$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/859a756a-0e24-4887-ab70-92ed50bb3866.roa File: 859a756a-0e24-4887-ab70-92ed50bb3866.roa (raw, json) Hash identifier: LsGvhhO/IG0FWtsY0uOffdoHxZhLsDCyADLrIUbME/c= Subject key identifier: 86:A9:13:AD:4D:56:6A:39:9C:6E:E2:28:5B:CB:B3:5B:95:B0:1A:32 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 225672D45AE583F9CFBB8577DF9D4EE35C0DDB10 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/859a756a-0e24-4887-ab70-92ed50bb3866.roa Signing time: Fri 31 Oct 2025 07:22:06 +0000 ROA not before: Fri 31 Oct 2025 07:22:06 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2a40::/43 maxlen: 43 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:56:72:d4:5a:e5:83:f9:cf:bb:85:77:df:9d:4e:e3:5c:0d:db:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 07:22:06 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=fbbf3a8c8f326db590f4fd78f7bf1a38a2999a7fb2826613722329fc2b10064f, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:8a:18:e0:b0:3e:ed:de:4e:67:c0:49:c3:5a: 04:90:52:72:af:a4:a7:22:8d:55:a0:36:1e:b8:43: a5:02:40:d3:56:05:cf:41:f5:fe:aa:83:a1:bc:21: 20:e1:75:48:d2:fe:bd:df:c9:a3:29:8d:c7:80:6e: d5:44:63:95:cf:f4:81:72:4d:fb:64:ff:6e:96:77: 8f:58:c6:6b:d1:d4:ff:2f:05:72:67:85:95:55:4e: 8b:fc:cf:e0:27:50:c1:f1:5b:6e:1b:8f:63:ea:28: 05:63:47:e3:00:02:25:13:77:7e:21:3a:7b:4d:09: f5:0b:6c:10:10:56:e3:41:3f:9d:1b:75:43:99:03: a4:ba:00:bb:7c:f5:9b:eb:03:29:b2:8f:8b:24:68: eb:08:01:ae:c2:7b:56:09:1a:4a:d3:a2:70:f3:33: a9:e1:5b:3b:0c:42:90:db:20:65:9b:73:f3:39:c7: 15:0b:64:9f:d0:3b:f9:8d:27:3e:74:c5:21:ff:5d: 0a:b5:bc:8c:6d:97:f9:97:52:fc:36:4c:33:2b:c1: 37:27:b8:c1:7b:3a:a9:3c:36:f7:84:33:c7:25:01: 5e:6b:8e:31:41:1f:15:27:ee:72:a7:22:52:4e:89: a7:ec:d0:97:4c:c8:4d:84:b8:5e:3d:b0:02:33:8b: f6:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:A9:13:AD:4D:56:6A:39:9C:6E:E2:28:5B:CB:B3:5B:95:B0:1A:32 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/859a756a-0e24-4887-ab70-92ed50bb3866.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2a40::/43 Signature Algorithm: sha256WithRSAEncryption 9e:0d:0c:63:de:b1:25:cd:fc:95:e4:5d:cf:14:e7:8b:e7:d5: 73:cd:52:c4:dc:93:86:32:97:43:61:64:45:14:3a:c8:70:cd: 2c:ac:2d:03:78:fb:01:4d:bd:07:b4:22:0e:7a:95:7c:3f:d1: 4f:13:de:35:a7:3d:cd:0f:d6:c9:76:b7:43:c5:84:21:e4:32: 0f:72:15:9c:2b:65:ec:c1:5b:f6:0c:d4:7f:f3:a4:02:97:d1: aa:f7:4e:a2:80:9a:8e:65:a1:36:b1:50:24:a8:fa:72:5f:9e: be:2e:14:a8:27:fb:a0:e3:a1:3b:32:e8:6e:6b:4f:ef:42:1e: 51:40:ba:75:43:ef:66:6a:52:a2:c6:ef:17:ea:72:50:87:68: 1e:2b:74:cc:63:9f:f6:65:a6:eb:3c:e3:0d:29:57:fb:3a:2b: 53:88:1a:ae:a4:7a:b6:71:b9:c5:93:ee:86:ea:33:9e:14:c9: cc:02:fa:4b:45:0c:89:50:4a:b3:4c:82:ce:08:88:9c:9f:ac: 89:4a:e1:a9:cc:75:00:89:1e:53:d4:8b:0e:4d:f1:3c:44:37: 2f:bd:24:49:b5:c9:41:83:9a:eb:d6:da:6a:a0:f6:07:ca:4f: 65:d0:e6:20:7b:b2:87:42:de:6a:c7:f7:6b:2c:29:6e:0c:e0: 7d:52:da:71 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIlZy1Frlg/nPu4V3351O41wN2xAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDcyMjA2WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYmJmM2E4YzhmMzI2ZGI1OTBmNGZkNzhmN2JmMWEzOGEy OTk5YTdmYjI4MjY2MTM3MjIzMjlmYzJiMTAwNjRmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsihjgsD7t3k5nwEnDWgSQUnKvpKcijVWgNh64Q6UCQNNW Bc9B9f6qg6G8ISDhdUjS/r3fyaMpjceAbtVEY5XP9IFyTftk/26Wd49YxmvR1P8v BXJnhZVVTov8z+AnUMHxW24bj2PqKAVjR+MAAiUTd34hOntNCfULbBAQVuNBP50b dUOZA6S6ALt89ZvrAymyj4skaOsIAa7Ce1YJGkrTonDzM6nhWzsMQpDbIGWbc/M5 xxULZJ/QO/mNJz50xSH/XQq1vIxtl/mXUvw2TDMrwTcnuMF7Oqk8NveEM8clAV5r jjFBHxUn7nKnIlJOiafs0JdMyE2EuF49sAIzi/YfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUhqkTrU1WajmcbuIoW8uzW5WwGjIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1Lzg1OWE3NTZhLTBlMjQtNDg4Ny1hYjcwLTkyZWQ1MGJiMzg2Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwUmAJAAKkAwDQYJKoZIhvcNAQELBQADggEBAJ4NDGPesSXN/JXkXc8U54vn 1XPNUsTck4Yyl0NhZEUUOshwzSysLQN4+wFNvQe0Ig56lXw/0U8T3jWnPc0P1sl2 t0PFhCHkMg9yFZwrZezBW/YM1H/zpAKX0ar3TqKAmo5loTaxUCSo+nJfnr4uFKgn +6DjoTsy6G5rT+9CHlFAunVD72ZqUqLG7xfqclCHaB4rdMxjn/Zlpus84w0pV/s6 K1OIGq6kerZxucWT7obqM54UycwC+ktFDIlQSrNMgs4IiJyfrIlK4anMdQCJHlPU iw5N8TxENy+9JEm1yUGDmuvW2mqg9gfKT2XQ5iB7sodC3mrH92ssKW4M4H1S2nE= -----END CERTIFICATE-----Generated at Wed Nov 5 09:29:08 2025 by rpki-client