$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8613ba19-242f-4908-abfb-1331116aff88.roa File: 8613ba19-242f-4908-abfb-1331116aff88.roa (raw, json) Hash identifier: 1I7pWGMnfVpQpzyhPLtSyjPo1p3MKu1JQ05sUP+J3mc= Subject key identifier: 20:9A:F7:B2:85:00:A7:6A:36:F5:58:89:22:90:44:9C:7E:97:F3:45 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0A2F587EBDE757F8717A6F8260CF7E4249A892D5 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8613ba19-242f-4908-abfb-1331116aff88.roa Signing time: Fri 31 Oct 2025 07:52:06 +0000 ROA not before: Fri 31 Oct 2025 07:52:06 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3d80::/41 maxlen: 41 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:2f:58:7e:bd:e7:57:f8:71:7a:6f:82:60:cf:7e:42:49:a8:92:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 07:52:06 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=096caa64a6894b0341b6446031e8757a225180a99701859be2815f24b0f610b8, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fa:d2:b4:22:b1:4c:fb:18:bc:8b:90:8f:f7: 37:77:7b:6d:31:e0:b6:89:51:7c:6f:2a:30:dd:ae: 7d:d0:76:1f:b2:4f:90:0f:45:1b:6a:cf:62:25:ff: 74:b0:a2:05:e5:c4:82:47:e3:23:e1:4e:e2:87:4d: 64:56:53:7e:d2:2a:ef:76:07:ce:f9:7d:4a:6c:5b: da:55:81:c7:2d:ab:d3:c5:e2:9d:c1:3f:bf:fd:3d: 39:33:63:2e:11:50:35:de:54:ce:9a:a0:6e:08:e7: 4e:0d:68:53:49:09:a8:9d:48:9f:23:40:e7:97:97: 0e:0f:91:19:dd:0e:41:4a:9a:2f:44:26:a0:01:5e: 4b:61:5f:f5:6d:d9:81:e8:c5:7e:85:47:68:ee:42: 05:de:25:f0:d7:cc:21:c9:10:64:00:27:18:dc:b1: a8:25:91:38:b1:40:b0:92:e1:65:4b:1b:42:07:cc: b4:b2:ec:49:e0:e3:8f:60:1f:c8:ca:12:87:13:88: 4c:7a:6f:a5:13:76:3b:95:02:43:e5:22:00:a0:df: d3:85:39:3e:72:55:cd:0d:cb:c0:4d:ca:21:b6:83: f9:2a:14:bd:31:06:a4:1b:0e:5b:09:d7:df:b8:d1: 20:d7:23:ae:12:01:c9:21:a7:ee:96:42:57:9d:0b: 73:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:9A:F7:B2:85:00:A7:6A:36:F5:58:89:22:90:44:9C:7E:97:F3:45 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8613ba19-242f-4908-abfb-1331116aff88.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3d80::/41 Signature Algorithm: sha256WithRSAEncryption 59:fa:0c:20:5c:ad:01:84:53:e1:81:33:d7:85:70:e1:49:94: 97:99:22:f7:56:b3:39:ba:a3:bd:34:73:aa:56:42:06:fd:fe: e5:6a:3f:d2:6c:2e:98:74:98:3e:d5:2b:39:62:1f:d9:67:a5: 63:5e:4b:42:f4:96:c2:9f:d1:b3:88:06:8b:98:0d:6d:a0:35: b5:19:55:ee:c0:fa:74:be:60:cc:ed:01:33:69:c1:6d:f7:6b: 32:1b:32:53:ea:17:04:49:1c:d6:a2:98:fb:04:7a:1b:d2:2d: 67:44:0f:c0:b7:46:e7:2b:0f:7b:9d:e5:08:ba:26:87:59:85: bf:dc:71:b8:aa:ad:ba:a4:10:70:2d:39:4c:2d:4b:b2:d1:fc: 28:b6:23:00:54:09:1d:6d:1b:f0:0c:f3:ad:a9:f4:83:d0:d1: fa:fb:c2:31:3b:16:0b:1d:a1:bd:55:cd:d5:43:3a:f7:97:79: 5c:bd:9d:28:41:2d:4f:66:46:cf:30:45:9a:9d:32:48:1a:22: 29:65:95:81:12:df:15:0a:15:00:8d:41:f9:78:e3:9f:eb:ee: b1:14:7c:91:37:53:cb:d7:a3:37:9e:a4:0e:42:97:2f:e4:26: 3d:85:be:37:37:ed:68:7b:79:55:fc:b0:9c:71:f8:8d:e2:1d: 79:e5:88:d1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCi9Yfr3nV/hxem+CYM9+QkmoktUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDc1MjA2WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOTZjYWE2NGE2ODk0YjAzNDFiNjQ0NjAzMWU4NzU3YTIy NTE4MGE5OTcwMTg1OWJlMjgxNWYyNGIwZjYxMGI4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9+tK0IrFM+xi8i5CP9zd3e20x4LaJUXxvKjDdrn3Qdh+y T5APRRtqz2Il/3SwogXlxIJH4yPhTuKHTWRWU37SKu92B875fUpsW9pVgcctq9PF 4p3BP7/9PTkzYy4RUDXeVM6aoG4I504NaFNJCaidSJ8jQOeXlw4PkRndDkFKmi9E JqABXkthX/Vt2YHoxX6FR2juQgXeJfDXzCHJEGQAJxjcsaglkTixQLCS4WVLG0IH zLSy7Eng449gH8jKEocTiEx6b6UTdjuVAkPlIgCg39OFOT5yVc0Ny8BNyiG2g/kq FL0xBqQbDlsJ19+40SDXI64SAckhp+6WQledC3NNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUIJr3soUAp2o29ViJIpBEnH6X80UwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1Lzg2MTNiYTE5LTI0MmYtNDkwOC1hYmZiLTEzMzExMTZhZmY4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwcmAJAAPYAwDQYJKoZIhvcNAQELBQADggEBAFn6DCBcrQGEU+GBM9eFcOFJ lJeZIvdWszm6o700c6pWQgb9/uVqP9JsLph0mD7VKzliH9lnpWNeS0L0lsKf0bOI BouYDW2gNbUZVe7A+nS+YMztATNpwW33azIbMlPqFwRJHNaimPsEehvSLWdED8C3 RucrD3ud5Qi6JodZhb/ccbiqrbqkEHAtOUwtS7LR/Ci2IwBUCR1tG/AM862p9IPQ 0fr7wjE7Fgsdob1VzdVDOveXeVy9nShBLU9mRs8wRZqdMkgaIilllYES3xUKFQCN Qfl445/r7rEUfJE3U8vXozeepA5Cly/kJj2Fvjc37Wh7eVX8sJxx+I3iHXnliNE= -----END CERTIFICATE-----Generated at Wed Nov 5 05:36:55 2025 by rpki-client