$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/70e4af89-08a8-4471-a464-a1a0e37b7266.roa File: 70e4af89-08a8-4471-a464-a1a0e37b7266.roa (raw, json) Hash identifier: RJW0pw8VHzND716brjPgPI1PV44iqtF9ZEVOLHc64G4= Subject key identifier: 08:4A:8C:C1:87:F1:15:BF:BF:E7:4B:F0:E7:11:ED:0F:1B:45:B8:49 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 6667E538EADB38FA306F5875961CC905A37633CC Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/70e4af89-08a8-4471-a464-a1a0e37b7266.roa Signing time: Fri 31 Oct 2025 00:13:45 +0000 ROA not before: Fri 31 Oct 2025 00:13:45 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3412::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:67:e5:38:ea:db:38:fa:30:6f:58:75:96:1c:c9:05:a3:76:33:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 00:13:45 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=d7015a6b3d90f36421405f54f1a728b4cff6763d993caa8b53531712e169a2bb, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:99:56:c9:6e:ff:7f:68:d2:b2:6f:b2:a0:ff: e7:ab:4e:13:5f:b9:c4:83:47:eb:2f:84:61:07:8f: d8:8c:72:7a:a9:e3:60:0d:7a:56:d4:3a:60:12:1f: d8:ce:2b:da:31:9c:78:54:c3:1b:44:4d:89:93:9c: cf:f4:45:6a:04:61:47:fe:78:ff:4d:d6:be:d2:87: 4b:63:5c:31:2a:3c:a8:e2:30:02:fb:f2:b7:f4:db: a4:9d:55:c4:d6:de:64:b2:06:47:c3:c0:09:c8:eb: 8a:60:41:ba:fa:4e:58:91:99:33:fe:f2:68:3b:92: 8f:24:d2:ff:89:a4:8d:ea:28:f9:98:81:cf:4f:bf: 34:48:d3:21:91:f4:32:96:1e:61:61:bc:96:f7:e8: cb:0c:fa:63:4e:9a:a6:96:70:cf:ea:67:fd:a1:1a: ea:f0:1b:5d:4d:ef:67:a3:79:56:9c:48:df:53:17: 0b:61:ba:ca:df:ae:bb:4d:77:42:91:f1:cb:f9:6b: 7d:fe:83:ee:01:f4:3b:ce:0f:60:a7:83:26:f4:c3: 6d:ae:0d:25:a4:9e:6e:7e:5c:e9:c9:32:cc:34:17: 82:a8:e8:58:c3:4f:ff:e9:81:f3:f3:12:52:89:7e: a0:44:8f:06:75:81:84:e6:82:ad:92:8e:b6:40:82: a6:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:4A:8C:C1:87:F1:15:BF:BF:E7:4B:F0:E7:11:ED:0F:1B:45:B8:49 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/70e4af89-08a8-4471-a464-a1a0e37b7266.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3412::/47 Signature Algorithm: sha256WithRSAEncryption 38:54:aa:11:92:15:5e:ab:f1:21:44:82:ed:21:00:53:61:98: d7:4b:e8:03:52:69:dc:4b:e3:8c:b5:76:da:10:dd:aa:c1:b2: ec:00:3b:b6:f0:2c:44:42:24:04:9c:1a:44:42:22:03:d5:ec: 5a:ce:c6:25:dd:c0:e1:41:23:a7:b9:43:66:c4:f6:a3:ca:f1: 32:69:16:97:5e:86:0f:b4:81:33:86:fc:81:aa:98:b3:fa:6d: f4:75:41:80:4a:9f:ff:bf:7a:fe:ee:c2:e1:23:bc:4d:93:87: ec:81:21:54:8c:44:f2:4b:bf:8f:c7:f1:78:b3:71:b6:81:e2: 40:97:97:bd:6b:1d:aa:04:fb:8b:3a:86:24:11:21:5c:53:73: bb:b9:80:f7:10:84:d4:0e:a7:bc:a5:a0:48:8e:f0:54:84:7f: e6:8e:80:27:d5:f3:7c:cb:fc:a6:43:22:a2:86:bc:b7:f9:ea: ab:e7:6f:7c:af:68:dc:6d:a8:c3:0c:82:cd:f8:7e:74:d9:d9: 7a:df:e1:ca:b0:fb:da:c1:db:f6:a9:8d:61:f0:00:90:a3:61: d3:aa:b0:c3:f6:8b:0f:18:c6:38:66:cc:04:a8:50:5d:1d:9a: c6:d8:79:f5:a3:7d:2c:4b:cc:fe:37:fa:b4:be:1b:37:99:f8: 16:b9:84:e5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZmflOOrbOPowb1h1lhzJBaN2M8wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDAxMzQ1WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNzAxNWE2YjNkOTBmMzY0MjE0MDVmNTRmMWE3MjhiNGNm ZjY3NjNkOTkzY2FhOGI1MzUzMTcxMmUxNjlhMmJiMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCMmVbJbv9/aNKyb7Kg/+erThNfucSDR+svhGEHj9iMcnqp 42ANelbUOmASH9jOK9oxnHhUwxtETYmTnM/0RWoEYUf+eP9N1r7Sh0tjXDEqPKji MAL78rf026SdVcTW3mSyBkfDwAnI64pgQbr6TliRmTP+8mg7ko8k0v+JpI3qKPmY gc9PvzRI0yGR9DKWHmFhvJb36MsM+mNOmqaWcM/qZ/2hGurwG11N72ejeVacSN9T FwthusrfrrtNd0KR8cv5a33+g+4B9DvOD2Cngyb0w22uDSWknm5+XOnJMsw0F4Ko 6FjDT//pgfPzElKJfqBEjwZ1gYTmgq2SjrZAgqbhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUCEqMwYfxFb+/50vw5xHtDxtFuEkwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzcwZTRhZjg5LTA4YTgtNDQ3MS1hNDY0LWExYTBlMzdiNzI2Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAANBIwDQYJKoZIhvcNAQELBQADggEBADhUqhGSFV6r8SFEgu0hAFNh mNdL6ANSadxL44y1dtoQ3arBsuwAO7bwLERCJAScGkRCIgPV7FrOxiXdwOFBI6e5 Q2bE9qPK8TJpFpdehg+0gTOG/IGqmLP6bfR1QYBKn/+/ev7uwuEjvE2Th+yBIVSM RPJLv4/H8XizcbaB4kCXl71rHaoE+4s6hiQRIVxTc7u5gPcQhNQOp7yloEiO8FSE f+aOgCfV83zL/KZDIqKGvLf56qvnb3yvaNxtqMMMgs34fnTZ2Xrf4cqw+9rB2/ap jWHwAJCjYdOqsMP2iw8YxjhmzASoUF0dmsbYefWjfSxLzP43+rS+GzeZ+Ba5hOU= -----END CERTIFICATE-----Generated at Wed Nov 5 10:56:13 2025 by rpki-client