$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5ecbf5fb-ddc1-48cb-bba6-2702854e5045.roa File: 5ecbf5fb-ddc1-48cb-bba6-2702854e5045.roa (raw, json) Hash identifier: W9F5YL4AQPuEMqwh+ZPa4nEo9QNZPO31Z9wKyPrpT2g= Subject key identifier: 5B:82:AC:E9:85:42:6F:6B:81:F5:08:A3:20:9E:DD:FA:91:7F:A9:DC Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 57D263DCB5CDA44D25212F3FFFDA3A7E406E0FF7 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5ecbf5fb-ddc1-48cb-bba6-2702854e5045.roa Signing time: Thu 30 Oct 2025 23:38:56 +0000 ROA not before: Thu 30 Oct 2025 23:38:56 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2e68::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:d2:63:dc:b5:cd:a4:4d:25:21:2f:3f:ff:da:3a:7e:40:6e:0f:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 23:38:56 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=67ac313fd6ca8cfcfc731a2cc5344da4a0b81d3363501152a3a882adc44d1390, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:0f:49:85:0e:7e:98:ac:4d:fa:48:62:2e:cf: 05:37:c5:d7:09:6d:c5:9f:b6:84:5e:cd:89:b2:71: 5f:d7:a9:f1:2d:c1:43:9a:85:f1:9e:c9:00:e5:58: 15:e2:d5:ca:43:0a:e7:85:44:7b:55:4b:6e:2e:15: dd:61:38:d8:24:f5:1a:f0:f7:99:de:8d:1b:f3:ff: c6:8c:59:06:b2:30:eb:8c:7e:0e:6b:a2:ae:92:01: 0a:41:9f:89:4c:17:8d:6a:a0:31:10:36:f9:2c:4b: c9:f4:70:5e:08:a4:b5:f7:f6:82:9f:a1:d8:ba:45: 89:3f:9e:71:3c:1b:e9:76:70:23:bc:b1:a3:03:d2: c6:5b:d7:b8:fb:5f:4f:b2:09:8d:c3:d5:bd:25:fe: 9d:37:11:65:04:e0:c8:fb:09:46:b5:28:3a:44:ed: f5:bf:2e:ee:39:e1:26:8d:4c:2f:cb:39:91:37:65: d5:fb:9a:bf:a0:65:ab:21:aa:6d:b9:e0:eb:18:ec: 89:92:e5:d2:f1:bc:c9:3e:f7:d5:02:57:69:c6:d1: a7:08:74:54:d8:f0:ef:5e:e5:fc:f2:68:b2:b2:db: da:b3:d6:81:13:16:b9:6d:e3:77:bd:82:38:3e:fb: 6a:db:2a:53:26:bc:d9:fa:56:b8:4b:8b:d6:16:5c: a6:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:82:AC:E9:85:42:6F:6B:81:F5:08:A3:20:9E:DD:FA:91:7F:A9:DC X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5ecbf5fb-ddc1-48cb-bba6-2702854e5045.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2e68::/47 Signature Algorithm: sha256WithRSAEncryption 17:ed:73:90:2e:90:6d:c1:31:2a:2e:c8:1c:2a:27:9f:f9:8b: 3e:14:ba:2f:35:8d:0a:13:0a:0c:44:4a:67:77:2b:50:49:e4: 71:96:fc:55:74:05:55:5b:b8:80:82:4f:77:9f:f7:b8:e8:e5: d3:cf:8d:32:56:ff:b4:13:7f:d2:c5:e1:aa:8b:a7:43:60:0e: 78:e7:7f:6d:41:1b:89:77:10:ae:fc:ef:fe:83:b8:ea:10:76: 2d:47:57:b1:e7:ff:e6:b8:6e:51:9e:9b:f9:3b:8a:1b:ca:bc: 88:74:bb:05:eb:52:59:20:9b:d0:2e:54:4d:c0:1b:59:d3:cb: a2:b1:b1:80:d3:1a:2c:99:b2:a9:d2:e7:3b:46:bf:71:ce:72: a8:03:74:c9:1f:a7:35:5e:79:b9:f0:9e:55:0e:37:12:e5:d0: ab:ed:6e:f4:23:8b:67:39:56:ee:68:be:ec:31:f0:59:cc:e5: f5:d8:7c:57:93:df:ca:9d:b1:ab:eb:f9:fb:aa:9e:66:61:db: 81:ab:d5:7c:6e:37:c3:d2:0a:8c:ba:c0:99:ed:1c:df:18:f0: b8:7e:b0:da:1b:4c:ae:35:1c:b0:60:e3:54:53:99:95:bc:c6: 19:7b:e3:80:08:54:f1:43:4b:df:43:84:cd:9a:72:29:2d:c5: c3:2a:52:6f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUV9Jj3LXNpE0lIS8//9o6fkBuD/cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjMzODU2WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2N2FjMzEzZmQ2Y2E4Y2ZjZmM3MzFhMmNjNTM0NGRhNGEw YjgxZDMzNjM1MDExNTJhM2E4ODJhZGM0NGQxMzkwMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5D0mFDn6YrE36SGIuzwU3xdcJbcWftoRezYmycV/XqfEt wUOahfGeyQDlWBXi1cpDCueFRHtVS24uFd1hONgk9Rrw95nejRvz/8aMWQayMOuM fg5roq6SAQpBn4lMF41qoDEQNvksS8n0cF4IpLX39oKfodi6RYk/nnE8G+l2cCO8 saMD0sZb17j7X0+yCY3D1b0l/p03EWUE4Mj7CUa1KDpE7fW/Lu454SaNTC/LOZE3 ZdX7mr+gZashqm254OsY7ImS5dLxvMk+99UCV2nG0acIdFTY8O9e5fzyaLKy29qz 1oETFrlt43e9gjg++2rbKlMmvNn6VrhLi9YWXKbpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUW4Ks6YVCb2uB9QijIJ7d+pF/qdwwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzVlY2JmNWZiLWRkYzEtNDhjYi1iYmE2LTI3MDI4NTRlNTA0NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAALmgwDQYJKoZIhvcNAQELBQADggEBABftc5AukG3BMSouyBwqJ5/5 iz4Uui81jQoTCgxESmd3K1BJ5HGW/FV0BVVbuICCT3ef97jo5dPPjTJW/7QTf9LF 4aqLp0NgDnjnf21BG4l3EK787/6DuOoQdi1HV7Hn/+a4blGem/k7ihvKvIh0uwXr Ulkgm9AuVE3AG1nTy6KxsYDTGiyZsqnS5ztGv3HOcqgDdMkfpzVeebnwnlUONxLl 0KvtbvQji2c5Vu5ovuwx8FnM5fXYfFeT38qdsavr+fuqnmZh24Gr1XxuN8PSCoy6 wJntHN8Y8Lh+sNobTK41HLBg41RTmZW8xhl744AIVPFDS99DhM2aciktxcMqUm8= -----END CERTIFICATE-----Generated at Wed Nov 5 07:45:48 2025 by rpki-client