$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/76c77647-6fd3-43d6-afae-1903ca232b74.roa File: 76c77647-6fd3-43d6-afae-1903ca232b74.roa (raw, json) Hash identifier: B4+iEYFZt8VwZ7l3dYpeLY/sWZgD/xoRQttSe47nEiU= Subject key identifier: 94:8F:45:47:FA:F1:92:52:9A:99:1E:42:B0:8E:65:25:F0:01:6A:06 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5B13DAE0C415D078C3656CCC07959EEA5328566B Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/76c77647-6fd3-43d6-afae-1903ca232b74.roa Signing time: Fri 31 Oct 2025 06:38:41 +0000 ROA not before: Fri 31 Oct 2025 06:38:41 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1a10::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:13:da:e0:c4:15:d0:78:c3:65:6c:cc:07:95:9e:ea:53:28:56:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 06:38:41 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=73ec1bb971600362c9130da7d0ac01f977b89241a134c37a820e00f0bb4b3f18, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:f0:19:27:8e:fa:c9:47:f1:68:67:a5:c4:99: 93:82:9e:31:40:23:47:25:c2:b3:49:5a:3e:21:8a: f6:92:56:3f:96:52:14:00:35:16:fb:af:58:5f:8c: 7e:7c:5c:36:3d:30:b8:62:9b:d0:8b:bc:0d:cf:50: ec:43:02:c0:cd:26:10:53:ca:92:df:7b:2c:b5:83: fe:7a:7f:8b:d5:40:4b:3c:76:8b:ba:31:32:d4:01: 68:0b:33:14:7d:94:71:20:e1:40:7e:8a:81:8b:19: 67:64:41:c9:bf:03:de:d4:67:9f:8f:66:4a:9c:0c: c5:0c:17:06:a6:05:4d:27:2b:57:81:96:ed:f6:25: 55:23:35:0f:48:4e:5b:e2:74:a5:38:01:68:c8:f0: 94:28:fa:7d:04:32:7c:bd:a0:76:62:24:e3:bf:6e: 09:58:e7:dd:8a:d9:c3:e6:e3:4a:b4:74:a0:8f:d5: 6e:9b:42:b1:ac:69:4f:c8:38:14:a2:7d:d2:90:2e: e3:48:b1:be:13:2b:62:42:31:0a:09:4a:37:b5:00: 88:47:30:8f:20:2a:fd:58:fa:47:32:82:73:fb:ad: ee:92:21:82:88:06:76:f7:bc:1e:66:66:8a:ae:aa: 41:92:b3:38:aa:3b:50:87:88:79:dd:ca:d0:20:31: 4c:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:8F:45:47:FA:F1:92:52:9A:99:1E:42:B0:8E:65:25:F0:01:6A:06 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/76c77647-6fd3-43d6-afae-1903ca232b74.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1a10::/44 Signature Algorithm: sha256WithRSAEncryption 9d:7a:67:b3:d8:e8:d4:02:d7:28:e1:54:cc:90:56:d8:17:5e: f3:ed:30:35:ae:e9:42:a8:87:f9:af:60:4d:3a:a5:d9:d3:8c: 5c:19:08:72:87:dd:b0:cf:50:3d:27:5d:eb:63:fc:5a:32:29: 24:9b:98:5a:3b:70:d2:7e:0b:a0:55:8e:93:ab:28:c5:04:24: ed:61:53:b7:b5:ad:e3:81:cb:51:36:9b:73:5f:cf:8c:8b:ad: c7:8e:27:ea:91:5f:41:45:10:ea:e5:ec:b9:21:4b:bb:b5:14: 97:d6:cc:f4:8a:4a:db:81:35:85:a5:76:03:13:75:e1:93:db: 37:da:f3:97:2e:31:f9:5a:4c:20:86:15:91:4b:01:f0:f7:9a: 0e:6b:ff:8d:17:f7:18:76:23:96:24:44:3a:64:aa:de:15:7f: e4:7e:98:2f:84:62:eb:92:09:c6:23:0c:84:3c:e7:b9:b3:d7: ca:7f:9c:24:40:00:c7:3f:d5:14:fb:2f:6c:1b:36:58:69:5b: 71:19:7c:50:8d:92:de:d6:28:9e:79:b9:d8:69:c5:8b:f0:79: 2e:af:cf:bf:64:e5:71:ce:b2:c8:bc:52:42:38:70:09:08:fc: d3:f4:ea:4b:2f:8f:b3:57:65:d4:56:d1:78:bb:d4:95:32:3b: 27:f8:5a:e0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWxPa4MQV0HjDZWzMB5We6lMoVmswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDYzODQxWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3M2VjMWJiOTcxNjAwMzYyYzkxMzBkYTdkMGFjMDFmOTc3 Yjg5MjQxYTEzNGMzN2E4MjBlMDBmMGJiNGIzZjE4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCc8BknjvrJR/FoZ6XEmZOCnjFAI0clwrNJWj4hivaSVj+W UhQANRb7r1hfjH58XDY9MLhim9CLvA3PUOxDAsDNJhBTypLfeyy1g/56f4vVQEs8 dou6MTLUAWgLMxR9lHEg4UB+ioGLGWdkQcm/A97UZ5+PZkqcDMUMFwamBU0nK1eB lu32JVUjNQ9ITlvidKU4AWjI8JQo+n0EMny9oHZiJOO/bglY592K2cPm40q0dKCP 1W6bQrGsaU/IOBSifdKQLuNIsb4TK2JCMQoJSje1AIhHMI8gKv1Y+kcygnP7re6S IYKIBnb3vB5mZoquqkGSsziqO1CHiHndytAgMUzpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUlI9FR/rxklKamR5CsI5lJfABagYwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1Lzc2Yzc3NjQ3LTZmZDMtNDNkNi1hZmFlLTE5MDNjYTIzMmI3NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAJAAGhAwDQYJKoZIhvcNAQELBQADggEBAJ16Z7PY6NQC1yjhVMyQVtgX XvPtMDWu6UKoh/mvYE06pdnTjFwZCHKH3bDPUD0nXetj/FoyKSSbmFo7cNJ+C6BV jpOrKMUEJO1hU7e1reOBy1E2m3Nfz4yLrceOJ+qRX0FFEOrl7LkhS7u1FJfWzPSK StuBNYWldgMTdeGT2zfa85cuMflaTCCGFZFLAfD3mg5r/40X9xh2I5YkRDpkqt4V f+R+mC+EYuuSCcYjDIQ857mz18p/nCRAAMc/1RT7L2wbNlhpW3EZfFCNkt7WKJ55 udhpxYvweS6vz79k5XHOssi8UkI4cAkI/NP06ksvj7NXZdRW0Xi71JUyOyf4WuA= -----END CERTIFICATE-----Generated at Wed Nov 5 10:32:45 2025 by rpki-client