$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/570ffa3c-f219-4a58-932d-ac21c919cc66.roa File: 570ffa3c-f219-4a58-932d-ac21c919cc66.roa (raw, json) Hash identifier: Ww8QlZOzCPyytjE0BwtFZa2KK3hhLE1UoZ7c4UqqE5g= Subject key identifier: BA:F2:63:50:B4:58:11:71:10:C5:6C:18:97:9D:32:75:91:FD:36:A5 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 644585552CB9A9ED0CAF34B4840EA49E7AC52E22 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/570ffa3c-f219-4a58-932d-ac21c919cc66.roa Signing time: Thu 30 Oct 2025 22:41:53 +0000 ROA not before: Thu 30 Oct 2025 22:41:53 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1f8a::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:45:85:55:2c:b9:a9:ed:0c:af:34:b4:84:0e:a4:9e:7a:c5:2e:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 22:41:53 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=6718f11bb81864eb97dd21a6ae484296f41316a6824c8ba83d93d2752b9ab460, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:9a:f3:04:08:5b:f5:60:bd:f4:97:81:63:c9: 06:54:48:c4:2d:bf:51:d3:94:62:61:31:72:d2:a3: 21:b4:de:89:54:cb:61:27:30:0b:2e:da:df:8a:f9: 6f:c3:5b:bc:3c:cc:a2:60:bb:1f:4f:80:78:d0:79: 89:97:8c:f8:43:05:6f:32:3f:cc:f8:54:8e:b2:08: 57:b4:0d:72:6d:af:54:1f:5d:1e:59:01:04:d5:88: b6:15:b4:30:0f:27:ea:19:96:88:b1:78:a7:f6:65: 61:17:ff:33:df:50:ec:e7:b6:5b:99:80:25:00:14: a2:81:c7:a6:9a:a9:9b:77:3d:8a:12:b3:b5:f6:18: 3f:34:b0:21:68:b5:ef:4e:8b:52:84:9b:04:88:7a: 8d:89:87:16:17:1d:8f:4f:c0:31:b5:ed:a6:8f:d0: 6e:ab:ca:7e:42:31:ea:14:d5:09:81:ca:ee:24:2c: f8:b7:df:e5:47:9c:fc:0e:e5:8a:8f:b8:e3:72:c0: a5:a5:ba:fd:6a:d8:2f:f1:55:67:b7:56:ad:a9:33: 13:2a:cc:6a:21:f6:9d:bc:ad:09:d9:a0:a1:f3:ab: 47:ab:9e:18:69:24:30:18:09:04:7e:3d:2d:f7:bb: ad:e5:74:f2:07:90:ff:17:db:b6:16:cb:f2:d8:35: 4f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:F2:63:50:B4:58:11:71:10:C5:6C:18:97:9D:32:75:91:FD:36:A5 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/570ffa3c-f219-4a58-932d-ac21c919cc66.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1f8a::/47 Signature Algorithm: sha256WithRSAEncryption b3:d0:48:ba:40:e9:fb:f4:4a:54:e2:d8:73:b1:93:69:22:ad: 99:d0:d8:b8:74:14:90:39:17:32:07:35:bb:cc:c9:21:c6:df: b4:88:ef:44:88:0b:72:bd:6d:70:bf:1e:e3:34:d1:2a:b9:92: d6:1d:14:d4:a4:16:4f:01:32:20:18:8c:d9:56:05:b1:0b:aa: 92:90:18:7b:a5:a2:66:0e:ef:20:80:78:64:d3:c6:31:31:f9: 36:76:98:bf:3a:53:6b:19:9e:79:b1:bd:8b:0d:d2:87:9e:60: 41:60:16:fa:ab:0b:f0:81:8b:03:00:27:a7:f0:91:fb:50:3f: 87:1b:fe:cb:59:17:4e:de:5f:78:7f:9d:34:74:0d:3c:4a:64: 64:a3:2f:14:87:33:e4:dd:33:0e:ba:08:0c:18:db:e5:58:08: ba:be:fe:d8:e3:ec:60:7f:77:05:fc:00:bb:a0:24:04:c7:d6: 9b:04:1a:1c:41:f1:6d:78:46:97:b2:34:af:55:3d:3a:b0:3c: 76:af:45:96:13:a4:f2:52:f5:84:5c:bc:f8:b3:18:a3:4a:c7: 0e:0e:fe:a5:12:46:ca:ef:c8:48:51:15:59:d3:34:21:60:d2: 98:41:00:da:48:c8:1c:51:5e:09:91:1b:2a:e6:7e:84:09:d4: da:f6:f3:96 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZEWFVSy5qe0MrzS0hA6knnrFLiIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjI0MTUzWhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NzE4ZjExYmI4MTg2NGViOTdkZDIxYTZhZTQ4NDI5NmY0 MTMxNmE2ODI0YzhiYTgzZDkzZDI3NTJiOWFiNDYwMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdmvMECFv1YL30l4FjyQZUSMQtv1HTlGJhMXLSoyG03olU y2EnMAsu2t+K+W/DW7w8zKJgux9PgHjQeYmXjPhDBW8yP8z4VI6yCFe0DXJtr1Qf XR5ZAQTViLYVtDAPJ+oZloixeKf2ZWEX/zPfUOzntluZgCUAFKKBx6aaqZt3PYoS s7X2GD80sCFote9Oi1KEmwSIeo2JhxYXHY9PwDG17aaP0G6ryn5CMeoU1QmByu4k LPi33+VHnPwO5YqPuONywKWluv1q2C/xVWe3Vq2pMxMqzGoh9p28rQnZoKHzq0er nhhpJDAYCQR+PS33u63ldPIHkP8X27YWy/LYNU/xAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUuvJjULRYEXEQxWwYl50ydZH9NqUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzU3MGZmYTNjLWYyMTktNGE1OC05MzJkLWFjMjFjOTE5Y2M2Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAH4owDQYJKoZIhvcNAQELBQADggEBALPQSLpA6fv0SlTi2HOxk2ki rZnQ2Lh0FJA5FzIHNbvMySHG37SI70SIC3K9bXC/HuM00Sq5ktYdFNSkFk8BMiAY jNlWBbELqpKQGHulomYO7yCAeGTTxjEx+TZ2mL86U2sZnnmxvYsN0oeeYEFgFvqr C/CBiwMAJ6fwkftQP4cb/stZF07eX3h/nTR0DTxKZGSjLxSHM+TdMw66CAwY2+VY CLq+/tjj7GB/dwX8ALugJATH1psEGhxB8W14RpeyNK9VPTqwPHavRZYTpPJS9YRc vPizGKNKxw4O/qUSRsrvyEhRFVnTNCFg0phBANpIyBxRXgmRGyrmfoQJ1Nr285Y= -----END CERTIFICATE-----Generated at Wed Nov 5 09:29:59 2025 by rpki-client