$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/6a5c0345-9d81-483e-b898-57040d644d22.roa File: 6a5c0345-9d81-483e-b898-57040d644d22.roa (raw, json) Hash identifier: I32ED1ve/NcfufxzSkAYkiuw2r9iJZYGsHAItp/6dsE= Subject key identifier: 42:80:56:1E:EF:2D:0B:47:7C:9E:08:E1:F9:80:68:32:D9:D9:BA:26 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 31E98705CBD4D419B5B32BFA2DA84DE7B60A50EC Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/6a5c0345-9d81-483e-b898-57040d644d22.roa Signing time: Fri 31 Oct 2025 07:23:59 +0000 ROA not before: Fri 31 Oct 2025 07:23:59 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2ca0::/43 maxlen: 43 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:e9:87:05:cb:d4:d4:19:b5:b3:2b:fa:2d:a8:4d:e7:b6:0a:50:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 07:23:59 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=2cf4ae26117f7e71498adc66ddfda8bb80c9ab61880f0dad3cf8211adb45aebb, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:aa:40:b0:7b:59:71:c3:9c:61:34:e1:f3:2a: 20:44:e4:73:3a:aa:ac:60:30:1e:7f:2b:57:a0:e2: a2:33:80:73:80:c5:7a:36:3c:95:cb:3d:35:d7:44: e5:a4:07:0b:53:3c:b9:e4:41:73:f6:0a:a9:d0:05: 11:b9:64:49:29:05:07:fe:a6:73:8a:1e:d5:4c:e9: af:40:cd:8f:bc:44:61:25:76:6d:44:01:79:0b:55: d6:1b:20:ba:54:ce:d6:91:6d:d4:55:0d:79:16:3f: ec:94:82:d8:e8:35:21:f9:be:5f:a6:34:e9:93:95: 4b:84:4c:52:8d:f9:92:5f:77:17:fb:58:db:54:1c: 1f:d4:35:66:e6:12:7c:a3:b7:40:67:c0:5d:26:28: 70:da:79:c1:2d:71:ee:66:bf:0c:64:24:c5:9f:04: 15:99:98:a7:39:71:f7:a2:d5:83:00:77:94:bf:23: c1:94:c3:e1:5e:44:10:fd:14:ee:fb:6d:d2:bd:c2: 66:b5:38:2f:3c:a8:c7:a6:69:7b:ad:3b:cf:c1:8c: 19:e3:69:2c:29:39:59:f9:e1:ab:7c:32:45:61:42: b8:0b:8c:09:0b:94:b3:a8:47:65:ad:a8:30:5e:e2: 8a:ba:5b:55:a8:be:30:0b:80:8d:72:0b:9d:9f:ba: 77:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:80:56:1E:EF:2D:0B:47:7C:9E:08:E1:F9:80:68:32:D9:D9:BA:26 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/6a5c0345-9d81-483e-b898-57040d644d22.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2ca0::/43 Signature Algorithm: sha256WithRSAEncryption 84:3c:53:88:19:7c:8c:2f:bf:10:f5:7b:23:04:81:ec:ca:b7: 5f:8b:0d:02:f3:35:ed:d8:e3:04:84:87:f9:a4:e2:71:cf:85: f8:d4:df:77:39:8e:f5:ef:e6:90:63:5c:64:ad:30:ed:e2:f3: 33:bd:4e:51:49:60:3f:1f:de:ce:63:08:dd:fa:0b:0b:c3:08: 39:c8:7e:20:47:2e:66:21:1c:e6:95:eb:36:9d:30:93:43:10: ff:fb:1c:3f:4a:82:f5:13:b1:7f:22:b1:d6:e3:18:c5:0a:b8: 46:bd:83:e2:c2:73:80:f1:f6:b2:a8:d2:61:de:3c:55:17:04: d0:b9:5f:5f:14:43:98:bb:ed:52:3f:8d:60:57:3a:5e:0d:72: ad:c4:81:31:20:29:b9:3d:a1:8b:8f:dc:2c:de:e1:64:21:cc: 40:f4:d2:f0:3a:d5:94:6d:10:95:f4:f2:5d:ea:df:f4:eb:21: 1e:ac:37:7c:eb:f9:ed:3d:1e:c3:b1:31:ef:bc:e4:10:c5:e9: 22:a9:b1:e8:66:51:32:d7:e6:68:a6:ea:77:fd:74:72:2b:03: 60:49:6d:31:35:24:1d:33:e0:df:28:6d:d5:b3:fd:3b:9e:7c: dd:16:43:a8:18:ec:0d:e3:f6:2f:aa:6a:17:d1:46:5b:f7:f6: 50:29:c2:dc -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMemHBcvU1Bm1syv6LahN57YKUOwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDcyMzU5WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyY2Y0YWUyNjExN2Y3ZTcxNDk4YWRjNjZkZGZkYThiYjgw YzlhYjYxODgwZjBkYWQzY2Y4MjExYWRiNDVhZWJiMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyqkCwe1lxw5xhNOHzKiBE5HM6qqxgMB5/K1eg4qIzgHOA xXo2PJXLPTXXROWkBwtTPLnkQXP2CqnQBRG5ZEkpBQf+pnOKHtVM6a9AzY+8RGEl dm1EAXkLVdYbILpUztaRbdRVDXkWP+yUgtjoNSH5vl+mNOmTlUuETFKN+ZJfdxf7 WNtUHB/UNWbmEnyjt0BnwF0mKHDaecEtce5mvwxkJMWfBBWZmKc5cfei1YMAd5S/ I8GUw+FeRBD9FO77bdK9wma1OC88qMemaXutO8/BjBnjaSwpOVn54at8MkVhQrgL jAkLlLOoR2WtqDBe4oq6W1WovjALgI1yC52funfXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQoBWHu8tC0d8ngjh+YBoMtnZuiYwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzZhNWMwMzQ1LTlkODEtNDgzZS1iODk4LTU3MDQwZDY0NGQyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwUmAJAALKAwDQYJKoZIhvcNAQELBQADggEBAIQ8U4gZfIwvvxD1eyMEgezK t1+LDQLzNe3Y4wSEh/mk4nHPhfjU33c5jvXv5pBjXGStMO3i8zO9TlFJYD8f3s5j CN36CwvDCDnIfiBHLmYhHOaV6zadMJNDEP/7HD9KgvUTsX8isdbjGMUKuEa9g+LC c4Dx9rKo0mHePFUXBNC5X18UQ5i77VI/jWBXOl4Ncq3EgTEgKbk9oYuP3Cze4WQh zED00vA61ZRtEJX08l3q3/TrIR6sN3zr+e09HsOxMe+85BDF6SKpsehmUTLX5mim 6nf9dHIrA2BJbTE1JB0z4N8obdWz/TuefN0WQ6gY7A3j9i+qahfRRlv39lApwtw= -----END CERTIFICATE-----Generated at Wed Nov 5 12:31:27 2025 by rpki-client