$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/64cd6bdf-02f3-45c5-a4db-5133df93db84.roa File: 64cd6bdf-02f3-45c5-a4db-5133df93db84.roa (raw, json) Hash identifier: uxi0/LJ6P22sv77cs2IsPrHvTIFRojtYsJ9MjQlQC0Y= Subject key identifier: 93:3E:CB:86:E8:10:CA:ED:02:25:74:68:FE:3B:C2:77:EF:E6:22:D9 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5B8790A75863B914ABD5707EBFF8AE4AE33C7766 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/64cd6bdf-02f3-45c5-a4db-5133df93db84.roa Signing time: Thu 30 Oct 2025 22:53:55 +0000 ROA not before: Thu 30 Oct 2025 22:53:55 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:29c4::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:87:90:a7:58:63:b9:14:ab:d5:70:7e:bf:f8:ae:4a:e3:3c:77:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 22:53:55 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=0943a79786dcb68405a579cde5aedc8720c9fdb33c47e2836c193a4efde8d5e9, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:04:16:20:13:3b:fe:63:97:7b:7a:f6:30:aa: 35:a1:17:56:d2:39:55:87:1b:89:ff:0a:67:0d:9a: 77:f3:74:26:6a:de:59:17:d9:b2:59:8e:e5:f2:e1: f4:64:e2:5c:65:d2:56:8d:98:c5:4f:8f:85:2d:2d: d8:33:f3:f0:75:59:13:2c:d1:38:cc:1d:cf:37:5a: a7:f4:be:e7:8b:a7:fb:ca:6e:21:48:44:32:ff:d6: 7e:7a:8a:3a:31:29:f4:b1:2f:bf:0d:9d:a8:50:e6: cb:07:30:1e:9e:f8:a1:d3:a7:f5:5a:16:3c:f5:0b: b3:35:0e:0d:d7:c7:14:8e:08:94:92:22:2c:3d:f6: a3:86:06:dd:1b:31:a0:ae:8e:b7:b9:25:bc:80:9e: e7:8c:6e:a1:6e:5f:4e:33:8e:77:71:7c:cb:e1:56: 70:54:ff:62:5a:4d:8c:5c:c8:76:2a:8d:08:12:c2: 96:36:d7:73:5e:13:7e:62:99:36:80:da:f7:f2:1c: e7:a0:a5:10:44:c2:51:6a:a6:d0:7e:71:7f:1b:4e: 03:0b:e0:36:da:41:ba:67:0b:31:c8:6b:f7:5c:58: 10:18:5d:be:4c:28:78:28:90:57:2b:34:9b:53:08: 58:fe:91:23:67:eb:19:5f:c1:c2:59:68:2b:72:ce: 99:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:3E:CB:86:E8:10:CA:ED:02:25:74:68:FE:3B:C2:77:EF:E6:22:D9 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/64cd6bdf-02f3-45c5-a4db-5133df93db84.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:29c4::/47 Signature Algorithm: sha256WithRSAEncryption 0d:08:89:25:90:65:e1:5b:a6:fa:16:7e:3b:18:d9:ca:48:13: de:58:f8:a9:05:94:aa:1e:d6:c9:fd:64:3c:53:a6:84:ee:db: 0f:15:fd:01:9c:0c:72:59:49:f7:da:be:32:45:62:2d:b2:ce: 6f:8f:99:2e:68:36:fe:56:d2:42:dc:29:a8:d2:d4:ea:5d:47: b0:4b:87:26:b6:14:0d:7e:49:e5:05:fb:20:00:ac:33:64:97: d7:36:7b:b1:b4:91:c1:c1:b8:8a:a5:25:2e:0b:74:8d:51:d6: 0d:09:2d:00:c1:dc:43:b9:e0:e4:6f:50:49:da:b1:10:09:05: e7:b1:88:e0:3d:83:32:7d:2a:9f:cf:b6:a3:b2:24:8a:14:a2: e7:fe:8e:65:9b:51:cc:c8:f0:97:cc:2d:9f:b4:1a:2d:85:d3: d5:93:31:9c:80:b9:14:ba:22:20:1e:92:22:fa:31:ef:fd:f7: b2:9b:63:5c:c0:34:27:50:fc:78:f9:cf:b4:31:09:a2:13:67: 6f:dd:ed:1b:51:1e:c4:b5:df:a2:a2:91:25:6d:fb:2e:4d:9f: f9:8f:3d:6d:69:d4:90:69:65:af:74:b7:53:36:c3:25:1f:45: 31:32:a6:03:fc:e8:4e:48:9f:ee:2e:03:05:3f:eb:4a:6e:e0: e6:0b:4c:29 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUW4eQp1hjuRSr1XB+v/iuSuM8d2YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjI1MzU1WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOTQzYTc5Nzg2ZGNiNjg0MDVhNTc5Y2RlNWFlZGM4NzIw YzlmZGIzM2M0N2UyODM2YzE5M2E0ZWZkZThkNWU5MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDcBBYgEzv+Y5d7evYwqjWhF1bSOVWHG4n/CmcNmnfzdCZq 3lkX2bJZjuXy4fRk4lxl0laNmMVPj4UtLdgz8/B1WRMs0TjMHc83Wqf0vueLp/vK biFIRDL/1n56ijoxKfSxL78NnahQ5ssHMB6e+KHTp/VaFjz1C7M1Dg3XxxSOCJSS Iiw99qOGBt0bMaCujre5JbyAnueMbqFuX04zjndxfMvhVnBU/2JaTYxcyHYqjQgS wpY213NeE35imTaA2vfyHOegpRBEwlFqptB+cX8bTgML4DbaQbpnCzHIa/dcWBAY Xb5MKHgokFcrNJtTCFj+kSNn6xlfwcJZaCtyzplXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUkz7LhugQyu0CJXRo/jvCd+/mItkwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzY0Y2Q2YmRmLTAyZjMtNDVjNS1hNGRiLTUxMzNkZjkzZGI4NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAKcQwDQYJKoZIhvcNAQELBQADggEBAA0IiSWQZeFbpvoWfjsY2cpI E95Y+KkFlKoe1sn9ZDxTpoTu2w8V/QGcDHJZSffavjJFYi2yzm+PmS5oNv5W0kLc KajS1OpdR7BLhya2FA1+SeUF+yAArDNkl9c2e7G0kcHBuIqlJS4LdI1R1g0JLQDB 3EO54ORvUEnasRAJBeexiOA9gzJ9Kp/PtqOyJIoUouf+jmWbUczI8JfMLZ+0Gi2F 09WTMZyAuRS6IiAekiL6Me/997KbY1zANCdQ/Hj5z7QxCaITZ2/d7RtRHsS136Ki kSVt+y5Nn/mPPW1p1JBpZa90t1M2wyUfRTEypgP86E5In+4uAwU/60pu4OYLTCk= -----END CERTIFICATE-----Generated at Wed Nov 5 10:43:26 2025 by rpki-client