$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/6561af22-666a-4b44-b201-e6231c41165c.roa File: 6561af22-666a-4b44-b201-e6231c41165c.roa (raw, json) Hash identifier: O6ocKBcev+irA1IK80HhqcAFNe+WzloDtpOmOSQrH6k= Subject key identifier: 7D:00:05:78:B0:DB:9F:21:C8:EA:CE:90:B8:D2:CB:FF:4C:C3:83:2A Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5282C5565C04F2F4292BECE175649443D33689E2 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/6561af22-666a-4b44-b201-e6231c41165c.roa Signing time: Fri 31 Oct 2025 04:25:03 +0000 ROA not before: Fri 31 Oct 2025 04:25:03 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:37f4::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:82:c5:56:5c:04:f2:f4:29:2b:ec:e1:75:64:94:43:d3:36:89:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 04:25:03 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=431b71bb9f8e0c7ae27efc46c30f51a085d0da5f4e3198a156e1c76b64c91bda, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7c:0b:f7:ea:e0:3d:5b:b5:68:fe:6f:c4:6a: 2d:35:3d:d4:69:5d:04:af:5b:42:84:65:08:36:32: d9:fc:f0:12:85:a0:e4:04:62:8f:ca:c2:7e:b3:15: e0:19:e3:5f:19:67:2d:94:58:51:a7:04:11:c7:18: 33:92:53:4c:ab:f7:8c:1b:6c:6b:31:3d:d0:7d:7c: 6c:96:2b:02:e2:b7:5e:b8:4c:00:84:0d:ad:9e:c9: 21:de:c2:26:dc:96:34:77:5f:98:79:ec:de:bf:f5: b9:dd:d5:c6:24:08:a9:7b:d3:78:f4:23:df:3b:1f: 17:96:eb:94:80:fb:53:11:8e:6f:ef:cf:f1:20:e6: af:4f:b4:f7:ec:d8:e8:49:23:ea:5c:db:6c:4d:ab: 6c:96:d6:21:4c:87:75:24:e1:72:08:0a:e8:e0:8f: 2b:51:88:3d:73:55:30:a0:b8:c5:9a:7f:89:69:06: ee:97:40:50:f1:ea:17:5d:5f:6c:c0:a3:62:69:f1: 99:75:f6:03:00:65:99:0c:02:8c:f6:56:2e:7d:49: bb:4e:b2:ad:05:a0:de:1e:37:f5:73:b9:55:82:54: 05:c2:bb:5a:8a:28:41:d1:32:4a:d7:25:14:84:16: 68:82:db:26:0e:7a:6c:e4:77:3f:40:5b:30:6c:9f: 39:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:00:05:78:B0:DB:9F:21:C8:EA:CE:90:B8:D2:CB:FF:4C:C3:83:2A X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/6561af22-666a-4b44-b201-e6231c41165c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:37f4::/46 Signature Algorithm: sha256WithRSAEncryption 55:14:cb:d9:b0:1b:2c:64:70:aa:87:11:bc:ba:fc:d9:43:38: a7:bb:df:1b:0b:c2:a1:d7:6a:bb:73:ea:89:4d:e1:fb:50:b5: 61:e7:08:47:45:ef:2b:0d:d3:19:b3:56:1f:e5:70:64:83:f5: 57:60:7d:3d:d8:05:63:fa:17:f0:5b:87:8b:4c:ce:11:7a:98: 4e:1d:02:91:db:8d:5a:e7:2e:e0:8f:44:91:a2:ab:8e:0d:ed: 9a:78:e3:fa:e7:af:00:71:df:19:ae:93:53:bd:f4:62:13:29: 1d:d7:33:11:e7:86:d5:a9:e2:79:36:d8:09:30:2a:0f:6b:f9: 2b:f1:f3:a3:12:3c:fb:e0:fc:ec:60:ed:84:59:cc:a5:2c:16: 3e:bf:06:a1:64:be:59:02:4c:ae:3f:64:55:45:d2:f8:4d:8b: 44:d7:52:09:da:bb:2f:40:00:c4:fe:4f:1d:ca:cb:76:71:36: e6:3c:9e:26:35:78:ab:db:d2:ae:43:63:49:ad:d2:aa:87:f1: 57:0f:a1:64:19:fd:3f:af:7a:81:5a:5d:54:58:c7:e7:75:d4: 62:ef:93:31:62:48:02:aa:5f:5d:c5:d4:03:23:38:ca:85:68: ad:65:7f:3d:17:c5:a5:fe:d1:46:bf:9a:df:c2:14:af:f9:1e: 3e:b1:bb:b8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUoLFVlwE8vQpK+zhdWSUQ9M2ieIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDQyNTAzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MzFiNzFiYjlmOGUwYzdhZTI3ZWZjNDZjMzBmNTFhMDg1 ZDBkYTVmNGUzMTk4YTE1NmUxYzc2YjY0YzkxYmRhMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5fAv36uA9W7Vo/m/Eai01PdRpXQSvW0KEZQg2Mtn88BKF oOQEYo/Kwn6zFeAZ418ZZy2UWFGnBBHHGDOSU0yr94wbbGsxPdB9fGyWKwLit164 TACEDa2eySHewibcljR3X5h57N6/9bnd1cYkCKl703j0I987HxeW65SA+1MRjm/v z/Eg5q9PtPfs2OhJI+pc22xNq2yW1iFMh3Uk4XIICujgjytRiD1zVTCguMWaf4lp Bu6XQFDx6hddX2zAo2Jp8Zl19gMAZZkMAoz2Vi59SbtOsq0FoN4eN/VzuVWCVAXC u1qKKEHRMkrXJRSEFmiC2yYOemzkdz9AWzBsnznBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUfQAFeLDbnyHI6s6QuNLL/0zDgyowHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzY1NjFhZjIyLTY2NmEtNGI0NC1iMjAxLWU2MjMxYzQxMTY1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAN/QwDQYJKoZIhvcNAQELBQADggEBAFUUy9mwGyxkcKqHEby6/NlD OKe73xsLwqHXartz6olN4ftQtWHnCEdF7ysN0xmzVh/lcGSD9VdgfT3YBWP6F/Bb h4tMzhF6mE4dApHbjVrnLuCPRJGiq44N7Zp44/rnrwBx3xmuk1O99GITKR3XMxHn htWp4nk22AkwKg9r+Svx86MSPPvg/Oxg7YRZzKUsFj6/BqFkvlkCTK4/ZFVF0vhN i0TXUgnauy9AAMT+Tx3Ky3ZxNuY8niY1eKvb0q5DY0mt0qqH8VcPoWQZ/T+veoFa XVRYx+d11GLvkzFiSAKqX13F1AMjOMqFaK1lfz0XxaX+0Ua/mt/CFK/5Hj6xu7g= -----END CERTIFICATE-----Generated at Wed Nov 5 12:30:11 2025 by rpki-client