$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/84850358-d59a-4098-ae13-40d778a1c15c.roa File: 84850358-d59a-4098-ae13-40d778a1c15c.roa (raw, json) Hash identifier: Mgkw46tBbhl7Wkg1nESRIURIFMRhM29n7YV17c667BE= Subject key identifier: B6:23:2D:B9:CC:4E:64:15:1B:4F:10:4A:4B:D9:D6:29:9B:0D:99:B9 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 729A68C2DD0AA2BBBFA826D80576BEB29F7D28CF Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/84850358-d59a-4098-ae13-40d778a1c15c.roa Signing time: Fri 31 Oct 2025 07:52:03 +0000 ROA not before: Fri 31 Oct 2025 07:52:03 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3980::/41 maxlen: 41 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:9a:68:c2:dd:0a:a2:bb:bf:a8:26:d8:05:76:be:b2:9f:7d:28:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 07:52:03 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=b8a698ba39e78c30f216722efe4bce432620350ae8b6d86db4cd7e448de60d47, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a8:cc:7c:9c:a9:d1:24:b6:bd:e2:1f:68:a5: 74:6d:4d:78:81:41:66:73:55:ea:a7:20:7e:b0:c2: b4:03:71:fe:5d:a6:55:a7:da:e2:f3:8c:c3:6e:c5: 2d:a5:1a:7d:e5:90:64:bd:64:2f:06:03:5f:80:68: 42:ce:15:67:ff:68:59:c7:f7:bd:9b:0a:11:00:1b: 27:66:30:a3:50:1f:48:5d:76:c3:c9:00:62:44:e5: 9f:80:da:53:a8:c7:6c:72:44:8e:0f:1e:41:3d:c3: 75:b7:23:37:81:fa:87:c7:45:97:d6:bb:3a:6c:5f: 06:62:82:fc:8b:33:e8:d4:4c:9a:1d:eb:35:f1:8c: f1:76:1f:54:a7:53:76:2f:fd:38:ce:5f:91:39:16: 51:d7:fb:dd:a9:71:85:62:e3:b4:4c:7c:1a:69:ca: b5:c7:04:9f:55:31:4d:b5:97:75:ce:09:3a:da:8e: 54:d2:16:bb:19:41:59:9a:2d:80:6b:67:bc:06:fd: 11:60:24:70:cb:dd:0d:b7:e1:a6:d5:77:6a:42:7c: fa:73:19:a6:25:07:ed:d0:5a:fb:cc:fc:3d:ee:f7: 7c:d3:5d:bc:d8:b1:24:ac:d8:43:d8:e3:8d:45:fe: 38:ae:96:bb:65:ee:27:68:cb:8d:f1:c0:97:f1:a5: c0:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:23:2D:B9:CC:4E:64:15:1B:4F:10:4A:4B:D9:D6:29:9B:0D:99:B9 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/84850358-d59a-4098-ae13-40d778a1c15c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3980::/41 Signature Algorithm: sha256WithRSAEncryption 0c:0c:da:5c:10:6e:11:7c:73:3b:41:1f:90:58:69:d1:03:3c: 27:8b:43:42:bc:7c:6b:f6:d1:3f:c6:e0:99:e8:42:95:41:fc: 9b:b9:98:ec:8b:0d:81:34:16:a1:93:7a:37:f0:72:09:10:5f: 8f:f0:eb:90:b8:49:9f:68:a4:82:4e:29:b5:39:6f:64:f7:3c: 71:86:a1:9a:19:de:20:6b:0e:09:91:6c:9a:ae:4f:6d:da:5c: 7a:f6:f8:df:d0:eb:1b:c1:73:fe:c5:88:e5:3b:f8:9e:35:20: f1:91:6b:46:65:64:14:1b:cf:b5:a5:4b:f7:d5:5d:b3:bc:4e: 25:74:c4:0d:c4:b2:50:2d:77:ed:c9:37:ef:ff:39:5c:cc:1e: 3e:3c:52:c3:71:be:32:4b:2b:ac:cf:2e:f3:98:c3:d2:ee:d9: 05:de:c1:8c:55:18:df:18:14:4d:22:16:d2:65:0c:a1:13:90: 8d:33:b8:be:aa:f6:83:2b:da:1f:6c:89:a2:c3:70:c8:af:e8: 89:ba:d8:4b:b5:1e:41:f1:20:85:9d:f4:3c:6e:d8:96:0c:1c: 3b:b9:97:f9:ab:29:63:31:30:52:e9:ae:8e:51:39:c0:d9:bd: 7c:6a:57:d7:c9:91:8e:b7:75:33:64:dc:13:6c:33:92:dd:cc: 75:23:7b:44 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcppowt0Koru/qCbYBXa+sp99KM8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDc1MjAzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOGE2OThiYTM5ZTc4YzMwZjIxNjcyMmVmZTRiY2U0MzI2 MjAzNTBhZThiNmQ4NmRiNGNkN2U0NDhkZTYwZDQ3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAqMx8nKnRJLa94h9opXRtTXiBQWZzVeqnIH6wwrQDcf5d plWn2uLzjMNuxS2lGn3lkGS9ZC8GA1+AaELOFWf/aFnH972bChEAGydmMKNQH0hd dsPJAGJE5Z+A2lOox2xyRI4PHkE9w3W3IzeB+ofHRZfWuzpsXwZigvyLM+jUTJod 6zXxjPF2H1SnU3Yv/TjOX5E5FlHX+92pcYVi47RMfBppyrXHBJ9VMU21l3XOCTra jlTSFrsZQVmaLYBrZ7wG/RFgJHDL3Q234abVd2pCfPpzGaYlB+3QWvvM/D3u93zT XbzYsSSs2EPY441F/jiulrtl7idoy43xwJfxpcDHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUtiMtucxOZBUbTxBKS9nWKZsNmbkwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1Lzg0ODUwMzU4LWQ1OWEtNDA5OC1hZTEzLTQwZDc3OGExYzE1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwcmAJAAOYAwDQYJKoZIhvcNAQELBQADggEBAAwM2lwQbhF8cztBH5BYadED PCeLQ0K8fGv20T/G4JnoQpVB/Ju5mOyLDYE0FqGTejfwcgkQX4/w65C4SZ9opIJO KbU5b2T3PHGGoZoZ3iBrDgmRbJquT23aXHr2+N/Q6xvBc/7FiOU7+J41IPGRa0Zl ZBQbz7WlS/fVXbO8TiV0xA3EslAtd+3JN+//OVzMHj48UsNxvjJLK6zPLvOYw9Lu 2QXewYxVGN8YFE0iFtJlDKETkI0zuL6q9oMr2h9siaLDcMiv6Im62Eu1HkHxIIWd 9Dxu2JYMHDu5l/mrKWMxMFLpro5ROcDZvXxqV9fJkY63dTNk3BNsM5LdzHUje0Q= -----END CERTIFICATE-----Generated at Wed Nov 5 15:27:33 2025 by rpki-client