$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/70cd11f2-0949-4fb6-9409-aafc189683e3.roa File: 70cd11f2-0949-4fb6-9409-aafc189683e3.roa (raw, json) Hash identifier: qzssY7mTZFxjj+7+Wk+j32qQQSHe2l6DQCWI3u+idbQ= Subject key identifier: 64:FE:9D:04:94:02:0E:F7:39:92:7B:9B:FD:1C:02:AD:96:BD:78:04 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 26A832FDB50D5159539E5EC9504F02DA66754549 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/70cd11f2-0949-4fb6-9409-aafc189683e3.roa Signing time: Thu 30 Oct 2025 23:28:51 +0000 ROA not before: Thu 30 Oct 2025 23:28:51 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2d9c::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:a8:32:fd:b5:0d:51:59:53:9e:5e:c9:50:4f:02:da:66:75:45:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 23:28:51 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=a2611f6d2092df76621fcfe992e3ffa7ecee88f05d27bdbeab0d8427e4a68271, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:10:03:e7:cf:19:09:04:d1:33:ea:f4:a0:b4: a6:ad:91:59:a6:a5:dd:f1:d0:91:9b:28:6f:34:65: 9b:7a:57:7e:84:ae:2b:f1:a3:50:1e:9d:15:05:ea: a9:f6:d5:fe:1f:e6:dc:9e:b9:42:6a:e5:ea:83:28: 28:01:e8:6f:e0:d8:ab:99:31:03:ec:d5:ae:29:38: 25:96:6a:f2:ba:cd:30:4d:6e:9a:cd:db:ff:87:fc: ab:75:5a:d2:eb:df:c8:af:0f:4f:21:7d:49:13:02: 6a:67:b5:56:90:cb:bd:eb:91:51:6b:7a:88:eb:34: d7:9f:89:ac:ac:f0:de:4c:bc:31:70:98:20:e4:9e: b4:74:00:f0:ae:67:03:65:9f:c0:f3:76:57:cc:79: 7d:2a:28:01:7e:5b:27:45:a3:bb:94:09:aa:0d:bc: 53:8d:95:5e:b4:c5:03:6e:4d:39:91:e1:58:33:74: 82:f9:c3:13:6d:40:68:a4:03:f4:59:90:a6:33:a5: fd:3a:15:58:a1:3d:60:4f:6a:71:6d:74:84:23:7b: a4:6a:ff:cb:07:4a:5f:0d:0d:5b:75:1d:62:45:85: 61:f7:bd:8a:e8:13:a0:d7:6c:72:9a:79:dd:12:46: ac:a4:cd:83:20:2e:64:de:87:1e:ff:35:c1:96:13: 80:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:FE:9D:04:94:02:0E:F7:39:92:7B:9B:FD:1C:02:AD:96:BD:78:04 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/70cd11f2-0949-4fb6-9409-aafc189683e3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2d9c::/47 Signature Algorithm: sha256WithRSAEncryption 51:0c:74:b5:6c:27:52:29:aa:c8:99:66:38:bb:42:8c:1f:0e: 42:fb:ff:ee:72:f1:99:f4:07:91:ef:67:ef:7c:62:2e:dc:33: e9:b4:8e:e4:bb:9a:d9:8c:f5:ee:84:f8:39:e1:38:53:f1:05: f0:3f:93:8d:fe:10:c3:66:85:00:73:02:db:ba:44:27:b2:b4: fe:37:fa:34:0e:98:21:1a:ef:64:e9:7a:5a:a7:af:21:b8:cc: 28:53:41:50:ff:3d:f1:32:38:ed:c9:43:46:6d:87:0f:8f:d4: 2a:dd:a6:58:cf:1f:2b:66:3f:2e:e3:3f:83:5d:11:17:2a:71: ff:b2:d7:84:71:25:43:9d:e3:5c:df:7f:88:aa:75:28:05:a0: ab:fc:3e:f8:75:3b:71:12:2e:83:ee:1f:16:10:98:20:d8:0a: 10:89:68:32:c8:28:90:0f:11:9b:3d:2a:3e:4d:47:ed:b1:db: ec:21:5a:11:c7:1c:b2:ff:65:84:1b:20:3a:23:4c:e3:50:3c: c9:23:e8:29:25:9c:8a:f2:99:67:0a:45:e9:ba:59:33:e4:39: e1:a7:04:ea:32:59:49:36:57:64:21:fd:c3:65:6a:a6:36:2b: ba:aa:02:9a:42:91:48:b0:a5:27:e7:fa:cf:59:fb:90:54:bf: 18:ae:67:20 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJqgy/bUNUVlTnl7JUE8C2mZ1RUkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjMyODUxWhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMjYxMWY2ZDIwOTJkZjc2NjIxZmNmZTk5MmUzZmZhN2Vj ZWU4OGYwNWQyN2JkYmVhYjBkODQyN2U0YTY4MjcxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqEAPnzxkJBNEz6vSgtKatkVmmpd3x0JGbKG80ZZt6V36E rivxo1AenRUF6qn21f4f5tyeuUJq5eqDKCgB6G/g2KuZMQPs1a4pOCWWavK6zTBN bprN2/+H/Kt1WtLr38ivD08hfUkTAmpntVaQy73rkVFreojrNNefiays8N5MvDFw mCDknrR0APCuZwNln8DzdlfMeX0qKAF+WydFo7uUCaoNvFONlV60xQNuTTmR4Vgz dIL5wxNtQGikA/RZkKYzpf06FVihPWBPanFtdIQje6Rq/8sHSl8NDVt1HWJFhWH3 vYroE6DXbHKaed0SRqykzYMgLmTehx7/NcGWE4BHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZP6dBJQCDvc5knub/RwCrZa9eAQwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzcwY2QxMWYyLTA5NDktNGZiNi05NDA5LWFhZmMxODk2ODNlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAALZwwDQYJKoZIhvcNAQELBQADggEBAFEMdLVsJ1IpqsiZZji7Qowf DkL7/+5y8Zn0B5HvZ+98Yi7cM+m0juS7mtmM9e6E+DnhOFPxBfA/k43+EMNmhQBz Atu6RCeytP43+jQOmCEa72TpelqnryG4zChTQVD/PfEyOO3JQ0Zthw+P1CrdpljP HytmPy7jP4NdERcqcf+y14RxJUOd41zff4iqdSgFoKv8Pvh1O3ESLoPuHxYQmCDY ChCJaDLIKJAPEZs9Kj5NR+2x2+whWhHHHLL/ZYQbIDojTONQPMkj6CklnIrymWcK Rem6WTPkOeGnBOoyWUk2V2Qh/cNlaqY2K7qqAppCkUiwpSfn+s9Z+5BUvxiuZyA= -----END CERTIFICATE-----Generated at Wed Nov 5 10:54:44 2025 by rpki-client