$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/63ae037a-eeee-47c3-a504-f6de292e1999.roa File: 63ae037a-eeee-47c3-a504-f6de292e1999.roa (raw, json) Hash identifier: XT1a8wnJ2gFnwY4Cj9fy7fKLZQImdScJ31GnnkU9Z0I= Subject key identifier: 67:AC:50:82:CA:8D:63:BD:B1:71:91:1B:9F:B0:F7:F6:3D:B6:B4:26 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 6F384B44948E72A38EC93653CEEBC2109BB82E1D Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/63ae037a-eeee-47c3-a504-f6de292e1999.roa Signing time: Fri 31 Oct 2025 07:24:00 +0000 ROA not before: Fri 31 Oct 2025 07:24:00 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2ce0::/43 maxlen: 43 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:38:4b:44:94:8e:72:a3:8e:c9:36:53:ce:eb:c2:10:9b:b8:2e:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 07:24:00 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=b16873855049765215588f4b0b8f12a1559a5e946d31c941a01bc424eae776f2, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:aa:7e:75:64:1d:7e:12:35:27:b0:f8:8f:12: 23:e8:da:2a:e9:8e:8b:f2:b4:96:63:ef:b0:0b:16: d5:2c:4c:0e:ff:a2:cf:4e:76:f3:e7:fc:80:1c:65: 30:45:45:ac:82:06:df:25:33:fd:21:a0:10:03:07: f6:b6:66:f7:f2:f3:55:0a:fc:a6:91:6c:5b:cf:b0: fc:df:92:0a:b0:41:34:2f:6c:89:82:ea:5b:1e:58: ef:33:db:5d:db:ac:4f:b9:3d:40:07:e2:77:32:ee: 4f:66:61:34:4d:e0:e8:3e:3a:0a:f8:d4:df:9f:61: e9:1a:f3:79:66:17:92:23:6f:4f:18:f4:80:bf:76: 5b:28:f8:2b:ef:50:f4:da:e4:45:e2:89:df:e8:8b: ec:e9:ba:23:f0:ff:50:94:bd:16:85:69:32:b5:98: c0:05:14:df:a7:47:99:11:ca:3b:38:37:e2:af:af: 73:3b:a1:e2:e1:5d:f9:5a:cc:3d:e3:6e:2f:f5:7d: 5d:9b:54:a8:b9:9d:6a:b9:6c:e2:05:67:a8:d4:40: b0:7d:8e:6d:c8:f7:65:16:47:23:00:df:ee:93:43: 04:14:f1:e6:69:aa:38:a7:86:1c:18:fd:81:9b:39: cc:d1:58:23:2e:2d:9f:d6:12:63:79:51:01:cb:6e: d6:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:AC:50:82:CA:8D:63:BD:B1:71:91:1B:9F:B0:F7:F6:3D:B6:B4:26 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/63ae037a-eeee-47c3-a504-f6de292e1999.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2ce0::/43 Signature Algorithm: sha256WithRSAEncryption 4c:ca:48:33:11:e2:e7:e6:23:5b:51:47:31:0d:2b:e7:4e:a2: 4f:74:89:1f:92:0b:04:d1:c3:73:df:de:1e:a1:f3:48:d9:d0: ee:3f:2f:f8:75:a7:5b:b1:5b:f4:28:6e:ac:b3:88:71:e0:30: d3:85:e9:3b:0e:69:74:49:68:38:3a:4c:18:d7:c4:8e:60:1d: 91:9f:be:16:5e:8e:0e:35:f7:92:86:0a:15:6a:c5:da:d4:04: 92:17:30:5a:77:ad:49:ad:db:d5:e4:70:a6:9c:d9:4a:4d:c9: 5f:e5:32:62:d8:6f:f7:b2:6e:96:16:42:26:a2:25:5c:ed:ca: 01:47:bd:15:e8:30:79:bc:7b:cd:8a:ee:aa:ca:a5:11:2e:c5: cc:66:5e:e1:fb:ea:06:72:04:8a:11:eb:59:f3:f7:0b:6f:cc: d0:4c:26:72:3b:df:f1:96:07:52:26:85:50:c0:fc:4b:d9:34: ba:33:1a:17:d8:bb:2e:90:7c:6e:a7:49:05:d1:a8:41:ec:e6: 01:86:4b:32:e6:34:7e:18:ae:e9:71:2a:e8:20:6b:04:f9:d0: d7:d3:d1:c6:57:20:c9:ac:ea:2b:d1:43:2d:63:b0:fe:d1:57: 05:47:dc:5e:92:62:03:d9:25:fa:d6:ee:b1:c2:4d:25:c4:e2: 4c:78:81:04 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbzhLRJSOcqOOyTZTzuvCEJu4Lh0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDcyNDAwWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTY4NzM4NTUwNDk3NjUyMTU1ODhmNGIwYjhmMTJhMTU1 OWE1ZTk0NmQzMWM5NDFhMDFiYzQyNGVhZTc3NmYyMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQqn51ZB1+EjUnsPiPEiPo2irpjovytJZj77ALFtUsTA7/ os9OdvPn/IAcZTBFRayCBt8lM/0hoBADB/a2Zvfy81UK/KaRbFvPsPzfkgqwQTQv bImC6lseWO8z213brE+5PUAH4ncy7k9mYTRN4Og+Ogr41N+fYeka83lmF5Ijb08Y 9IC/dlso+CvvUPTa5EXiid/oi+zpuiPw/1CUvRaFaTK1mMAFFN+nR5kRyjs4N+Kv r3M7oeLhXflazD3jbi/1fV2bVKi5nWq5bOIFZ6jUQLB9jm3I92UWRyMA3+6TQwQU 8eZpqjinhhwY/YGbOczRWCMuLZ/WEmN5UQHLbtY1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZ6xQgsqNY72xcZEbn7D39j22tCYwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzYzYWUwMzdhLWVlZWUtNDdjMy1hNTA0LWY2ZGUyOTJlMTk5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwUmAJAALOAwDQYJKoZIhvcNAQELBQADggEBAEzKSDMR4ufmI1tRRzENK+dO ok90iR+SCwTRw3Pf3h6h80jZ0O4/L/h1p1uxW/QobqyziHHgMNOF6TsOaXRJaDg6 TBjXxI5gHZGfvhZejg4195KGChVqxdrUBJIXMFp3rUmt29XkcKac2UpNyV/lMmLY b/eybpYWQiaiJVztygFHvRXoMHm8e82K7qrKpREuxcxmXuH76gZyBIoR61nz9wtv zNBMJnI73/GWB1ImhVDA/EvZNLozGhfYuy6QfG6nSQXRqEHs5gGGSzLmNH4Yrulx KuggawT50NfT0cZXIMms6ivRQy1jsP7RVwVH3F6SYgPZJfrW7rHCTSXE4kx4gQQ= -----END CERTIFICATE-----Generated at Wed Nov 5 10:54:25 2025 by rpki-client