$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/545379be-7bac-4a18-9541-57a6992c9020.roa File: 545379be-7bac-4a18-9541-57a6992c9020.roa (raw, json) Hash identifier: X8SC+YBj+T+s06wm8GYM6BHqMfFcPwMCCx7X7VUGmjo= Subject key identifier: DD:BB:7D:FD:DF:25:60:05:AB:47:67:6A:84:72:F3:D7:11:99:CA:D6 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 7731F15185CC3FE865CDDEC75742D0B279A692BA Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/545379be-7bac-4a18-9541-57a6992c9020.roa Signing time: Thu 30 Oct 2025 22:58:55 +0000 ROA not before: Thu 30 Oct 2025 22:58:55 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2a96::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:31:f1:51:85:cc:3f:e8:65:cd:de:c7:57:42:d0:b2:79:a6:92:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 22:58:55 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=3fdf63a98539dd252269391f667e3c9d432dd66c77933d7f836937d56d4548de, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:da:2b:03:a4:b3:b4:a7:49:89:b0:12:1a:52: 54:8c:b1:97:bd:4c:87:15:12:22:3b:ee:bf:4d:84: b4:d2:25:90:7e:52:62:6d:45:5f:1a:54:62:51:a4: 17:11:fd:4c:bc:19:9b:38:33:c8:a7:b7:a4:b1:ca: 83:93:92:2b:83:49:ca:20:ae:22:5c:d7:b0:d3:ee: f7:94:ca:cd:e1:86:9c:d5:98:c7:5c:c4:37:8b:2a: c3:7b:0b:8d:05:66:ec:4e:ec:bb:9b:49:68:c0:e7: bf:54:8c:4f:10:4e:43:c9:a8:9d:f6:91:78:04:c3: 46:5e:b3:32:bf:44:80:36:6c:97:34:27:c0:e3:c2: 91:bf:a8:97:6a:92:97:e1:8a:2d:dd:74:b5:52:03: fb:4a:0b:64:95:66:ed:ca:b8:90:1c:c7:f4:26:48: 53:9c:5e:7a:6c:e5:21:5b:8c:48:36:3e:a4:44:f4: 08:d2:28:2c:44:9f:5a:41:a6:8c:77:6d:d7:58:ea: 1e:aa:55:04:ad:44:23:75:ca:8c:75:3c:d0:9d:18: c1:b6:a7:33:b3:be:11:60:d1:4f:7f:ff:e9:c9:77: 07:65:bf:b9:dc:c1:da:1b:17:f0:c6:61:9b:a6:8a: e8:f3:a0:1d:a1:42:e0:90:33:30:c1:78:50:0d:62: 07:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:BB:7D:FD:DF:25:60:05:AB:47:67:6A:84:72:F3:D7:11:99:CA:D6 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/545379be-7bac-4a18-9541-57a6992c9020.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2a96::/47 Signature Algorithm: sha256WithRSAEncryption aa:ad:e5:01:6c:15:91:4c:8c:b5:c9:d4:d6:fb:9b:d0:8d:2e: fc:01:db:73:5b:ed:90:8c:4b:65:cd:80:87:a3:49:b2:df:5b: 89:a3:fe:ee:b4:09:41:59:f9:a6:28:d2:3e:ea:4c:d1:a8:8b: 9c:1f:88:12:54:9d:23:79:8c:54:cc:77:44:6e:3c:fc:28:91: 67:68:67:c9:07:a2:82:57:59:fb:a5:75:d5:41:cb:8d:e0:72: 9b:89:63:6d:a7:1b:1b:63:75:e4:ec:7d:4c:e2:d1:f1:36:3c: d8:1a:fe:5c:04:10:7a:d7:68:e1:fb:74:e2:9b:ee:ed:22:93: a1:88:b0:29:89:63:29:de:e1:90:bc:21:ec:26:cc:62:d1:c1: 10:30:22:d1:5b:24:4a:87:7d:db:7e:df:22:7b:34:d6:ea:d0: 76:28:bd:96:59:d6:fb:73:d0:a4:e4:18:01:7a:29:95:00:a2: e4:e0:61:94:b2:27:dc:ff:e6:0c:67:98:01:24:08:9c:e3:81: 9c:10:9f:91:a8:ab:28:c4:b1:32:98:24:a1:c7:8f:78:a3:df: c3:d4:69:3d:f5:ba:56:cb:a0:c0:b7:be:70:e7:34:63:cf:15: f6:7d:53:ef:3e:de:d3:2e:23:12:6e:0a:cc:0e:6b:b5:ef:5c: d2:64:6b:ca -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdzHxUYXMP+hlzd7HV0LQsnmmkrowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjI1ODU1WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZmRmNjNhOTg1MzlkZDI1MjI2OTM5MWY2NjdlM2M5ZDQz MmRkNjZjNzc5MzNkN2Y4MzY5MzdkNTZkNDU0OGRlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJ2isDpLO0p0mJsBIaUlSMsZe9TIcVEiI77r9NhLTSJZB+ UmJtRV8aVGJRpBcR/Uy8GZs4M8int6SxyoOTkiuDScogriJc17DT7veUys3hhpzV mMdcxDeLKsN7C40FZuxO7LubSWjA579UjE8QTkPJqJ32kXgEw0ZeszK/RIA2bJc0 J8DjwpG/qJdqkpfhii3ddLVSA/tKC2SVZu3KuJAcx/QmSFOcXnps5SFbjEg2PqRE 9AjSKCxEn1pBpox3bddY6h6qVQStRCN1yox1PNCdGMG2pzOzvhFg0U9//+nJdwdl v7ncwdobF/DGYZumiujzoB2hQuCQMzDBeFANYge1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3bt9/d8lYAWrR2dqhHLz1xGZytYwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzU0NTM3OWJlLTdiYWMtNGExOC05NTQxLTU3YTY5OTJjOTAyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAKpYwDQYJKoZIhvcNAQELBQADggEBAKqt5QFsFZFMjLXJ1Nb7m9CN LvwB23Nb7ZCMS2XNgIejSbLfW4mj/u60CUFZ+aYo0j7qTNGoi5wfiBJUnSN5jFTM d0RuPPwokWdoZ8kHooJXWfulddVBy43gcpuJY22nGxtjdeTsfUzi0fE2PNga/lwE EHrXaOH7dOKb7u0ik6GIsCmJYyne4ZC8IewmzGLRwRAwItFbJEqHfdt+3yJ7NNbq 0HYovZZZ1vtz0KTkGAF6KZUAouTgYZSyJ9z/5gxnmAEkCJzjgZwQn5GoqyjEsTKY JKHHj3ij38PUaT31ulbLoMC3vnDnNGPPFfZ9U+8+3tMuIxJuCswOa7XvXNJka8o= -----END CERTIFICATE-----Generated at Wed Nov 5 07:42:22 2025 by rpki-client