$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/629034c9-bff8-4346-8330-61b85eccd847.roa File: 629034c9-bff8-4346-8330-61b85eccd847.roa (raw, json) Hash identifier: 3GGKGn95JjB97kbxI38gDBZIreqFaomJ13FVPWt4ueM= Subject key identifier: C3:DC:2F:1A:F0:C0:1B:2E:65:39:05:53:4B:14:D1:04:00:FB:9B:2C Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 224ED40E8A6C08955FC1C196621CB04E5D70FB08 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/629034c9-bff8-4346-8330-61b85eccd847.roa Signing time: Fri 31 Oct 2025 05:55:25 +0000 ROA not before: Fri 31 Oct 2025 05:55:25 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3278::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:4e:d4:0e:8a:6c:08:95:5f:c1:c1:96:62:1c:b0:4e:5d:70:fb:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 05:55:25 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=780624341f4085a03355193057ab1f06b47196a9c99351b128893aff95741878, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b7:01:c0:19:f2:09:16:38:6c:97:da:4d:b6: 54:c0:6d:78:d2:f2:3d:17:bb:df:25:cf:61:a5:81: d6:99:18:bb:dc:01:fc:75:88:76:7a:94:b3:63:3c: c9:64:4b:fc:c5:4f:70:f0:31:2e:e6:bc:7f:77:a1: 4b:fe:21:dd:71:27:a8:a6:a6:1b:e8:b2:95:7c:34: aa:fd:f6:b1:b0:87:7b:10:6f:01:3e:1c:99:0e:6f: 4a:5b:fb:c0:b3:7e:fc:48:4e:cf:68:c8:e0:66:9d: 5e:83:5e:3f:69:aa:8f:cf:38:52:63:8f:f4:d6:07: 61:0e:9a:12:30:9e:c3:6d:ad:ce:15:63:45:bf:67: 02:3a:de:d9:b1:16:bd:04:2b:04:76:ac:52:11:64: db:69:5a:b9:e7:61:c9:b7:8e:d9:89:1e:7f:b1:16: af:ed:ce:4d:87:9e:80:17:cd:0c:39:2d:3d:f8:e8: 6f:50:b2:28:af:f9:bd:b7:b2:ff:3c:e5:52:4f:5f: 2d:8d:4b:81:65:7e:5e:39:3e:56:75:58:6d:7a:09: 10:be:65:92:7d:67:64:19:72:d9:f5:79:38:81:4f: bb:46:c9:e9:12:04:e8:77:a9:40:77:e7:a6:3b:80: 18:15:b6:c8:29:30:93:7e:37:f3:95:7e:8f:b2:f0: bd:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:DC:2F:1A:F0:C0:1B:2E:65:39:05:53:4B:14:D1:04:00:FB:9B:2C X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/629034c9-bff8-4346-8330-61b85eccd847.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3278::/45 Signature Algorithm: sha256WithRSAEncryption a7:66:c3:09:3f:cf:ac:00:29:37:55:53:33:14:3c:5b:b6:ca: 4e:ef:78:d9:15:77:8d:f7:16:05:9b:a9:dd:c4:a0:35:84:eb: b1:94:b4:5b:4e:a9:5f:9e:ac:3d:a2:f4:37:d1:0e:fc:b2:69: 2c:88:db:17:22:28:e4:16:b2:2d:d9:bf:7f:b7:38:19:9f:c1: ae:6f:14:1e:f1:77:a2:99:50:8f:fa:33:40:d5:01:dd:da:c1: 61:d9:15:ca:b0:f7:57:6f:0c:4b:80:70:af:5a:57:88:09:9f: 00:30:9b:4c:fe:31:c5:0b:69:95:97:14:2d:13:7d:ff:fe:a2: 97:22:d0:60:2d:fa:85:2d:f4:cd:07:37:50:62:95:ca:7c:26: 1f:70:39:c6:bd:e3:78:72:7a:b8:12:01:35:ea:7d:7e:8a:e8: 2c:7d:66:27:22:59:b8:e1:e9:44:e8:ce:77:44:21:3f:de:64: 67:7f:95:76:5a:73:98:d3:22:6e:30:13:2b:af:86:6d:23:92: 92:06:93:b8:4f:d2:b6:41:97:42:2b:6c:1e:a8:eb:72:98:7e: f4:50:d7:b4:0b:87:31:d6:37:21:05:c1:85:78:4c:d7:c6:6a: 47:a0:8c:45:81:31:05:e5:79:22:9a:59:e7:bd:ad:dd:e0:ba: 9a:2c:04:ce -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIk7UDopsCJVfwcGWYhywTl1w+wgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDU1NTI1WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ODA2MjQzNDFmNDA4NWEwMzM1NTE5MzA1N2FiMWYwNmI0 NzE5NmE5Yzk5MzUxYjEyODg5M2FmZjk1NzQxODc4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1twHAGfIJFjhsl9pNtlTAbXjS8j0Xu98lz2GlgdaZGLvc Afx1iHZ6lLNjPMlkS/zFT3DwMS7mvH93oUv+Id1xJ6imphvospV8NKr99rGwh3sQ bwE+HJkOb0pb+8CzfvxITs9oyOBmnV6DXj9pqo/POFJjj/TWB2EOmhIwnsNtrc4V Y0W/ZwI63tmxFr0EKwR2rFIRZNtpWrnnYcm3jtmJHn+xFq/tzk2HnoAXzQw5LT34 6G9Qsiiv+b23sv885VJPXy2NS4Flfl45PlZ1WG16CRC+ZZJ9Z2QZctn1eTiBT7tG yekSBOh3qUB356Y7gBgVtsgpMJN+N/OVfo+y8L2DAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUw9wvGvDAGy5lOQVTSxTRBAD7mywwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzYyOTAzNGM5LWJmZjgtNDM0Ni04MzMwLTYxYjg1ZWNjZDg0Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAMngwDQYJKoZIhvcNAQELBQADggEBAKdmwwk/z6wAKTdVUzMUPFu2 yk7veNkVd433FgWbqd3EoDWE67GUtFtOqV+erD2i9DfRDvyyaSyI2xciKOQWsi3Z v3+3OBmfwa5vFB7xd6KZUI/6M0DVAd3awWHZFcqw91dvDEuAcK9aV4gJnwAwm0z+ McULaZWXFC0Tff/+opci0GAt+oUt9M0HN1Bilcp8Jh9wOca943hyergSATXqfX6K 6Cx9ZiciWbjh6UTozndEIT/eZGd/lXZac5jTIm4wEyuvhm0jkpIGk7hP0rZBl0Ir bB6o63KYfvRQ17QLhzHWNyEFwYV4TNfGakegjEWBMQXleSKaWee9rd3guposBM4= -----END CERTIFICATE-----Generated at Wed Nov 5 10:53:42 2025 by rpki-client