$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4c326b60-d787-4ca5-838a-4c82775592ab.roa File: 4c326b60-d787-4ca5-838a-4c82775592ab.roa (raw, json) Hash identifier: zCr/kVZ0o0BcBrNHDBX1yN9TS8QC9OYLO8NjpnfnmRo= Subject key identifier: DA:F3:0F:3F:41:8B:73:1D:72:49:A2:85:26:CE:ED:C2:EA:1E:28:30 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 25696F66432D7287D5DD838F8346CBA0266BEFA0 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4c326b60-d787-4ca5-838a-4c82775592ab.roa Signing time: Fri 31 Oct 2025 01:13:07 +0000 ROA not before: Fri 31 Oct 2025 01:13:07 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3a66::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:69:6f:66:43:2d:72:87:d5:dd:83:8f:83:46:cb:a0:26:6b:ef:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 01:13:07 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=0d1c8b7c0cf4fc0e70aee771d9caceec05eb6c2ac46dc3d3555379a8d334f40e, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b0:cc:cf:c0:e9:83:1a:ea:8f:81:59:8b:6a: d6:4a:32:42:22:9e:68:a6:e6:2c:1b:dc:13:a9:9b: 8b:df:aa:12:87:8f:b6:da:73:d5:db:3b:15:78:38: eb:8c:7e:d7:0d:c0:73:cc:41:b2:12:2c:0e:1d:01: f1:4a:95:a5:70:49:e9:60:3c:b0:8c:a9:75:a8:69: c2:a7:cb:dc:d1:88:52:ef:4d:46:1d:e4:e1:d5:c7: 12:d8:8e:74:e7:db:da:41:99:d8:a4:b2:51:51:52: e2:30:c1:a3:1e:4a:37:a3:19:81:b5:69:58:20:18: 43:79:1a:b6:90:91:b8:3a:ef:91:4f:82:54:92:fe: 2e:b4:1d:c4:06:38:2a:8b:3e:62:ae:ff:98:55:9f: 57:e6:08:04:e2:d7:9a:eb:d0:d0:28:ef:7e:7f:f2: d3:aa:a2:92:98:b8:10:4e:dd:72:14:2e:45:85:ed: 0e:a6:aa:2f:15:c5:6c:c9:0c:b5:8c:0c:49:0a:f4: dd:66:a2:c1:10:f2:15:5a:52:e6:ca:53:da:0e:80: c8:dc:6b:69:bd:5b:d0:94:61:98:fe:b5:55:e4:27: b5:cb:ea:06:b3:50:e8:76:3a:59:84:57:63:50:3c: 4e:be:36:31:d9:b2:4c:b4:22:fe:13:2f:18:09:59: 4a:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:F3:0F:3F:41:8B:73:1D:72:49:A2:85:26:CE:ED:C2:EA:1E:28:30 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4c326b60-d787-4ca5-838a-4c82775592ab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3a66::/47 Signature Algorithm: sha256WithRSAEncryption 9f:38:e0:e1:ad:0d:84:fd:64:a2:43:2c:6e:e7:ca:0f:62:26: 4e:5b:2b:24:56:f6:59:61:fb:61:5c:13:c4:01:ec:f1:a8:dc: c7:6a:3e:8a:5e:d9:6d:8b:9d:23:54:9d:10:05:12:bf:e8:18: ad:4a:e4:80:c0:c8:62:78:3e:a0:42:f5:8d:82:a0:fb:c2:42: d2:eb:2b:21:6b:88:ab:51:51:27:0d:d7:40:55:05:90:9b:9e: 1b:28:31:18:5c:95:c2:c7:f7:bf:17:62:8e:47:f8:d7:71:a5: 53:d0:92:24:32:5e:23:e5:15:a1:85:c6:2a:18:44:cb:36:50: ec:70:8b:56:42:09:f8:77:93:d5:25:a0:2b:45:8c:df:30:3f: 80:19:13:52:8b:93:8b:d6:6e:48:32:14:20:6b:3a:8f:e9:5e: 11:f1:9d:4d:30:37:9d:3c:1e:21:27:40:52:e8:00:c9:6d:0b: b2:7d:d9:fa:ba:79:8a:11:9d:14:d6:1e:42:98:0b:35:62:e8: 18:3c:2e:20:b6:e8:b0:a9:df:d4:93:69:91:7f:a9:15:12:de: 3e:18:99:00:ff:d5:01:cb:0c:ab:a0:91:db:07:d2:41:7f:05: fb:1d:64:db:19:25:7b:bc:8c:8e:4d:0e:87:29:8e:e1:04:85: 5e:83:7e:9e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJWlvZkMtcofV3YOPg0bLoCZr76AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDExMzA3WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZDFjOGI3YzBjZjRmYzBlNzBhZWU3NzFkOWNhY2VlYzA1 ZWI2YzJhYzQ2ZGMzZDM1NTUzNzlhOGQzMzRmNDBlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvsMzPwOmDGuqPgVmLatZKMkIinmim5iwb3BOpm4vfqhKH j7bac9XbOxV4OOuMftcNwHPMQbISLA4dAfFKlaVwSelgPLCMqXWoacKny9zRiFLv TUYd5OHVxxLYjnTn29pBmdikslFRUuIwwaMeSjejGYG1aVggGEN5GraQkbg675FP glSS/i60HcQGOCqLPmKu/5hVn1fmCATi15rr0NAo735/8tOqopKYuBBO3XIULkWF 7Q6mqi8VxWzJDLWMDEkK9N1mosEQ8hVaUubKU9oOgMjca2m9W9CUYZj+tVXkJ7XL 6gazUOh2OlmEV2NQPE6+NjHZsky0Iv4TLxgJWUoDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2vMPP0GLcx1ySaKFJs7twuoeKDAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzRjMzI2YjYwLWQ3ODctNGNhNS04MzhhLTRjODI3NzU1OTJhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOmYwDQYJKoZIhvcNAQELBQADggEBAJ844OGtDYT9ZKJDLG7nyg9i Jk5bKyRW9llh+2FcE8QB7PGo3MdqPope2W2LnSNUnRAFEr/oGK1K5IDAyGJ4PqBC 9Y2CoPvCQtLrKyFriKtRUScN10BVBZCbnhsoMRhclcLH978XYo5H+NdxpVPQkiQy XiPlFaGFxioYRMs2UOxwi1ZCCfh3k9UloCtFjN8wP4AZE1KLk4vWbkgyFCBrOo/p XhHxnU0wN508HiEnQFLoAMltC7J92fq6eYoRnRTWHkKYCzVi6Bg8LiC26LCp39ST aZF/qRUS3j4YmQD/1QHLDKugkdsH0kF/BfsdZNsZJXu8jI5NDocpjuEEhV6Dfp4= -----END CERTIFICATE-----Generated at Wed Nov 5 09:28:01 2025 by rpki-client