$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/60a34d26-3383-4928-aa22-a325a80a651a.roa File: 60a34d26-3383-4928-aa22-a325a80a651a.roa (raw, json) Hash identifier: wtbIcDpboLHbHAivFRox0a0jvgpd/DQltp3l3ycPOb8= Subject key identifier: 4A:CD:80:4D:52:B7:01:75:17:CB:4E:04:4E:88:4C:70:CF:90:3D:77 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 184159F98E0619095CE16A848D319F5AC3017711 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/60a34d26-3383-4928-aa22-a325a80a651a.roa Signing time: Thu 30 Oct 2025 23:08:37 +0000 ROA not before: Thu 30 Oct 2025 23:08:37 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2b1c::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:41:59:f9:8e:06:19:09:5c:e1:6a:84:8d:31:9f:5a:c3:01:77:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 23:08:37 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=adaa9da875d7a644b74d90ced0b6e8daaefefdd5c6f1a269fe73db81a5c91ead, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:8c:22:67:ef:8b:51:ee:dc:fa:ae:c3:8e:27: 82:6d:58:4b:cb:3a:4a:a1:1a:52:ce:d8:7f:7d:4d: 13:f3:32:1d:b9:b4:66:ff:7b:fc:47:f4:bf:ab:96: b9:25:dc:bc:6b:8e:e9:69:a2:29:9e:a5:1d:a8:99: be:40:ca:99:32:dc:00:c8:b2:9e:e5:93:cd:c9:fb: ef:ff:86:0f:c9:cf:50:0b:8f:7a:cc:cb:24:77:1f: 01:8b:07:75:c4:4f:2a:72:cc:70:b5:10:51:27:af: 88:c1:c9:f6:7e:28:01:09:42:ee:14:56:2c:2e:46: 6d:78:9f:d3:68:56:91:6e:45:7b:61:c8:f6:68:8b: 75:ab:f5:57:b3:dd:36:c2:4c:45:49:aa:7e:29:f3: 63:4a:9d:72:5a:f6:11:8b:85:14:58:83:0f:c3:fd: f8:1c:5a:1c:e1:c5:7a:38:8e:c0:e2:56:c9:50:60: c4:3c:12:b5:3a:69:15:c6:37:a2:0b:9c:0f:e8:5f: 1b:d7:e6:d7:63:38:66:c7:9c:92:07:77:fd:f1:4a: b5:1d:2e:50:a1:21:cc:d2:5f:cd:21:0b:fe:a2:67: 87:09:0b:cf:ea:dd:b2:40:24:c5:6e:a5:01:b1:0d: 54:0e:aa:9c:f6:57:cd:63:62:4e:a1:d8:c4:d4:b1: 6a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:CD:80:4D:52:B7:01:75:17:CB:4E:04:4E:88:4C:70:CF:90:3D:77 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/60a34d26-3383-4928-aa22-a325a80a651a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2b1c::/47 Signature Algorithm: sha256WithRSAEncryption 0d:f2:44:6c:04:f3:f3:17:96:b7:11:76:b1:18:34:7f:33:78: 8e:55:a2:43:80:a2:5a:95:44:59:3e:13:c6:f0:f1:9d:ff:57: fb:75:db:19:10:1e:b6:8e:c3:fd:db:b4:16:bb:ba:95:04:d6: 21:a3:4c:98:78:13:17:de:25:3d:87:94:63:9c:32:4b:5f:97: 82:d2:e7:08:8f:bf:91:fd:ac:de:a5:2d:81:59:65:41:bc:37: 90:14:d1:9c:04:f7:73:7e:83:3f:77:41:10:6a:4d:21:be:c8: a6:9a:a9:e6:d2:9d:e6:48:3e:29:7e:6b:54:b7:e1:1c:e1:6b: 8a:01:86:68:fa:c1:49:6e:63:01:3b:91:5e:24:5a:d8:fd:7d: 77:14:b2:07:12:ec:8b:e3:a6:f4:0a:c0:20:76:6e:f0:bc:60: c7:1a:13:53:c6:64:04:69:0d:aa:18:e5:fc:32:47:2a:21:b0: b6:95:67:32:46:e2:b1:c1:26:5d:80:14:13:12:3a:d5:d1:de: 27:e3:8f:e8:39:ec:78:0f:17:f0:ea:7a:4d:d9:79:1a:22:49: 24:16:52:78:b3:50:11:5f:47:ea:f1:c6:6e:71:e9:a7:8c:5c: 7e:6c:ee:93:0d:81:b3:d5:30:e4:dd:fa:2e:92:9a:79:13:d7: 6b:c9:94:34 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGEFZ+Y4GGQlc4WqEjTGfWsMBdxEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjMwODM3WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZGFhOWRhODc1ZDdhNjQ0Yjc0ZDkwY2VkMGI2ZThkYWFl ZmVmZGQ1YzZmMWEyNjlmZTczZGI4MWE1YzkxZWFkMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdjCJn74tR7tz6rsOOJ4JtWEvLOkqhGlLO2H99TRPzMh25 tGb/e/xH9L+rlrkl3LxrjulpoimepR2omb5Aypky3ADIsp7lk83J++//hg/Jz1AL j3rMyyR3HwGLB3XETypyzHC1EFEnr4jByfZ+KAEJQu4UViwuRm14n9NoVpFuRXth yPZoi3Wr9Vez3TbCTEVJqn4p82NKnXJa9hGLhRRYgw/D/fgcWhzhxXo4jsDiVslQ YMQ8ErU6aRXGN6ILnA/oXxvX5tdjOGbHnJIHd/3xSrUdLlChIczSX80hC/6iZ4cJ C8/q3bJAJMVupQGxDVQOqpz2V81jYk6h2MTUsWpVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUSs2ATVK3AXUXy04ETohMcM+QPXcwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzYwYTM0ZDI2LTMzODMtNDkyOC1hYTIyLWEzMjVhODBhNjUxYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAKxwwDQYJKoZIhvcNAQELBQADggEBAA3yRGwE8/MXlrcRdrEYNH8z eI5VokOAolqVRFk+E8bw8Z3/V/t12xkQHraOw/3btBa7upUE1iGjTJh4ExfeJT2H lGOcMktfl4LS5wiPv5H9rN6lLYFZZUG8N5AU0ZwE93N+gz93QRBqTSG+yKaaqebS neZIPil+a1S34Rzha4oBhmj6wUluYwE7kV4kWtj9fXcUsgcS7IvjpvQKwCB2bvC8 YMcaE1PGZARpDaoY5fwyRyohsLaVZzJG4rHBJl2AFBMSOtXR3ifjj+g57HgPF/Dq ek3ZeRoiSSQWUnizUBFfR+rxxm5x6aeMXH5s7pMNgbPVMOTd+i6SmnkT12vJlDQ= -----END CERTIFICATE-----Generated at Wed Nov 5 07:46:01 2025 by rpki-client