$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7d431580-c49e-4e40-9907-db1e2a7409b4.roa File: 7d431580-c49e-4e40-9907-db1e2a7409b4.roa (raw, json) Hash identifier: HEkJjDnMM5Cn8SHzfU3qNFp1LHUTt5Gosvak3pYWwdU= Subject key identifier: 70:C3:5B:75:7E:DB:55:A8:3E:B6:0F:3E:07:FC:69:85:0E:18:1D:CD Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 18A3F0873CDE6070F63EC0A5B8C25958A00B5C37 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7d431580-c49e-4e40-9907-db1e2a7409b4.roa Signing time: Fri 31 Oct 2025 00:58:01 +0000 ROA not before: Fri 31 Oct 2025 00:58:01 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:38ea::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:a3:f0:87:3c:de:60:70:f6:3e:c0:a5:b8:c2:59:58:a0:0b:5c:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 00:58:01 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=1260f9a3326b04eca8c325267c8fe01b124cd7e88d4a8b81e3baa7b570dd594e, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:df:8c:a9:ec:8c:69:ed:3d:fe:42:26:81:6d: 3c:b0:de:bb:4f:78:23:6b:a2:5f:1d:34:e5:b2:0a: 0b:d1:11:f9:0c:43:04:15:07:0c:19:03:04:85:de: 24:10:55:fa:6e:cb:64:5a:ac:94:7b:a1:b8:5f:6b: 48:21:8e:65:0c:aa:e8:19:ee:f2:09:da:b8:cf:26: 6f:02:02:34:c8:a5:51:ac:98:17:ce:3a:24:4f:6c: fd:61:84:43:25:c3:b1:bd:7e:44:4f:c5:62:3b:3e: c9:9c:70:87:54:80:83:ff:9e:2c:5c:b1:56:0b:ca: d0:99:fa:7d:1a:43:59:5b:e8:42:11:b2:08:7d:d7: 96:31:11:fa:03:10:18:3a:d0:c0:6e:75:b6:57:fd: 68:b7:34:a4:04:87:90:fb:68:dd:ba:16:a9:ea:ee: e9:73:fe:b2:69:b6:34:d5:b9:62:c9:d7:7c:58:0f: 1a:1a:15:47:16:0a:d0:4d:53:f1:ac:3e:a2:4d:1c: 50:c2:72:70:30:b8:dd:29:bb:3c:c9:d7:90:99:34: 61:e7:9d:88:23:8d:cd:e3:28:2f:9f:3c:17:30:a1: d4:ff:31:6d:99:1e:8d:97:83:e8:bf:b6:c8:2b:9a: 44:7f:46:bd:46:b5:f3:b0:13:c1:3b:74:5c:2f:2d: ad:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:C3:5B:75:7E:DB:55:A8:3E:B6:0F:3E:07:FC:69:85:0E:18:1D:CD X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7d431580-c49e-4e40-9907-db1e2a7409b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:38ea::/47 Signature Algorithm: sha256WithRSAEncryption 0d:80:6d:3e:2d:ab:15:c7:8c:27:82:7d:44:2c:85:16:0f:76: 1a:6c:23:af:5d:fa:eb:2a:88:50:86:95:c0:31:21:f1:ce:2a: 8b:dd:2d:40:0a:2d:c9:12:aa:b4:f6:ba:56:a4:8e:32:eb:15: 97:7d:7a:5d:05:a4:99:1c:ea:a6:00:66:10:fa:e8:fd:db:be: 96:89:4a:61:89:f5:7c:cc:c7:c7:67:b7:85:59:3d:70:6c:f7: 74:df:68:a2:be:0a:1d:54:2c:79:4f:4d:a0:66:1e:99:53:37: 9b:91:dc:9f:9e:50:2d:29:33:2e:88:e5:0f:a4:08:ed:fd:da: c0:77:2f:63:be:19:8d:fd:d9:7c:82:0b:57:83:ed:36:b3:65: a9:81:b0:fb:a3:ab:8c:2a:a8:9c:b3:fd:ac:eb:28:06:01:a9: 25:03:f7:c1:38:5e:8a:92:7d:24:61:8e:39:4f:4b:50:b9:18: ec:f8:24:d4:a4:a8:0e:3a:2b:73:2d:55:2c:cd:90:f9:3c:aa: c9:f6:e9:9c:ff:41:ce:28:50:4f:a4:7a:b8:40:14:8c:79:09: f9:98:5e:c5:c7:bd:82:3b:fd:84:db:a3:3a:01:21:72:e2:96: b7:94:4d:b9:aa:41:e6:db:1d:75:60:d7:aa:f1:a6:8d:ea:9c: 12:ef:de:e7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGKPwhzzeYHD2PsCluMJZWKALXDcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDA1ODAxWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMjYwZjlhMzMyNmIwNGVjYThjMzI1MjY3YzhmZTAxYjEy NGNkN2U4OGQ0YThiODFlM2JhYTdiNTcwZGQ1OTRlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC934yp7Ixp7T3+QiaBbTyw3rtPeCNrol8dNOWyCgvREfkM QwQVBwwZAwSF3iQQVfpuy2RarJR7obhfa0ghjmUMqugZ7vIJ2rjPJm8CAjTIpVGs mBfOOiRPbP1hhEMlw7G9fkRPxWI7PsmccIdUgIP/nixcsVYLytCZ+n0aQ1lb6EIR sgh915YxEfoDEBg60MBudbZX/Wi3NKQEh5D7aN26Fqnq7ulz/rJptjTVuWLJ13xY DxoaFUcWCtBNU/GsPqJNHFDCcnAwuN0puzzJ15CZNGHnnYgjjc3jKC+fPBcwodT/ MW2ZHo2Xg+i/tsgrmkR/Rr1GtfOwE8E7dFwvLa1xAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcMNbdX7bVag+tg8+B/xphQ4YHc0wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzdkNDMxNTgwLWM0OWUtNGU0MC05OTA3LWRiMWUyYTc0MDliNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOOowDQYJKoZIhvcNAQELBQADggEBAA2AbT4tqxXHjCeCfUQshRYP dhpsI69d+usqiFCGlcAxIfHOKovdLUAKLckSqrT2ulakjjLrFZd9el0FpJkc6qYA ZhD66P3bvpaJSmGJ9XzMx8dnt4VZPXBs93TfaKK+Ch1ULHlPTaBmHplTN5uR3J+e UC0pMy6I5Q+kCO392sB3L2O+GY392XyCC1eD7TazZamBsPujq4wqqJyz/azrKAYB qSUD98E4XoqSfSRhjjlPS1C5GOz4JNSkqA46K3MtVSzNkPk8qsn26Zz/Qc4oUE+k erhAFIx5CfmYXsXHvYI7/YTbozoBIXLilreUTbmqQebbHXVg16rxpo3qnBLv3uc= -----END CERTIFICATE-----Generated at Wed Nov 5 10:42:26 2025 by rpki-client