$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/70e31e74-a364-4233-80c1-f389fdee78b8.roa File: 70e31e74-a364-4233-80c1-f389fdee78b8.roa (raw, json) Hash identifier: R27kRUvWi9gT0d2SXQlTey2wELwRymhAzGqW4KogagU= Subject key identifier: 07:D1:9C:5B:CB:15:B6:02:04:DF:C4:AC:4E:13:A1:B0:38:B8:35:E5 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5B53C987A0143AC70178D4265789265F4A97797F Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/70e31e74-a364-4233-80c1-f389fdee78b8.roa Signing time: Fri 31 Oct 2025 07:22:02 +0000 ROA not before: Fri 31 Oct 2025 07:22:02 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2920::/43 maxlen: 43 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:53:c9:87:a0:14:3a:c7:01:78:d4:26:57:89:26:5f:4a:97:79:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 07:22:02 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=8e22d5383124e55240a0bdcc2b5db6ab88ca09b03b7b8fcc0e5518111854369a, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:52:d9:94:df:d4:a6:8e:ec:dc:45:02:01:97: 95:89:9f:1e:00:cb:19:e5:77:81:c2:93:6c:7d:80: 84:ad:e6:72:76:36:75:76:73:a7:fb:1f:9e:53:a3: 08:dd:a2:65:aa:d5:a4:4a:cf:38:07:5c:21:9b:82: 7d:0d:fe:42:42:42:61:eb:89:1d:78:d9:fd:c3:2f: 75:04:ea:eb:47:89:1d:fd:02:40:50:33:c9:0e:5d: 4a:ba:08:12:4e:41:86:27:e6:43:63:05:98:ab:b5: 85:c4:0f:63:60:9c:64:cb:13:bc:0a:40:ff:6c:8d: ef:a2:93:83:a5:26:17:c9:70:ac:b8:31:81:ef:d7: da:10:26:f9:ce:1e:4d:48:22:5b:05:aa:bb:65:fb: f8:54:f0:f6:4a:18:1b:77:fb:20:54:cb:83:29:cf: 99:93:e2:91:e6:8a:10:ec:c6:00:66:fa:a7:d4:4c: a0:ce:cf:27:58:13:02:70:d1:81:b4:31:2c:48:e9: d3:bc:2b:d7:5a:8b:9d:c1:cc:6a:02:a7:3d:7d:15: b0:72:29:da:a9:20:d2:5d:a1:40:0d:0a:9f:74:19: 8a:18:b2:54:e3:62:17:82:15:4e:a8:74:df:fb:be: 4d:6d:d2:15:ee:d0:56:04:23:40:96:97:92:81:9b: 3d:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:D1:9C:5B:CB:15:B6:02:04:DF:C4:AC:4E:13:A1:B0:38:B8:35:E5 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/70e31e74-a364-4233-80c1-f389fdee78b8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2920::/43 Signature Algorithm: sha256WithRSAEncryption 80:aa:65:36:90:10:c7:84:dc:7e:8a:77:ac:33:16:11:5c:69: 13:f2:12:64:79:b6:ff:2e:45:b2:01:a7:81:e4:b5:e0:2a:cb: d6:57:9b:c7:71:ba:22:f0:b8:69:0f:5c:1d:b2:c1:27:97:a9: 71:81:0b:ce:b1:e0:40:78:05:5b:fc:f6:67:b7:73:63:e8:fa: 39:a3:8b:bb:e1:68:92:ec:78:0f:1f:b1:2a:cf:79:ea:e1:d8: 5d:d0:f2:01:43:2c:1a:04:bb:40:a1:40:cc:8e:d8:86:54:a7: a7:4b:0f:0c:ae:ed:1f:3b:d2:7a:1c:42:c3:97:fa:57:ae:42: 72:13:51:8b:2f:e4:c3:c8:6e:6e:f2:61:20:17:4a:d7:40:85: 3e:df:35:ec:0a:10:42:e5:2f:12:8b:5b:e6:68:aa:d8:bc:f8: 98:17:e0:58:ca:da:dc:21:27:fd:90:d9:8f:34:5e:3c:7e:27: 16:4e:bb:ae:41:29:3a:13:ee:69:a5:16:b5:de:66:48:05:3f: 1f:be:55:90:b4:f3:05:83:04:61:c7:46:36:dd:4d:10:e4:b3: 2d:b2:50:2a:84:5e:7f:40:ee:ee:02:d0:a4:60:6d:cc:dc:8e: 49:7c:5a:1e:65:88:cc:55:af:d0:f9:0e:2c:5d:90:40:63:0b: b1:f1:41:33 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUW1PJh6AUOscBeNQmV4kmX0qXeX8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDcyMjAyWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZTIyZDUzODMxMjRlNTUyNDBhMGJkY2MyYjVkYjZhYjg4 Y2EwOWIwM2I3YjhmY2MwZTU1MTgxMTE4NTQzNjlhMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmUtmU39SmjuzcRQIBl5WJnx4Ayxnld4HCk2x9gISt5nJ2 NnV2c6f7H55TowjdomWq1aRKzzgHXCGbgn0N/kJCQmHriR142f3DL3UE6utHiR39 AkBQM8kOXUq6CBJOQYYn5kNjBZirtYXED2NgnGTLE7wKQP9sje+ik4OlJhfJcKy4 MYHv19oQJvnOHk1IIlsFqrtl+/hU8PZKGBt3+yBUy4Mpz5mT4pHmihDsxgBm+qfU TKDOzydYEwJw0YG0MSxI6dO8K9dai53BzGoCpz19FbByKdqpINJdoUANCp90GYoY slTjYheCFU6odN/7vk1t0hXu0FYEI0CWl5KBmz1RAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUB9GcW8sVtgIE38SsThOhsDi4NeUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzcwZTMxZTc0LWEzNjQtNDIzMy04MGMxLWYzODlmZGVlNzhiOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwUmAJAAKSAwDQYJKoZIhvcNAQELBQADggEBAICqZTaQEMeE3H6Kd6wzFhFc aRPyEmR5tv8uRbIBp4HkteAqy9ZXm8dxuiLwuGkPXB2ywSeXqXGBC86x4EB4BVv8 9me3c2Po+jmji7vhaJLseA8fsSrPeerh2F3Q8gFDLBoEu0ChQMyO2IZUp6dLDwyu 7R870nocQsOX+leuQnITUYsv5MPIbm7yYSAXStdAhT7fNewKEELlLxKLW+Zoqti8 +JgX4FjK2twhJ/2Q2Y80Xjx+JxZOu65BKToT7mmlFrXeZkgFPx++VZC08wWDBGHH RjbdTRDksy2yUCqEXn9A7u4C0KRgbczcjkl8Wh5liMxVr9D5DixdkEBjC7HxQTM= -----END CERTIFICATE-----Generated at Wed Nov 5 09:28:07 2025 by rpki-client