$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/50de175a-ac40-4e74-addd-5b4da2e67b22.roa File: 50de175a-ac40-4e74-addd-5b4da2e67b22.roa (raw, json) Hash identifier: QrLEDbUvR+/PyuhKT9Yol0dc9wJ1+7ITC494OomtdWQ= Subject key identifier: 10:89:2F:3E:26:54:AF:A2:FC:95:0A:00:1C:06:9F:09:04:BF:34:94 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4B7C6621802F793011A6E60D819E4F654A5D2FBD Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/50de175a-ac40-4e74-addd-5b4da2e67b22.roa Signing time: Fri 31 Oct 2025 03:24:54 +0000 ROA not before: Fri 31 Oct 2025 03:24:54 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:28e4::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:7c:66:21:80:2f:79:30:11:a6:e6:0d:81:9e:4f:65:4a:5d:2f:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 03:24:54 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=a42d1a813a62c7be2ab30b4830825b4e821202def82624279507a5d24d9d57fb, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:07:4e:9d:d5:6a:2d:f4:76:ad:2a:ca:bd:8c: 5c:cc:30:1a:1d:d3:9e:99:13:ce:1e:3c:d5:37:3f: 33:f4:c8:78:8c:dd:62:65:15:b4:2f:7a:cd:e7:4b: a9:13:cf:5e:db:ea:14:c5:15:5d:0c:fb:c6:b2:54: 84:d2:38:f1:a2:3d:8b:11:c6:d6:1d:6c:e3:87:05: f7:00:6a:24:e6:d7:6d:9b:d8:bf:0e:a4:9a:59:27: 00:cf:f3:4c:b1:3e:59:dc:c5:3a:d7:93:9c:c2:23: 08:07:b7:79:57:73:ff:f7:97:06:6d:dc:d3:62:96: e7:10:db:7a:98:3b:64:ce:43:91:c6:2b:e0:5b:74: e1:51:10:18:cf:fe:5c:ba:ef:af:97:b1:92:7f:80: a1:1c:dd:4b:d1:24:d5:d3:6d:a4:eb:bd:c2:43:84: 89:bf:45:39:aa:6c:c1:5b:4b:09:ea:aa:95:e3:35: 7d:c0:d0:59:2b:a6:1e:25:69:3a:51:ac:67:04:77: 2c:c7:fe:f5:90:66:f5:7b:88:58:eb:9f:97:b0:dc: ee:db:a4:a8:e3:f3:c7:8a:30:f0:f3:e7:b7:eb:57: bf:ca:91:fe:e4:4f:7c:ec:49:4a:74:2c:7c:e4:0b: e2:da:d4:c4:c0:c3:81:c5:2b:29:14:5a:c0:b7:68: ec:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:89:2F:3E:26:54:AF:A2:FC:95:0A:00:1C:06:9F:09:04:BF:34:94 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/50de175a-ac40-4e74-addd-5b4da2e67b22.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:28e4::/46 Signature Algorithm: sha256WithRSAEncryption 27:aa:66:74:f4:47:98:c9:b8:86:f1:8c:8a:1a:91:39:24:5e: f7:44:78:de:ac:96:c2:1d:9c:d8:3b:ba:65:0d:e2:ef:16:41: cd:92:21:d2:52:51:39:82:2c:31:dc:76:9b:1e:aa:c0:5c:9e: c5:43:46:ec:6b:4f:6f:21:d5:14:83:29:37:c4:11:53:1e:98: 16:3d:b0:b3:5e:e4:84:23:8a:db:01:57:e6:61:d8:b5:ef:92: 34:ce:1f:97:06:f9:37:a1:16:4b:9c:74:e5:fa:98:ca:79:cf: d3:64:2f:31:98:7b:ea:68:9b:ca:d9:2a:5e:53:4a:0e:55:47: 52:db:57:89:63:bc:53:10:13:41:bb:e3:46:7c:e8:2c:70:37: d5:f9:f1:b1:ab:02:bf:c4:0e:09:4b:11:ea:10:c0:00:97:22: 78:db:d1:c2:7b:e4:6d:f8:f9:b7:73:3b:2e:59:9a:ad:b0:4e: 23:5f:2e:a2:77:83:fe:16:76:b2:e5:27:62:08:06:b8:61:1a: 91:fc:3c:ea:cd:52:bf:26:b5:cc:74:33:13:f3:6a:18:89:32: 08:e6:26:17:31:1b:db:de:6c:9b:87:98:37:c4:53:65:18:d5: 52:27:05:20:7f:34:f5:92:eb:a7:f4:17:10:09:bf:4d:92:b2: 56:1a:9c:b2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUS3xmIYAveTARpuYNgZ5PZUpdL70wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDMyNDU0WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNDJkMWE4MTNhNjJjN2JlMmFiMzBiNDgzMDgyNWI0ZTgy MTIwMmRlZjgyNjI0Mjc5NTA3YTVkMjRkOWQ1N2ZiMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5B06d1Wot9HatKsq9jFzMMBod056ZE84ePNU3PzP0yHiM 3WJlFbQves3nS6kTz17b6hTFFV0M+8ayVITSOPGiPYsRxtYdbOOHBfcAaiTm122b 2L8OpJpZJwDP80yxPlncxTrXk5zCIwgHt3lXc//3lwZt3NNilucQ23qYO2TOQ5HG K+BbdOFREBjP/ly676+XsZJ/gKEc3UvRJNXTbaTrvcJDhIm/RTmqbMFbSwnqqpXj NX3A0Fkrph4laTpRrGcEdyzH/vWQZvV7iFjrn5ew3O7bpKjj88eKMPDz57frV7/K kf7kT3zsSUp0LHzkC+La1MTAw4HFKykUWsC3aOwPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUEIkvPiZUr6L8lQoAHAafCQS/NJQwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzUwZGUxNzVhLWFjNDAtNGU3NC1hZGRkLTViNGRhMmU2N2IyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAKOQwDQYJKoZIhvcNAQELBQADggEBACeqZnT0R5jJuIbxjIoakTkk XvdEeN6slsIdnNg7umUN4u8WQc2SIdJSUTmCLDHcdpseqsBcnsVDRuxrT28h1RSD KTfEEVMemBY9sLNe5IQjitsBV+Zh2LXvkjTOH5cG+TehFkucdOX6mMp5z9NkLzGY e+pom8rZKl5TSg5VR1LbV4ljvFMQE0G740Z86CxwN9X58bGrAr/EDglLEeoQwACX Injb0cJ75G34+bdzOy5Zmq2wTiNfLqJ3g/4WdrLlJ2IIBrhhGpH8POrNUr8mtcx0 MxPzahiJMgjmJhcxG9vebJuHmDfEU2UY1VInBSB/NPWS66f0FxAJv02SslYanLI= -----END CERTIFICATE-----Generated at Wed Nov 5 07:38:43 2025 by rpki-client