$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/66ffeb6a-4bb3-40d3-819b-05f761336329.roa File: 66ffeb6a-4bb3-40d3-819b-05f761336329.roa (raw, json) Hash identifier: BBz28Z8BQmhuKkUGbprZ8B27ouhK6Mcg8XO3OyZ+bvs= Subject key identifier: 42:DD:30:13:11:B2:77:AF:80:55:13:F7:6C:F4:45:AF:76:C3:D1:E4 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 07ACEDBAC73B020B7D909905253AE82512DF0906 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/66ffeb6a-4bb3-40d3-819b-05f761336329.roa Signing time: Fri 31 Oct 2025 05:40:32 +0000 ROA not before: Fri 31 Oct 2025 05:40:32 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2a60::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:ac:ed:ba:c7:3b:02:0b:7d:90:99:05:25:3a:e8:25:12:df:09:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 05:40:32 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=aabac6ac62717ce1fb201a7251ef7158b6701f11727f7e9f0d123ab7f000fa88, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ad:3f:a3:03:c1:81:dd:22:65:45:17:c3:78: 61:42:b1:cd:f4:d2:36:ec:e9:c7:81:9f:51:87:70: 5d:9f:0a:c2:52:0a:4f:31:5f:63:40:32:8a:a3:cb: fb:cb:2e:8f:e2:b4:ae:5c:c9:c8:35:75:db:f2:b9: a0:4f:a5:9f:97:57:a4:27:9e:fc:ba:47:b3:90:0d: 17:5b:8e:05:43:75:e3:39:f4:aa:82:e6:c1:5c:98: 38:70:6c:9a:2c:d6:76:7d:58:6e:c2:c6:a5:4f:f3: b4:53:f2:46:7d:2a:b9:7a:8c:80:7c:a8:d9:18:64: 10:cd:33:7e:4f:9c:a6:d4:98:df:aa:ad:da:39:b4: 95:00:ac:38:96:29:2f:88:7f:47:86:57:a8:21:2b: d4:00:f7:0f:21:07:61:54:04:9e:8d:af:60:58:44: 52:22:0f:8c:7d:1f:4f:f0:d0:54:41:94:c3:f9:07: 18:67:4d:f3:88:ba:66:86:e1:0d:ff:61:46:45:6f: 8a:29:40:24:5e:76:c9:67:e5:16:a4:d8:e1:09:d2: 48:29:62:20:2b:e5:ea:da:a9:5c:40:8d:fb:56:af: f0:a4:c8:0d:f0:44:71:7d:6e:7a:e4:dd:06:1f:db: c6:eb:23:de:06:41:b3:84:b2:5d:6b:56:e4:62:56: c8:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:DD:30:13:11:B2:77:AF:80:55:13:F7:6C:F4:45:AF:76:C3:D1:E4 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/66ffeb6a-4bb3-40d3-819b-05f761336329.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2a60::/45 Signature Algorithm: sha256WithRSAEncryption 75:23:da:e7:21:cf:32:18:88:34:5e:7d:de:e5:58:4b:b5:01: d3:ec:b6:6b:2b:4f:a2:4c:0a:9a:c0:25:61:7c:52:be:de:88: cf:57:f9:be:1f:c3:4f:7e:6d:3d:a6:55:9b:cd:13:8c:73:98: 93:c3:d4:a1:79:c2:91:6b:7c:ea:8f:61:70:47:98:aa:ca:01: 29:58:5d:47:5a:8d:61:a8:f7:93:d1:34:65:78:7a:ef:fa:b0: de:12:c0:70:da:5a:af:6e:e3:55:70:44:ac:2e:85:3f:8f:c0: 5c:18:96:f0:2f:03:04:73:ba:c2:28:29:e7:49:9f:4b:45:93: a2:4f:a4:eb:29:54:b0:82:95:5e:8a:f4:6e:70:d6:7f:42:33: bd:ef:d9:85:fc:27:64:89:99:aa:a7:84:dd:c5:01:e6:87:3d: 32:a6:5c:64:68:71:5f:1f:17:a7:e9:cb:ca:17:6a:9d:6d:d7: ff:9a:5f:7d:d4:1d:13:88:25:3b:58:e4:df:d9:64:1b:9b:a0: 6e:2d:eb:02:26:db:32:3f:29:9f:9d:0a:98:a1:81:92:93:d6: 1f:40:8d:3b:33:a6:91:f8:7e:27:20:5f:86:19:88:87:50:99: be:1e:6b:bb:14:b4:11:3d:17:68:36:42:32:1d:f5:c4:6b:8e: bb:09:bf:47 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUB6ztusc7Agt9kJkFJTroJRLfCQYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDU0MDMyWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYWJhYzZhYzYyNzE3Y2UxZmIyMDFhNzI1MWVmNzE1OGI2 NzAxZjExNzI3ZjdlOWYwZDEyM2FiN2YwMDBmYTg4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOrT+jA8GB3SJlRRfDeGFCsc300jbs6ceBn1GHcF2fCsJS Ck8xX2NAMoqjy/vLLo/itK5cycg1ddvyuaBPpZ+XV6Qnnvy6R7OQDRdbjgVDdeM5 9KqC5sFcmDhwbJos1nZ9WG7CxqVP87RT8kZ9Krl6jIB8qNkYZBDNM35PnKbUmN+q rdo5tJUArDiWKS+If0eGV6ghK9QA9w8hB2FUBJ6Nr2BYRFIiD4x9H0/w0FRBlMP5 BxhnTfOIumaG4Q3/YUZFb4opQCRedsln5Rak2OEJ0kgpYiAr5eraqVxAjftWr/Ck yA3wRHF9bnrk3QYf28brI94GQbOEsl1rVuRiVsjRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQt0wExGyd6+AVRP3bPRFr3bD0eQwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzY2ZmZlYjZhLTRiYjMtNDBkMy04MTliLTA1Zjc2MTMzNjMyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAKmAwDQYJKoZIhvcNAQELBQADggEBAHUj2uchzzIYiDRefd7lWEu1 AdPstmsrT6JMCprAJWF8Ur7eiM9X+b4fw09+bT2mVZvNE4xzmJPD1KF5wpFrfOqP YXBHmKrKASlYXUdajWGo95PRNGV4eu/6sN4SwHDaWq9u41VwRKwuhT+PwFwYlvAv AwRzusIoKedJn0tFk6JPpOspVLCClV6K9G5w1n9CM73v2YX8J2SJmaqnhN3FAeaH PTKmXGRocV8fF6fpy8oXap1t1/+aX33UHROIJTtY5N/ZZBuboG4t6wIm2zI/KZ+d CpihgZKT1h9AjTszppH4ficgX4YZiIdQmb4ea7sUtBE9F2g2QjId9cRrjrsJv0c= -----END CERTIFICATE-----Generated at Wed Nov 5 12:31:28 2025 by rpki-client