$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5fd3bfe5-aadd-4b93-9588-987237a728a0.roa File: 5fd3bfe5-aadd-4b93-9588-987237a728a0.roa (raw, json) Hash identifier: 4PtLfaQsETD3Fi5W6a1hNqeXpPhTZ+RT0eZJtkEQcSI= Subject key identifier: B2:31:CD:F8:41:38:2F:E4:01:89:B6:F3:75:55:34:BB:CE:79:55:07 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 19C5D6686C64D2BC894719571DF321411F43FDD0 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5fd3bfe5-aadd-4b93-9588-987237a728a0.roa Signing time: Fri 31 Oct 2025 05:08:59 +0000 ROA not before: Fri 31 Oct 2025 05:08:59 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1438::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:c5:d6:68:6c:64:d2:bc:89:47:19:57:1d:f3:21:41:1f:43:fd:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 05:08:59 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=c09eabb5cb91e850bc1094734d105c46fe62876620f258e8dc0072ac8718fa7a, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:43:1b:4b:36:5b:25:66:73:90:f1:5e:4e:ba: 0e:4a:fc:63:3e:0c:5d:83:17:17:26:13:11:dd:c4: e9:07:c5:4e:1f:da:58:01:1b:cb:61:fb:7a:0b:87: d0:e6:f8:bb:35:04:90:16:c9:f5:01:90:15:cb:44: 2e:1a:f1:ef:d0:2f:f0:2a:e7:40:46:77:e7:45:15: af:b0:08:33:52:f5:a0:60:75:c5:6a:7f:29:8d:87: e2:45:52:95:8f:7c:99:9f:60:09:75:46:e7:d1:20: 81:29:b7:03:05:94:a5:b1:df:16:bd:e5:3c:09:60: 0c:a0:c4:1f:aa:55:fe:04:6d:8a:8f:23:8a:f7:29: aa:a6:1a:0c:30:32:41:c0:37:52:49:df:5f:13:de: b2:08:54:f1:0f:78:20:b7:2d:58:b6:c2:6f:a6:db: dd:d4:4a:21:09:a9:5a:f9:2f:16:d1:09:58:ca:e9: f8:ed:47:fc:88:f2:4a:91:ab:49:29:0d:85:9b:26: a9:b2:96:86:04:bc:6e:fc:3f:10:a7:89:59:cf:5f: 25:d5:b1:c9:6c:c2:2a:40:0b:a5:24:bd:03:a2:e9: 0c:06:36:bb:32:ec:09:e7:c2:c8:43:2e:54:e7:2f: 9f:fa:34:52:e2:26:34:ed:58:8b:bd:f7:c0:00:d1: c3:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:31:CD:F8:41:38:2F:E4:01:89:B6:F3:75:55:34:BB:CE:79:55:07 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5fd3bfe5-aadd-4b93-9588-987237a728a0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1438::/45 Signature Algorithm: sha256WithRSAEncryption 3a:b1:d3:91:15:48:0a:ce:a1:4b:b4:e5:d2:d6:25:e4:4d:a8: 76:dc:ee:a8:66:38:82:7c:1f:71:e3:89:1d:75:ff:69:a1:d6: b0:0e:99:1f:6d:61:d8:20:1c:b1:e1:a3:e1:2e:c1:c8:31:d3: f1:1a:51:cb:53:b1:8f:5e:4b:72:8f:dd:56:13:65:40:84:2e: 3e:c9:99:8e:e7:df:dc:dc:e9:a9:c4:24:09:35:7f:5a:c3:95: 35:25:31:87:31:1b:c7:f5:52:30:4d:b6:8e:1b:38:e2:63:32: a4:5c:87:1b:53:ee:cb:53:69:b7:1f:77:d3:a8:9e:7e:51:b2: aa:25:4d:a5:2d:80:24:37:4b:c7:35:a1:10:3f:6a:2b:65:e7: ff:40:2b:d5:be:a3:e2:b9:c0:be:5a:bf:48:b6:34:47:cf:89: 82:e2:87:de:c9:b4:50:80:80:15:a6:47:96:cf:d0:d6:8a:97: 81:f0:a5:39:a6:fc:f8:36:9d:22:9b:1d:1b:b2:3b:ef:5f:e5: cf:ed:f6:08:e5:5a:f9:1a:c3:44:eb:60:d2:5d:3c:59:2b:19: ac:cb:70:3b:ee:2b:72:3e:78:b2:16:3d:50:f1:95:69:c1:68: d2:c4:97:d8:dd:5f:40:55:e1:76:f5:b1:2b:49:5d:45:86:a7: 62:51:1c:26 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGcXWaGxk0ryJRxlXHfMhQR9D/dAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDUwODU5WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMDllYWJiNWNiOTFlODUwYmMxMDk0NzM0ZDEwNWM0NmZl NjI4NzY2MjBmMjU4ZThkYzAwNzJhYzg3MThmYTdhMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpQxtLNlslZnOQ8V5Oug5K/GM+DF2DFxcmExHdxOkHxU4f 2lgBG8th+3oLh9Dm+Ls1BJAWyfUBkBXLRC4a8e/QL/Aq50BGd+dFFa+wCDNS9aBg dcVqfymNh+JFUpWPfJmfYAl1RufRIIEptwMFlKWx3xa95TwJYAygxB+qVf4EbYqP I4r3KaqmGgwwMkHAN1JJ318T3rIIVPEPeCC3LVi2wm+m293USiEJqVr5LxbRCVjK 6fjtR/yI8kqRq0kpDYWbJqmyloYEvG78PxCniVnPXyXVsclswipAC6UkvQOi6QwG Nrsy7AnnwshDLlTnL5/6NFLiJjTtWIu998AA0cP7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUsjHN+EE4L+QBibbzdVU0u855VQcwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzVmZDNiZmU1LWFhZGQtNGI5My05NTg4LTk4NzIzN2E3MjhhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAFDgwDQYJKoZIhvcNAQELBQADggEBADqx05EVSArOoUu05dLWJeRN qHbc7qhmOIJ8H3HjiR11/2mh1rAOmR9tYdggHLHho+Euwcgx0/EaUctTsY9eS3KP 3VYTZUCELj7JmY7n39zc6anEJAk1f1rDlTUlMYcxG8f1UjBNto4bOOJjMqRchxtT 7stTabcfd9Oonn5RsqolTaUtgCQ3S8c1oRA/aitl5/9AK9W+o+K5wL5av0i2NEfP iYLih97JtFCAgBWmR5bP0NaKl4HwpTmm/Pg2nSKbHRuyO+9f5c/t9gjlWvkaw0Tr YNJdPFkrGazLcDvuK3I+eLIWPVDxlWnBaNLEl9jdX0BV4Xb1sStJXUWGp2JRHCY= -----END CERTIFICATE-----Generated at Wed Nov 5 15:27:34 2025 by rpki-client