$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/495f1428-b3f4-43ee-9193-d6417935077b.roa File: 495f1428-b3f4-43ee-9193-d6417935077b.roa (raw, json) Hash identifier: JcszSiqF/kpQzLV1WC354lCiFK2EA5tf9m+mM44fwHY= Subject key identifier: 63:A0:38:91:05:6A:B2:40:F3:BB:33:F5:D4:6E:84:22:18:12:58:AF Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 073F49509C5D4FA42340C686EC986B14D7C7B441 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/495f1428-b3f4-43ee-9193-d6417935077b.roa Signing time: Fri 31 Oct 2025 07:25:43 +0000 ROA not before: Fri 31 Oct 2025 07:25:43 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:32c0::/43 maxlen: 43 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:3f:49:50:9c:5d:4f:a4:23:40:c6:86:ec:98:6b:14:d7:c7:b4:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 07:25:43 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=f900f7bec6839729a19b26d61d12abc72def210d1d5032c5cc02e93617ea3eee, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:51:ac:36:05:20:a8:e3:51:de:f2:6d:7d:64: 41:62:cb:73:93:d0:01:ed:26:fc:b6:ee:5e:70:c3: bc:f4:82:c0:8f:6e:6e:d3:0c:65:76:6f:a7:2c:04: ac:64:81:ee:a8:ae:82:d6:9f:0a:49:89:5e:88:33: ae:db:30:86:d5:08:ee:7e:a6:c8:71:13:fb:50:aa: 28:3c:46:90:9e:5c:0a:82:f2:8b:61:a6:9b:ea:59: 4a:08:b3:26:32:79:3d:0f:e0:08:a0:e5:33:5a:e2: 3b:60:52:99:64:d7:28:ef:c5:4c:b4:7f:f1:24:b9: 53:97:fc:c1:6a:1c:37:c4:a2:e9:0e:9d:bf:a6:97: 7c:47:06:65:7a:fe:69:21:52:77:28:a3:e5:8d:73: af:85:c0:2b:88:5f:8c:91:bb:3d:2f:29:28:bd:a9: 8b:07:84:dd:3b:ab:be:c9:77:b7:e9:91:58:fd:10: 84:f2:a7:b7:27:e2:ad:43:98:48:6e:0e:11:85:26: 2d:37:c3:41:63:c7:67:15:27:17:61:a1:40:30:12: 40:a4:b6:6f:78:a0:55:66:f8:fd:cc:a2:39:10:c8: 4c:cb:b9:0f:d0:12:b6:74:c5:3a:cb:f4:36:73:f1: 3f:2f:d5:ec:58:79:ae:84:c1:4c:6a:32:c0:8b:7d: 89:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:A0:38:91:05:6A:B2:40:F3:BB:33:F5:D4:6E:84:22:18:12:58:AF X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/495f1428-b3f4-43ee-9193-d6417935077b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:32c0::/43 Signature Algorithm: sha256WithRSAEncryption 57:cd:37:86:0c:9f:8c:ef:e3:eb:a6:bc:55:0c:fe:7c:63:ae: 21:d2:9a:f1:da:30:2e:63:29:62:93:b2:f2:71:11:0a:45:da: 04:0d:be:76:7e:ff:cc:3c:f6:69:65:3a:89:8e:7b:ad:40:1f: 89:34:b3:cd:d8:aa:a6:76:d1:25:c0:4c:c0:c5:5b:af:73:d0: fa:fe:a9:95:6c:b0:85:ce:5d:64:19:4a:a1:d3:9d:24:52:fd: c7:72:6d:9a:af:04:e9:f2:97:f7:80:0b:3f:06:fe:ed:21:5f: ac:e8:78:9f:66:52:9f:6e:1f:bb:89:11:da:71:47:70:b0:88: fd:c2:b2:ed:26:f4:0a:16:f7:53:e8:54:5f:ed:a5:70:e4:f8: 79:02:1b:23:cd:62:e5:51:64:92:99:e0:b9:6a:48:f2:5b:23: 38:35:22:8e:9c:0f:a5:20:49:75:94:67:1e:c2:36:60:f4:b6: 41:e0:b8:af:de:bf:cb:79:f4:6d:04:bd:db:07:58:34:cd:6c: 35:b7:16:8d:04:8f:ed:90:f8:5d:d6:5a:a7:30:8a:ab:a8:ca: fd:80:bd:7f:32:de:35:14:ed:a3:23:4a:42:97:f2:2b:40:e0: 69:7c:99:85:03:d7:e9:a3:53:61:47:16:1e:23:f8:35:8f:9e: e1:c0:1d:f4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBz9JUJxdT6QjQMaG7JhrFNfHtEEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDcyNTQzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmOTAwZjdiZWM2ODM5NzI5YTE5YjI2ZDYxZDEyYWJjNzJk ZWYyMTBkMWQ1MDMyYzVjYzAyZTkzNjE3ZWEzZWVlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1Uaw2BSCo41He8m19ZEFiy3OT0AHtJvy27l5ww7z0gsCP bm7TDGV2b6csBKxkge6oroLWnwpJiV6IM67bMIbVCO5+pshxE/tQqig8RpCeXAqC 8othppvqWUoIsyYyeT0P4Aig5TNa4jtgUplk1yjvxUy0f/EkuVOX/MFqHDfEoukO nb+ml3xHBmV6/mkhUncoo+WNc6+FwCuIX4yRuz0vKSi9qYsHhN07q77Jd7fpkVj9 EITyp7cn4q1DmEhuDhGFJi03w0Fjx2cVJxdhoUAwEkCktm94oFVm+P3MojkQyEzL uQ/QErZ0xTrL9DZz8T8v1exYea6EwUxqMsCLfYlLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUY6A4kQVqskDzuzP11G6EIhgSWK8wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzQ5NWYxNDI4LWIzZjQtNDNlZS05MTkzLWQ2NDE3OTM1MDc3Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwUmAJAAMsAwDQYJKoZIhvcNAQELBQADggEBAFfNN4YMn4zv4+umvFUM/nxj riHSmvHaMC5jKWKTsvJxEQpF2gQNvnZ+/8w89mllOomOe61AH4k0s83YqqZ20SXA TMDFW69z0Pr+qZVssIXOXWQZSqHTnSRS/cdybZqvBOnyl/eACz8G/u0hX6zoeJ9m Up9uH7uJEdpxR3CwiP3Csu0m9AoW91PoVF/tpXDk+HkCGyPNYuVRZJKZ4LlqSPJb Izg1Io6cD6UgSXWUZx7CNmD0tkHguK/ev8t59G0EvdsHWDTNbDW3Fo0Ej+2Q+F3W Wqcwiquoyv2AvX8y3jUU7aMjSkKX8itA4Gl8mYUD1+mjU2FHFh4j+DWPnuHAHfQ= -----END CERTIFICATE-----Generated at Wed Nov 5 05:38:42 2025 by rpki-client