$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/494f9439-b8d2-417a-8a8c-38506b331c57.roa File: 494f9439-b8d2-417a-8a8c-38506b331c57.roa (raw, json) Hash identifier: 1Ic+OAfrgrjNZZg+EhQUi9g+9NC2KDzZjEYJyBe8umk= Subject key identifier: B8:7E:E1:F2:67:39:3D:68:36:10:DD:A1:A0:9E:14:21:EA:80:D1:CB Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4ABC7B00C4CA16E8AA225D2C82D509576DB069BD Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/494f9439-b8d2-417a-8a8c-38506b331c57.roa Signing time: Thu 30 Oct 2025 23:29:03 +0000 ROA not before: Thu 30 Oct 2025 23:29:03 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2dd2::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:bc:7b:00:c4:ca:16:e8:aa:22:5d:2c:82:d5:09:57:6d:b0:69:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 23:29:03 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=5cc8f0bf22e1180011a8c757bb21215485508bee4d00d656f29029f9307dcd88, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c2:60:e3:71:4f:c7:24:28:d6:c1:74:dc:64: cb:fd:8a:3f:20:95:22:98:b8:dc:0d:47:ce:d0:c3: 60:c8:55:e9:e9:fd:4f:14:a1:1a:70:ba:df:e7:3a: d6:a4:fe:8d:64:4f:8e:e3:53:dd:73:2e:1a:d1:51: 51:a9:ce:b1:e8:4a:0a:c3:22:e2:84:11:05:9d:b6: e2:bd:d5:9f:49:9a:c5:3d:8f:47:04:20:47:a7:59: b4:fc:c0:6e:16:08:f9:63:3b:a2:e0:1d:0a:cb:a9: 6a:8c:17:36:67:ee:09:3c:fd:5d:3d:e4:70:10:c1: f3:f5:08:4e:97:53:d2:77:64:cf:0a:bf:ee:bd:57: e6:7f:ad:5f:27:00:6b:8d:8e:3e:a5:e6:a5:d0:86: 14:d9:23:ab:02:c3:ee:66:cc:34:43:07:5c:ec:7c: da:12:12:6b:3f:ea:35:c9:ec:c0:5b:3b:a5:6d:9a: 82:3a:7f:01:9f:fb:43:f8:59:7d:e2:ee:21:39:f2: 6f:be:f6:1c:a1:38:0c:e0:3a:83:d7:d9:54:89:49: 2c:27:3c:53:b2:18:2e:68:93:7f:e0:d8:4a:13:e6: d1:b7:88:14:36:d8:e4:67:c2:e4:81:b1:4e:4c:47: 41:c9:d6:e0:3d:29:3d:3b:c4:b7:63:f0:38:a6:2a: 98:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:7E:E1:F2:67:39:3D:68:36:10:DD:A1:A0:9E:14:21:EA:80:D1:CB X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/494f9439-b8d2-417a-8a8c-38506b331c57.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2dd2::/47 Signature Algorithm: sha256WithRSAEncryption 4a:06:13:f7:18:ff:75:66:ec:76:e3:f3:0f:dd:e6:41:0a:44: ea:36:88:bd:c8:78:af:e9:00:7a:32:a6:d8:77:21:54:f0:d8: 35:d7:2b:42:3b:98:a1:ce:47:ec:c8:70:72:0c:35:ed:80:7a: 46:ce:46:2c:dc:fa:77:fb:44:6b:78:f8:96:4f:b4:1a:06:49: 92:c3:b8:65:40:04:7d:e5:00:2c:09:63:15:a3:46:46:63:4e: b1:ec:c0:21:39:bd:73:ea:f2:41:7f:e0:77:a0:dd:6d:c0:52: ad:05:3b:4d:19:58:53:17:7c:fe:6b:c5:d8:40:14:ef:7d:d3: d3:2a:d7:9c:31:31:5f:34:72:d0:fe:85:66:93:d7:d3:05:f5: 80:86:04:08:f5:6e:97:1f:4f:70:53:9b:f2:85:2f:20:02:77: 20:67:ec:f5:ef:92:b5:da:07:fe:03:c9:7f:53:ee:72:b8:98: 25:9d:8e:98:bf:e5:68:3b:9f:51:00:79:68:39:b2:17:35:30: a5:b5:b2:7c:a5:f3:d6:db:3b:59:02:51:5a:dc:4e:4d:1c:94: c3:cf:e3:8c:e6:d0:21:e9:09:ac:f6:be:47:cb:a8:3a:2e:59: f1:28:bd:5b:d8:7a:8f:7e:95:ef:5e:cb:32:f2:a5:48:32:50: f1:8d:d5:2b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSrx7AMTKFuiqIl0sgtUJV22wab0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjMyOTAzWhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1Y2M4ZjBiZjIyZTExODAwMTFhOGM3NTdiYjIxMjE1NDg1 NTA4YmVlNGQwMGQ2NTZmMjkwMjlmOTMwN2RjZDg4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvwmDjcU/HJCjWwXTcZMv9ij8glSKYuNwNR87Qw2DIVenp /U8UoRpwut/nOtak/o1kT47jU91zLhrRUVGpzrHoSgrDIuKEEQWdtuK91Z9JmsU9 j0cEIEenWbT8wG4WCPljO6LgHQrLqWqMFzZn7gk8/V095HAQwfP1CE6XU9J3ZM8K v+69V+Z/rV8nAGuNjj6l5qXQhhTZI6sCw+5mzDRDB1zsfNoSEms/6jXJ7MBbO6Vt moI6fwGf+0P4WX3i7iE58m++9hyhOAzgOoPX2VSJSSwnPFOyGC5ok3/g2EoT5tG3 iBQ22ORnwuSBsU5MR0HJ1uA9KT07xLdj8DimKphjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUuH7h8mc5PWg2EN2hoJ4UIeqA0cswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzQ5NGY5NDM5LWI4ZDItNDE3YS04YThjLTM4NTA2YjMzMWM1Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAALdIwDQYJKoZIhvcNAQELBQADggEBAEoGE/cY/3Vm7Hbj8w/d5kEK ROo2iL3IeK/pAHoypth3IVTw2DXXK0I7mKHOR+zIcHIMNe2AekbORizc+nf7RGt4 +JZPtBoGSZLDuGVABH3lACwJYxWjRkZjTrHswCE5vXPq8kF/4Heg3W3AUq0FO00Z WFMXfP5rxdhAFO9909Mq15wxMV80ctD+hWaT19MF9YCGBAj1bpcfT3BTm/KFLyAC dyBn7PXvkrXaB/4DyX9T7nK4mCWdjpi/5Wg7n1EAeWg5shc1MKW1snyl89bbO1kC UVrcTk0clMPP44zm0CHpCaz2vkfLqDouWfEovVvYeo9+le9eyzLypUgyUPGN1Ss= -----END CERTIFICATE-----Generated at Wed Nov 5 12:57:08 2025 by rpki-client