$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/63d43ede-a5dd-48af-bec4-c42e5e083113.roa File: 63d43ede-a5dd-48af-bec4-c42e5e083113.roa (raw, json) Hash identifier: AAAfHahzFyAeMnz1P5EFUoVyLGhoL7S06LMpjfpIJuw= Subject key identifier: 7B:83:B4:93:5E:69:78:AB:5D:46:9C:40:50:1D:25:7F:6E:1E:FE:BB Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 7CAA96DB5917DE1DDF978BDEF3340F63EDDD2180 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/63d43ede-a5dd-48af-bec4-c42e5e083113.roa Signing time: Fri 31 Oct 2025 21:53:29 +0000 ROA not before: Fri 31 Oct 2025 21:53:29 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:5300::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:aa:96:db:59:17:de:1d:df:97:8b:de:f3:34:0f:63:ed:dd:21:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 21:53:29 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=52e9ee1f390cc547c953e5c5e5adcb44f537ba2b248344f94daf350d87602441, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:98:84:eb:7d:92:57:4a:b9:d9:d7:0d:b9:3d: d1:91:63:eb:66:5f:42:39:be:57:3e:fe:f2:a9:28: 40:fc:c3:7c:de:e5:68:e6:85:ca:fc:b4:39:b2:6f: 1c:ae:cf:8f:10:dc:91:34:bc:5a:f1:d4:d6:3e:27: b0:21:65:c7:48:a8:0e:df:56:9e:c6:15:79:08:4f: 7a:1d:4f:28:0f:bb:93:98:90:13:7f:f6:51:35:9b: 76:a5:9f:f0:be:3b:b4:d7:f8:0a:94:97:ca:3d:19: dd:d9:6e:ae:c2:d4:eb:3c:96:f5:21:b4:f6:7f:51: 93:84:36:86:a1:28:ff:f5:77:46:3d:78:d9:6a:21: 25:11:90:a1:ef:3e:54:8a:fd:1c:f9:e0:00:21:d5: 28:1f:80:2e:b5:a0:67:26:c7:f1:69:07:f6:9f:7d: 2c:f8:c8:41:fe:5f:8d:5b:2a:3c:6d:27:db:f6:ad: 05:27:b4:f1:b3:84:77:51:8b:8a:61:36:0c:0d:b3: 51:63:69:76:58:b5:36:4c:1e:67:5d:f4:6b:5f:64: 8d:44:7c:82:5d:4e:f0:e2:06:c1:12:03:7c:22:d7: c4:fb:19:5e:e4:da:c7:df:fa:14:7c:a1:bf:7f:33: 72:72:c9:c5:b5:06:a7:90:e1:c4:0f:1b:08:57:1e: cc:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:83:B4:93:5E:69:78:AB:5D:46:9C:40:50:1D:25:7F:6E:1E:FE:BB X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/63d43ede-a5dd-48af-bec4-c42e5e083113.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:5300::/45 Signature Algorithm: sha256WithRSAEncryption 0e:65:18:54:36:1a:a3:ff:53:3f:bc:c4:c7:fc:29:7f:d9:32: 78:86:99:49:fd:32:d9:9d:39:34:65:c3:cf:9f:7f:bb:8e:04: a5:bb:76:6e:71:26:85:29:a8:1f:8a:90:d1:26:be:7f:0a:ec: c1:d5:72:ef:f8:5d:e9:3e:e4:f4:34:9a:00:5b:17:9e:1d:b4: cf:0b:85:5d:28:72:1d:58:c1:16:8e:28:90:c9:a1:ff:64:e3: 7d:f9:73:26:ef:7a:d7:fa:09:5e:cf:d4:3b:19:5f:44:a5:7e: 32:f4:a6:e4:ae:9c:58:f7:a6:16:7f:2a:06:9b:b0:d6:3a:d6: ca:13:e3:69:04:4b:91:fc:35:15:69:6d:49:9c:5a:7e:31:5f: 21:c0:04:a4:cf:b7:d1:a5:25:75:35:ca:1b:b0:7d:b6:31:9b: f9:a9:69:ec:8a:36:1a:e4:a7:e9:4e:33:18:32:ea:61:6f:54: 0a:9b:ba:dc:24:14:19:03:02:13:b7:2b:b9:ed:24:17:b4:5b: 47:ae:37:4d:5d:dd:77:53:2d:dd:b1:e8:96:a5:81:18:e9:6e: d9:4f:4d:44:19:b4:2d:81:f4:44:61:87:f8:a6:3e:4f:f8:19: ea:02:b8:d1:76:6d:f2:79:9f:21:57:10:c1:ea:e4:e4:29:db: c7:e4:65:c4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfKqW21kX3h3fl4ve8zQPY+3dIYAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMjE1MzI5WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MmU5ZWUxZjM5MGNjNTQ3Yzk1M2U1YzVlNWFkY2I0NGY1 MzdiYTJiMjQ4MzQ0Zjk0ZGFmMzUwZDg3NjAyNDQxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDlmITrfZJXSrnZ1w25PdGRY+tmX0I5vlc+/vKpKED8w3ze 5Wjmhcr8tDmybxyuz48Q3JE0vFrx1NY+J7AhZcdIqA7fVp7GFXkIT3odTygPu5OY kBN/9lE1m3aln/C+O7TX+AqUl8o9Gd3Zbq7C1Os8lvUhtPZ/UZOENoahKP/1d0Y9 eNlqISURkKHvPlSK/Rz54AAh1SgfgC61oGcmx/FpB/affSz4yEH+X41bKjxtJ9v2 rQUntPGzhHdRi4phNgwNs1FjaXZYtTZMHmdd9GtfZI1EfIJdTvDiBsESA3wi18T7 GV7k2sff+hR8ob9/M3JyycW1BqeQ4cQPGwhXHswbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUe4O0k15peKtdRpxAUB0lf24e/rswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzYzZDQzZWRlLWE1ZGQtNDhhZi1iZWM0LWM0MmU1ZTA4MzExMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAUwAwDQYJKoZIhvcNAQELBQADggEBAA5lGFQ2GqP/Uz+8xMf8KX/Z MniGmUn9MtmdOTRlw8+ff7uOBKW7dm5xJoUpqB+KkNEmvn8K7MHVcu/4Xek+5PQ0 mgBbF54dtM8LhV0och1YwRaOKJDJof9k4335cybvetf6CV7P1DsZX0SlfjL0puSu nFj3phZ/KgabsNY61soT42kES5H8NRVpbUmcWn4xXyHABKTPt9GlJXU1yhuwfbYx m/mpaeyKNhrkp+lOMxgy6mFvVAqbutwkFBkDAhO3K7ntJBe0W0euN01d3XdTLd2x 6JalgRjpbtlPTUQZtC2B9ERhh/imPk/4GeoCuNF2bfJ5nyFXEMHq5OQp28fkZcQ= -----END CERTIFICATE-----Generated at Wed Nov 5 10:54:09 2025 by rpki-client