$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/593de047-8cb7-4766-930c-6971361f5e40.roa File: 593de047-8cb7-4766-930c-6971361f5e40.roa (raw, json) Hash identifier: aDbZ5esgDG2nOhakWQ5GGjyIuxd5ZYjNkcQCUYoeJG4= Subject key identifier: 49:B6:EE:1F:68:07:75:44:5C:27:2E:DC:05:5F:60:7C:19:43:96:C4 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 54F7EBDF1B3FEAE5FAAACAFE927CED832EA60CDD Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/593de047-8cb7-4766-930c-6971361f5e40.roa Signing time: Fri 31 Oct 2025 05:57:03 +0000 ROA not before: Fri 31 Oct 2025 05:57:03 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3348::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:f7:eb:df:1b:3f:ea:e5:fa:aa:ca:fe:92:7c:ed:83:2e:a6:0c:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 05:57:03 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=43bd39a2f60ca0fb85c118ec2b225b4163529aac8be93bc929e7eee1e638b0bf, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:72:34:02:25:3e:b3:66:6e:1c:a7:f1:d7:6c: fc:a1:76:b6:3b:28:5d:73:e1:fa:4a:00:86:3b:99: 91:a0:b2:88:d3:fa:40:21:c9:17:4e:ab:95:70:12: 50:a3:35:0e:4e:d2:5a:b1:2d:b7:dd:bf:3f:0f:be: d0:e2:cc:0e:e6:ce:0e:6f:a4:c7:0d:36:32:c0:37: 1f:c7:bd:a9:bd:a8:38:a7:e8:25:7e:79:ad:26:ff: 57:f2:fb:25:cb:0a:fd:82:6d:0d:34:d4:43:23:7f: 5e:5a:03:ee:fe:83:b2:e9:f6:24:4c:c1:45:4e:0d: 78:20:ac:db:71:61:a9:c5:d5:89:18:1b:94:37:1b: 91:18:7b:41:81:53:8b:4b:67:79:71:91:62:54:b7: 5a:0e:b2:1b:70:4f:71:f0:97:9e:8f:40:87:16:27: a3:30:91:e9:03:ce:2d:52:ee:61:70:68:16:01:eb: e5:07:31:51:f9:02:fd:0f:91:13:3d:00:fb:3f:6a: 94:8f:b7:fe:7f:07:b4:21:60:a9:d6:a9:96:04:5c: 83:a9:b9:4d:f0:a7:9a:79:89:1d:2f:68:da:f5:01: 36:36:38:2b:43:06:3d:a1:13:00:ef:fa:7c:96:ae: f8:e9:28:c2:78:7f:9f:0a:6a:b6:c0:3b:f7:f3:09: d1:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:B6:EE:1F:68:07:75:44:5C:27:2E:DC:05:5F:60:7C:19:43:96:C4 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/593de047-8cb7-4766-930c-6971361f5e40.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3348::/45 Signature Algorithm: sha256WithRSAEncryption 54:2a:26:95:ee:84:aa:16:60:b7:38:f2:b9:a1:90:d9:04:0b: 7e:ec:73:ee:d6:81:a9:2a:c3:a0:a6:76:b4:81:55:dc:6c:77: 61:e0:3c:d5:90:5d:ee:40:23:16:ef:44:8f:d8:4b:38:6f:f6: 49:2d:a8:05:9c:35:a3:5d:3c:6e:15:03:25:74:83:ca:60:87: 49:9b:c9:b1:70:42:e9:a1:40:a1:80:54:86:6f:f1:a5:ef:35: 8e:fc:8e:15:17:20:85:9e:7d:e5:6c:23:37:23:9c:10:f1:74: ac:8f:85:b5:dc:3f:a9:07:d2:05:e0:24:ce:d2:52:83:74:34: 24:ca:96:1b:d8:15:49:99:28:81:40:42:48:2d:be:aa:54:18: e1:f6:79:eb:a7:c7:9f:fc:3f:87:cd:64:b4:a2:b1:3b:a2:95: 19:0e:8b:0a:98:28:7b:f6:62:1a:95:9e:00:58:ce:0c:3d:f2: 2e:6f:51:5a:42:ad:9e:3f:03:12:e1:ff:be:9b:05:d0:79:61: 23:08:ab:d1:4b:4e:05:42:92:bd:c4:31:86:44:cf:68:ee:f4: d6:0c:72:74:a0:28:41:5c:55:f9:ed:73:f7:00:db:7b:1f:83: 46:52:5d:d9:9b:16:af:8a:f5:fd:10:d1:61:68:9f:84:82:79: 40:88:2a:d4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVPfr3xs/6uX6qsr+knztgy6mDN0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDU1NzAzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0M2JkMzlhMmY2MGNhMGZiODVjMTE4ZWMyYjIyNWI0MTYz NTI5YWFjOGJlOTNiYzkyOWU3ZWVlMWU2MzhiMGJmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDecjQCJT6zZm4cp/HXbPyhdrY7KF1z4fpKAIY7mZGgsojT +kAhyRdOq5VwElCjNQ5O0lqxLbfdvz8PvtDizA7mzg5vpMcNNjLANx/Hvam9qDin 6CV+ea0m/1fy+yXLCv2CbQ001EMjf15aA+7+g7Lp9iRMwUVODXggrNtxYanF1YkY G5Q3G5EYe0GBU4tLZ3lxkWJUt1oOshtwT3Hwl56PQIcWJ6MwkekDzi1S7mFwaBYB 6+UHMVH5Av0PkRM9APs/apSPt/5/B7QhYKnWqZYEXIOpuU3wp5p5iR0vaNr1ATY2 OCtDBj2hEwDv+nyWrvjpKMJ4f58KarbAO/fzCdGhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUSbbuH2gHdURcJy7cBV9gfBlDlsQwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzU5M2RlMDQ3LThjYjctNDc2Ni05MzBjLTY5NzEzNjFmNWU0MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAM0gwDQYJKoZIhvcNAQELBQADggEBAFQqJpXuhKoWYLc48rmhkNkE C37sc+7Wgakqw6CmdrSBVdxsd2HgPNWQXe5AIxbvRI/YSzhv9kktqAWcNaNdPG4V AyV0g8pgh0mbybFwQumhQKGAVIZv8aXvNY78jhUXIIWefeVsIzcjnBDxdKyPhbXc P6kH0gXgJM7SUoN0NCTKlhvYFUmZKIFAQkgtvqpUGOH2eeunx5/8P4fNZLSisTui lRkOiwqYKHv2YhqVngBYzgw98i5vUVpCrZ4/AxLh/76bBdB5YSMIq9FLTgVCkr3E MYZEz2ju9NYMcnSgKEFcVfntc/cA23sfg0ZSXdmbFq+K9f0Q0WFon4SCeUCIKtQ= -----END CERTIFICATE-----Generated at Wed Nov 5 09:28:10 2025 by rpki-client