$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4d68730c-374b-4387-80be-2cb5245c6f47.roa File: 4d68730c-374b-4387-80be-2cb5245c6f47.roa (raw, json) Hash identifier: qDpRli1+6M4QDHfQaMT8W5anwR3qPzl050fsqkmZERY= Subject key identifier: 1D:09:B2:2B:6C:33:5A:F3:D7:3A:61:33:21:20:55:01:2A:FB:94:B7 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 7553C4A8549F7C360BA20FF4BC690E5E9E5B62B4 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4d68730c-374b-4387-80be-2cb5245c6f47.roa Signing time: Fri 31 Oct 2025 03:23:32 +0000 ROA not before: Fri 31 Oct 2025 03:23:32 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2690::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:53:c4:a8:54:9f:7c:36:0b:a2:0f:f4:bc:69:0e:5e:9e:5b:62:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 03:23:32 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=b13d4d3ebb2775141dc37ad5569af36562b651e9b6fb5c4b9d7c95c89dc56370, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:23:b2:bd:1d:5f:22:40:62:cb:3e:26:d0:f2: 18:52:32:30:42:66:31:c9:9e:90:ab:f8:04:9d:c6: c2:f6:57:e1:8e:a9:02:18:e8:6c:46:28:5b:78:e3: 48:76:56:81:da:b9:7a:61:c6:be:4a:58:61:cf:8b: 76:b0:4b:12:d5:3c:88:e8:61:66:9e:4d:ca:61:2e: 33:8f:a9:61:cb:59:94:71:cb:81:94:67:29:d5:fc: 4f:21:ba:54:c2:37:1f:b7:f1:22:97:98:67:df:43: 9c:54:37:d1:8c:ef:e2:80:c4:c2:de:cc:9e:fd:c6: 0b:3f:94:da:41:14:8d:c2:36:58:fc:c4:62:69:42: e4:22:03:2c:8b:79:9a:44:82:fb:db:0b:b2:32:cd: 28:46:b5:43:98:f4:52:fd:3b:26:20:ce:1e:a3:e8: 47:fb:36:9f:5e:9b:05:e6:0a:1f:d4:9c:d5:57:97: 73:43:f4:39:bd:5d:56:8d:fc:3b:29:b0:86:dc:15: bf:2a:05:6e:34:34:92:1e:89:3b:b9:f4:a3:61:ac: 2f:bd:14:28:e9:b7:2c:b0:39:89:5c:da:f4:63:16: b3:20:88:38:12:68:ef:bf:20:f2:df:b2:17:94:23: 69:a0:9c:8d:a6:d0:42:38:86:87:76:12:47:a2:08: 82:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:09:B2:2B:6C:33:5A:F3:D7:3A:61:33:21:20:55:01:2A:FB:94:B7 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4d68730c-374b-4387-80be-2cb5245c6f47.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2690::/46 Signature Algorithm: sha256WithRSAEncryption ac:ae:7b:9c:53:d8:e4:8d:0a:20:e7:c4:0e:05:c8:3b:1f:3e: 6b:0f:ff:5a:81:64:ca:a4:16:3e:52:17:61:6c:20:70:18:35: 21:25:af:3d:8a:09:80:5e:62:7d:27:0e:fa:a3:a6:2b:d5:a7: fe:0b:3a:d8:7e:57:88:fa:3d:70:f7:55:fd:f7:47:f9:ab:92: a1:73:21:6c:1b:eb:6b:5c:45:10:b7:9c:82:00:d0:3c:ef:b8: 2a:05:da:0a:d3:da:0c:95:7f:c2:0a:7e:1d:9e:7f:f4:03:88: 5e:e3:1c:fa:a3:b5:84:be:d4:80:61:78:c2:46:67:67:3c:e5: 8f:75:f3:d3:46:43:cb:82:f2:99:f8:d1:84:51:22:2d:8f:dd: fd:39:5f:a8:8b:44:64:34:88:97:d8:fb:68:45:a2:d4:ad:a4: 9a:e7:5c:79:ca:2a:64:2d:25:9f:e4:b2:3d:45:74:dc:04:4d: 72:fa:dc:fb:b9:3e:bc:28:60:4c:bc:05:f5:76:72:f3:88:ca: 5a:f6:df:63:74:cc:7b:6e:80:02:b1:aa:25:a0:65:54:1d:3a: 65:4e:6d:e4:ff:c8:93:21:85:35:aa:ce:fa:a8:b5:d7:88:a3: 39:6f:69:66:5e:9b:df:56:31:23:25:60:ee:05:df:1f:1d:be: 5e:de:71:6c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdVPEqFSffDYLog/0vGkOXp5bYrQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDMyMzMyWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTNkNGQzZWJiMjc3NTE0MWRjMzdhZDU1NjlhZjM2NTYy YjY1MWU5YjZmYjVjNGI5ZDdjOTVjODlkYzU2MzcwMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKI7K9HV8iQGLLPibQ8hhSMjBCZjHJnpCr+ASdxsL2V+GO qQIY6GxGKFt440h2VoHauXphxr5KWGHPi3awSxLVPIjoYWaeTcphLjOPqWHLWZRx y4GUZynV/E8hulTCNx+38SKXmGffQ5xUN9GM7+KAxMLezJ79xgs/lNpBFI3CNlj8 xGJpQuQiAyyLeZpEgvvbC7IyzShGtUOY9FL9OyYgzh6j6Ef7Np9emwXmCh/UnNVX l3ND9Dm9XVaN/DspsIbcFb8qBW40NJIeiTu59KNhrC+9FCjptyywOYlc2vRjFrMg iDgSaO+/IPLfsheUI2mgnI2m0EI4hod2EkeiCILnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUHQmyK2wzWvPXOmEzISBVASr7lLcwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzRkNjg3MzBjLTM3NGItNDM4Ny04MGJlLTJjYjUyNDVjNmY0Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAJpAwDQYJKoZIhvcNAQELBQADggEBAKyue5xT2OSNCiDnxA4FyDsf PmsP/1qBZMqkFj5SF2FsIHAYNSElrz2KCYBeYn0nDvqjpivVp/4LOth+V4j6PXD3 Vf33R/mrkqFzIWwb62tcRRC3nIIA0DzvuCoF2grT2gyVf8IKfh2ef/QDiF7jHPqj tYS+1IBheMJGZ2c85Y9189NGQ8uC8pn40YRRIi2P3f05X6iLRGQ0iJfY+2hFotSt pJrnXHnKKmQtJZ/ksj1FdNwETXL63Pu5PrwoYEy8BfV2cvOIylr232N0zHtugAKx qiWgZVQdOmVObeT/yJMhhTWqzvqotdeIozlvaWZem99WMSMlYO4F3x8dvl7ecWw= -----END CERTIFICATE-----Generated at Wed Nov 5 11:07:39 2025 by rpki-client