$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7f697c85-32fd-4de3-8d77-7761ce065bda.roa File: 7f697c85-32fd-4de3-8d77-7761ce065bda.roa (raw, json) Hash identifier: mTAXL6Na21mDboJZsvosYd+is0LpQGPzo129r/GEW8Y= Subject key identifier: 46:65:F0:12:52:19:2B:DD:84:B3:97:63:17:6E:0A:37:64:A7:BC:DE Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 01829A572FF324E6B073B2DCB8B183AE10C7DD19 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7f697c85-32fd-4de3-8d77-7761ce065bda.roa Signing time: Fri 31 Oct 2025 07:53:45 +0000 ROA not before: Fri 31 Oct 2025 07:53:45 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1f00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:82:9a:57:2f:f3:24:e6:b0:73:b2:dc:b8:b1:83:ae:10:c7:dd:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 07:53:45 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=7fceac4fef80da18327102e3634dbb5047d566f06137dc051b1bfc6c288b2bbf, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:f0:07:f1:9d:89:ab:67:7a:98:f8:68:ce:16: b2:95:53:95:17:ee:a8:30:83:44:38:97:55:5d:ff: d5:3a:9c:83:f2:d0:f5:59:4f:b1:a9:34:f2:78:24: a7:69:b7:d9:76:bc:fb:9b:19:5e:01:1a:bc:9d:66: be:88:7d:db:65:d4:7f:53:d8:df:93:3d:a6:99:cb: 0c:f6:91:88:cd:1a:6e:85:81:ea:d2:65:39:5e:c6: ec:93:35:53:76:2f:17:b8:81:a9:c7:a9:45:d0:2c: eb:21:53:4a:5e:1a:08:f2:77:44:bb:4f:46:8a:18: 50:0e:56:83:1a:b1:75:e5:8a:7f:1d:9a:a0:cf:62: 46:f7:2f:08:34:b1:88:4a:32:74:49:78:95:8d:5b: 16:59:1b:98:1f:a1:f6:07:b3:a1:2c:d3:67:1e:35: 92:bf:b7:dd:ef:00:79:af:6b:b0:fa:64:04:04:74: 65:4b:8a:1e:29:0a:9f:bf:a7:33:f6:dc:4b:3f:eb: 4f:29:4e:38:6c:69:6f:85:19:bf:ce:f9:6a:b0:23: cf:c7:92:cd:39:44:09:de:ee:61:b5:e0:90:fc:ff: 48:83:84:e0:29:c8:32:f7:c8:7b:50:98:ac:74:57: dd:98:78:5d:84:2c:53:93:22:5c:44:94:df:fb:3e: 84:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:65:F0:12:52:19:2B:DD:84:B3:97:63:17:6E:0A:37:64:A7:BC:DE X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7f697c85-32fd-4de3-8d77-7761ce065bda.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1f00::/40 Signature Algorithm: sha256WithRSAEncryption 0e:50:f9:87:e0:67:46:55:f8:d9:67:de:ba:4d:18:4e:c6:33: 67:2a:40:db:a7:fa:ac:2f:80:83:5d:6d:65:bd:65:f3:cb:1f: 2b:7a:1b:cf:02:bb:33:76:27:b0:b0:11:5b:e3:db:57:c2:73: fc:b9:3a:54:ed:d8:e3:0b:ff:4a:25:2b:1c:e2:9c:08:d5:18: 19:d4:f1:a3:dc:49:60:7c:72:7a:cf:16:66:0c:7f:ba:52:2c: f8:93:38:f1:02:4d:7e:32:8e:c5:88:39:a8:0d:8d:a1:6b:b9: 28:95:ec:5c:6d:36:a4:6b:e7:52:49:93:ff:2f:44:e8:b0:52: 44:83:71:29:64:5b:f7:c7:8e:e2:33:64:a6:79:69:47:85:d3: ea:e0:c3:05:f4:aa:c9:9e:8d:1b:90:99:63:e0:ad:3c:60:0d: bd:8d:dd:bc:53:93:0e:fb:91:9c:19:77:2a:bc:2b:2e:ea:d4: 21:81:f2:f3:54:5c:fe:5d:58:59:c0:78:f2:e7:c1:2b:1d:96: e4:96:5e:88:46:9c:f3:f5:7a:84:c3:0b:dd:33:5b:ad:a3:42: 4b:f6:8d:4c:c1:3f:e5:87:dc:34:45:f6:2a:91:e9:9e:04:63: 30:19:99:48:77:c9:23:db:af:8d:72:1d:c7:56:46:ef:b3:d7: 9b:21:b6:ac -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUAYKaVy/zJOawc7LcuLGDrhDH3RkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDc1MzQ1WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZmNlYWM0ZmVmODBkYTE4MzI3MTAyZTM2MzRkYmI1MDQ3 ZDU2NmYwNjEzN2RjMDUxYjFiZmM2YzI4OGIyYmJmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCV8AfxnYmrZ3qY+GjOFrKVU5UX7qgwg0Q4l1Vd/9U6nIPy 0PVZT7GpNPJ4JKdpt9l2vPubGV4BGrydZr6Ifdtl1H9T2N+TPaaZywz2kYjNGm6F gerSZTlexuyTNVN2Lxe4ganHqUXQLOshU0peGgjyd0S7T0aKGFAOVoMasXXlin8d mqDPYkb3Lwg0sYhKMnRJeJWNWxZZG5gfofYHs6Es02ceNZK/t93vAHmva7D6ZAQE dGVLih4pCp+/pzP23Es/608pTjhsaW+FGb/O+WqwI8/Hks05RAne7mG14JD8/0iD hOApyDL3yHtQmKx0V92YeF2ELFOTIlxElN/7PoTNAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQURmXwElIZK92Es5djF24KN2SnvN4wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzdmNjk3Yzg1LTMyZmQtNGRlMy04ZDc3LTc3NjFjZTA2NWJkYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAJAAHzANBgkqhkiG9w0BAQsFAAOCAQEADlD5h+BnRlX42Wfeuk0YTsYz ZypA26f6rC+Ag11tZb1l88sfK3obzwK7M3YnsLARW+PbV8Jz/Lk6VO3Y4wv/SiUr HOKcCNUYGdTxo9xJYHxyes8WZgx/ulIs+JM48QJNfjKOxYg5qA2NoWu5KJXsXG02 pGvnUkmT/y9E6LBSRINxKWRb98eO4jNkpnlpR4XT6uDDBfSqyZ6NG5CZY+CtPGAN vY3dvFOTDvuRnBl3KrwrLurUIYHy81Rc/l1YWcB48ufBKx2W5JZeiEac8/V6hMML 3TNbraNCS/aNTME/5YfcNEX2KpHpngRjMBmZSHfJI9uvjXIdx1ZG77PXmyG2rA== -----END CERTIFICATE-----Generated at Wed Nov 5 10:54:23 2025 by rpki-client