$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/6386e242-8015-42a5-a7b5-65e2daa4449f.roa File: 6386e242-8015-42a5-a7b5-65e2daa4449f.roa (raw, json) Hash identifier: 9aNdlQpGT0BQWa4QTwa6ZB7XahpQ7Aiw3pOFg6PwajI= Subject key identifier: DA:65:FE:42:1C:74:32:5C:68:F0:54:39:E8:60:EB:94:92:BC:F5:B4 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 522C3CE3AD7DBFDDC83CB16FCC8E0B9DDA7F8CD6 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/6386e242-8015-42a5-a7b5-65e2daa4449f.roa Signing time: Fri 31 Oct 2025 00:55:10 +0000 ROA not before: Fri 31 Oct 2025 00:55:10 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:386c::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:2c:3c:e3:ad:7d:bf:dd:c8:3c:b1:6f:cc:8e:0b:9d:da:7f:8c:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 00:55:10 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=2c4c3681814dc81f0573d8888b1e63d46b3b4be1d4dfb2a6cb651c4e545b6d6c, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:56:3f:98:85:7e:3f:3d:26:e7:a6:79:18:49: 3d:8d:79:ad:43:58:db:7a:4e:0d:3c:ad:c7:07:b7: 5b:c7:60:ca:db:c4:93:92:a0:bc:87:c7:86:19:c7: be:15:f2:28:7d:fc:67:9a:ad:25:03:40:e0:7b:a0: c4:fa:9a:cb:7d:e2:5a:ec:40:81:a8:9e:10:5a:e3: 7e:25:c8:a1:de:a7:3f:f2:14:f1:0c:bd:70:ce:53: d8:e4:57:f0:d0:fb:6c:b5:bb:74:de:b6:7d:e2:6d: 47:cc:f5:9d:fa:57:fb:4c:c1:11:c7:d8:43:9e:bc: 9c:55:52:06:7f:84:21:8d:fe:79:4e:c0:34:21:be: f9:31:65:8c:92:25:6e:fc:53:b5:4d:3f:ee:71:7f: 28:f3:61:43:1f:46:fb:fd:0d:18:aa:43:67:15:53: 23:21:c8:6a:45:d1:9a:40:96:60:82:c3:ae:41:4a: da:a2:74:68:13:62:0f:cb:96:44:05:d8:05:9a:f7: 9f:89:34:cf:34:84:97:79:e8:d1:35:37:f2:89:8d: 9e:2d:72:42:78:cb:8a:42:e7:ea:46:32:8b:c3:e4: bc:6b:eb:f5:b7:32:0e:fe:99:8b:bd:96:8e:c1:6d: 59:53:df:19:e5:90:fa:2c:3d:37:35:8d:83:b4:18: df:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:65:FE:42:1C:74:32:5C:68:F0:54:39:E8:60:EB:94:92:BC:F5:B4 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/6386e242-8015-42a5-a7b5-65e2daa4449f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:386c::/47 Signature Algorithm: sha256WithRSAEncryption ba:b9:09:d3:81:23:0d:eb:25:8d:b6:e4:e9:3b:e3:62:f0:44: c7:cd:0d:9b:4f:05:ae:ac:0d:66:13:fc:30:19:e5:f8:66:98: 02:23:59:b5:bc:96:22:b0:90:eb:7c:d5:51:59:c0:5a:e0:c4: 55:43:75:3c:b5:19:ee:e9:6d:b8:30:3c:2f:13:a2:34:88:ec: 90:f5:f7:77:c9:64:61:38:f0:96:4c:14:9f:9d:4f:50:4e:ce: e9:68:62:51:ba:cd:ba:95:c8:72:8f:f4:63:0e:7e:13:c7:eb: c7:65:6f:d2:9c:b5:7a:80:c0:f8:4c:89:b6:51:2b:6a:9a:aa: c4:9b:77:e9:9c:23:1d:ee:d9:83:7c:8a:4f:75:b8:8f:b5:7a: 2e:cd:28:cd:0b:4c:15:cf:17:f1:5d:de:cb:8c:06:a2:bd:20: 05:01:f6:e4:e4:ed:30:8f:3c:77:0d:de:31:5a:c7:f8:95:bc: a0:4d:ef:bc:0f:9b:06:2c:68:de:a3:e8:f4:7c:e5:4e:56:6b: 06:5a:a8:95:35:36:bf:15:3b:31:d4:b1:ba:b5:4e:9d:82:c8: bd:2a:a8:16:8f:9a:34:85:2c:b6:ce:f8:1d:d1:3f:8a:ce:69: 0a:b0:0f:72:74:b0:a8:9b:ab:9b:c2:0a:30:8c:3f:76:d3:56: d9:1b:9d:68 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUiw84619v93IPLFvzI4Lndp/jNYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDA1NTEwWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYzRjMzY4MTgxNGRjODFmMDU3M2Q4ODg4YjFlNjNkNDZi M2I0YmUxZDRkZmIyYTZjYjY1MWM0ZTU0NWI2ZDZjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNVj+YhX4/PSbnpnkYST2Nea1DWNt6Tg08rccHt1vHYMrb xJOSoLyHx4YZx74V8ih9/GearSUDQOB7oMT6mst94lrsQIGonhBa434lyKHepz/y FPEMvXDOU9jkV/DQ+2y1u3Tetn3ibUfM9Z36V/tMwRHH2EOevJxVUgZ/hCGN/nlO wDQhvvkxZYySJW78U7VNP+5xfyjzYUMfRvv9DRiqQ2cVUyMhyGpF0ZpAlmCCw65B StqidGgTYg/LlkQF2AWa95+JNM80hJd56NE1N/KJjZ4tckJ4y4pC5+pGMovD5Lxr 6/W3Mg7+mYu9lo7BbVlT3xnlkPosPTc1jYO0GN+nAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2mX+Qhx0Mlxo8FQ56GDrlJK89bQwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzYzODZlMjQyLTgwMTUtNDJhNS1hN2I1LTY1ZTJkYWE0NDQ5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOGwwDQYJKoZIhvcNAQELBQADggEBALq5CdOBIw3rJY225Ok742Lw RMfNDZtPBa6sDWYT/DAZ5fhmmAIjWbW8liKwkOt81VFZwFrgxFVDdTy1Ge7pbbgw PC8TojSI7JD193fJZGE48JZMFJ+dT1BOzuloYlG6zbqVyHKP9GMOfhPH68dlb9Kc tXqAwPhMibZRK2qaqsSbd+mcIx3u2YN8ik91uI+1ei7NKM0LTBXPF/Fd3suMBqK9 IAUB9uTk7TCPPHcN3jFax/iVvKBN77wPmwYsaN6j6PR85U5WawZaqJU1Nr8VOzHU sbq1Tp2CyL0qqBaPmjSFLLbO+B3RP4rOaQqwD3J0sKibq5vCCjCMP3bTVtkbnWg= -----END CERTIFICATE-----Generated at Wed Nov 5 05:34:09 2025 by rpki-client