$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/538f9b4f-be3a-461d-8727-b458b5923c2b.roa File: 538f9b4f-be3a-461d-8727-b458b5923c2b.roa (raw, json) Hash identifier: 9RwAuefjntUDJxY+AZDMVWwPUC8kPJ78LFcBBMtcV6Q= Subject key identifier: A8:4F:65:DD:ED:1C:71:D1:52:D7:5D:D7:A5:5E:59:E5:1D:FD:42:13 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5713640723D47A57AC14212B1014350451BC619B Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/538f9b4f-be3a-461d-8727-b458b5923c2b.roa Signing time: Fri 31 Oct 2025 00:13:43 +0000 ROA not before: Fri 31 Oct 2025 00:13:43 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3408::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:13:64:07:23:d4:7a:57:ac:14:21:2b:10:14:35:04:51:bc:61:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 00:13:43 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=2c17e3b8a7d3f5e7cb4017a94af7b2cd22307c62b5b9697e515018ac5aadf151, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:4c:ac:04:de:73:c0:3b:c1:d9:8c:62:90:2a: 77:72:3f:3f:2b:f4:b0:1b:60:3c:d0:b7:fe:45:12: 8a:4d:80:d8:ac:bb:04:d7:f1:dc:c2:d6:5e:6a:2b: 90:33:cf:4d:8d:36:81:83:28:b9:28:6f:90:51:30: 9e:73:45:94:00:58:af:ea:96:0a:80:ee:20:17:92: 7b:31:48:73:89:56:16:fb:c2:2b:cf:70:6b:22:8b: b8:11:d5:76:76:10:4b:da:c8:46:c4:04:d6:62:c0: 77:2a:e1:25:e6:c4:0c:43:a8:d7:f8:ba:a1:24:9d: 5a:c1:d5:19:28:63:cc:93:ea:4a:c5:ff:89:b0:87: 77:32:c9:c5:90:ba:bb:47:fc:35:d2:af:68:ef:70: 81:63:58:c6:87:f0:e8:b3:0b:e1:11:2c:41:de:65: 35:bb:5e:67:60:01:dc:31:9d:6f:0b:a4:9a:c0:4e: 3c:e4:c4:06:5e:a9:8a:c8:35:4c:e1:e7:e3:6b:61: d7:63:ba:3f:a7:29:b0:eb:12:5e:be:16:2c:a6:ca: 4b:fd:87:65:d1:53:02:e8:a4:85:84:13:9e:ec:10: e0:5e:23:18:47:0b:01:0b:a3:1b:38:20:68:96:81: 1b:bd:20:16:14:22:90:82:1d:b7:da:ca:49:9c:66: 10:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:4F:65:DD:ED:1C:71:D1:52:D7:5D:D7:A5:5E:59:E5:1D:FD:42:13 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/538f9b4f-be3a-461d-8727-b458b5923c2b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3408::/47 Signature Algorithm: sha256WithRSAEncryption 6f:6e:12:41:b0:a3:17:57:39:e6:7a:1a:ec:98:a7:7e:42:e0: f7:9a:68:1c:dd:ac:8e:20:d8:38:a0:c8:5d:43:3e:e3:29:93: 22:1c:b7:72:3e:43:0b:66:f4:00:cb:80:b6:96:ff:8a:83:8e: 6d:13:a5:91:fb:92:a7:aa:35:03:bd:71:c1:95:e5:8e:7b:5a: a2:b8:ed:33:92:34:00:ae:9b:04:13:89:8e:2d:c3:9b:ff:81: d7:7d:bf:87:ff:bc:0e:2d:88:00:ca:94:e9:ab:a1:d0:e8:b9: d3:cf:d6:67:88:3a:30:f7:5f:f4:ed:50:50:10:0d:a3:96:34: e0:b4:c1:b1:de:91:0f:41:28:ed:68:bf:1f:5c:1f:e2:1c:99: f7:1c:6d:72:a2:9c:fd:12:ae:7a:0c:b3:b4:cf:9a:e4:26:7f: 09:4e:fb:ee:d0:ca:9f:d7:8d:fc:7e:da:76:67:ab:58:97:29: 92:5a:09:d9:81:9c:b6:15:64:4d:92:7f:2e:ec:59:aa:2b:84: d9:17:f4:1d:98:04:43:1c:c8:78:50:7f:91:d4:8a:06:5f:e3: 6f:77:74:da:94:c8:99:3f:c2:36:a2:41:e6:09:d2:d3:6e:60: 20:da:3d:a4:cf:5a:82:3d:4e:d2:4b:ce:d0:b8:68:c5:0a:df: 8e:66:46:01 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVxNkByPUelesFCErEBQ1BFG8YZswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDAxMzQzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYzE3ZTNiOGE3ZDNmNWU3Y2I0MDE3YTk0YWY3YjJjZDIy MzA3YzYyYjViOTY5N2U1MTUwMThhYzVhYWRmMTUxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXTKwE3nPAO8HZjGKQKndyPz8r9LAbYDzQt/5FEopNgNis uwTX8dzC1l5qK5Azz02NNoGDKLkob5BRMJ5zRZQAWK/qlgqA7iAXknsxSHOJVhb7 wivPcGsii7gR1XZ2EEvayEbEBNZiwHcq4SXmxAxDqNf4uqEknVrB1RkoY8yT6krF /4mwh3cyycWQurtH/DXSr2jvcIFjWMaH8OizC+ERLEHeZTW7XmdgAdwxnW8LpJrA TjzkxAZeqYrINUzh5+NrYddjuj+nKbDrEl6+Fiymykv9h2XRUwLopIWEE57sEOBe IxhHCwELoxs4IGiWgRu9IBYUIpCCHbfaykmcZhCnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUqE9l3e0ccdFS113XpV5Z5R39QhMwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzUzOGY5YjRmLWJlM2EtNDYxZC04NzI3LWI0NThiNTkyM2MyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAANAgwDQYJKoZIhvcNAQELBQADggEBAG9uEkGwoxdXOeZ6GuyYp35C 4PeaaBzdrI4g2DigyF1DPuMpkyIct3I+Qwtm9ADLgLaW/4qDjm0TpZH7kqeqNQO9 ccGV5Y57WqK47TOSNACumwQTiY4tw5v/gdd9v4f/vA4tiADKlOmrodDoudPP1meI OjD3X/TtUFAQDaOWNOC0wbHekQ9BKO1ovx9cH+IcmfccbXKinP0SrnoMs7TPmuQm fwlO++7Qyp/Xjfx+2nZnq1iXKZJaCdmBnLYVZE2Sfy7sWaorhNkX9B2YBEMcyHhQ f5HUigZf4293dNqUyJk/wjaiQeYJ0tNuYCDaPaTPWoI9TtJLztC4aMUK345mRgE= -----END CERTIFICATE-----Generated at Wed Nov 5 10:54:35 2025 by rpki-client