$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/731e20c4-1c88-4a34-98d1-2c34ede75bba.roa File: 731e20c4-1c88-4a34-98d1-2c34ede75bba.roa (raw, json) Hash identifier: YCEWmb6VPZe9G00bDGZrqySRfu3ykTjuOIysGZXBrKo= Subject key identifier: 1E:F9:33:09:4E:A7:53:6C:40:E7:50:FC:6C:65:AE:BA:E2:91:B9:F8 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2A42FF7056D4EB3DF3E988F7FA30729F04EDA3A6 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/731e20c4-1c88-4a34-98d1-2c34ede75bba.roa Signing time: Fri 31 Oct 2025 07:44:20 +0000 ROA not before: Fri 31 Oct 2025 07:44:20 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1a00::/41 maxlen: 41 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:42:ff:70:56:d4:eb:3d:f3:e9:88:f7:fa:30:72:9f:04:ed:a3:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 07:44:20 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=948f329d9b3e8fdd78a9bd1e6de873b6b15243e3e738da29dbd0c76c1126b1d5, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9e:dc:ed:9e:21:91:9a:49:40:32:75:61:9f: 5e:bf:33:1a:64:7b:f7:12:ce:73:21:60:75:36:52: 83:8d:ad:8e:f9:c3:8b:16:d2:35:63:f2:88:da:6e: 53:6c:fa:a6:d3:4e:fd:93:78:42:d3:e3:09:66:25: b5:97:1c:f5:e3:6d:72:78:82:f9:eb:73:1a:02:85: 3e:98:2b:d2:d5:e9:5a:72:90:64:d7:ad:b0:aa:51: 11:12:7d:46:bc:2f:67:b0:19:37:3d:35:90:a2:1e: 6c:33:ba:89:18:49:e2:98:40:96:88:e3:98:22:32: ee:31:68:a2:6f:e3:30:63:2b:58:21:a3:28:1d:f9: 82:fd:ae:90:2c:d0:06:a1:be:88:1c:e3:87:df:f4: b3:50:75:25:f7:d1:49:72:91:87:64:9f:80:b4:ed: f3:48:9e:6a:64:f4:a9:7e:09:a5:09:df:67:0f:5c: 93:d4:a9:af:e1:9c:9d:18:51:15:68:3e:6f:44:3d: cb:d8:b4:2a:d3:34:9c:a6:08:e8:af:da:c4:a0:97: e1:0a:a4:93:70:4d:dc:22:1d:98:34:7f:45:7f:4e: 0c:33:f0:a2:17:33:d0:82:49:64:f7:3c:47:3a:d6: 1e:7e:69:34:08:91:4e:6c:15:f6:28:dc:52:1c:a8: 19:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:F9:33:09:4E:A7:53:6C:40:E7:50:FC:6C:65:AE:BA:E2:91:B9:F8 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/731e20c4-1c88-4a34-98d1-2c34ede75bba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1a00::/41 Signature Algorithm: sha256WithRSAEncryption 65:a2:57:dc:72:37:15:c4:9b:cf:ab:c4:00:e9:b1:07:f2:1f: c1:8d:de:0b:4d:9c:3e:72:50:10:5b:94:0f:26:fa:e9:f7:b5: ca:6f:dd:ff:7a:f5:3e:60:ab:0c:cc:77:98:32:f2:81:bb:d5: 4e:97:91:bc:3c:76:2e:17:dc:75:57:f4:12:e9:4c:db:66:22: cb:ed:11:1f:29:6d:ef:a0:db:40:39:c1:38:25:26:8c:35:a6: a8:38:43:23:db:d1:4f:37:f2:a6:f4:73:fe:ba:ea:18:8f:8b: 43:d9:11:70:dc:76:6e:c1:a7:fd:68:54:14:59:ed:dc:fb:49: 84:4e:e8:56:6e:fd:b9:86:ee:ff:32:90:08:b3:2e:c8:98:72: a4:cf:08:f5:d8:1c:e8:06:d5:1c:74:f6:dc:69:43:93:4b:74: 82:7e:2a:a2:19:97:a1:28:be:75:08:a5:bb:4e:2e:e2:74:27: 2c:f5:32:17:79:24:01:72:4d:89:f2:0c:74:8d:c5:4e:a0:6f: dd:7c:e6:61:1e:6e:38:6f:33:51:50:3f:d1:12:d7:a2:79:e0: a3:cd:ea:4b:9e:67:ca:e4:4c:f1:80:23:14:b0:41:a3:dc:d3: e3:47:d3:47:1c:4c:64:3d:90:54:3e:78:3c:90:89:e5:54:68: 51:ba:db:e8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKkL/cFbU6z3z6Yj3+jBynwTto6YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDc0NDIwWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NDhmMzI5ZDliM2U4ZmRkNzhhOWJkMWU2ZGU4NzNiNmIx NTI0M2UzZTczOGRhMjlkYmQwYzc2YzExMjZiMWQ1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9ntztniGRmklAMnVhn16/Mxpke/cSznMhYHU2UoONrY75 w4sW0jVj8ojablNs+qbTTv2TeELT4wlmJbWXHPXjbXJ4gvnrcxoChT6YK9LV6Vpy kGTXrbCqURESfUa8L2ewGTc9NZCiHmwzuokYSeKYQJaI45giMu4xaKJv4zBjK1gh oygd+YL9rpAs0Aahvogc44ff9LNQdSX30UlykYdkn4C07fNInmpk9Kl+CaUJ32cP XJPUqa/hnJ0YURVoPm9EPcvYtCrTNJymCOiv2sSgl+EKpJNwTdwiHZg0f0V/Tgwz 8KIXM9CCSWT3PEc61h5+aTQIkU5sFfYo3FIcqBl1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUHvkzCU6nU2xA51D8bGWuuuKRufgwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzczMWUyMGM0LTFjODgtNGEzNC05OGQxLTJjMzRlZGU3NWJiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwcmAJAAGgAwDQYJKoZIhvcNAQELBQADggEBAGWiV9xyNxXEm8+rxADpsQfy H8GN3gtNnD5yUBBblA8m+un3tcpv3f969T5gqwzMd5gy8oG71U6Xkbw8di4X3HVX 9BLpTNtmIsvtER8pbe+g20A5wTglJow1pqg4QyPb0U838qb0c/666hiPi0PZEXDc dm7Bp/1oVBRZ7dz7SYRO6FZu/bmG7v8ykAizLsiYcqTPCPXYHOgG1Rx09txpQ5NL dIJ+KqIZl6EovnUIpbtOLuJ0Jyz1Mhd5JAFyTYnyDHSNxU6gb9185mEebjhvM1FQ P9ES16J54KPN6kueZ8rkTPGAIxSwQaPc0+NH00ccTGQ9kFQ+eDyQieVUaFG62+g= -----END CERTIFICATE-----Generated at Wed Nov 5 05:36:08 2025 by rpki-client