$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7f711ab7-7191-4a67-91a8-728222b7e3ac.roa File: 7f711ab7-7191-4a67-91a8-728222b7e3ac.roa (raw, json) Hash identifier: gjxvSlL2Nb3p8Ko0pc5C+LqK0vkEEfdmiN89yqDimO4= Subject key identifier: E0:A0:A9:42:63:2D:88:36:7D:D6:1F:F3:C6:4A:1F:99:90:9C:71:AA Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 06AB74E306B1BCC3ADAB12E14C0298F57E74447C Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7f711ab7-7191-4a67-91a8-728222b7e3ac.roa Signing time: Thu 30 Oct 2025 23:55:32 +0000 ROA not before: Thu 30 Oct 2025 23:55:32 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:31de::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:ab:74:e3:06:b1:bc:c3:ad:ab:12:e1:4c:02:98:f5:7e:74:44:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 23:55:32 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=249ccc56fd49ef005642358dbb5b51074bf4ada1cf59ec76c72e6b1c4d92a0c0, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c9:a5:f4:e8:60:79:ce:89:db:5b:37:df:80: 2d:5c:25:af:d6:49:d3:5b:c6:39:7a:8a:b8:9d:c4: 8f:e5:9b:2c:00:c4:fe:de:c9:f8:21:6f:66:06:93: cf:17:97:4b:c3:7e:22:00:64:05:2e:92:52:cd:05: 53:28:e8:28:1c:d0:de:23:db:eb:76:41:b7:d4:8c: 11:0f:88:b0:3e:a0:9f:b5:a3:a6:3c:30:f4:f8:80: 30:db:5b:da:b5:bc:1b:ef:17:c3:e1:95:4b:2d:33: 89:42:84:b0:27:c5:32:3c:fe:57:b8:db:7c:52:3f: 0f:71:31:e7:5f:d3:5a:ac:ae:e0:82:3f:31:e6:0c: 27:64:c6:ed:d8:ad:1b:fb:96:4f:2b:a2:ce:a2:a1: 3a:b7:3f:10:eb:07:2f:06:6c:28:fe:71:bd:0a:b9: f5:07:e3:72:ec:07:14:05:c9:9d:ca:55:78:ac:a3: 6b:bb:8a:ec:8d:78:3a:93:c0:6c:28:a8:92:2e:a6: f9:e0:30:fa:43:a9:7c:98:a0:40:d8:c8:18:d5:e5: e5:e2:c7:d2:06:60:4d:bf:44:4b:0f:fe:c0:1e:c3: 60:ef:a3:90:29:2d:95:d3:77:a7:be:6f:52:6a:5d: b1:df:11:dd:0e:98:24:b0:de:71:da:a1:55:18:89: 3b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:A0:A9:42:63:2D:88:36:7D:D6:1F:F3:C6:4A:1F:99:90:9C:71:AA X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/7f711ab7-7191-4a67-91a8-728222b7e3ac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:31de::/47 Signature Algorithm: sha256WithRSAEncryption 84:b8:b0:d7:33:86:54:29:98:36:90:59:fa:70:37:6d:6a:bb: 5e:31:78:14:81:55:0d:b3:fb:be:cd:a8:b4:e1:36:a5:db:96: 85:74:e2:ba:10:6a:1d:30:98:8a:d7:49:1e:f4:b0:2e:13:98: 4f:b5:1a:22:0d:7b:60:75:cf:fc:59:f9:9b:dd:98:c8:ff:65: c7:4f:86:93:03:1f:78:b5:d0:22:6a:a9:40:d4:1f:ff:7b:46: 25:d8:5e:4a:18:87:41:d9:91:57:2c:9f:09:5b:28:85:8a:73: 58:cc:f0:f2:a5:e8:e3:86:92:bb:6b:59:27:f1:e0:7e:b7:5c: 20:0f:03:59:25:9a:09:b7:b4:aa:44:21:d5:20:52:90:6b:64: a2:c8:f6:52:a2:bc:c8:d9:32:0f:15:08:b5:8a:90:a7:7b:1d: d1:11:6f:f9:1d:76:dd:0c:55:16:f0:24:36:1f:59:6c:59:74: d4:d3:cb:69:38:4f:a9:27:40:80:cf:c1:9e:36:57:61:9d:37: 00:bb:0a:ea:97:e9:ca:99:b6:2b:9b:12:cc:5b:71:05:c8:16: 11:df:b3:12:26:23:92:a8:21:44:10:aa:fb:26:05:f3:bc:d9: c5:17:37:ba:c9:10:1f:fa:a4:1b:61:d1:44:a8:89:e3:41:d2: 46:31:62:44 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBqt04waxvMOtqxLhTAKY9X50RHwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjM1NTMyWhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDljY2M1NmZkNDllZjAwNTY0MjM1OGRiYjViNTEwNzRi ZjRhZGExY2Y1OWVjNzZjNzJlNmIxYzRkOTJhMGMwMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8yaX06GB5zonbWzffgC1cJa/WSdNbxjl6iridxI/lmywA xP7eyfghb2YGk88Xl0vDfiIAZAUuklLNBVMo6Cgc0N4j2+t2QbfUjBEPiLA+oJ+1 o6Y8MPT4gDDbW9q1vBvvF8PhlUstM4lChLAnxTI8/le423xSPw9xMedf01qsruCC PzHmDCdkxu3YrRv7lk8ros6ioTq3PxDrBy8GbCj+cb0KufUH43LsBxQFyZ3KVXis o2u7iuyNeDqTwGwoqJIupvngMPpDqXyYoEDYyBjV5eXix9IGYE2/REsP/sAew2Dv o5ApLZXTd6e+b1JqXbHfEd0OmCSw3nHaoVUYiTthAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU4KCpQmMtiDZ91h/zxkofmZCccaowHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzdmNzExYWI3LTcxOTEtNGE2Ny05MWE4LTcyODIyMmI3ZTNhYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAMd4wDQYJKoZIhvcNAQELBQADggEBAIS4sNczhlQpmDaQWfpwN21q u14xeBSBVQ2z+77NqLThNqXbloV04roQah0wmIrXSR70sC4TmE+1GiINe2B1z/xZ +ZvdmMj/ZcdPhpMDH3i10CJqqUDUH/97RiXYXkoYh0HZkVcsnwlbKIWKc1jM8PKl 6OOGkrtrWSfx4H63XCAPA1klmgm3tKpEIdUgUpBrZKLI9lKivMjZMg8VCLWKkKd7 HdERb/kddt0MVRbwJDYfWWxZdNTTy2k4T6knQIDPwZ42V2GdNwC7CuqX6cqZtiub EsxbcQXIFhHfsxImI5KoIUQQqvsmBfO82cUXN7rJEB/6pBth0USoieNB0kYxYkQ= -----END CERTIFICATE-----Generated at Wed Nov 5 09:27:25 2025 by rpki-client