$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/89314a21-f364-4a07-9e28-4592f7a855ff.roa File: 89314a21-f364-4a07-9e28-4592f7a855ff.roa (raw, json) Hash identifier: vJCUBAvuBGVVyfeYE7wB6aGPLvFoqpzgtikmA7j2AH0= Subject key identifier: 17:18:E1:E5:40:F8:4A:D2:6F:DE:5E:33:E9:C2:9B:55:E9:49:52:32 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3BFB3D7BDF3FF8086BB509B1C69A21DC450F4442 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/89314a21-f364-4a07-9e28-4592f7a855ff.roa Signing time: Fri 31 Oct 2025 04:58:46 +0000 ROA not before: Fri 31 Oct 2025 04:58:46 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3ff4::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:fb:3d:7b:df:3f:f8:08:6b:b5:09:b1:c6:9a:21:dc:45:0f:44:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 04:58:46 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=1572fad6d7fdf0a671d77c2007ba36971ae660afe0f3b776d3409147709ec610, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b8:2b:19:1b:d0:fd:37:e2:d8:9f:2c:3f:8e: 02:af:b0:ce:72:26:06:ba:d0:b1:83:3b:8a:dd:80: 9a:0f:ac:78:cd:4e:7a:14:e4:ba:13:ac:c9:f7:74: 3f:b5:8e:11:53:04:51:29:ea:6e:57:65:0e:83:9c: 8d:e1:81:25:ea:14:09:17:ff:ce:ae:89:5a:58:80: ae:3a:07:8a:d3:27:58:81:a4:50:c0:ec:d2:f6:36: a5:a9:78:80:b2:c6:13:1f:2f:9c:69:8c:e0:e4:87: 4a:24:10:35:1d:49:5e:0d:8f:2b:3f:20:04:f4:3d: 12:78:b4:aa:50:96:fd:bd:4a:7e:47:80:53:ef:85: ec:7f:6b:e7:95:a0:f9:d1:de:b5:2c:32:74:92:40: fd:d8:bb:bb:7c:d0:f8:1e:10:c2:50:de:36:e8:a5: b2:5b:bf:6d:cd:0d:90:55:35:d1:a8:9c:e7:ad:e4: f8:c9:ed:02:96:ae:17:e7:66:cb:46:af:75:81:65: 93:75:84:9b:28:4f:34:03:7d:51:20:3c:85:c0:d2: c2:30:ad:af:7a:86:cc:37:02:f0:69:2f:14:e2:1d: 3b:06:cd:eb:db:7e:7a:20:3f:44:46:3d:d0:b6:56: 1f:55:2f:a5:8b:c2:2e:4e:58:53:fa:7b:f9:f8:7e: d9:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:18:E1:E5:40:F8:4A:D2:6F:DE:5E:33:E9:C2:9B:55:E9:49:52:32 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/89314a21-f364-4a07-9e28-4592f7a855ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3ff4::/46 Signature Algorithm: sha256WithRSAEncryption 09:f0:78:39:51:3c:5c:86:10:d9:76:76:99:a3:26:07:e1:e6: 1c:99:15:5f:8a:43:39:d3:0b:91:d4:bb:ec:84:bb:58:2e:46: c3:89:49:bc:af:71:5b:25:ba:74:64:84:bf:bb:a4:70:f3:87: 53:45:48:b3:48:1c:2e:ce:e2:4b:8f:05:8a:22:18:98:36:8f: c1:6c:df:28:1a:d2:dd:9d:74:84:5d:6d:90:9a:73:c7:7c:d9: 13:af:e4:4b:86:8e:84:b1:35:f3:b3:81:c4:62:aa:ac:7c:32: 1d:89:1e:9b:8e:b1:2f:52:71:01:1c:22:d6:f8:d1:be:08:ba: 0a:de:0c:7d:db:47:f2:17:75:a2:25:3b:21:17:e0:51:d6:e4: a9:1a:92:d5:68:48:7b:2e:1a:90:01:63:0f:41:27:de:96:63: 89:03:83:a0:e4:99:8d:61:8f:96:5d:6f:91:e7:02:71:17:b6: 85:4c:e5:86:ea:2d:48:11:4f:a6:49:f5:fe:07:78:6a:a6:ff: 6f:bf:03:94:2a:16:8c:7a:e7:8d:db:7e:04:ef:f0:3a:57:93: a7:75:69:24:13:3d:8e:98:9d:04:9e:12:ef:01:e1:2e:12:87: 87:52:2a:83:a9:0f:da:23:9a:6e:5b:4d:b9:64:01:4c:54:b3: 98:dd:c1:4f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUO/s9e98/+AhrtQmxxpoh3EUPREIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDQ1ODQ2WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNTcyZmFkNmQ3ZmRmMGE2NzFkNzdjMjAwN2JhMzY5NzFh ZTY2MGFmZTBmM2I3NzZkMzQwOTE0NzcwOWVjNjEwMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCuCsZG9D9N+LYnyw/jgKvsM5yJga60LGDO4rdgJoPrHjN TnoU5LoTrMn3dD+1jhFTBFEp6m5XZQ6DnI3hgSXqFAkX/86uiVpYgK46B4rTJ1iB pFDA7NL2NqWpeICyxhMfL5xpjODkh0okEDUdSV4Njys/IAT0PRJ4tKpQlv29Sn5H gFPvhex/a+eVoPnR3rUsMnSSQP3Yu7t80PgeEMJQ3jbopbJbv23NDZBVNdGonOet 5PjJ7QKWrhfnZstGr3WBZZN1hJsoTzQDfVEgPIXA0sIwra96hsw3AvBpLxTiHTsG zevbfnogP0RGPdC2Vh9VL6WLwi5OWFP6e/n4ftnhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUFxjh5UD4StJv3l4z6cKbVelJUjIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1Lzg5MzE0YTIxLWYzNjQtNGEwNy05ZTI4LTQ1OTJmN2E4NTVmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAP/QwDQYJKoZIhvcNAQELBQADggEBAAnweDlRPFyGENl2dpmjJgfh 5hyZFV+KQznTC5HUu+yEu1guRsOJSbyvcVslunRkhL+7pHDzh1NFSLNIHC7O4kuP BYoiGJg2j8Fs3yga0t2ddIRdbZCac8d82ROv5EuGjoSxNfOzgcRiqqx8Mh2JHpuO sS9ScQEcItb40b4IugreDH3bR/IXdaIlOyEX4FHW5KkaktVoSHsuGpABYw9BJ96W Y4kDg6DkmY1hj5Zdb5HnAnEXtoVM5YbqLUgRT6ZJ9f4HeGqm/2+/A5QqFox6543b fgTv8DpXk6d1aSQTPY6YnQSeEu8B4S4Sh4dSKoOpD9ojmm5bTblkAUxUs5jdwU8= -----END CERTIFICATE-----Generated at Wed Nov 5 12:57:46 2025 by rpki-client