$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/6511145b-22db-4f13-bc36-1aa571c546cb.roa File: 6511145b-22db-4f13-bc36-1aa571c546cb.roa (raw, json) Hash identifier: KypNafsePvkppi/PIBxE9xsSURmV434HMo+94TpVRvs= Subject key identifier: 76:69:40:3C:18:21:6D:B0:D9:63:0B:7F:60:EA:03:95:2E:B6:B5:E5 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3A66BB4894CC37EC262C548E9D79E347187A0661 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/6511145b-22db-4f13-bc36-1aa571c546cb.roa Signing time: Fri 31 Oct 2025 03:36:58 +0000 ROA not before: Fri 31 Oct 2025 03:36:58 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2b70::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:66:bb:48:94:cc:37:ec:26:2c:54:8e:9d:79:e3:47:18:7a:06:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 03:36:58 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=3d9dab7ea9b1920088fbc186abe1f1a706ea1d5ebd636c9552fd1173c197070c, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:99:11:93:d6:b5:6f:10:c0:aa:57:f4:33:40: 6e:ca:de:6e:c9:56:02:32:d2:d9:75:91:ce:a7:6f: ba:f1:84:fa:5e:8c:58:9f:f8:74:f0:e6:c3:66:a7: 4c:d7:de:8e:eb:39:a3:8a:44:7b:12:d1:2b:34:a0: a6:b6:79:49:7f:82:6b:e7:75:55:10:0d:a4:18:3a: 63:a9:f9:8e:f0:e7:54:9a:62:0a:93:2f:f7:b3:a9: 96:52:32:c2:68:48:78:89:a9:08:83:af:a0:b3:ea: 94:a5:42:3b:f7:f9:3f:4b:34:e8:7a:dd:0e:a8:09: 1b:21:f1:e2:f0:30:01:c5:1b:21:54:69:12:42:df: a9:f9:36:81:f3:41:1b:3d:67:33:da:63:2f:5a:c0: df:f2:37:53:a6:0a:b6:a7:d5:f6:39:37:32:94:57: b8:f4:a6:06:84:a3:a4:1d:27:b0:bd:09:00:69:6a: 9a:00:5a:bc:4c:aa:fa:e8:09:25:35:db:8e:65:f8: d9:ec:de:2f:1c:94:69:30:51:50:62:eb:3f:60:b3: d6:4a:c4:ac:26:6b:28:51:57:93:77:dd:d5:a7:66: 2c:f5:c8:b2:35:4c:a4:a3:02:e3:b2:70:b1:70:ef: cd:b1:a2:27:9d:9f:5b:23:74:8e:10:92:cd:2f:6d: c5:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:69:40:3C:18:21:6D:B0:D9:63:0B:7F:60:EA:03:95:2E:B6:B5:E5 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/6511145b-22db-4f13-bc36-1aa571c546cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2b70::/46 Signature Algorithm: sha256WithRSAEncryption bb:b6:ca:33:f4:ad:b5:c4:22:23:e3:35:88:41:94:8c:9e:fb: cd:c1:4e:f5:87:0b:10:39:44:6c:af:c0:fb:af:7a:0e:21:e6: 39:31:09:a3:88:d7:5c:cc:70:73:ab:4e:55:c0:ae:23:cb:ea: 07:96:8b:e9:e2:1a:cf:d8:a1:27:28:f1:48:3b:f4:31:6d:6c: 47:34:e3:cd:85:79:df:db:d8:f1:06:6f:17:9c:33:34:32:f9: 42:cc:ee:63:92:3c:3f:e0:1f:2c:d2:ad:8c:b4:b8:64:6e:07: a0:5b:ed:40:3d:e3:42:43:0a:aa:2b:66:8e:13:f3:c1:1c:00: 3d:d9:98:a8:10:ef:48:0f:1a:e4:ce:38:12:36:ce:d6:22:d9: 5a:cc:47:c2:90:a5:94:c8:6a:43:d2:4e:bc:34:28:78:a7:87: 5c:25:21:0c:ff:f8:3d:ef:15:9a:65:24:7a:4d:e4:0e:f8:30: 69:53:c0:31:59:b5:3b:62:fd:b9:9d:12:1f:36:44:ef:83:53: a6:ad:dd:2f:37:be:5a:2c:b0:42:8b:d3:17:03:5d:78:80:d3: 3c:cb:45:ff:f5:34:26:3e:42:1f:9b:2c:34:3f:c7:a8:fa:83: 2b:2d:6c:2b:8d:c2:39:7c:0a:4e:4d:4b:99:1e:e6:bd:9c:4e: ce:f2:fd:6e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOma7SJTMN+wmLFSOnXnjRxh6BmEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDMzNjU4WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZDlkYWI3ZWE5YjE5MjAwODhmYmMxODZhYmUxZjFhNzA2 ZWExZDVlYmQ2MzZjOTU1MmZkMTE3M2MxOTcwNzBjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6mRGT1rVvEMCqV/QzQG7K3m7JVgIy0tl1kc6nb7rxhPpe jFif+HTw5sNmp0zX3o7rOaOKRHsS0Ss0oKa2eUl/gmvndVUQDaQYOmOp+Y7w51Sa YgqTL/ezqZZSMsJoSHiJqQiDr6Cz6pSlQjv3+T9LNOh63Q6oCRsh8eLwMAHFGyFU aRJC36n5NoHzQRs9ZzPaYy9awN/yN1OmCran1fY5NzKUV7j0pgaEo6QdJ7C9CQBp apoAWrxMqvroCSU1245l+Nns3i8clGkwUVBi6z9gs9ZKxKwmayhRV5N33dWnZiz1 yLI1TKSjAuOycLFw782xoiedn1sjdI4Qks0vbcX3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUdmlAPBghbbDZYwt/YOoDlS62teUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzY1MTExNDViLTIyZGItNGYxMy1iYzM2LTFhYTU3MWM1NDZjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAK3AwDQYJKoZIhvcNAQELBQADggEBALu2yjP0rbXEIiPjNYhBlIye +83BTvWHCxA5RGyvwPuveg4h5jkxCaOI11zMcHOrTlXAriPL6geWi+niGs/YoSco 8Ug79DFtbEc0482Fed/b2PEGbxecMzQy+ULM7mOSPD/gHyzSrYy0uGRuB6Bb7UA9 40JDCqorZo4T88EcAD3ZmKgQ70gPGuTOOBI2ztYi2VrMR8KQpZTIakPSTrw0KHin h1wlIQz/+D3vFZplJHpN5A74MGlTwDFZtTti/bmdEh82RO+DU6at3S83vlossEKL 0xcDXXiA0zzLRf/1NCY+Qh+bLDQ/x6j6gystbCuNwjl8Ck5NS5ke5r2cTs7y/W4= -----END CERTIFICATE-----Generated at Wed Nov 5 07:38:10 2025 by rpki-client