$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5b09aa2a-bbf0-4449-9bc5-76c90eeaab10.roa File: 5b09aa2a-bbf0-4449-9bc5-76c90eeaab10.roa (raw, json) Hash identifier: PALAihIvqi8/ZqgV2Q8lOslesQWN1PN9hKs9PIZ1Z0E= Subject key identifier: 2D:AB:9A:B3:1F:16:B3:D3:DA:A1:28:CB:BF:17:53:17:AF:9E:1B:D7 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 04D4F863D8FE1C2E033D52081FB68756A220C69A Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5b09aa2a-bbf0-4449-9bc5-76c90eeaab10.roa Signing time: Fri 31 Oct 2025 05:40:33 +0000 ROA not before: Fri 31 Oct 2025 05:40:33 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2a70::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:d4:f8:63:d8:fe:1c:2e:03:3d:52:08:1f:b6:87:56:a2:20:c6:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 05:40:33 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=cbb5856939856f326d09c09862cea6a7c0ad43a64c1c73b4b315a69f28ded748, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:63:f5:41:6c:d3:15:5c:46:6e:30:e8:08:f0: cd:21:5e:c2:6b:b8:15:dc:a3:ab:2f:0a:fc:a5:15: cd:d4:26:83:09:8d:4b:b1:9c:6e:89:6e:31:c2:28: c7:98:18:bb:27:65:10:0a:da:01:55:63:33:cd:3f: 9e:45:b8:e2:90:74:06:ae:9e:57:e4:bd:6f:7f:09: a6:29:ef:ee:30:50:e5:d8:ae:6f:79:b3:86:8a:ab: 66:bc:97:93:67:fa:96:da:4d:c2:0f:d1:50:c8:ad: 29:cc:28:ec:d2:01:3b:5e:dd:e6:e6:72:6e:39:e3: 5c:34:8c:2b:8d:1e:5e:76:51:fc:83:5c:c9:95:cd: 7d:58:eb:94:98:c4:b8:f5:05:13:70:a8:08:4a:0e: e5:b6:66:4b:ea:6a:99:d2:8c:c6:fc:e7:4f:08:d1: 6e:48:4d:4e:f4:68:10:cb:17:bb:f5:5f:d8:36:13: 2d:50:b5:4d:af:8d:86:62:45:ce:6e:eb:2a:5d:09: c9:d6:94:d3:b0:f0:d5:a4:69:5f:b6:b1:5d:d4:e5: 70:22:98:d4:22:be:ce:e6:90:b9:db:94:86:c4:1f: b5:95:24:e0:cd:04:c7:e0:e8:ac:f1:00:ba:c2:9d: 97:0a:2d:85:f8:e7:6e:2c:81:57:3e:36:07:c7:f5: a5:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:AB:9A:B3:1F:16:B3:D3:DA:A1:28:CB:BF:17:53:17:AF:9E:1B:D7 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5b09aa2a-bbf0-4449-9bc5-76c90eeaab10.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2a70::/45 Signature Algorithm: sha256WithRSAEncryption 63:8d:9c:53:18:ae:55:3a:4c:70:9a:74:69:42:3b:3b:14:27: 1b:5c:1a:3e:10:24:ad:a4:5f:98:ad:7f:60:db:7f:66:28:c2: d1:e6:45:9f:63:e1:31:82:2e:09:93:6d:4e:2c:0f:f6:66:8f: ed:ea:23:b3:93:97:03:8e:f6:a8:8c:f4:a2:d0:e0:00:d4:d4: 1e:9e:cc:8a:8d:a1:13:1a:b9:ea:d0:bd:42:91:49:b6:78:9f: 51:3c:9e:42:06:da:25:7c:ec:ab:6b:6f:98:bf:0c:fb:ad:c6: ce:95:be:6c:fd:4a:44:7d:76:08:23:c0:e5:75:0e:66:f6:5b: cb:e5:22:bb:79:ca:78:e5:6e:cb:55:ec:3e:be:f1:1c:00:a5: 31:f9:ad:68:79:1a:34:68:66:c2:97:bd:8c:65:02:9f:79:92: 87:61:de:1b:bd:f3:b4:ea:6e:df:5e:6a:0b:1b:b5:92:c9:c5: da:f0:53:7b:21:29:35:87:76:82:49:63:07:5c:d5:db:a1:4d: 72:ad:12:b4:be:fd:ef:c1:2e:e8:e4:8c:09:cc:06:ba:53:2f: 2f:fd:1c:0e:ff:c7:ee:35:18:21:a7:8e:ba:02:6f:47:23:73: 56:3f:df:0a:f5:8f:aa:6f:ba:d2:8b:a6:1f:9b:aa:9f:ea:28: 1d:5a:e2:d8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBNT4Y9j+HC4DPVIIH7aHVqIgxpowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDU0MDMzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYmI1ODU2OTM5ODU2ZjMyNmQwOWMwOTg2MmNlYTZhN2Mw YWQ0M2E2NGMxYzczYjRiMzE1YTY5ZjI4ZGVkNzQ4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTY/VBbNMVXEZuMOgI8M0hXsJruBXco6svCvylFc3UJoMJ jUuxnG6JbjHCKMeYGLsnZRAK2gFVYzPNP55FuOKQdAaunlfkvW9/CaYp7+4wUOXY rm95s4aKq2a8l5Nn+pbaTcIP0VDIrSnMKOzSATte3ebmcm4541w0jCuNHl52UfyD XMmVzX1Y65SYxLj1BRNwqAhKDuW2ZkvqapnSjMb8508I0W5ITU70aBDLF7v1X9g2 Ey1QtU2vjYZiRc5u6ypdCcnWlNOw8NWkaV+2sV3U5XAimNQivs7mkLnblIbEH7WV JODNBMfg6KzxALrCnZcKLYX4524sgVc+NgfH9aVFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQULauasx8Ws9PaoSjLvxdTF6+eG9cwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzViMDlhYTJhLWJiZjAtNDQ0OS05YmM1LTc2YzkwZWVhYWIxMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAKnAwDQYJKoZIhvcNAQELBQADggEBAGONnFMYrlU6THCadGlCOzsU JxtcGj4QJK2kX5itf2Dbf2YowtHmRZ9j4TGCLgmTbU4sD/Zmj+3qI7OTlwOO9qiM 9KLQ4ADU1B6ezIqNoRMauerQvUKRSbZ4n1E8nkIG2iV87Ktrb5i/DPutxs6Vvmz9 SkR9dggjwOV1Dmb2W8vlIrt5ynjlbstV7D6+8RwApTH5rWh5GjRoZsKXvYxlAp95 kodh3hu987Tqbt9eagsbtZLJxdrwU3shKTWHdoJJYwdc1duhTXKtErS+/e/BLujk jAnMBrpTLy/9HA7/x+41GCGnjroCb0cjc1Y/3wr1j6pvutKLph+bqp/qKB1a4tg= -----END CERTIFICATE-----Generated at Wed Nov 5 09:05:32 2025 by rpki-client