$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/586ba193-b8f7-4437-8174-d241b838f335.roa File: 586ba193-b8f7-4437-8174-d241b838f335.roa (raw, json) Hash identifier: ZD4UsA5ycsDbAbFbm+La/lPkG5PZfYml99GqcPfhQI0= Subject key identifier: 70:38:79:6B:EC:15:05:42:94:1A:BA:07:9B:45:C0:06:5D:DE:64:56 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 35F19A5AF112B79EB92EF1DCF29FEEDC8B86E5E7 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/586ba193-b8f7-4437-8174-d241b838f335.roa Signing time: Fri 31 Oct 2025 02:27:08 +0000 ROA not before: Fri 31 Oct 2025 02:27:08 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1444::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:f1:9a:5a:f1:12:b7:9e:b9:2e:f1:dc:f2:9f:ee:dc:8b:86:e5:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 02:27:08 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=8816cbfe42d196951973c2364b1fb78ad0f32017b468b12e0fdede8ec0ec37a8, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:5a:5f:93:0d:45:28:4a:1f:24:e3:71:cd:ed: 1d:c8:42:a7:1a:e4:38:f6:e5:bc:bd:69:13:50:b7: 25:07:48:f4:95:75:88:17:6d:7d:74:93:94:b5:48: f5:9e:32:42:1d:a7:88:aa:05:a7:36:34:ed:bd:34: b4:9b:3c:97:d1:99:bb:78:fb:52:92:91:0d:f6:fa: 2f:01:49:8f:ec:06:b4:fd:6d:b2:cd:db:73:5f:56: 2e:6f:d9:82:39:33:d1:47:37:39:04:c5:ff:26:b5: cb:7b:fb:f5:cc:e3:c2:32:8f:8e:fa:60:a0:d6:01: 6d:a7:84:bf:c7:36:80:51:78:6e:10:0a:f9:06:aa: 00:6a:b1:42:78:3a:df:3c:3a:5a:1c:7c:11:20:50: f3:e5:8a:33:af:15:49:2b:a5:aa:97:aa:e1:49:f2: cd:58:b5:56:54:50:29:56:5e:3e:13:d6:9f:7d:9f: 00:1b:b8:28:4b:b3:59:38:6e:a3:d8:95:de:5f:d5: 9a:86:3e:76:1b:90:e9:4d:e7:25:8c:e7:8c:d7:34: ac:a7:0b:39:ba:f3:fc:8c:68:8a:08:12:62:0b:96: b4:e3:0a:ac:c2:a3:f5:fe:7a:6e:1a:92:85:70:ca: 79:7b:e3:bf:9d:b1:dc:d3:44:07:53:69:b4:22:b6: d0:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:38:79:6B:EC:15:05:42:94:1A:BA:07:9B:45:C0:06:5D:DE:64:56 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/586ba193-b8f7-4437-8174-d241b838f335.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1444::/46 Signature Algorithm: sha256WithRSAEncryption 76:9d:5b:a9:0f:3f:57:e0:0f:42:07:94:ec:a9:79:73:f9:8f: 39:3a:de:59:dc:db:ae:a4:9d:6f:b9:17:a2:88:24:74:c8:27: 39:2d:f3:be:f4:20:00:08:91:4c:3d:e2:58:dc:7c:6b:fc:99: df:6c:a0:32:5b:2c:89:b3:a2:ce:a4:ba:f3:45:5b:1d:40:b7: 37:75:af:31:e6:dc:c0:7f:43:0e:b8:09:c0:3f:07:4c:38:cd: d6:84:8e:65:a0:0d:03:0f:17:77:1a:0f:39:e0:38:dc:4c:0a: 59:07:08:42:37:29:a5:f9:fa:a3:75:68:98:22:1d:d2:7d:d6: 27:44:f5:8d:72:7c:e4:bb:91:c5:cf:4b:da:ef:e3:2d:c2:65: a0:ec:70:23:11:d8:5a:07:2e:1b:c8:fd:67:d8:3e:5f:1e:45: b4:dc:96:5c:6a:d9:e5:02:e7:7c:80:41:86:27:af:2d:d5:43: c6:07:91:a7:29:24:eb:10:de:65:c6:f0:a7:99:57:88:c4:ec: ab:e0:f8:09:a2:87:dc:c9:f1:5b:a3:1c:24:0a:8e:5a:8f:08: a2:a2:1b:a5:0b:c2:0d:88:75:3b:86:6b:49:22:21:33:81:bc: bf:2a:75:07:9d:af:70:c9:02:af:08:64:30:53:2e:eb:4d:64: 5f:7f:2b:24 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNfGaWvESt565LvHc8p/u3IuG5ecwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDIyNzA4WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ODE2Y2JmZTQyZDE5Njk1MTk3M2MyMzY0YjFmYjc4YWQw ZjMyMDE3YjQ2OGIxMmUwZmRlZGU4ZWMwZWMzN2E4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbWl+TDUUoSh8k43HN7R3IQqca5Dj25by9aRNQtyUHSPSV dYgXbX10k5S1SPWeMkIdp4iqBac2NO29NLSbPJfRmbt4+1KSkQ32+i8BSY/sBrT9 bbLN23NfVi5v2YI5M9FHNzkExf8mtct7+/XM48Iyj476YKDWAW2nhL/HNoBReG4Q CvkGqgBqsUJ4Ot88OlocfBEgUPPlijOvFUkrpaqXquFJ8s1YtVZUUClWXj4T1p99 nwAbuChLs1k4bqPYld5f1ZqGPnYbkOlN5yWM54zXNKynCzm68/yMaIoIEmILlrTj CqzCo/X+em4akoVwynl747+dsdzTRAdTabQittB/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcDh5a+wVBUKUGroHm0XABl3eZFYwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzU4NmJhMTkzLWI4ZjctNDQzNy04MTc0LWQyNDFiODM4ZjMzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAFEQwDQYJKoZIhvcNAQELBQADggEBAHadW6kPP1fgD0IHlOypeXP5 jzk63lnc266knW+5F6KIJHTIJzkt8770IAAIkUw94ljcfGv8md9soDJbLImzos6k uvNFWx1Atzd1rzHm3MB/Qw64CcA/B0w4zdaEjmWgDQMPF3caDzngONxMClkHCEI3 KaX5+qN1aJgiHdJ91idE9Y1yfOS7kcXPS9rv4y3CZaDscCMR2FoHLhvI/WfYPl8e RbTcllxq2eUC53yAQYYnry3VQ8YHkacpJOsQ3mXG8KeZV4jE7Kvg+Amih9zJ8Vuj HCQKjlqPCKKiG6ULwg2IdTuGa0kiITOBvL8qdQedr3DJAq8IZDBTLutNZF9/KyQ= -----END CERTIFICATE-----Generated at Wed Nov 5 09:25:24 2025 by rpki-client