$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5fb81329-dd4c-4431-b285-faa1fb7e52c2.roa File: 5fb81329-dd4c-4431-b285-faa1fb7e52c2.roa (raw, json) Hash identifier: fwlILD6CZj5j7A1qD9pg3knI1XTGSfmM8MlqdRc59H8= Subject key identifier: 25:C2:F8:8E:8C:35:F7:31:1D:BF:4D:43:E9:1E:5A:94:AF:3F:28:D8 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 7871E411798987D9EA965A708311E55E4003A1D1 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5fb81329-dd4c-4431-b285-faa1fb7e52c2.roa Signing time: Fri 31 Oct 2025 06:13:37 +0000 ROA not before: Fri 31 Oct 2025 06:13:37 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3b58::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:71:e4:11:79:89:87:d9:ea:96:5a:70:83:11:e5:5e:40:03:a1:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 06:13:37 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=0cd16cbd4d2622710a981b57e8ac1ba39522eb7cf23a913db9c3b919219f53d4, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:2c:fb:89:6d:c2:e2:84:23:7c:41:0f:55:c5: bd:36:21:7a:e7:8a:87:fa:5b:8e:f6:e8:e0:d7:a1: 1e:ef:24:88:18:9c:8f:c3:4f:db:21:b4:57:62:f3: f6:b0:42:a1:50:23:ac:7b:b8:01:f6:66:63:76:4e: ca:f3:6a:ea:43:cd:ca:bf:b2:b4:77:39:8b:54:59: 71:bd:1c:19:48:e5:c2:14:2d:82:60:49:4b:e6:7a: f5:54:4e:9b:c2:4d:b1:09:1d:ab:b4:52:4d:3a:47: c9:d2:9f:5c:84:98:7f:f1:04:52:1a:25:4f:44:0d: 97:72:93:07:70:8c:5f:b1:df:ad:f7:0e:ea:ec:2d: 65:c6:df:99:f4:f7:3f:e6:1d:26:07:50:25:61:67: 5c:6c:e6:12:d5:6d:4c:ce:44:0e:1c:5b:1c:d9:b7: 30:8c:e0:50:3e:bf:a1:18:89:fa:1f:22:f8:32:24: 10:bd:de:8e:77:48:6c:5d:5a:37:1e:9f:0c:e6:57: d6:d4:80:4a:8e:ad:ea:08:72:32:79:1d:eb:df:55: 4c:ca:36:57:7f:a2:84:3b:c5:ce:19:fa:d7:59:3a: a0:7a:27:b9:5e:39:8c:eb:05:ac:c0:34:27:08:f1: 32:20:c8:e7:2b:45:84:bb:b1:0c:3a:c3:20:7b:30: b4:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:C2:F8:8E:8C:35:F7:31:1D:BF:4D:43:E9:1E:5A:94:AF:3F:28:D8 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5fb81329-dd4c-4431-b285-faa1fb7e52c2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3b58::/45 Signature Algorithm: sha256WithRSAEncryption 92:9c:38:af:63:52:da:a0:59:c0:b6:bc:4f:c9:0e:29:28:d9: 26:ae:40:bf:da:3e:7d:1f:01:14:70:59:62:d6:fa:c2:1a:e1: f1:f8:a2:17:01:ae:e4:08:57:4b:af:b9:88:7a:ea:64:40:70: 22:a9:ac:56:b6:3c:3f:f4:79:a8:88:ae:0d:ee:1e:85:86:0f: 30:be:ba:58:d5:fb:5e:ff:9c:4e:8a:96:97:a4:6a:80:1f:35: f9:e0:94:90:41:ea:76:63:cc:b0:86:4e:68:99:e4:6a:95:6b: a3:72:56:1d:ed:65:36:f4:33:f5:2a:8b:c9:c3:70:b8:b4:b2: bd:cd:8a:88:99:0c:1c:30:b4:34:4f:05:78:0c:cc:21:74:97: 44:5f:c6:a4:cc:3d:09:6c:cd:ee:05:b1:e1:b9:1e:9f:1c:73: 3f:7d:b2:9c:a9:23:08:8e:43:0e:3d:ce:60:d0:f7:94:9b:fd: 0d:3e:68:10:b0:9f:ed:fe:a9:52:41:ee:c2:6b:9e:5e:84:89: 17:bd:f7:fd:9e:ae:98:b2:67:c9:2b:74:e0:96:ae:b9:ae:27: cf:9c:02:5f:15:3d:33:1d:c6:1e:50:ca:c3:98:4e:f6:7d:01: 6f:1c:0a:98:54:55:27:b0:77:c0:4e:d0:01:4f:e6:7c:ad:70: e3:1c:f0:40 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUeHHkEXmJh9nqllpwgxHlXkADodEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDYxMzM3WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwY2QxNmNiZDRkMjYyMjcxMGE5ODFiNTdlOGFjMWJhMzk1 MjJlYjdjZjIzYTkxM2RiOWMzYjkxOTIxOWY1M2Q0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXLPuJbcLihCN8QQ9Vxb02IXrniof6W4726ODXoR7vJIgY nI/DT9shtFdi8/awQqFQI6x7uAH2ZmN2TsrzaupDzcq/srR3OYtUWXG9HBlI5cIU LYJgSUvmevVUTpvCTbEJHau0Uk06R8nSn1yEmH/xBFIaJU9EDZdykwdwjF+x3633 DursLWXG35n09z/mHSYHUCVhZ1xs5hLVbUzORA4cWxzZtzCM4FA+v6EYifofIvgy JBC93o53SGxdWjcenwzmV9bUgEqOreoIcjJ5HevfVUzKNld/ooQ7xc4Z+tdZOqB6 J7leOYzrBazANCcI8TIgyOcrRYS7sQw6wyB7MLQdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUJcL4jow19zEdv01D6R5alK8/KNgwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzVmYjgxMzI5LWRkNGMtNDQzMS1iMjg1LWZhYTFmYjdlNTJjMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAO1gwDQYJKoZIhvcNAQELBQADggEBAJKcOK9jUtqgWcC2vE/JDiko 2SauQL/aPn0fARRwWWLW+sIa4fH4ohcBruQIV0uvuYh66mRAcCKprFa2PD/0eaiI rg3uHoWGDzC+uljV+17/nE6KlpekaoAfNfnglJBB6nZjzLCGTmiZ5GqVa6NyVh3t ZTb0M/Uqi8nDcLi0sr3NioiZDBwwtDRPBXgMzCF0l0RfxqTMPQlsze4FseG5Hp8c cz99spypIwiOQw49zmDQ95Sb/Q0+aBCwn+3+qVJB7sJrnl6EiRe99/2erpiyZ8kr dOCWrrmuJ8+cAl8VPTMdxh5QysOYTvZ9AW8cCphUVSewd8BO0AFP5nytcOMc8EA= -----END CERTIFICATE-----Generated at Wed Nov 5 09:05:40 2025 by rpki-client