$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/52584db9-8446-4be9-b423-8b38b2f2c255.roa File: 52584db9-8446-4be9-b423-8b38b2f2c255.roa (raw, json) Hash identifier: +zhYl0V7mXAxeiSyYOAvDACurLplohNeQlvY6EgKK10= Subject key identifier: 7C:24:31:60:BA:40:73:E3:BB:F2:34:F1:CA:10:D1:FC:ED:67:80:43 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3BAF17B3A4DD13A178C6885B3C47A95A61EE69FC Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/52584db9-8446-4be9-b423-8b38b2f2c255.roa Signing time: Thu 30 Oct 2025 22:22:06 +0000 ROA not before: Thu 30 Oct 2025 22:22:06 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1c6a::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:af:17:b3:a4:dd:13:a1:78:c6:88:5b:3c:47:a9:5a:61:ee:69:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 22:22:06 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=d2f0c486803a25661242b95f62a05f2f0a7feb7c799c4074844438cc6d01b8a5, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c8:b3:d0:4d:54:d1:23:ea:08:5c:03:d8:cc: e4:73:da:1b:d3:b1:bd:a1:71:02:8e:3f:c4:94:c9: ca:e0:04:31:dd:83:37:c4:59:1c:85:18:e7:3c:c4: 53:4b:f3:79:d3:74:d6:74:b7:90:d1:51:64:27:b1: 18:32:88:24:c4:7f:e0:56:2c:31:f1:de:69:d0:50: c9:34:0b:c1:50:c0:f6:aa:ca:ee:a1:db:af:16:7c: 12:2b:ea:79:6a:0f:66:8c:17:4b:09:80:25:61:2b: db:65:31:bd:48:17:b2:e9:be:6b:ad:36:8c:8a:69: c3:d9:e8:94:9c:8a:bd:0a:52:af:d2:65:9a:af:c8: 30:30:8b:b9:62:fd:8e:ba:a6:85:26:fe:9d:f0:21: 79:3f:6d:a0:9c:51:4a:67:31:ac:b9:fe:5c:55:f4: 1b:97:81:31:f6:14:2a:3f:84:7d:56:41:e7:82:16: d1:7f:5c:0d:ae:76:13:50:db:70:b0:03:d7:ef:e4: 5c:ed:7a:a2:45:a7:b7:2e:be:25:27:15:a7:6a:ad: 38:25:5a:97:67:12:8c:6b:05:ab:6f:46:32:48:92: 1b:ba:23:24:06:78:11:7b:80:7b:f0:4d:bd:94:ac: 71:cf:9e:89:e5:87:08:2e:d8:86:cb:2f:e8:34:98: 5c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:24:31:60:BA:40:73:E3:BB:F2:34:F1:CA:10:D1:FC:ED:67:80:43 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/52584db9-8446-4be9-b423-8b38b2f2c255.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1c6a::/47 Signature Algorithm: sha256WithRSAEncryption 62:cc:55:20:a1:54:5c:81:2c:4d:31:e3:f3:ca:25:34:4b:03: fd:20:4a:5f:38:66:74:10:e1:28:e2:b7:e8:df:a4:33:8d:16: 8d:14:c0:db:e6:81:e4:d9:37:86:39:28:d5:4d:f5:0e:3c:92: 1a:3c:12:d4:c8:79:47:40:8d:aa:49:c0:68:ad:00:9d:7b:a8: 0d:d6:96:f5:4d:dc:01:85:f8:bf:68:cd:58:64:d2:a9:de:59: d9:24:b9:5d:1f:e7:b2:ba:23:31:e0:82:ca:a0:20:96:ea:eb: ae:d3:bc:cd:1a:a6:c1:68:00:99:d2:22:d6:28:07:cb:c6:7b: e7:13:ed:8e:65:f9:22:fe:52:0e:cc:ea:4f:3a:0f:2f:46:74: 71:1a:e5:90:99:e7:82:3d:25:ed:69:1c:ac:e1:1c:c3:bd:05: b3:8a:df:f6:33:6d:8f:50:44:9e:b5:90:6c:ca:70:c7:53:41: 0b:10:2d:10:c5:8c:fc:47:60:a5:92:5b:f5:13:ac:99:fb:3d: 57:33:de:e0:be:25:83:b9:39:6c:a4:97:2e:2c:1a:cc:f0:6c: 2c:8e:3d:79:ab:86:2e:28:d1:9c:94:4e:ff:db:be:a4:94:b6: d0:e4:e1:f2:c6:0d:d0:9f:95:c8:1f:e1:b1:a2:51:bb:5a:8e: 25:5b:a3:70 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUO68Xs6TdE6F4xohbPEepWmHuafwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjIyMjA2WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMmYwYzQ4NjgwM2EyNTY2MTI0MmI5NWY2MmEwNWYyZjBh N2ZlYjdjNzk5YzQwNzQ4NDQ0MzhjYzZkMDFiOGE1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8yLPQTVTRI+oIXAPYzORz2hvTsb2hcQKOP8SUycrgBDHd gzfEWRyFGOc8xFNL83nTdNZ0t5DRUWQnsRgyiCTEf+BWLDHx3mnQUMk0C8FQwPaq yu6h268WfBIr6nlqD2aMF0sJgCVhK9tlMb1IF7LpvmutNoyKacPZ6JScir0KUq/S ZZqvyDAwi7li/Y66poUm/p3wIXk/baCcUUpnMay5/lxV9BuXgTH2FCo/hH1WQeeC FtF/XA2udhNQ23CwA9fv5FzteqJFp7cuviUnFadqrTglWpdnEoxrBatvRjJIkhu6 IyQGeBF7gHvwTb2UrHHPnonlhwgu2IbLL+g0mFydAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUfCQxYLpAc+O78jTxyhDR/O1ngEMwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzUyNTg0ZGI5LTg0NDYtNGJlOS1iNDIzLThiMzhiMmYyYzI1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAHGowDQYJKoZIhvcNAQELBQADggEBAGLMVSChVFyBLE0x4/PKJTRL A/0gSl84ZnQQ4Sjit+jfpDONFo0UwNvmgeTZN4Y5KNVN9Q48kho8EtTIeUdAjapJ wGitAJ17qA3WlvVN3AGF+L9ozVhk0qneWdkkuV0f57K6IzHggsqgIJbq667TvM0a psFoAJnSItYoB8vGe+cT7Y5l+SL+Ug7M6k86Dy9GdHEa5ZCZ54I9Je1pHKzhHMO9 BbOK3/YzbY9QRJ61kGzKcMdTQQsQLRDFjPxHYKWSW/UTrJn7PVcz3uC+JYO5OWyk ly4sGszwbCyOPXmrhi4o0ZyUTv/bvqSUttDk4fLGDdCflcgf4bGiUbtajiVbo3A= -----END CERTIFICATE-----Generated at Wed Nov 5 15:27:23 2025 by rpki-client