$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4f9afd12-d2da-4856-9d34-83968f928a24.roa File: 4f9afd12-d2da-4856-9d34-83968f928a24.roa (raw, json) Hash identifier: CqWGEJd/qFx5XMTDZ+nF6/HhksGfJLcALBV1Y3Q65xw= Subject key identifier: 5D:EC:2B:BB:F2:03:6D:A3:CE:8E:D0:AB:9F:B0:47:E5:26:85:BB:B7 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4862562A28C69F83D1E513D9F85E39140324EF5D Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4f9afd12-d2da-4856-9d34-83968f928a24.roa Signing time: Thu 30 Oct 2025 23:29:03 +0000 ROA not before: Thu 30 Oct 2025 23:29:03 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2dd0::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:62:56:2a:28:c6:9f:83:d1:e5:13:d9:f8:5e:39:14:03:24:ef:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 23:29:03 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=71a35652278002a4ddb285feecfeae0dd5bce9263ef611652b20a8870e8b1b26, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:59:14:b9:ed:71:b0:59:bf:5d:f8:74:95:a6: 23:30:4d:72:ca:51:1d:fa:76:7a:93:1f:fd:86:32: 25:a6:12:e4:97:3d:7a:e6:a2:60:df:56:43:d1:16: f9:92:e0:7d:f9:a0:b5:43:fa:22:c5:4c:f9:87:4b: ff:e9:9a:5b:4e:94:c3:03:11:ca:5e:2f:8b:2a:85: bf:c4:ad:37:d5:f6:3b:33:a4:f7:55:ae:bf:88:05: 34:c9:36:5b:3c:44:ba:8a:d0:46:ae:db:75:c4:09: 2f:b9:75:0c:f2:be:da:59:21:7a:ea:e7:3d:a5:95: c0:26:96:60:9c:7a:77:a4:7d:57:c2:df:09:0c:b5: 89:ad:a4:54:94:06:6c:15:47:b4:7d:03:b9:11:dc: 56:e0:9c:5f:4f:b7:42:3a:34:e0:c0:7f:05:95:76: 32:9a:4a:e1:83:6b:22:d2:9e:4c:4c:6f:74:be:fb: 45:e7:e4:51:bf:fb:35:d6:ce:c8:01:0a:9c:c8:db: 3b:62:15:67:3a:ca:1f:a8:6e:51:04:3b:a3:90:d8: be:7b:cf:28:eb:a0:3f:79:8c:03:31:a5:d6:74:8e: f9:c4:e6:39:fd:b1:c7:3e:50:8c:46:e8:72:0c:20: 54:08:0f:33:e9:00:e8:4f:23:3f:c7:ac:4c:b1:49: f0:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:EC:2B:BB:F2:03:6D:A3:CE:8E:D0:AB:9F:B0:47:E5:26:85:BB:B7 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4f9afd12-d2da-4856-9d34-83968f928a24.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2dd0::/47 Signature Algorithm: sha256WithRSAEncryption 2d:a6:20:8c:49:70:63:5d:af:38:07:f6:a6:01:2d:53:ce:7e: 68:3f:f6:2a:26:d5:a7:37:3c:a8:e5:06:8c:09:f2:75:fd:43: 95:e8:11:77:d2:24:d7:54:63:d7:8e:80:75:24:2b:7a:8a:16: a6:0e:3f:67:12:aa:4f:be:dd:98:81:b8:d7:18:4c:8d:83:5a: e4:12:05:fb:8c:37:eb:72:a1:22:31:a1:d5:d7:b8:18:bc:5b: 06:80:71:c3:f4:4c:4e:f6:21:af:aa:47:dd:62:24:b7:44:74: 82:44:8b:4b:c7:dd:1d:7c:71:1b:36:82:a0:e6:19:97:52:4d: d7:8e:1d:0d:aa:19:32:e2:c7:b4:7b:7f:8c:33:39:75:6f:d3: d7:80:a3:ca:99:07:bc:e8:ef:bf:25:a6:a9:f7:c9:00:ee:79: 33:55:07:ff:1d:ae:fd:09:b2:f1:4f:ee:50:86:d9:7d:34:27: 28:a6:c9:bd:34:68:fd:4c:ad:10:be:37:45:c1:3f:12:d8:7f: 2e:e8:ca:26:3f:ef:91:e7:cf:49:60:31:15:d5:1f:bc:75:71: 01:77:fe:d6:60:01:1b:2a:24:02:2c:b9:67:82:06:48:92:79: c3:b3:c3:f2:f0:6a:dd:58:35:37:a0:87:64:36:fd:76:0d:0b: 57:62:ec:d4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSGJWKijGn4PR5RPZ+F45FAMk710wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjMyOTAzWhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MWEzNTY1MjI3ODAwMmE0ZGRiMjg1ZmVlY2ZlYWUwZGQ1 YmNlOTI2M2VmNjExNjUyYjIwYTg4NzBlOGIxYjI2MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChWRS57XGwWb9d+HSVpiMwTXLKUR36dnqTH/2GMiWmEuSX PXrmomDfVkPRFvmS4H35oLVD+iLFTPmHS//pmltOlMMDEcpeL4sqhb/ErTfV9jsz pPdVrr+IBTTJNls8RLqK0Eau23XECS+5dQzyvtpZIXrq5z2llcAmlmCcenekfVfC 3wkMtYmtpFSUBmwVR7R9A7kR3FbgnF9Pt0I6NODAfwWVdjKaSuGDayLSnkxMb3S+ +0Xn5FG/+zXWzsgBCpzI2ztiFWc6yh+oblEEO6OQ2L57zyjroD95jAMxpdZ0jvnE 5jn9scc+UIxG6HIMIFQIDzPpAOhPIz/HrEyxSfClAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUXewru/IDbaPOjtCrn7BH5SaFu7cwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzRmOWFmZDEyLWQyZGEtNDg1Ni05ZDM0LTgzOTY4ZjkyOGEyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAALdAwDQYJKoZIhvcNAQELBQADggEBAC2mIIxJcGNdrzgH9qYBLVPO fmg/9iom1ac3PKjlBowJ8nX9Q5XoEXfSJNdUY9eOgHUkK3qKFqYOP2cSqk++3ZiB uNcYTI2DWuQSBfuMN+tyoSIxodXXuBi8WwaAccP0TE72Ia+qR91iJLdEdIJEi0vH 3R18cRs2gqDmGZdSTdeOHQ2qGTLix7R7f4wzOXVv09eAo8qZB7zo778lpqn3yQDu eTNVB/8drv0JsvFP7lCG2X00Jyimyb00aP1MrRC+N0XBPxLYfy7oyiY/75Hnz0lg MRXVH7x1cQF3/tZgARsqJAIsuWeCBkiSecOzw/Lwat1YNTegh2Q2/XYNC1di7NQ= -----END CERTIFICATE-----Generated at Wed Nov 5 12:57:16 2025 by rpki-client