$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/87f70c87-a2d6-4a17-b392-0d74b42e3366.roa File: 87f70c87-a2d6-4a17-b392-0d74b42e3366.roa (raw, json) Hash identifier: 4GdtoBIYcn1FtAw6pFvGQ0yu9Yf7AzOl7DVd4sowO4w= Subject key identifier: 29:72:AB:50:D8:78:34:47:AC:4C:5F:1A:61:48:50:9B:9C:06:36:BA Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5205DE22C3FBC96A1291E0F9C82631AEB2C0BE Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/87f70c87-a2d6-4a17-b392-0d74b42e3366.roa Signing time: Fri 31 Oct 2025 04:23:45 +0000 ROA not before: Fri 31 Oct 2025 04:23:45 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:37d8::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:05:de:22:c3:fb:c9:6a:12:91:e0:f9:c8:26:31:ae:b2:c0:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 04:23:45 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=918965d828dc8ec721020326f0b84c34cd32ac721697279c67712ff914902aae, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:ea:95:4d:a1:85:6e:15:a4:19:77:be:94:78: 04:b6:87:9c:30:04:28:06:e8:86:8b:c7:e0:df:0a: d9:99:34:bb:6d:d2:89:6c:0e:85:2c:51:03:b8:29: 04:96:f3:ab:09:15:39:19:97:e3:1c:73:e7:89:79: 45:c0:10:97:b6:bd:14:34:79:36:7e:64:e2:41:27: 0d:27:4e:85:72:30:93:fd:b1:f0:a7:b1:d3:4b:c3: 1d:c8:6f:8b:66:d9:9a:12:d4:7e:f9:60:d2:43:a6: 50:a6:c1:de:1d:5d:40:75:28:32:3d:cc:cc:0d:9c: e7:df:72:ac:31:f2:bb:35:46:6b:ab:f0:41:64:39: ed:0b:94:98:ab:67:f1:cf:d4:80:d4:45:21:91:9e: 41:70:17:8f:37:8a:73:8e:4e:a1:f3:1a:68:9a:32: 31:05:1a:cd:08:24:9e:03:13:61:b5:5e:04:4e:d2: a4:3f:e9:35:33:01:7b:e3:a6:46:5e:a8:ed:79:29: a3:e0:80:60:40:8e:a0:5b:63:e2:c9:62:3f:2c:72: cd:45:f9:b2:7a:89:aa:04:87:ad:05:4c:f3:12:94: 2a:d9:42:e2:4c:ac:16:37:74:6e:eb:10:bc:02:30: 8f:4d:71:c8:b6:6c:e5:2b:ff:3e:e2:22:9c:55:49: 1f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:72:AB:50:D8:78:34:47:AC:4C:5F:1A:61:48:50:9B:9C:06:36:BA X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/87f70c87-a2d6-4a17-b392-0d74b42e3366.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:37d8::/46 Signature Algorithm: sha256WithRSAEncryption a1:0a:0f:f6:a9:55:e4:5e:72:76:57:f7:3c:27:9d:6d:f5:11: 5a:14:e9:75:fd:62:8e:fc:35:4e:57:a4:38:83:a6:24:7c:85: ba:09:c4:5b:50:3a:c5:44:ea:f0:01:30:37:7a:57:63:bf:01: 6b:ff:89:0c:3f:41:11:d7:60:c5:65:27:42:86:4c:56:6a:80: f6:2c:25:25:67:4a:56:63:64:9b:17:b7:ba:1d:fe:6c:61:8b: 05:1f:87:c3:31:48:83:cf:30:ec:70:b3:22:95:0d:32:0c:00: ee:8a:3e:82:ae:c4:37:34:f2:1b:d3:68:bb:42:3b:3a:ba:10: 8b:d3:79:00:4c:b7:3e:f5:a2:47:b5:2b:ed:2a:dc:93:61:ec: b7:15:24:c1:a1:cd:c0:e3:87:41:1e:98:56:e7:4f:6f:ea:8e: 73:70:36:db:94:fc:08:2b:c4:94:76:12:bd:22:18:9d:d4:3b: 7b:7d:31:19:60:75:ca:d7:c6:b6:82:db:b2:1c:92:a2:6f:38: 4c:1b:10:71:f3:16:ac:f7:e8:33:73:4c:a0:3e:64:96:03:7b: c7:3c:92:4b:43:b0:45:5a:0a:65:89:85:d5:39:98:88:f0:7d: 7a:cd:13:f4:00:13:eb:a5:f0:c9:e5:6e:7e:c5:48:64:08:94: 8c:e1:fb:f6 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgITUgXeIsP7yWoSkeD5yCYxrrLAvjANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI1NTEyMDkwMjdmNWU3YWQ1NGUwNGYwNDJlNGFjMGU5ZTY1 YzU2ZTU1Yzc3NDc4ZDJjZTAeFw0yNTEwMzEwNDIzNDVaFw0yNTEyMDUyMzU5NTla MHoxSTBHBgNVBAUTQDkxODk2NWQ4MjhkYzhlYzcyMTAyMDMyNmYwYjg0YzM0Y2Qz MmFjNzIxNjk3Mjc5YzY3NzEyZmY5MTQ5MDJhYWUxLTArBgNVBAMTJDlmMjMwZmE5 LWFhMmYtNDAyMC1hZTJhLTFhNjAzNzQwODRiODCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAPPqlU2hhW4VpBl3vpR4BLaHnDAEKAbohovH4N8K2Zk0u23S iWwOhSxRA7gpBJbzqwkVORmX4xxz54l5RcAQl7a9FDR5Nn5k4kEnDSdOhXIwk/2x 8Kex00vDHchvi2bZmhLUfvlg0kOmUKbB3h1dQHUoMj3MzA2c599yrDHyuzVGa6vw QWQ57QuUmKtn8c/UgNRFIZGeQXAXjzeKc45OofMaaJoyMQUazQgkngMTYbVeBE7S pD/pNTMBe+OmRl6o7Xkpo+CAYECOoFtj4sliPyxyzUX5snqJqgSHrQVM8xKUKtlC 4kysFjd0busQvAIwj01xyLZs5Sv/PuIinFVJH4ECAwEAAaOCArQwggKwMB0GA1Ud DgQWBBQpcqtQ2Hg0R6xMXxphSFCbnAY2ujAfBgNVHSMEGDAWgBTo88Ug4g7yXTq3 oha7FAQxajc48TAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv ZjYwYzlmMzItYTg3Yy00MzM5LWEyZjMtNjI5OWEzYjAyZTI5Lzk5ZjhmZWQyLTI5 MmItNDcyMi1iOTI4LWZlZTdiZjBhNTkxMC81NTEyMDkwMjdmNWU3YWQ1NGUwNGYw NDJlNGFjMGU5ZTY1YzU2ZTU1Yzc3NDc4ZDJjZS5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9lNzUxOGFmNS1hMzQzLTQyOGQtYmY3OC1mOTgy YjZlNjA1MDUvODdmNzBjODctYTJkNi00YTE3LWIzOTItMGQ3NGI0MmUzMzY2LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgt Zjk4MmI2ZTYwNTA1L1huclZUZ1R3UXVTc0RwNWx4VzVWeDNSNDBzNC5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHAiYAkAA32DANBgkqhkiG9w0BAQsFAAOCAQEAoQoP9qlV5F5ydlf3PCedbfUR WhTpdf1ijvw1TlekOIOmJHyFugnEW1A6xUTq8AEwN3pXY78Ba/+JDD9BEddgxWUn QoZMVmqA9iwlJWdKVmNkmxe3uh3+bGGLBR+HwzFIg88w7HCzIpUNMgwA7oo+gq7E NzTyG9Nou0I7OroQi9N5AEy3PvWiR7Ur7Srck2HstxUkwaHNwOOHQR6YVudPb+qO c3A225T8CCvElHYSvSIYndQ7e30xGWB1ytfGtoLbshySom84TBsQcfMWrPfoM3NM oD5klgN7xzySS0OwRVoKZYmF1TmYiPB9es0T9AAT66XwyeVufsVIZAiUjOH79g== -----END CERTIFICATE-----Generated at Wed Nov 5 16:00:07 2025 by rpki-client