$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8928aad6-9f83-4deb-b6c2-f8c1db73564c.roa File: 8928aad6-9f83-4deb-b6c2-f8c1db73564c.roa (raw, json) Hash identifier: Gt2FgxrwQZ2B8/39hVgaAdXn7RaBE2BZEFxOEAguer0= Subject key identifier: 00:8F:24:5A:06:FB:E7:1E:77:DA:AF:6D:2A:EE:C8:92:9C:44:A5:65 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 37B1257912A8096A3C3C116F82AA847975C5892B Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8928aad6-9f83-4deb-b6c2-f8c1db73564c.roa Signing time: Fri 31 Oct 2025 05:23:41 +0000 ROA not before: Fri 31 Oct 2025 05:23:41 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:19e8::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:b1:25:79:12:a8:09:6a:3c:3c:11:6f:82:aa:84:79:75:c5:89:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 05:23:41 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=4f2cc6b4bce24de4ba64d0e3d86068f1d4bce002f5b6e62a3bc344823f25a397, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:06:48:b8:9d:f4:cb:79:b6:35:b4:16:7d:4e: 76:fa:4d:f2:08:8d:28:7f:14:5e:9d:76:09:ba:00: 8e:de:03:af:3c:0f:8e:5d:9a:09:5d:8d:2a:0f:f3: 31:4c:5e:c4:9d:9a:44:a0:85:54:fb:a6:95:2b:8f: e4:27:b9:b4:22:f1:7d:29:8c:62:ec:bb:42:1d:b7: 75:97:19:91:7e:58:87:43:69:4f:42:c2:37:30:97: 7d:16:f1:e5:87:f7:71:ed:6b:43:cd:51:4b:dd:4b: b5:65:b6:f6:c0:ef:65:2b:19:6c:99:ba:3a:aa:cc: 17:4a:bc:b1:27:6e:a3:e8:47:45:c0:7e:5a:97:c5: 2a:e6:a9:da:5f:48:62:a6:02:a9:05:45:a5:db:ca: 95:fa:80:82:bb:10:3a:4e:bb:75:e3:eb:73:cc:eb: 19:bc:1a:87:43:bd:bd:c8:5d:7f:ac:fa:60:59:c0: ac:1f:a3:b8:24:b1:e1:ee:f1:79:df:2c:d9:10:74: 32:e0:4c:5b:1f:0f:5d:f9:8c:9f:c4:7d:be:b4:82: ef:b7:d4:65:77:cf:91:c1:b6:d3:f8:7f:97:49:26: 0c:67:ff:5c:e3:c8:42:aa:87:72:85:9a:03:76:0c: 40:1b:b8:cf:2b:7f:e6:9c:88:1e:a3:a9:32:ac:20: f9:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:8F:24:5A:06:FB:E7:1E:77:DA:AF:6D:2A:EE:C8:92:9C:44:A5:65 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8928aad6-9f83-4deb-b6c2-f8c1db73564c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:19e8::/45 Signature Algorithm: sha256WithRSAEncryption 79:0e:f0:cf:5d:49:bd:6d:72:7e:4d:e3:4e:0c:c1:9f:43:b8: 37:35:51:42:84:c5:37:69:58:ff:88:c8:5d:f4:d7:ab:72:4b: 7b:13:ea:24:77:67:b3:43:53:cf:e9:a8:db:c5:23:eb:91:f4: 90:67:55:7b:2f:2f:78:02:95:28:32:76:c8:7e:ef:a9:b6:6e: 14:64:0d:1f:e9:a1:ce:6a:19:72:39:0f:98:3b:bf:53:a2:97: 4b:75:5a:a2:ec:15:bf:0e:a0:26:af:90:34:a8:c4:ac:0a:b2: 2a:7a:43:a7:87:23:e0:78:2d:8e:ca:c8:f5:9d:a7:86:33:16: fc:f9:1b:11:3a:e2:47:85:0d:f9:63:4e:4f:ac:93:93:45:3d: 0d:57:bb:2e:fd:d7:c9:4a:e6:a5:7a:13:76:8d:a9:2e:d0:1d: 0f:6d:c3:45:e5:5c:c7:a0:6a:f6:ee:4d:91:dc:19:1f:5e:ab: 88:cc:10:01:d6:eb:bc:cb:47:9b:e8:3b:c3:ff:7e:ad:0a:a0: 80:27:f9:63:f7:d8:f9:27:40:08:11:ed:ed:36:3c:c1:04:60: d6:dd:20:b7:8a:15:51:b3:1d:71:3e:c9:65:6b:88:f9:05:41: 2e:ae:cd:0e:16:f3:9e:50:f5:9a:59:a9:fd:2e:07:ba:06:5b: cd:c8:66:ce -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUN7EleRKoCWo8PBFvgqqEeXXFiSswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDUyMzQxWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZjJjYzZiNGJjZTI0ZGU0YmE2NGQwZTNkODYwNjhmMWQ0 YmNlMDAyZjViNmU2MmEzYmMzNDQ4MjNmMjVhMzk3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCMBki4nfTLebY1tBZ9Tnb6TfIIjSh/FF6ddgm6AI7eA688 D45dmgldjSoP8zFMXsSdmkSghVT7ppUrj+QnubQi8X0pjGLsu0Idt3WXGZF+WIdD aU9Cwjcwl30W8eWH93Hta0PNUUvdS7VltvbA72UrGWyZujqqzBdKvLEnbqPoR0XA flqXxSrmqdpfSGKmAqkFRaXbypX6gIK7EDpOu3Xj63PM6xm8GodDvb3IXX+s+mBZ wKwfo7gkseHu8XnfLNkQdDLgTFsfD135jJ/Efb60gu+31GV3z5HBttP4f5dJJgxn /1zjyEKqh3KFmgN2DEAbuM8rf+aciB6jqTKsIPkrAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUAI8kWgb75x532q9tKu7IkpxEpWUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1Lzg5MjhhYWQ2LTlmODMtNGRlYi1iNmMyLWY4YzFkYjczNTY0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAGegwDQYJKoZIhvcNAQELBQADggEBAHkO8M9dSb1tcn5N404MwZ9D uDc1UUKExTdpWP+IyF3016tyS3sT6iR3Z7NDU8/pqNvFI+uR9JBnVXsvL3gClSgy dsh+76m2bhRkDR/poc5qGXI5D5g7v1Oil0t1WqLsFb8OoCavkDSoxKwKsip6Q6eH I+B4LY7KyPWdp4YzFvz5GxE64keFDfljTk+sk5NFPQ1Xuy7918lK5qV6E3aNqS7Q HQ9tw0XlXMegavbuTZHcGR9eq4jMEAHW67zLR5voO8P/fq0KoIAn+WP32PknQAgR 7e02PMEEYNbdILeKFVGzHXE+yWVriPkFQS6uzQ4W855Q9ZpZqf0uB7oGW83IZs4= -----END CERTIFICATE-----Generated at Wed Nov 5 07:45:54 2025 by rpki-client