$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/70b73d26-d950-4603-aa31-6c4465b79f95.roa File: 70b73d26-d950-4603-aa31-6c4465b79f95.roa (raw, json) Hash identifier: YZIXOGfQtAgEIK58d5z44DSGPIRnNFQDu4cfB96avOE= Subject key identifier: FC:43:38:2D:67:8D:17:A4:63:27:D3:53:C0:80:09:87:16:F7:54:88 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2EEEF3762254135E11CF19396F8203C452F3BA68 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/70b73d26-d950-4603-aa31-6c4465b79f95.roa Signing time: Fri 31 Oct 2025 00:10:25 +0000 ROA not before: Fri 31 Oct 2025 00:10:25 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:338c::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:ee:f3:76:22:54:13:5e:11:cf:19:39:6f:82:03:c4:52:f3:ba:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 00:10:25 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=7cea075f8a9e733d6d7d5d9c48fc3556f8782ccce16c9f0b2671060abf676ab9, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:16:87:29:f5:3c:2b:5e:c5:b8:c0:97:75:02: ef:8c:68:02:bf:9f:4b:60:3a:f2:8b:3a:d1:05:15: 70:96:dd:12:b1:7d:f5:b3:83:ac:78:52:b0:1c:9a: 4b:93:8e:22:e6:4b:e4:a9:74:43:fc:5f:6b:a7:b0: ef:6d:3b:a6:5e:54:89:7b:a5:9f:07:97:2f:31:37: e4:0c:7e:29:86:90:92:3b:b3:4c:35:42:a0:8d:79: 63:70:62:d6:e1:92:43:f2:8e:01:6e:7a:fd:45:67: 61:29:b3:bd:ba:5d:c1:29:65:13:32:01:34:6c:e4: 99:30:f4:7b:ec:e2:a2:54:87:61:2f:05:2f:67:e1: bd:8b:c2:16:b6:93:55:8f:12:b1:3b:60:e6:90:dd: d3:23:1c:d4:ab:f3:c0:e0:6c:3e:72:71:05:47:46: 94:c2:8b:c6:dc:7a:a5:7c:2c:1f:e0:5b:17:c0:b3: bc:0f:8f:e4:4c:4c:a3:12:60:55:fd:92:bf:4f:58: 21:c6:aa:2e:6e:3a:c3:15:83:2a:3c:f5:95:e8:19: d3:f2:d3:13:31:28:1f:8c:af:9a:3b:ef:2f:ec:6f: 35:d7:b7:09:9d:53:70:4a:0b:d3:54:d9:a8:6d:c1: 55:0b:d9:4d:62:1f:c8:91:69:43:57:db:29:12:bf: 63:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:43:38:2D:67:8D:17:A4:63:27:D3:53:C0:80:09:87:16:F7:54:88 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/70b73d26-d950-4603-aa31-6c4465b79f95.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:338c::/47 Signature Algorithm: sha256WithRSAEncryption 05:77:c1:13:8b:db:af:45:42:15:9f:7d:66:18:aa:6f:b0:fa: e3:ec:5d:06:3e:ec:94:8b:93:9e:e4:ba:ca:10:2d:70:a4:42: ef:0b:05:a6:68:0f:c0:3c:97:95:4b:97:68:62:e0:2c:3f:fe: 9f:19:9d:8f:64:6a:14:19:8d:24:92:a2:59:96:13:ea:77:c6: 22:3c:ea:5b:ad:2e:bf:4d:b8:68:bc:b3:ae:f0:d0:09:1c:7d: 6a:3d:8b:59:e1:4d:1d:ad:93:b3:d9:f4:d1:2b:3d:99:54:ee: e9:4f:3c:41:b7:99:b7:49:a4:95:38:3a:b8:ba:30:8b:ec:a7: 5b:45:be:fe:37:ad:ff:36:2a:80:4b:b4:8d:29:35:28:92:8c: 2d:16:ee:6c:e6:3f:18:27:0b:8a:b4:3e:ea:09:ff:4a:1e:03: fb:44:61:93:40:af:08:fc:f7:04:e3:db:2e:a2:8f:8b:ee:eb: f6:ef:79:78:b1:db:78:6c:23:ac:6c:67:62:a3:a4:8f:63:61: 22:5d:8c:b9:25:a4:78:b1:9c:e0:87:61:5f:57:51:6a:ad:9c: 52:63:15:51:7a:e6:ce:bf:7a:73:0b:f6:2c:bc:3b:d4:08:2b: 15:3d:d7:f8:52:f6:11:db:df:38:b0:60:e4:f7:9c:0d:f5:c9: 67:8c:69:ab -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULu7zdiJUE14Rzxk5b4IDxFLzumgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDAxMDI1WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3Y2VhMDc1ZjhhOWU3MzNkNmQ3ZDVkOWM0OGZjMzU1NmY4 NzgyY2NjZTE2YzlmMGIyNjcxMDYwYWJmNjc2YWI5MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIFocp9TwrXsW4wJd1Au+MaAK/n0tgOvKLOtEFFXCW3RKx ffWzg6x4UrAcmkuTjiLmS+SpdEP8X2unsO9tO6ZeVIl7pZ8Hly8xN+QMfimGkJI7 s0w1QqCNeWNwYtbhkkPyjgFuev1FZ2Eps726XcEpZRMyATRs5Jkw9Hvs4qJUh2Ev BS9n4b2Lwha2k1WPErE7YOaQ3dMjHNSr88DgbD5ycQVHRpTCi8bceqV8LB/gWxfA s7wPj+RMTKMSYFX9kr9PWCHGqi5uOsMVgyo89ZXoGdPy0xMxKB+Mr5o77y/sbzXX twmdU3BKC9NU2ahtwVUL2U1iH8iRaUNX2ykSv2OtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU/EM4LWeNF6RjJ9NTwIAJhxb3VIgwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzcwYjczZDI2LWQ5NTAtNDYwMy1hYTMxLTZjNDQ2NWI3OWY5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAM4wwDQYJKoZIhvcNAQELBQADggEBAAV3wROL269FQhWffWYYqm+w +uPsXQY+7JSLk57kusoQLXCkQu8LBaZoD8A8l5VLl2hi4Cw//p8ZnY9kahQZjSSS olmWE+p3xiI86lutLr9NuGi8s67w0AkcfWo9i1nhTR2tk7PZ9NErPZlU7ulPPEG3 mbdJpJU4Ori6MIvsp1tFvv43rf82KoBLtI0pNSiSjC0W7mzmPxgnC4q0PuoJ/0oe A/tEYZNArwj89wTj2y6ij4vu6/bveXix23hsI6xsZ2KjpI9jYSJdjLklpHixnOCH YV9XUWqtnFJjFVF65s6/enML9iy8O9QIKxU91/hS9hHb3ziwYOT3nA31yWeMaas= -----END CERTIFICATE-----Generated at Wed Nov 5 07:39:09 2025 by rpki-client