$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/628b7e96-f45a-4ef9-b122-518e9bd2a984.roa File: 628b7e96-f45a-4ef9-b122-518e9bd2a984.roa (raw, json) Hash identifier: glY556QtNJff9Gm0T6ue+rZlQkodlMCmpm/647h5juA= Subject key identifier: BB:94:EC:D8:81:27:3F:52:B6:5E:9C:47:22:2C:C5:EA:C4:ED:BC:FD Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 084611820F7F83982914CE859EA85DCAADEE7827 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/628b7e96-f45a-4ef9-b122-518e9bd2a984.roa Signing time: Fri 31 Oct 2025 07:13:03 +0000 ROA not before: Fri 31 Oct 2025 07:13:03 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1c60::/43 maxlen: 43 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:46:11:82:0f:7f:83:98:29:14:ce:85:9e:a8:5d:ca:ad:ee:78:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 07:13:03 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=cd5ad22c014e0371cba94d0c972109ec9ba005e3709a224eb6d9bb77ddd7040c, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:1d:0d:89:cf:46:08:80:12:4a:bf:78:6d:15: 75:8a:5e:ca:a5:76:46:f8:f5:ce:20:75:b8:d2:8e: 4c:b2:fc:f3:14:24:00:f1:80:0c:18:d3:33:f9:9c: b1:98:10:b5:88:48:46:25:82:22:b9:ab:8e:da:04: e6:71:40:9b:07:02:3f:e1:fb:5a:ac:65:46:e2:5b: fa:58:00:59:b2:47:b7:08:55:3c:49:44:4f:de:16: b4:e4:b7:c1:f3:3f:49:91:62:0f:54:c5:d4:a9:7b: bc:a1:e7:6e:44:c4:05:87:ca:e8:7b:08:87:f3:fc: 8f:d5:3d:3a:aa:2b:64:f8:18:6b:9e:a9:4a:c3:f1: 09:25:13:00:00:50:28:69:49:3a:69:4c:65:5b:14: 43:dd:4f:2b:84:0a:22:42:48:3a:8b:be:d0:58:35: 6a:a4:a0:6d:26:02:ee:0d:ad:2b:2f:e0:c9:c1:00: 1e:c3:d5:e7:fa:06:a1:e9:ea:2d:b8:db:16:76:64: 56:fc:2e:ed:cb:b6:8a:c1:d2:6a:3d:76:93:bb:d1: 26:ed:09:81:6e:bd:ed:e0:8d:84:1b:75:c7:04:0d: 12:3d:dc:dc:f1:2c:48:c4:c2:02:47:c5:0c:a7:c9: 41:b5:31:cd:6b:7a:31:53:11:5a:72:db:f2:1a:99: 2b:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:94:EC:D8:81:27:3F:52:B6:5E:9C:47:22:2C:C5:EA:C4:ED:BC:FD X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/628b7e96-f45a-4ef9-b122-518e9bd2a984.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1c60::/43 Signature Algorithm: sha256WithRSAEncryption 5a:69:5e:30:8c:89:43:05:a8:5a:9a:df:7e:6a:60:c4:c2:2d: d6:c1:31:22:93:2d:54:76:15:5e:55:6a:d1:bf:2f:84:b5:ba: 3b:5e:fd:bc:c6:2f:ae:61:3e:36:95:a6:a1:28:43:ea:46:4b: fb:30:dd:f1:df:18:92:98:df:7b:9e:5c:a8:6b:e8:23:7a:26: 3b:87:c8:92:18:35:92:02:30:23:20:8f:4f:ed:79:8b:af:ae: 8f:cb:18:ad:18:a4:05:ff:45:8a:31:9e:0f:54:d2:6b:2f:66: 6b:47:83:8f:86:2d:74:a1:45:a7:52:97:00:ae:18:c7:13:93: 99:c1:cd:33:83:62:20:d3:08:40:76:f8:38:16:d7:d3:82:d7: 1f:4b:47:51:45:91:4c:aa:ee:01:42:80:98:0a:e9:dc:6d:f7: 60:ba:1e:33:ba:24:dc:c2:19:7f:ef:05:7d:99:46:e9:88:9e: bd:a1:9d:04:b6:ab:a1:92:6e:6f:d6:08:9c:c7:46:12:64:d6: 56:f7:63:29:ef:94:da:7c:c7:ee:69:a4:a3:8e:d2:06:6d:2f: 75:e1:9e:48:ce:a9:5b:06:c3:9a:35:ce:8e:0d:f4:44:4f:7a: 42:dc:e6:c3:54:5d:bc:bf:4a:77:c7:c4:8a:7c:bc:90:d3:60: cc:5d:15:4e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCEYRgg9/g5gpFM6Fnqhdyq3ueCcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDcxMzAzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZDVhZDIyYzAxNGUwMzcxY2JhOTRkMGM5NzIxMDllYzli YTAwNWUzNzA5YTIyNGViNmQ5YmI3N2RkZDcwNDBjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD6HQ2Jz0YIgBJKv3htFXWKXsqldkb49c4gdbjSjkyy/PMU JADxgAwY0zP5nLGYELWISEYlgiK5q47aBOZxQJsHAj/h+1qsZUbiW/pYAFmyR7cI VTxJRE/eFrTkt8HzP0mRYg9UxdSpe7yh525ExAWHyuh7CIfz/I/VPTqqK2T4GGue qUrD8QklEwAAUChpSTppTGVbFEPdTyuECiJCSDqLvtBYNWqkoG0mAu4NrSsv4MnB AB7D1ef6BqHp6i242xZ2ZFb8Lu3LtorB0mo9dpO70SbtCYFuve3gjYQbdccEDRI9 3NzxLEjEwgJHxQynyUG1Mc1rejFTEVpy2/IamSvBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUu5Ts2IEnP1K2XpxHIizF6sTtvP0wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzYyOGI3ZTk2LWY0NWEtNGVmOS1iMTIyLTUxOGU5YmQyYTk4NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwUmAJAAHGAwDQYJKoZIhvcNAQELBQADggEBAFppXjCMiUMFqFqa335qYMTC LdbBMSKTLVR2FV5VatG/L4S1ujte/bzGL65hPjaVpqEoQ+pGS/sw3fHfGJKY33ue XKhr6CN6JjuHyJIYNZICMCMgj0/teYuvro/LGK0YpAX/RYoxng9U0msvZmtHg4+G LXShRadSlwCuGMcTk5nBzTODYiDTCEB2+DgW19OC1x9LR1FFkUyq7gFCgJgK6dxt 92C6HjO6JNzCGX/vBX2ZRumInr2hnQS2q6GSbm/WCJzHRhJk1lb3YynvlNp8x+5p pKOO0gZtL3XhnkjOqVsGw5o1zo4N9ERPekLc5sNUXby/SnfHxIp8vJDTYMxdFU4= -----END CERTIFICATE-----Generated at Wed Nov 5 09:30:00 2025 by rpki-client