$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/67bd53a1-3532-4936-afd4-7c23f411092a.roa File: 67bd53a1-3532-4936-afd4-7c23f411092a.roa (raw, json) Hash identifier: cTbD5M6uH1rNrLXMYA5IaCqCNazLvm8F350EFSgru+E= Subject key identifier: 4C:52:D4:BB:7F:43:93:F2:35:25:DF:60:66:0A:D2:04:BB:F0:40:4D Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 52258420C73A8CDB27D4F69DFF794FAC415C282C Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/67bd53a1-3532-4936-afd4-7c23f411092a.roa Signing time: Fri 31 Oct 2025 00:55:08 +0000 ROA not before: Fri 31 Oct 2025 00:55:08 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3864::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:25:84:20:c7:3a:8c:db:27:d4:f6:9d:ff:79:4f:ac:41:5c:28:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 00:55:08 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=ea5b97a295a8387a63b1beac8c5213e46e689b47f3453c95cb89442a4dd73c1e, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:82:dd:bc:2a:a2:ca:84:e4:83:2d:c9:33:2f: 79:a8:8c:44:e7:5a:94:22:30:0e:6a:6d:4b:de:d0: 1a:55:68:d9:e6:20:5b:d2:c8:50:12:76:31:b1:69: 01:5e:8d:75:5e:0d:68:0f:70:49:8b:3f:04:b2:8c: fb:f5:4b:fc:ba:d9:f6:a5:91:61:95:f4:64:96:cb: 57:25:df:39:17:6c:12:19:cc:dd:86:de:02:eb:d0: b3:29:23:93:cb:32:ad:89:db:74:53:96:54:13:73: c9:6b:09:d5:e9:86:ae:08:5d:ab:7c:05:05:5f:1f: 13:9e:60:f4:32:28:f3:40:c8:49:41:61:7b:ca:1d: b6:1a:d2:56:45:6e:9d:2f:44:8b:0a:6a:f6:1f:d7: 60:27:8c:58:42:6e:26:57:04:e8:7e:bf:0a:ad:c9: b3:f4:d0:9f:db:31:a7:a8:59:ee:99:33:f5:e4:eb: d9:13:e2:3f:9e:12:07:d2:0c:ac:aa:26:ad:e1:e7: 29:37:63:ac:d6:b2:91:d2:d9:0e:13:f4:ea:79:fe: 35:65:ba:e6:30:68:69:f2:37:a8:88:83:e2:c5:e8: 08:00:b1:fd:0b:55:f0:6a:de:a7:e4:6e:9d:e3:22: 23:7a:7a:26:de:32:df:86:35:5d:95:7e:8d:50:a7: 13:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:52:D4:BB:7F:43:93:F2:35:25:DF:60:66:0A:D2:04:BB:F0:40:4D X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/67bd53a1-3532-4936-afd4-7c23f411092a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3864::/47 Signature Algorithm: sha256WithRSAEncryption 42:39:17:cb:ad:19:91:1f:6a:ca:cf:2f:de:ae:33:b3:7e:0b: 5a:d7:d7:7e:61:47:7a:c7:89:a6:c8:c9:e5:b5:8a:c5:52:b8: 4a:1b:ed:7b:af:9f:d5:dc:24:11:3c:12:02:24:cc:45:d8:f9: 7d:5a:dc:a0:51:6d:da:78:a1:3c:ca:c1:27:40:98:74:d5:48: 19:4d:9b:75:f6:17:53:68:2a:2b:58:31:e6:3f:79:bc:f4:ce: 1d:8a:27:d4:b8:ff:e0:59:55:6f:ca:c5:70:ee:fe:b3:29:f2: e4:df:d2:38:30:5d:b8:82:f0:20:e6:6e:1c:38:32:67:a5:18: 7d:ef:c2:7f:c7:41:a4:71:cd:28:18:39:82:8a:78:19:ee:0e: d3:98:89:b5:a8:33:ea:47:08:1a:2e:ee:e6:98:62:75:15:f2: 24:5a:7b:09:d5:e7:9a:73:e0:87:20:4f:c5:0e:3a:88:22:de: 33:04:33:61:41:38:70:91:85:44:f8:06:35:a8:da:8f:6a:99: af:14:98:75:1e:fd:25:85:75:c0:5b:3f:63:3e:65:64:72:07: ce:d1:bf:e4:42:2a:b6:05:a5:8f:fa:22:78:8a:68:2f:c9:80: 9c:73:b3:d2:d9:75:66:29:9b:6d:46:39:2d:ad:ae:c6:3a:fb: b7:88:1c:f2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUiWEIMc6jNsn1Pad/3lPrEFcKCwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDA1NTA4WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYTViOTdhMjk1YTgzODdhNjNiMWJlYWM4YzUyMTNlNDZl Njg5YjQ3ZjM0NTNjOTVjYjg5NDQyYTRkZDczYzFlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPgt28KqLKhOSDLckzL3mojETnWpQiMA5qbUve0BpVaNnm IFvSyFASdjGxaQFejXVeDWgPcEmLPwSyjPv1S/y62falkWGV9GSWy1cl3zkXbBIZ zN2G3gLr0LMpI5PLMq2J23RTllQTc8lrCdXphq4IXat8BQVfHxOeYPQyKPNAyElB YXvKHbYa0lZFbp0vRIsKavYf12AnjFhCbiZXBOh+vwqtybP00J/bMaeoWe6ZM/Xk 69kT4j+eEgfSDKyqJq3h5yk3Y6zWspHS2Q4T9Op5/jVluuYwaGnyN6iIg+LF6AgA sf0LVfBq3qfkbp3jIiN6eibeMt+GNV2Vfo1QpxN7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUTFLUu39Dk/I1Jd9gZgrSBLvwQE0wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzY3YmQ1M2ExLTM1MzItNDkzNi1hZmQ0LTdjMjNmNDExMDkyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOGQwDQYJKoZIhvcNAQELBQADggEBAEI5F8utGZEfasrPL96uM7N+ C1rX135hR3rHiabIyeW1isVSuEob7Xuvn9XcJBE8EgIkzEXY+X1a3KBRbdp4oTzK wSdAmHTVSBlNm3X2F1NoKitYMeY/ebz0zh2KJ9S4/+BZVW/KxXDu/rMp8uTf0jgw XbiC8CDmbhw4MmelGH3vwn/HQaRxzSgYOYKKeBnuDtOYibWoM+pHCBou7uaYYnUV 8iRaewnV55pz4IcgT8UOOogi3jMEM2FBOHCRhUT4BjWo2o9qma8UmHUe/SWFdcBb P2M+ZWRyB87Rv+RCKrYFpY/6IniKaC/JgJxzs9LZdWYpm21GOS2trsY6+7eIHPI= -----END CERTIFICATE-----Generated at Wed Nov 5 10:32:42 2025 by rpki-client