$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/85742ef2-d0ce-4522-9db0-5fc01ab8f2f1.roa File: 85742ef2-d0ce-4522-9db0-5fc01ab8f2f1.roa (raw, json) Hash identifier: OE+hb39MPJpNU/tvc5pJepa513XP2h31YEVv8/kLXbo= Subject key identifier: C7:FD:05:70:3A:36:7E:8D:09:89:DE:94:D6:22:00:EA:AC:17:C5:71 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0AB220526799B3A5770C7ABB50B053C5E2C9C09E Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/85742ef2-d0ce-4522-9db0-5fc01ab8f2f1.roa Signing time: Fri 31 Oct 2025 06:42:21 +0000 ROA not before: Fri 31 Oct 2025 06:42:21 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:27e0::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:b2:20:52:67:99:b3:a5:77:0c:7a:bb:50:b0:53:c5:e2:c9:c0:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 06:42:21 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=aa9e4288ce2453ed57d93bff7b774a3ca85518c7b055a94d34aed2806f4f6ea7, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:11:9f:1b:58:65:9a:78:3b:b1:c1:59:ef:36: 7f:56:d4:8b:a3:63:02:19:64:5a:8a:e4:f5:4b:85: 7b:a1:0a:85:be:3b:3f:80:fa:e3:23:1e:d3:24:2f: 30:10:f6:f4:e6:43:14:bd:7b:36:93:32:52:fb:11: ff:b1:d4:6e:66:2b:a7:78:1a:51:6b:78:23:9a:c1: cc:17:5e:2d:3c:02:4a:f4:35:3a:f9:d2:44:e4:1a: ed:cb:7a:6a:b9:0a:06:b5:28:4a:19:7b:46:dc:0c: 40:4f:d1:7c:b4:00:55:d1:04:fc:fa:c9:4f:31:27: a0:62:3e:0d:19:ca:5f:af:24:18:25:f0:0e:4a:38: b1:20:ce:1e:7b:be:2a:23:dc:ee:d1:df:b0:7d:06: 1a:58:7e:ab:8f:73:ad:34:ef:7c:1e:c6:ba:8f:4b: 57:30:13:b4:d2:99:36:70:25:b2:34:1d:8a:48:50: 5e:7f:aa:9c:65:92:4b:47:02:d6:9e:38:dc:18:50: 56:ab:8b:ca:d1:e7:ec:c5:7c:9e:56:9b:f2:29:f1: 65:73:f1:a3:a1:04:18:f3:54:ee:d1:41:a8:1c:51: ae:b0:c8:e8:4a:85:12:7c:a5:4e:ca:f0:25:27:0c: 1f:ce:5a:81:4a:15:ae:08:d7:ab:cf:78:cd:b8:6e: c9:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:FD:05:70:3A:36:7E:8D:09:89:DE:94:D6:22:00:EA:AC:17:C5:71 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/85742ef2-d0ce-4522-9db0-5fc01ab8f2f1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:27e0::/44 Signature Algorithm: sha256WithRSAEncryption 8e:07:87:de:e1:3f:51:1f:5b:1c:fe:54:da:ee:ad:0f:eb:43: 47:f7:59:35:ab:b5:6b:dd:a1:ce:e3:47:c6:57:ca:30:5b:25: f9:04:6d:c6:02:49:fc:dc:5f:59:12:e4:75:ca:d4:31:7d:2d: aa:2f:44:4a:04:52:bc:d4:cb:05:0b:88:4f:5b:98:25:32:09: 64:ab:94:6a:71:df:8f:7a:fc:c3:10:64:17:a4:46:31:df:45: 10:a4:ea:17:f6:c7:c4:ff:c5:00:ed:6c:1f:81:a6:f9:bb:c9: 16:05:f1:3c:72:1e:4d:bd:b9:06:79:d6:15:33:d8:23:b8:7f: 08:61:10:63:d0:fc:fb:3a:3b:17:38:4b:db:65:35:59:27:04: 1f:84:c2:ba:e7:b5:ca:18:bc:29:3e:cd:fd:5e:5e:07:79:f1: a2:f8:09:c7:24:56:08:65:36:4e:d1:31:7e:82:5f:53:b8:8e: fd:21:26:63:02:0f:4f:3b:73:5f:cc:22:77:1a:85:5c:83:c1: 8f:fb:31:da:13:15:17:a7:3a:f9:35:4e:f3:80:56:bd:ef:5f: f9:4e:fa:c4:b3:f6:96:14:69:e9:ce:16:77:80:0f:f5:e5:9e: 9c:be:3a:0e:16:55:ba:41:a5:58:80:47:8d:5e:23:18:59:8c: 17:64:f7:d7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCrIgUmeZs6V3DHq7ULBTxeLJwJ4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDY0MjIxWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYTllNDI4OGNlMjQ1M2VkNTdkOTNiZmY3Yjc3NGEzY2E4 NTUxOGM3YjA1NWE5NGQzNGFlZDI4MDZmNGY2ZWE3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgEZ8bWGWaeDuxwVnvNn9W1IujYwIZZFqK5PVLhXuhCoW+ Oz+A+uMjHtMkLzAQ9vTmQxS9ezaTMlL7Ef+x1G5mK6d4GlFreCOawcwXXi08Akr0 NTr50kTkGu3Lemq5Cga1KEoZe0bcDEBP0Xy0AFXRBPz6yU8xJ6BiPg0Zyl+vJBgl 8A5KOLEgzh57vioj3O7R37B9BhpYfquPc60073wexrqPS1cwE7TSmTZwJbI0HYpI UF5/qpxlkktHAtaeONwYUFari8rR5+zFfJ5Wm/Ip8WVz8aOhBBjzVO7RQagcUa6w yOhKhRJ8pU7K8CUnDB/OWoFKFa4I16vPeM24bskJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUx/0FcDo2fo0Jid6U1iIA6qwXxXEwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1Lzg1NzQyZWYyLWQwY2UtNDUyMi05ZGIwLTVmYzAxYWI4ZjJmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAJAAJ+AwDQYJKoZIhvcNAQELBQADggEBAI4Hh97hP1EfWxz+VNrurQ/r Q0f3WTWrtWvdoc7jR8ZXyjBbJfkEbcYCSfzcX1kS5HXK1DF9LaovREoEUrzUywUL iE9bmCUyCWSrlGpx3496/MMQZBekRjHfRRCk6hf2x8T/xQDtbB+Bpvm7yRYF8Txy Hk29uQZ51hUz2CO4fwhhEGPQ/Ps6Oxc4S9tlNVknBB+EwrrntcoYvCk+zf1eXgd5 8aL4CcckVghlNk7RMX6CX1O4jv0hJmMCD087c1/MIncahVyDwY/7MdoTFRenOvk1 TvOAVr3vX/lO+sSz9pYUaenOFneAD/Xlnpy+Og4WVbpBpViAR41eIxhZjBdk99c= -----END CERTIFICATE-----Generated at Wed Nov 5 07:45:51 2025 by rpki-client