$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7086fa19-1a9e-4a4d-beed-388d52bb28ac.roa File: 7086fa19-1a9e-4a4d-beed-388d52bb28ac.roa (raw, json) Hash identifier: Z/5M7WQvXwX65UVHLj9oV3HJ/YVcUMU3J/5suexFUQw= Subject key identifier: CA:FB:A9:CD:B2:68:A7:82:8E:5F:F4:C0:77:3A:DE:73:88:47:1E:0B Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5D11758EEF97BE7F894DE7455F675537A1066E19 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7086fa19-1a9e-4a4d-beed-388d52bb28ac.roa Signing time: Fri 31 Oct 2025 00:55:09 +0000 ROA not before: Fri 31 Oct 2025 00:55:09 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3868::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:11:75:8e:ef:97:be:7f:89:4d:e7:45:5f:67:55:37:a1:06:6e:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 00:55:09 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=c7cb6805f94b930853c642e3600590a47169599aabe712a8a45b151f29d08315, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:74:ee:b5:e8:7d:e9:dd:6c:bc:f4:55:d6:94: 86:df:b2:e8:a8:e2:99:ca:c1:29:4a:46:af:6a:41: 17:af:c7:07:1a:de:6c:ba:b8:0e:eb:fc:c6:bf:fa: 1b:b8:bf:e6:71:bd:2d:1f:f5:67:58:b3:a8:0d:6f: bb:7a:68:85:ea:9a:7d:12:35:ff:c1:a6:37:2a:dd: 7c:19:47:30:c7:f1:e6:71:33:7a:5c:6d:38:eb:15: 5a:b0:e3:82:58:25:6e:c5:7f:d4:d9:30:3b:a1:a1: fe:a1:26:e8:5c:0c:44:9a:ef:59:dc:5a:6d:ad:85: 48:51:b1:2f:6d:bf:a5:61:73:46:83:d0:46:9d:ba: 58:70:c7:c0:82:a4:e3:ce:4e:e2:48:33:27:01:c6: 00:4e:87:19:16:6f:6e:12:ca:c7:79:ed:a5:39:b1: 7d:b4:1d:3b:8a:b4:f4:af:9b:10:0b:e1:db:50:d9: 9f:c4:c2:b3:83:8c:c2:f2:b4:1b:e3:46:15:43:bc: 7d:7f:19:de:a2:cb:b8:a5:48:c0:30:8c:1d:cd:02: a2:db:2c:71:e6:ef:cf:d4:43:0b:6a:96:11:9e:5e: d2:2a:62:87:75:09:bd:1d:90:c5:3e:28:f9:7c:a0: a3:46:8f:bb:db:4b:93:0b:f3:8e:f3:fb:6c:bc:13: 67:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:FB:A9:CD:B2:68:A7:82:8E:5F:F4:C0:77:3A:DE:73:88:47:1E:0B X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7086fa19-1a9e-4a4d-beed-388d52bb28ac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3868::/47 Signature Algorithm: sha256WithRSAEncryption 22:71:28:16:d3:a4:2c:3f:e2:23:39:ca:c1:07:94:3a:40:14: be:56:4b:11:d3:04:37:12:c5:50:bd:5c:d4:16:f1:92:34:3d: 65:77:bb:9d:fd:64:13:f1:a3:81:58:0d:f1:62:f7:36:86:17: 6c:e8:8c:bd:a9:4f:47:5d:b8:0b:25:c2:53:96:8a:3a:d9:8e: f1:cb:79:a2:e2:42:57:87:e8:7c:0a:75:bb:93:b7:2b:28:88: 62:8b:6e:f4:6c:2b:cb:65:93:45:60:58:85:22:39:d7:e9:9e: c2:0b:14:79:1f:7d:2c:62:5d:db:6a:09:be:f8:d0:3e:4c:f8: 7c:80:d4:f0:e3:c6:df:5b:c2:e6:29:30:3c:9c:10:a1:2b:c4: 53:10:de:e0:1b:de:a8:87:a1:e0:09:31:fb:e9:bf:3e:0a:6f: ff:80:af:47:4d:7b:91:45:ea:fd:ae:fe:dc:a4:8b:14:5e:58: cc:e7:21:26:ce:69:80:cd:52:c9:5a:29:fd:90:79:3a:00:81: 4a:45:00:be:43:6c:e3:18:65:17:45:97:65:b1:5a:f3:80:6d: b8:e9:8d:b4:62:e4:0d:42:27:91:43:6d:1e:c0:d3:d8:6f:a0: 48:f2:0b:83:3c:88:78:22:9c:4d:29:3e:ab:87:56:75:f7:4b: 0d:4a:06:3e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXRF1ju+Xvn+JTedFX2dVN6EGbhkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDA1NTA5WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjN2NiNjgwNWY5NGI5MzA4NTNjNjQyZTM2MDA1OTBhNDcx Njk1OTlhYWJlNzEyYThhNDViMTUxZjI5ZDA4MzE1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEdO616H3p3Wy89FXWlIbfsuio4pnKwSlKRq9qQRevxwca 3my6uA7r/Ma/+hu4v+ZxvS0f9WdYs6gNb7t6aIXqmn0SNf/Bpjcq3XwZRzDH8eZx M3pcbTjrFVqw44JYJW7Ff9TZMDuhof6hJuhcDESa71ncWm2thUhRsS9tv6Vhc0aD 0Eadulhwx8CCpOPOTuJIMycBxgBOhxkWb24Sysd57aU5sX20HTuKtPSvmxAL4dtQ 2Z/EwrODjMLytBvjRhVDvH1/Gd6iy7ilSMAwjB3NAqLbLHHm78/UQwtqlhGeXtIq Yod1Cb0dkMU+KPl8oKNGj7vbS5ML847z+2y8E2cDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUyvupzbJop4KOX/TAdzrec4hHHgswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzcwODZmYTE5LTFhOWUtNGE0ZC1iZWVkLTM4OGQ1MmJiMjhhYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOGgwDQYJKoZIhvcNAQELBQADggEBACJxKBbTpCw/4iM5ysEHlDpA FL5WSxHTBDcSxVC9XNQW8ZI0PWV3u539ZBPxo4FYDfFi9zaGF2zojL2pT0dduAsl wlOWijrZjvHLeaLiQleH6HwKdbuTtysoiGKLbvRsK8tlk0VgWIUiOdfpnsILFHkf fSxiXdtqCb740D5M+HyA1PDjxt9bwuYpMDycEKErxFMQ3uAb3qiHoeAJMfvpvz4K b/+Ar0dNe5FF6v2u/tykixReWMznISbOaYDNUslaKf2QeToAgUpFAL5DbOMYZRdF l2WxWvOAbbjpjbRi5A1CJ5FDbR7A09hvoEjyC4M8iHginE0pPquHVnX3Sw1KBj4= -----END CERTIFICATE-----Generated at Wed Nov 5 10:54:12 2025 by rpki-client