$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/711b675a-ea44-4a3b-b39f-3058486240e7.roa File: 711b675a-ea44-4a3b-b39f-3058486240e7.roa (raw, json) Hash identifier: w6LStH62JyiD9KPlUw7xYDrUxk0KPpmGBT+zbOP0IE4= Subject key identifier: 96:9D:EE:36:36:8C:D6:24:2F:F7:EE:83:7F:04:72:EC:56:A7:EB:02 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0B3B5A407D328862A54B12BB3A1E78715E53E794 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/711b675a-ea44-4a3b-b39f-3058486240e7.roa Signing time: Fri 31 Oct 2025 01:42:57 +0000 ROA not before: Fri 31 Oct 2025 01:42:57 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3dac::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:3b:5a:40:7d:32:88:62:a5:4b:12:bb:3a:1e:78:71:5e:53:e7:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 01:42:57 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=13b4eb3322e518e0e8497814a485985c2c3fa70182968974427acf1c7991c1c2, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:6f:6c:32:cd:ad:be:fc:0e:bf:8e:88:d0:f2: 0d:cb:9a:e8:57:c9:23:1d:7d:1e:9b:2f:50:38:49: de:e0:b8:24:a8:62:f1:4f:e3:ca:0c:fa:18:cf:40: d1:1f:5c:d4:cf:c2:03:5d:da:4c:fd:ed:74:29:47: 7d:62:46:70:89:3b:25:69:09:c8:99:ff:35:c7:b7: e9:bf:51:9b:e3:5a:c5:97:fe:1f:e5:43:2c:09:32: 73:94:54:00:44:27:1e:30:ad:af:bc:cd:58:c5:4b: 5f:ab:bf:f3:20:48:b8:53:53:59:97:43:c7:0b:6e: 88:b1:9c:9d:fa:f0:c7:8a:5e:73:3f:6f:9e:2b:17: c9:9e:7d:d9:b2:89:14:af:07:82:57:27:62:8f:cd: bf:1d:07:29:48:e1:17:04:87:06:0c:42:f2:a6:3b: 09:e0:4f:45:7c:5e:d9:19:c9:33:0a:61:57:40:2d: af:e2:ff:70:7b:7f:ea:b7:71:84:91:0a:ac:a5:f9: fa:6c:0c:dc:e3:0a:18:38:49:43:73:c1:b5:bf:87: b0:b2:b4:21:0c:43:a8:ed:99:6b:58:f4:c1:f2:29: 81:c2:be:a9:3c:99:a0:f4:c9:b4:1e:7a:45:65:cb: 81:ca:05:fb:ec:1b:13:ff:be:1d:cc:26:e7:4b:e8: 32:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:9D:EE:36:36:8C:D6:24:2F:F7:EE:83:7F:04:72:EC:56:A7:EB:02 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/711b675a-ea44-4a3b-b39f-3058486240e7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3dac::/47 Signature Algorithm: sha256WithRSAEncryption 63:4e:18:3b:ae:3f:c9:bd:6b:1d:92:04:0f:ea:e8:9d:33:3f: 8c:e9:60:85:18:85:4e:03:33:d7:61:7b:af:d0:e2:b9:ba:26: 82:38:9f:f9:9b:6e:b0:f2:ef:65:12:00:7b:c8:7c:ab:a0:52: a5:96:94:91:f6:71:8f:9a:91:99:02:0f:7e:82:3c:b6:a4:67: d9:1f:ac:e1:fe:ff:71:c2:22:80:51:f7:31:a7:77:b9:66:1d: fd:b7:30:3c:e6:1a:c9:08:4f:a2:93:97:47:67:d4:ca:4b:95: 69:c4:da:6c:9d:9b:b3:35:44:aa:87:0d:95:14:54:8c:90:4a: 1a:14:4e:28:96:a1:fc:a2:4f:ae:03:d0:14:5d:ba:d2:57:08: f0:b6:c7:f2:92:ee:39:4a:c3:3e:e4:56:70:a7:22:22:ff:b8: 66:f0:f4:3a:8e:1b:b0:51:04:22:32:ce:2d:45:fe:30:9e:65: 45:4f:2a:c2:49:02:d3:d1:7f:8f:bb:28:15:13:0b:fc:c7:b0: 41:67:fc:3a:15:9b:9e:84:d3:81:f8:ff:47:b6:e4:01:c9:bd: c7:1f:72:4b:36:48:80:c8:9d:cc:85:3d:82:32:7a:3a:f8:14: 58:4e:74:89:b8:d6:df:63:c0:e7:f5:db:80:58:69:cc:7f:47: 20:1c:9f:a0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCztaQH0yiGKlSxK7Oh54cV5T55QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDE0MjU3WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxM2I0ZWIzMzIyZTUxOGUwZTg0OTc4MTRhNDg1OTg1YzJj M2ZhNzAxODI5Njg5NzQ0MjdhY2YxYzc5OTFjMWMyMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrb2wyza2+/A6/jojQ8g3LmuhXySMdfR6bL1A4Sd7guCSo YvFP48oM+hjPQNEfXNTPwgNd2kz97XQpR31iRnCJOyVpCciZ/zXHt+m/UZvjWsWX /h/lQywJMnOUVABEJx4wra+8zVjFS1+rv/MgSLhTU1mXQ8cLboixnJ368MeKXnM/ b54rF8mefdmyiRSvB4JXJ2KPzb8dBylI4RcEhwYMQvKmOwngT0V8XtkZyTMKYVdA La/i/3B7f+q3cYSRCqyl+fpsDNzjChg4SUNzwbW/h7CytCEMQ6jtmWtY9MHyKYHC vqk8maD0ybQeekVly4HKBfvsGxP/vh3MJudL6DIZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUlp3uNjaM1iQv9+6DfwRy7Fan6wIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzcxMWI2NzVhLWVhNDQtNGEzYi1iMzlmLTMwNTg0ODYyNDBlNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAPawwDQYJKoZIhvcNAQELBQADggEBAGNOGDuuP8m9ax2SBA/q6J0z P4zpYIUYhU4DM9dhe6/Q4rm6JoI4n/mbbrDy72USAHvIfKugUqWWlJH2cY+akZkC D36CPLakZ9kfrOH+/3HCIoBR9zGnd7lmHf23MDzmGskIT6KTl0dn1MpLlWnE2myd m7M1RKqHDZUUVIyQShoUTiiWofyiT64D0BRdutJXCPC2x/KS7jlKwz7kVnCnIiL/ uGbw9DqOG7BRBCIyzi1F/jCeZUVPKsJJAtPRf4+7KBUTC/zHsEFn/DoVm56E04H4 /0e25AHJvccfcks2SIDIncyFPYIyejr4FFhOdIm41t9jwOf124BYacx/RyAcn6A= -----END CERTIFICATE-----Generated at Wed Nov 5 10:32:49 2025 by rpki-client