$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/539c8516-f9a5-40c8-8c6f-546d9686f828.roa File: 539c8516-f9a5-40c8-8c6f-546d9686f828.roa (raw, json) Hash identifier: 8WKpFzwEUyxb+PWWcjYm5YrVKnFzBZ7d6qIk/kQNf/o= Subject key identifier: 12:5D:75:93:3D:1D:B2:67:6A:A2:E0:E1:98:97:59:E2:E8:CF:DB:23 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 02994D5C536FBF1BF5172B47CED4D9B48AB4F265 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/539c8516-f9a5-40c8-8c6f-546d9686f828.roa Signing time: Thu 30 Oct 2025 20:23:49 +0000 ROA not before: Thu 30 Oct 2025 20:23:49 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:26a8::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:99:4d:5c:53:6f:bf:1b:f5:17:2b:47:ce:d4:d9:b4:8a:b4:f2:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 20:23:49 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=542d749465f18e6c190dbdac72541181a48393b8e4d672c5c20c3563482e7796, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:05:4d:36:b9:a7:8f:f7:95:ce:97:4f:f5:f2: 91:7e:08:d3:61:97:c1:c2:20:8d:a8:8b:48:5e:27: a7:bd:db:3a:9f:64:f5:bf:a4:7b:67:53:ac:41:41: 86:8c:ad:ba:f2:73:6e:57:5f:61:c6:be:25:b2:48: 06:6b:49:34:d3:df:e9:7d:3e:c6:da:88:ed:2d:66: 39:43:2a:cc:f2:dc:4d:ed:3b:2d:b7:f0:8a:22:4c: a6:1c:e7:eb:29:c5:b3:d4:fb:6f:26:b2:89:b8:56: 0b:b5:65:6e:ac:e4:bc:33:50:08:8d:9c:69:0e:5a: 0e:f7:e5:a2:24:6d:ed:8d:7d:e3:ad:9e:5b:7e:3e: bc:bc:34:e4:b0:c1:58:ce:c2:ad:8a:5f:6d:77:6c: 92:70:85:c5:1b:97:7f:fd:b0:13:0f:91:e2:6f:8c: 0b:ad:07:46:0c:30:37:58:ff:f5:03:54:c2:2b:c2: 3f:2e:4d:7a:95:b2:47:98:34:6e:ad:ba:a4:ce:7c: a3:62:b1:eb:70:c2:02:3e:54:82:80:08:1c:a4:f3: 95:ae:38:fc:a6:8b:75:ab:57:26:1a:a3:8d:11:89: d7:f6:61:b4:f7:b8:2a:79:60:23:08:c3:f9:c6:13: b0:ba:a9:05:0f:1c:9a:4d:ac:99:5f:3e:06:a4:28: 5d:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:5D:75:93:3D:1D:B2:67:6A:A2:E0:E1:98:97:59:E2:E8:CF:DB:23 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/539c8516-f9a5-40c8-8c6f-546d9686f828.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:26a8::/47 Signature Algorithm: sha256WithRSAEncryption 07:11:d2:c4:aa:12:b9:07:af:d6:19:3f:f8:53:ce:63:dc:1c: 68:7f:73:03:3a:0a:6f:96:93:2f:d3:51:df:f9:b2:0a:0a:ec: 97:0a:d2:ff:5d:f3:eb:56:96:9c:a1:a8:ea:82:0f:d0:57:c2: 31:7d:4c:1b:2c:4c:05:bb:1e:d8:9b:5d:4d:c0:3e:04:8d:3b: 23:1b:e5:cf:5b:a2:af:1a:ed:ee:28:47:b5:45:d8:1d:dd:4a: b4:d4:2a:fe:7a:be:56:a4:72:43:28:b7:5f:82:fd:84:91:ba: e0:2a:a4:9a:bb:c7:d7:68:3e:9b:50:ee:a9:1d:88:60:13:df: 97:64:be:ab:b5:37:bf:9d:1a:e7:cd:14:f9:d5:d5:c2:62:0c: 82:45:df:47:9f:ee:f8:49:68:f9:2c:2e:d6:8b:c5:dc:63:af: 0d:bc:dc:e9:66:50:6d:74:4c:4b:65:3b:ab:92:81:41:d0:42: 5b:30:9f:4e:0a:61:d2:81:8d:d3:d6:ca:c0:16:74:6b:53:40: 27:b5:0c:38:54:3a:a8:6f:83:a0:3e:88:8d:5c:ae:c5:58:02: ee:91:c1:2b:da:b9:a8:c1:40:91:1a:19:48:0c:b9:04:b0:fd: ff:c3:b6:34:6c:38:13:2e:8b:80:2b:de:59:ff:08:1f:7e:74: 29:ad:f5:44 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUAplNXFNvvxv1FytHztTZtIq08mUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjAyMzQ5WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NDJkNzQ5NDY1ZjE4ZTZjMTkwZGJkYWM3MjU0MTE4MWE0 ODM5M2I4ZTRkNjcyYzVjMjBjMzU2MzQ4MmU3Nzk2MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD4BU02uaeP95XOl0/18pF+CNNhl8HCII2oi0heJ6e92zqf ZPW/pHtnU6xBQYaMrbryc25XX2HGviWySAZrSTTT3+l9PsbaiO0tZjlDKszy3E3t Oy238IoiTKYc5+spxbPU+28msom4Vgu1ZW6s5LwzUAiNnGkOWg735aIkbe2NfeOt nlt+Pry8NOSwwVjOwq2KX213bJJwhcUbl3/9sBMPkeJvjAutB0YMMDdY//UDVMIr wj8uTXqVskeYNG6tuqTOfKNisetwwgI+VIKACByk85WuOPymi3WrVyYao40Ridf2 YbT3uCp5YCMIw/nGE7C6qQUPHJpNrJlfPgakKF2xAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUEl11kz0dsmdqouDhmJdZ4ujP2yMwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzUzOWM4NTE2LWY5YTUtNDBjOC04YzZmLTU0NmQ5Njg2ZjgyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAJqgwDQYJKoZIhvcNAQELBQADggEBAAcR0sSqErkHr9YZP/hTzmPc HGh/cwM6Cm+Wky/TUd/5sgoK7JcK0v9d8+tWlpyhqOqCD9BXwjF9TBssTAW7Htib XU3APgSNOyMb5c9boq8a7e4oR7VF2B3dSrTUKv56vlakckMot1+C/YSRuuAqpJq7 x9doPptQ7qkdiGAT35dkvqu1N7+dGufNFPnV1cJiDIJF30ef7vhJaPksLtaLxdxj rw283OlmUG10TEtlO6uSgUHQQlswn04KYdKBjdPWysAWdGtTQCe1DDhUOqhvg6A+ iI1crsVYAu6RwSvauajBQJEaGUgMuQSw/f/DtjRsOBMui4Ar3ln/CB9+dCmt9UQ= -----END CERTIFICATE-----Generated at Wed Nov 5 07:46:26 2025 by rpki-client