbxqdStdsIooRKJDItClwl8= -----END CERTIFICATE-----Generated at Wed Nov 5 07:40:47 2025 by rpki-client