$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/57958888-70c8-4a3c-b0e5-f02952e82873.roa File: 57958888-70c8-4a3c-b0e5-f02952e82873.roa (raw, json) Hash identifier: gD01C1kBB90lsgkF1DEkZQ2ttPX4Ofrmp7Xlr92uHnE= Subject key identifier: D3:B1:D3:17:10:12:D2:1C:98:02:D9:E6:7A:F2:56:AB:30:A8:08:6F Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4A64FD0217263C3DBE09DB82A8B500BF806DCC16 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/57958888-70c8-4a3c-b0e5-f02952e82873.roa Signing time: Thu 30 Oct 2025 22:55:38 +0000 ROA not before: Thu 30 Oct 2025 22:55:38 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2a00::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:64:fd:02:17:26:3c:3d:be:09:db:82:a8:b5:00:bf:80:6d:cc:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 22:55:38 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=810b2c4cadc165bd1f0964b335bda95459b646530ed3a72a13a65b3fa9c4fe82, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d5:38:ac:f9:d2:31:63:aa:d5:0c:49:35:22: 1a:05:14:e3:66:5d:37:c2:de:4d:83:dd:4a:5e:1f: 4b:0e:40:fd:a6:1d:36:25:96:85:59:00:d3:2d:89: f9:d2:4a:e2:80:6c:fc:cd:50:00:85:35:ad:0d:d0: 5f:fe:82:da:65:c4:e1:45:19:db:18:b7:e9:87:2b: e6:3c:14:f5:ef:a9:ac:71:bf:31:8a:83:2a:45:94: b3:2e:cd:83:07:a9:74:9a:7e:c8:f1:84:f0:12:a6: e4:74:1c:91:50:54:72:9d:2b:c8:a9:9a:4f:73:9d: b9:9e:af:00:78:05:a8:96:72:2f:1d:3f:77:37:d5: 44:ee:a6:1c:cf:9d:73:ee:99:7d:0e:2c:46:2f:eb: d7:c8:74:dc:ad:80:d2:17:61:75:43:a5:59:95:9e: 4a:17:a1:3d:96:67:26:03:e1:8a:34:01:15:34:e7: 13:7c:14:55:55:ad:9e:5c:cb:49:1d:42:93:b0:6a: 72:07:91:61:40:09:5e:d3:0e:30:7a:b8:20:71:20: 08:ec:2e:1d:b4:2a:1c:3a:76:c9:90:e7:49:e5:7f: 2b:3d:5e:9d:f7:66:76:60:98:d8:20:c7:c2:4f:38: a7:6f:ab:54:fb:6e:ec:f9:54:9a:80:82:a8:b6:59: 62:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:B1:D3:17:10:12:D2:1C:98:02:D9:E6:7A:F2:56:AB:30:A8:08:6F X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/57958888-70c8-4a3c-b0e5-f02952e82873.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2a00::/47 Signature Algorithm: sha256WithRSAEncryption 1f:b6:8d:c3:29:a1:40:81:ab:34:07:ca:71:dd:c9:9c:06:5c: 4d:c0:96:c5:68:9c:93:d2:fd:5e:1a:42:35:0b:81:1c:ea:2f: c7:7b:0c:d6:d1:1e:79:49:1d:0d:84:2b:82:07:61:e3:05:27: 7a:22:c4:9b:ed:1c:d5:06:b7:68:33:63:d7:a8:05:d9:e8:d4: 5f:03:cb:24:bc:6b:81:78:d0:a8:51:6e:f3:72:b2:c5:c4:b7: af:5a:2e:79:5f:47:aa:e8:d2:81:0f:f3:1a:56:7a:c8:af:a9: 36:e8:47:d5:bc:cc:94:66:e4:7b:1d:a8:ae:bc:b2:3b:e3:4c: 48:d7:52:10:d8:dc:c8:51:d9:fb:78:86:7f:fa:ae:54:ca:20: 06:92:ef:cc:31:3c:cd:c7:82:13:58:dd:a4:a9:95:a4:2d:37: 2c:bb:f2:64:10:29:20:fa:55:82:92:e9:09:30:58:2e:aa:04: f2:29:53:40:d8:23:2d:f2:45:48:11:84:8a:81:4b:46:89:cd: bd:c2:c3:b8:05:25:f9:26:1e:44:ee:f9:64:54:d8:92:47:a2: 39:a1:63:13:9f:e2:dc:b9:62:40:dd:cb:5a:90:cc:09:c7:b8: ff:11:f2:25:e8:ce:4c:bb:a6:d9:68:07:12:02:83:81:b7:94: a2:20:fb:42 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSmT9AhcmPD2+CduCqLUAv4BtzBYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjI1NTM4WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MTBiMmM0Y2FkYzE2NWJkMWYwOTY0YjMzNWJkYTk1NDU5 YjY0NjUzMGVkM2E3MmExM2E2NWIzZmE5YzRmZTgyMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC81Tis+dIxY6rVDEk1IhoFFONmXTfC3k2D3UpeH0sOQP2m HTYlloVZANMtifnSSuKAbPzNUACFNa0N0F/+gtplxOFFGdsYt+mHK+Y8FPXvqaxx vzGKgypFlLMuzYMHqXSafsjxhPASpuR0HJFQVHKdK8ipmk9znbmerwB4BaiWci8d P3c31UTuphzPnXPumX0OLEYv69fIdNytgNIXYXVDpVmVnkoXoT2WZyYD4Yo0ARU0 5xN8FFVVrZ5cy0kdQpOwanIHkWFACV7TDjB6uCBxIAjsLh20Khw6dsmQ50nlfys9 Xp33ZnZgmNggx8JPOKdvq1T7buz5VJqAgqi2WWJdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU07HTFxAS0hyYAtnmevJWqzCoCG8wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzU3OTU4ODg4LTcwYzgtNGEzYy1iMGU1LWYwMjk1MmU4Mjg3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAKgAwDQYJKoZIhvcNAQELBQADggEBAB+2jcMpoUCBqzQHynHdyZwG XE3AlsVonJPS/V4aQjULgRzqL8d7DNbRHnlJHQ2EK4IHYeMFJ3oixJvtHNUGt2gz Y9eoBdno1F8DyyS8a4F40KhRbvNyssXEt69aLnlfR6ro0oEP8xpWesivqTboR9W8 zJRm5HsdqK68sjvjTEjXUhDY3MhR2ft4hn/6rlTKIAaS78wxPM3HghNY3aSplaQt Nyy78mQQKSD6VYKS6QkwWC6qBPIpU0DYIy3yRUgRhIqBS0aJzb3Cw7gFJfkmHkTu +WRU2JJHojmhYxOf4ty5YkDdy1qQzAnHuP8R8iXozky7ptloBxICg4G3lKIg+0I= -----END CERTIFICATE-----Generated at Wed Nov 5 09:34:56 2025 by rpki-client