$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/60a5de58-393a-4913-a069-cac0fc54d013.roa File: 60a5de58-393a-4913-a069-cac0fc54d013.roa (raw, json) Hash identifier: 9sKBG23cdOodUJlhvXsWqC7TTyMAKv+OKbECL17KqKQ= Subject key identifier: 03:0F:CC:05:01:7D:B9:87:45:85:E0:7F:47:15:22:FA:46:E9:CB:1A Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5B86D80F7079492E80030905BBB94AEE05574296 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/60a5de58-393a-4913-a069-cac0fc54d013.roa Signing time: Fri 31 Oct 2025 03:37:04 +0000 ROA not before: Fri 31 Oct 2025 03:37:04 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2ba0::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:86:d8:0f:70:79:49:2e:80:03:09:05:bb:b9:4a:ee:05:57:42:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 03:37:04 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=79a9d2e1d817c709da0851eb5f80ea57d27219d69f6088d2db3359f786f3f6f4, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:ac:18:63:85:8b:38:7d:0a:63:5a:dc:a4:49: 7e:4c:c6:b8:6f:16:5f:31:e4:f2:f8:fd:6f:50:23: be:44:2d:37:a4:98:42:e5:d5:33:43:b6:94:9c:bf: 55:49:17:50:6e:64:40:f3:c7:29:f0:ca:58:79:a6: 78:1e:d4:74:a6:39:96:96:b9:18:85:c7:e2:34:e1: ec:58:f2:2c:f3:a7:40:07:46:68:d0:03:0a:aa:8c: 4b:21:da:16:e6:2f:0a:e9:35:ce:2d:d5:68:f7:46: 1a:40:6f:05:a6:49:66:fe:33:c0:5e:91:62:ca:70: 57:1e:d4:a1:d2:99:9e:d2:96:c4:59:d6:70:f6:3f: 57:d3:04:24:0f:e8:f5:7d:78:9f:86:36:e9:9c:47: af:d0:11:9e:b3:2a:a8:27:ff:05:61:43:f9:a3:55: a7:1a:15:41:ec:3e:a4:f0:27:35:01:c8:52:b4:c7: 7d:0a:a5:d2:7a:62:31:57:19:8f:ec:3f:74:78:85: 21:89:60:85:94:58:74:7f:47:5f:63:38:71:2f:38: ac:81:59:ba:a5:aa:f0:cd:90:19:82:60:f1:d0:90: 9d:a3:3a:33:92:31:97:fd:1c:2f:c4:fb:56:13:2b: 34:92:24:62:e0:0b:e5:da:1e:ae:17:61:53:52:54: d4:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:0F:CC:05:01:7D:B9:87:45:85:E0:7F:47:15:22:FA:46:E9:CB:1A X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/60a5de58-393a-4913-a069-cac0fc54d013.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2ba0::/46 Signature Algorithm: sha256WithRSAEncryption 24:76:8c:05:bc:50:f9:82:fd:10:88:19:f8:ae:d2:fa:92:1c: a0:2c:e7:57:5f:c8:68:f9:0c:9d:81:ad:4e:3f:05:be:89:94: 09:8e:c6:bd:d9:7c:a8:23:b6:3c:f7:f8:67:1f:77:0f:21:82: d2:30:ee:7d:14:84:41:28:09:b8:72:46:6e:a6:26:1a:52:85: d8:14:47:9e:e8:b3:1e:9f:f0:b1:d7:ef:4e:02:77:ff:c6:b2: 27:f1:cb:8b:66:5b:3b:ad:c8:90:36:03:57:9f:44:80:c1:75: ae:44:97:43:69:d6:a7:7a:15:6d:a0:4f:0a:31:60:62:4d:e0: 9e:d2:80:42:5a:56:b0:b8:de:0d:cf:15:48:1d:34:68:b7:d8: 89:6f:8d:42:0b:b4:cd:21:c6:54:84:11:22:6e:32:4b:2c:2b: 6c:4e:eb:ce:c8:52:5d:8f:19:ee:ee:d0:7a:71:43:8d:a5:25: 13:2e:e3:93:d0:e2:a8:4c:ad:74:f9:5f:ea:67:04:64:42:1a: c0:9d:d3:a1:f5:38:3a:8e:4f:c9:29:c5:8b:f0:d5:40:08:3f: e1:de:4b:ad:39:e9:69:aa:a8:91:a0:67:04:d0:9a:f5:ea:f1: d7:7a:61:ce:73:f4:ca:29:72:df:87:da:b4:29:7c:0f:30:13: 3a:0e:8b:bf -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUW4bYD3B5SS6AAwkFu7lK7gVXQpYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDMzNzA0WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3OWE5ZDJlMWQ4MTdjNzA5ZGEwODUxZWI1ZjgwZWE1N2Qy NzIxOWQ2OWY2MDg4ZDJkYjMzNTlmNzg2ZjNmNmY0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXrBhjhYs4fQpjWtykSX5MxrhvFl8x5PL4/W9QI75ELTek mELl1TNDtpScv1VJF1BuZEDzxynwylh5pnge1HSmOZaWuRiFx+I04exY8izzp0AH RmjQAwqqjEsh2hbmLwrpNc4t1Wj3RhpAbwWmSWb+M8BekWLKcFce1KHSmZ7SlsRZ 1nD2P1fTBCQP6PV9eJ+GNumcR6/QEZ6zKqgn/wVhQ/mjVacaFUHsPqTwJzUByFK0 x30KpdJ6YjFXGY/sP3R4hSGJYIWUWHR/R19jOHEvOKyBWbqlqvDNkBmCYPHQkJ2j OjOSMZf9HC/E+1YTKzSSJGLgC+XaHq4XYVNSVNQlAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUAw/MBQF9uYdFheB/RxUi+kbpyxowHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzYwYTVkZTU4LTM5M2EtNDkxMy1hMDY5LWNhYzBmYzU0ZDAxMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAK6AwDQYJKoZIhvcNAQELBQADggEBACR2jAW8UPmC/RCIGfiu0vqS HKAs51dfyGj5DJ2BrU4/Bb6JlAmOxr3ZfKgjtjz3+Gcfdw8hgtIw7n0UhEEoCbhy Rm6mJhpShdgUR57osx6f8LHX704Cd//Gsifxy4tmWzutyJA2A1efRIDBda5El0Np 1qd6FW2gTwoxYGJN4J7SgEJaVrC43g3PFUgdNGi32IlvjUILtM0hxlSEESJuMkss K2xO687IUl2PGe7u0HpxQ42lJRMu45PQ4qhMrXT5X+pnBGRCGsCd06H1ODqOT8kp xYvw1UAIP+HeS6056WmqqJGgZwTQmvXq8dd6Yc5z9Mopct+H2rQpfA8wEzoOi78= -----END CERTIFICATE-----Generated at Wed Nov 5 05:36:23 2025 by rpki-client