$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/839c59c7-da6e-4266-8556-abeec86731e2.roa File: 839c59c7-da6e-4266-8556-abeec86731e2.roa (raw, json) Hash identifier: oK8AYYnYf0JKxqiV+Ia0B0JnNqBmvbw6sbK0SWMpNQc= Subject key identifier: 5F:E7:F8:00:1C:9A:88:15:02:6C:D8:05:BA:A1:9C:4A:B9:CB:39:85 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 06190FE1BB7712D9BEDA1C8479A22A5DFFD58552 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/839c59c7-da6e-4266-8556-abeec86731e2.roa Signing time: Thu 30 Oct 2025 21:57:16 +0000 ROA not before: Thu 30 Oct 2025 21:57:16 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1a3e::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:19:0f:e1:bb:77:12:d9:be:da:1c:84:79:a2:2a:5d:ff:d5:85:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 21:57:16 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=206c9ce148c9ad633d22547b472edda96355af49527bc53eb2024ad533b103ce, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:de:66:4d:41:71:10:20:b0:ba:cd:0f:d5:68: bd:9f:16:17:aa:ba:3a:19:6b:10:fd:ff:fc:4c:d0: 23:14:43:7c:a4:65:cd:88:64:9e:c0:88:bd:0c:01: eb:e8:97:4d:3d:79:cd:40:7d:db:b2:b6:40:2f:3d: b4:50:cf:a1:b0:ca:a5:a2:ae:68:2c:9a:3f:e1:f7: df:b3:c1:5c:86:b5:7f:a6:ae:44:ea:f8:d4:aa:fd: 72:6c:d9:2b:da:c3:34:5f:75:50:41:3c:d7:88:07: 57:09:53:a5:41:01:06:64:68:68:98:a9:30:6d:1b: 69:d1:7e:4f:e1:c9:b3:77:95:b5:73:9e:ae:89:17: b9:a5:f5:55:8a:e0:1a:d5:de:a4:35:23:40:ab:f5: b7:2f:98:e9:da:34:33:12:4a:09:3c:09:ed:78:ee: 58:7d:cc:64:52:ea:42:ad:3d:08:38:4c:5f:84:16: 01:22:da:a6:08:c1:5d:c0:4c:ed:20:fe:ef:15:5a: d4:bc:8f:ff:73:35:d0:6c:a6:91:c1:ed:a4:db:18: 00:66:67:f8:5e:c0:78:75:5d:e8:f2:28:2a:a7:ee: 5b:fb:d8:bb:3d:df:19:70:d0:dc:d5:d9:fb:53:dc: 00:2a:37:90:1b:c3:bc:f6:97:ee:24:99:00:10:63: 50:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:E7:F8:00:1C:9A:88:15:02:6C:D8:05:BA:A1:9C:4A:B9:CB:39:85 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/839c59c7-da6e-4266-8556-abeec86731e2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1a3e::/47 Signature Algorithm: sha256WithRSAEncryption 0f:20:a9:a8:22:8a:b1:81:31:68:a2:c0:e6:cc:18:ac:2c:9f: 80:a2:86:42:f9:92:53:02:be:2b:dc:fd:c9:15:f4:1a:8b:0d: 82:af:e8:1a:38:ec:55:20:81:33:26:06:b1:d9:0c:56:5b:c0: 7a:fd:89:bc:6e:56:37:ba:44:6a:9d:9d:d0:96:89:68:9b:09: 53:93:bd:1e:0a:b2:5d:9c:52:2f:68:8f:c6:e4:7d:06:a0:56: 4d:b6:2c:6d:59:3d:ed:5b:3f:79:71:4a:15:69:e7:b9:00:3c: f7:6b:28:3c:e5:86:ca:08:11:0d:6a:2f:d0:26:95:b9:16:04: 47:cf:6c:45:1d:11:48:aa:bf:29:ee:81:b6:20:c2:b6:10:29: de:a5:82:31:b1:df:5d:53:f6:99:25:64:bc:85:07:0b:4e:5a: 78:30:58:56:d5:ed:f6:48:ad:a2:04:45:ef:a3:19:9c:06:30: 08:e7:fc:36:b3:12:15:cb:1e:c6:57:d4:7d:d6:61:94:c3:ed: 53:c9:de:21:1a:9c:5b:8a:d2:e3:dc:29:48:6f:01:f9:f7:43: 0b:7c:09:50:0e:79:08:86:aa:05:8d:f2:06:cb:71:6b:97:bb: eb:96:b3:32:d5:dc:f6:6b:aa:7e:85:49:cd:e1:da:bb:16:1d: 92:29:f4:92 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBhkP4bt3Etm+2hyEeaIqXf/VhVIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjE1NzE2WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMDZjOWNlMTQ4YzlhZDYzM2QyMjU0N2I0NzJlZGRhOTYz NTVhZjQ5NTI3YmM1M2ViMjAyNGFkNTMzYjEwM2NlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCp3mZNQXEQILC6zQ/VaL2fFhequjoZaxD9//xM0CMUQ3yk Zc2IZJ7AiL0MAevol009ec1AfduytkAvPbRQz6GwyqWirmgsmj/h99+zwVyGtX+m rkTq+NSq/XJs2SvawzRfdVBBPNeIB1cJU6VBAQZkaGiYqTBtG2nRfk/hybN3lbVz nq6JF7ml9VWK4BrV3qQ1I0Cr9bcvmOnaNDMSSgk8Ce147lh9zGRS6kKtPQg4TF+E FgEi2qYIwV3ATO0g/u8VWtS8j/9zNdBsppHB7aTbGABmZ/hewHh1XejyKCqn7lv7 2Ls93xlw0NzV2ftT3AAqN5Abw7z2l+4kmQAQY1BJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUX+f4AByaiBUCbNgFuqGcSrnLOYUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzgzOWM1OWM3LWRhNmUtNDI2Ni04NTU2LWFiZWVjODY3MzFlMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAGj4wDQYJKoZIhvcNAQELBQADggEBAA8gqagiirGBMWiiwObMGKws n4CihkL5klMCvivc/ckV9BqLDYKv6Bo47FUggTMmBrHZDFZbwHr9ibxuVje6RGqd ndCWiWibCVOTvR4Ksl2cUi9oj8bkfQagVk22LG1ZPe1bP3lxShVp57kAPPdrKDzl hsoIEQ1qL9AmlbkWBEfPbEUdEUiqvynugbYgwrYQKd6lgjGx311T9pklZLyFBwtO WngwWFbV7fZIraIERe+jGZwGMAjn/DazEhXLHsZX1H3WYZTD7VPJ3iEanFuK0uPc KUhvAfn3Qwt8CVAOeQiGqgWN8gbLcWuXu+uWszLV3PZrqn6FSc3h2rsWHZIp9JI= -----END CERTIFICATE-----Generated at Wed Nov 5 07:40:44 2025 by rpki-client