$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5534d924-8997-4db4-be88-1cbbba001e48.roa File: 5534d924-8997-4db4-be88-1cbbba001e48.roa (raw, json) Hash identifier: lrWSJnuqvYpVSvj7xc45USMMKgKZepDBv6hfc5Ry9YA= Subject key identifier: 50:05:61:D1:FA:9B:80:49:13:F1:F1:A0:CD:E8:A2:20:7E:DD:EE:59 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4F872DEF45698DD11C594DD3AB0FDFCC67F94D9E Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5534d924-8997-4db4-be88-1cbbba001e48.roa Signing time: Fri 31 Oct 2025 03:53:29 +0000 ROA not before: Fri 31 Oct 2025 03:53:29 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2f34::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:87:2d:ef:45:69:8d:d1:1c:59:4d:d3:ab:0f:df:cc:67:f9:4d:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 03:53:29 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=a9008b0b1106bcdf052f97be19b341189dc0c2bc6d36620277de8ba67ae4046c, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:20:fa:ec:63:67:b7:e2:ea:fb:ba:85:80:bf: 79:ef:87:a1:81:25:fd:e4:87:4e:4a:9c:8c:37:45: 14:15:1b:88:d9:a5:45:96:04:07:a1:57:ed:40:0d: 86:d1:f0:28:fb:32:68:b5:7f:05:87:1c:28:50:89: d8:ae:34:0b:03:a2:08:73:eb:47:a3:99:3f:f4:23: b9:62:ed:e6:d7:bd:85:f2:82:fa:f1:55:09:33:32: 93:2a:28:3a:57:e5:8e:ee:b3:ea:1f:e0:6e:e6:10: 2e:de:34:8c:8e:95:31:51:f9:00:7f:f0:95:87:01: b7:27:39:19:4f:e5:b7:40:66:49:0f:de:80:3b:be: d9:05:7e:cb:ff:b2:0e:39:5e:c8:ac:d4:df:60:3e: d3:88:dc:bc:5a:dd:56:21:15:6a:ff:af:76:dd:83: a8:08:a9:6f:76:41:81:02:39:52:c4:bc:97:a4:0a: c1:c6:17:e8:8c:28:95:99:c1:78:e2:3a:61:e0:68: 69:14:47:8b:67:d0:92:ec:59:32:41:31:a4:5f:51: 3a:84:c6:42:63:14:11:de:73:f2:cf:10:70:c2:92: f6:97:6d:2b:0f:67:fc:80:c0:84:16:c9:15:b4:9e: bf:39:6e:57:d6:14:2f:91:c8:5f:37:75:e3:e4:7b: fe:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:05:61:D1:FA:9B:80:49:13:F1:F1:A0:CD:E8:A2:20:7E:DD:EE:59 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5534d924-8997-4db4-be88-1cbbba001e48.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2f34::/46 Signature Algorithm: sha256WithRSAEncryption ad:75:1e:f7:92:79:ca:98:38:db:af:c7:58:81:6d:f1:6c:2a: 3c:41:bc:a2:93:bb:4b:40:ea:53:24:a4:53:d0:b3:5c:ab:fb: 32:a9:24:39:95:2a:fe:56:97:97:3c:21:fc:b7:13:6f:11:b6: 7a:af:37:be:63:c9:39:cc:73:3b:cf:ec:52:a0:64:76:b0:ef: 9e:54:7b:56:12:bd:18:6b:8d:6e:70:b3:3b:e9:49:c8:c5:1f: 23:4a:d8:5d:64:15:42:a2:86:a9:4d:be:49:da:c8:13:ed:0c: eb:56:08:d4:83:76:2e:2c:fb:c5:48:3a:6a:65:7b:56:ce:04: b1:03:82:6a:59:95:a8:01:0e:6c:25:17:a3:35:8a:74:c4:cd: 2b:5b:11:a5:d0:f5:1c:66:be:f1:3a:b8:49:28:a3:97:fc:bd: 11:29:51:0c:07:53:db:82:98:48:a0:9e:a5:92:86:0c:c2:68: 72:4b:20:9f:f0:1f:80:70:28:3c:53:57:a1:53:a7:de:aa:c4: 55:dd:0b:ae:e5:a5:9e:13:14:ca:7f:cc:6d:51:c9:e1:7e:80: a4:24:17:3f:8b:b3:d6:d2:a8:c1:ed:57:42:1e:39:bb:fd:c2: d1:ee:52:5d:0f:af:4e:0c:9c:72:57:49:c0:a2:7d:16:b9:8f: 6a:bd:44:63 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUT4ct70VpjdEcWU3Tqw/fzGf5TZ4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDM1MzI5WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhOTAwOGIwYjExMDZiY2RmMDUyZjk3YmUxOWIzNDExODlk YzBjMmJjNmQzNjYyMDI3N2RlOGJhNjdhZTQwNDZjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8IPrsY2e34ur7uoWAv3nvh6GBJf3kh05KnIw3RRQVG4jZ pUWWBAehV+1ADYbR8Cj7Mmi1fwWHHChQidiuNAsDoghz60ejmT/0I7li7ebXvYXy gvrxVQkzMpMqKDpX5Y7us+of4G7mEC7eNIyOlTFR+QB/8JWHAbcnORlP5bdAZkkP 3oA7vtkFfsv/sg45Xsis1N9gPtOI3Lxa3VYhFWr/r3bdg6gIqW92QYECOVLEvJek CsHGF+iMKJWZwXjiOmHgaGkUR4tn0JLsWTJBMaRfUTqExkJjFBHec/LPEHDCkvaX bSsPZ/yAwIQWyRW0nr85blfWFC+RyF83dePke/7/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUAVh0fqbgEkT8fGgzeiiIH7d7lkwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzU1MzRkOTI0LTg5OTctNGRiNC1iZTg4LTFjYmJiYTAwMWU0OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAALzQwDQYJKoZIhvcNAQELBQADggEBAK11HveSecqYONuvx1iBbfFs KjxBvKKTu0tA6lMkpFPQs1yr+zKpJDmVKv5Wl5c8Ify3E28RtnqvN75jyTnMczvP 7FKgZHaw755Ue1YSvRhrjW5wszvpScjFHyNK2F1kFUKihqlNvknayBPtDOtWCNSD di4s+8VIOmple1bOBLEDgmpZlagBDmwlF6M1inTEzStbEaXQ9RxmvvE6uEkoo5f8 vREpUQwHU9uCmEignqWShgzCaHJLIJ/wH4BwKDxTV6FTp96qxFXdC67lpZ4TFMp/ zG1RyeF+gKQkFz+Ls9bSqMHtV0IeObv9wtHuUl0Pr04MnHJXScCifRa5j2q9RGM= -----END CERTIFICATE-----Generated at Wed Nov 5 07:41:16 2025 by rpki-client