$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4f1e8651-0337-4aee-b90b-bdc685007de9.roa File: 4f1e8651-0337-4aee-b90b-bdc685007de9.roa (raw, json) Hash identifier: 1ehVStogSZZbHPhpQBbJKTJBe/WePlHbYJbt0tchahk= Subject key identifier: 7C:86:50:39:E4:A9:C5:A1:C8:DF:61:0C:78:36:3B:D3:6D:9C:F3:C7 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 76750FBEB715443681920AA99D19C034DF5389 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4f1e8651-0337-4aee-b90b-bdc685007de9.roa Signing time: Thu 30 Oct 2025 22:27:06 +0000 ROA not before: Thu 30 Oct 2025 22:27:06 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1d40::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:75:0f:be:b7:15:44:36:81:92:0a:a9:9d:19:c0:34:df:53:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 22:27:06 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=c80cc935b82cb2e19ff85ae8814fc3824aae1336dc953a2ec2245e41b4e28393, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d4:4d:fb:16:fb:e9:1c:47:58:cc:8d:04:a7: 63:f5:9d:a5:d3:6d:8f:20:20:9c:05:fc:0f:1b:5f: fb:5c:c7:67:f8:08:12:b3:55:2b:d7:31:0c:d1:d1: 14:4e:8a:62:64:22:25:02:0a:df:4f:37:26:2b:a4: d2:6a:fd:f0:ad:5c:62:d9:98:a8:4c:d2:ef:ef:6d: d3:e3:55:98:a3:74:d4:e1:d4:9b:d0:50:54:3d:31: da:e9:db:1e:b0:48:51:de:f6:12:bc:02:e5:f6:8f: fe:27:67:8a:49:40:54:42:c9:10:30:d7:c3:75:e8: 42:4b:a8:ad:7c:a8:2b:01:85:26:49:b5:c0:89:f6: c4:1b:dd:88:78:47:81:d9:fa:0b:f3:76:21:ab:72: 34:bf:ee:81:12:e5:c0:c2:ab:fe:2c:a4:fb:a2:f0: 4e:a0:e6:4a:3a:71:41:d6:be:72:85:83:b4:c4:64: 50:fa:f6:1d:aa:f6:33:92:a4:6f:28:88:d7:f2:fd: 2e:c3:aa:97:54:6f:bf:a7:22:69:41:ff:05:a6:70: 86:1a:48:09:16:f6:9d:64:7e:0c:57:dc:e2:ae:f9: ae:56:08:bd:a4:bf:15:1b:01:00:33:77:1c:62:36: d5:21:a4:c9:14:0d:41:ad:ea:6e:a9:37:98:ea:36: 4d:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:86:50:39:E4:A9:C5:A1:C8:DF:61:0C:78:36:3B:D3:6D:9C:F3:C7 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4f1e8651-0337-4aee-b90b-bdc685007de9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1d40::/47 Signature Algorithm: sha256WithRSAEncryption 25:52:25:b6:34:e1:db:a1:06:0c:d5:4c:27:cd:1c:b0:96:a6: 43:bc:a9:0a:d9:ec:e5:09:83:1a:0b:08:b7:3d:45:91:34:0e: 40:1f:fa:c9:9d:5c:0d:b5:c2:5e:5e:70:6e:0b:d1:ce:9c:dd: ed:26:2c:eb:f5:a2:58:b4:53:01:8c:f9:41:b3:ce:2b:63:78: 28:2a:de:be:5b:27:85:6f:ae:b6:5a:ee:bd:6f:78:e5:0b:38: 7e:a4:49:2a:f3:9b:9b:13:d9:df:0e:6d:82:c6:44:95:22:55: cd:19:3b:62:0c:05:b9:d0:44:09:28:d2:7e:7d:fc:77:e2:5e: 5f:23:34:15:82:be:55:f9:91:33:74:6b:8d:81:7d:1b:e7:e7: 28:ff:6b:52:40:f2:78:de:5b:5b:5d:93:e3:b2:5d:2b:e6:df: 20:64:19:d8:9b:35:e9:1a:c3:c7:74:23:01:5c:9a:8e:57:75: 25:d5:ae:c6:29:0a:9b:69:9f:5e:93:fd:ea:04:f4:9a:50:5b: 54:dd:6b:44:d5:7e:66:2d:8e:ab:5d:a7:08:c0:11:62:ae:07: 0f:11:6d:f8:e7:a4:e2:33:67:d3:c2:af:c4:52:b9:82:83:50: 60:8e:21:03:46:d2:f8:ba:03:b3:6e:ee:17:df:73:17:25:0e: c5:72:fa:a8 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgITdnUPvrcVRDaBkgqpnRnANN9TiTANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI1NTEyMDkwMjdmNWU3YWQ1NGUwNGYwNDJlNGFjMGU5ZTY1 YzU2ZTU1Yzc3NDc4ZDJjZTAeFw0yNTEwMzAyMjI3MDZaFw0yNTEyMDQyMzU5NTla MHoxSTBHBgNVBAUTQGM4MGNjOTM1YjgyY2IyZTE5ZmY4NWFlODgxNGZjMzgyNGFh ZTEzMzZkYzk1M2EyZWMyMjQ1ZTQxYjRlMjgzOTMxLTArBgNVBAMTJDlmMjMwZmE5 LWFhMmYtNDAyMC1hZTJhLTFhNjAzNzQwODRiODCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAKbUTfsW++kcR1jMjQSnY/WdpdNtjyAgnAX8Dxtf+1zHZ/gI ErNVK9cxDNHRFE6KYmQiJQIK3083Jiuk0mr98K1cYtmYqEzS7+9t0+NVmKN01OHU m9BQVD0x2unbHrBIUd72ErwC5faP/idniklAVELJEDDXw3XoQkuorXyoKwGFJkm1 wIn2xBvdiHhHgdn6C/N2IatyNL/ugRLlwMKr/iyk+6LwTqDmSjpxQda+coWDtMRk UPr2Har2M5KkbyiI1/L9LsOql1Rvv6ciaUH/BaZwhhpICRb2nWR+DFfc4q75rlYI vaS/FRsBADN3HGI21SGkyRQNQa3qbqk3mOo2TWsCAwEAAaOCArQwggKwMB0GA1Ud DgQWBBR8hlA55KnFocjfYQx4NjvTbZzzxzAfBgNVHSMEGDAWgBTo88Ug4g7yXTq3 oha7FAQxajc48TAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv ZjYwYzlmMzItYTg3Yy00MzM5LWEyZjMtNjI5OWEzYjAyZTI5Lzk5ZjhmZWQyLTI5 MmItNDcyMi1iOTI4LWZlZTdiZjBhNTkxMC81NTEyMDkwMjdmNWU3YWQ1NGUwNGYw NDJlNGFjMGU5ZTY1YzU2ZTU1Yzc3NDc4ZDJjZS5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9lNzUxOGFmNS1hMzQzLTQyOGQtYmY3OC1mOTgy YjZlNjA1MDUvNGYxZTg2NTEtMDMzNy00YWVlLWI5MGItYmRjNjg1MDA3ZGU5LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgt Zjk4MmI2ZTYwNTA1L1huclZUZ1R3UXVTc0RwNWx4VzVWeDNSNDBzNC5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHASYAkAAdQDANBgkqhkiG9w0BAQsFAAOCAQEAJVIltjTh26EGDNVMJ80csJam Q7ypCtns5QmDGgsItz1FkTQOQB/6yZ1cDbXCXl5wbgvRzpzd7SYs6/WiWLRTAYz5 QbPOK2N4KCrevlsnhW+utlruvW945Qs4fqRJKvObmxPZ3w5tgsZElSJVzRk7YgwF udBECSjSfn38d+JeXyM0FYK+VfmRM3RrjYF9G+fnKP9rUkDyeN5bW12T47JdK+bf IGQZ2Js16RrDx3QjAVyajld1JdWuxikKm2mfXpP96gT0mlBbVN1rRNV+Zi2Oq12n CMARYq4HDxFt+Oek4jNn08KvxFK5goNQYI4hA0bS+LoDs27uF99zFyUOxXL6qA== -----END CERTIFICATE-----Generated at Wed Nov 5 05:36:14 2025 by rpki-client