$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/89ff4255-f61d-42d9-acb3-4da365096251.roa File: 89ff4255-f61d-42d9-acb3-4da365096251.roa (raw, json) Hash identifier: 0DAhKx75iXufWJCK8owtYRfOH+7RY2+1BTzy3kntKZo= Subject key identifier: CC:06:30:C3:DB:F0:13:85:AE:50:12:B7:3F:67:3A:1A:A8:B5:D9:4E Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4C19B342A37CC08158933F89B432D16E23767AA3 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/89ff4255-f61d-42d9-acb3-4da365096251.roa Signing time: Thu 30 Oct 2025 23:06:54 +0000 ROA not before: Thu 30 Oct 2025 23:06:54 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2ad0::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:19:b3:42:a3:7c:c0:81:58:93:3f:89:b4:32:d1:6e:23:76:7a:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 23:06:54 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=62136216f7d566e6077492b39ee88568c5630a986506e3c3427177d5c915fb0a, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f6:53:b2:e3:0f:72:cd:bb:87:2f:2f:98:c2: ee:39:bc:7b:fb:81:1e:e7:28:22:03:3d:96:37:b8: 3d:d0:38:e7:18:42:23:fe:33:bf:32:50:26:5e:06: 16:ee:ca:7d:24:6f:37:71:5d:f9:74:28:1c:b4:bc: 85:33:33:9d:28:75:30:70:3b:2a:c1:60:23:c1:4b: 89:de:93:78:7c:1a:31:46:06:49:6d:87:af:cc:19: aa:90:84:39:eb:89:f9:4d:21:7a:ed:3a:17:fa:d2: e3:d7:64:cd:39:e6:49:4e:68:3f:50:73:4b:d0:3d: 2c:9d:4c:38:f8:8b:9c:3c:39:4c:6b:89:ff:df:03: cb:20:9b:d7:72:e4:5a:7c:e2:f6:6e:8a:c0:b8:4c: ba:af:b1:dc:56:c8:82:68:6d:a4:b3:27:42:d9:1a: f7:8d:55:d5:c4:a2:f8:cd:dd:22:56:a7:18:2b:f4: 8d:bf:36:94:92:c9:f6:6c:bb:1b:ee:c6:c9:f0:08: c5:d2:40:07:6f:2d:88:12:9e:31:39:af:80:7b:8a: 4b:c0:0f:8e:05:b4:6a:5a:80:f4:20:10:b3:0f:89: 29:c5:64:8a:32:db:5e:7c:70:be:25:ef:a8:66:4a: b6:29:2d:1f:d0:aa:05:20:26:e6:81:84:84:92:b5: 87:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:06:30:C3:DB:F0:13:85:AE:50:12:B7:3F:67:3A:1A:A8:B5:D9:4E X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/89ff4255-f61d-42d9-acb3-4da365096251.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2ad0::/47 Signature Algorithm: sha256WithRSAEncryption 85:c4:5d:cc:c1:72:32:44:75:b1:03:33:88:76:17:24:85:c7: e2:41:c6:73:02:50:0d:9a:b4:2e:0d:c8:4f:82:9c:a5:8c:64: 23:0b:67:68:a3:60:02:03:0c:5f:57:8d:51:78:83:a5:54:d8: 57:b2:11:5c:dc:58:50:0b:ab:73:2a:6e:73:6b:74:93:ac:03: 00:8e:48:44:fa:d3:8d:ab:c0:5c:b7:80:2b:18:37:82:a2:4f: 44:6b:41:a4:57:aa:50:36:a1:35:50:d1:b6:98:ff:e5:ce:56: 80:3c:d8:88:92:f5:04:e4:da:d7:02:b6:24:2e:d2:1d:b7:51: 78:d3:23:66:35:5b:38:23:14:96:b0:47:a0:a7:3d:32:05:fd: 0d:9f:a7:6a:0b:4d:8d:ed:0b:d7:78:d3:3d:af:db:d1:70:17: e6:f6:17:9c:2b:b0:f5:2f:94:eb:1b:77:91:a6:b8:17:e3:50: 3d:8c:02:0b:fc:67:83:ee:f6:fd:f9:32:da:7d:20:f0:6a:84: cd:e1:04:9c:c1:fd:53:62:92:3d:e6:94:5e:34:72:f2:b4:2a: ed:fc:19:af:41:38:9b:ab:06:1f:94:28:44:89:b5:63:5a:7e: 4d:52:a5:53:60:be:c8:34:a0:10:81:eb:cb:a9:df:09:af:eb: 99:b7:8d:2e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTBmzQqN8wIFYkz+JtDLRbiN2eqMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjMwNjU0WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MjEzNjIxNmY3ZDU2NmU2MDc3NDkyYjM5ZWU4ODU2OGM1 NjMwYTk4NjUwNmUzYzM0MjcxNzdkNWM5MTVmYjBhMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC29lOy4w9yzbuHLy+Ywu45vHv7gR7nKCIDPZY3uD3QOOcY QiP+M78yUCZeBhbuyn0kbzdxXfl0KBy0vIUzM50odTBwOyrBYCPBS4nek3h8GjFG Bklth6/MGaqQhDnriflNIXrtOhf60uPXZM055klOaD9Qc0vQPSydTDj4i5w8OUxr if/fA8sgm9dy5Fp84vZuisC4TLqvsdxWyIJobaSzJ0LZGveNVdXEovjN3SJWpxgr 9I2/NpSSyfZsuxvuxsnwCMXSQAdvLYgSnjE5r4B7ikvAD44FtGpagPQgELMPiSnF ZIoy2158cL4l76hmSrYpLR/QqgUgJuaBhISStYclAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUzAYww9vwE4WuUBK3P2c6Gqi12U4wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1Lzg5ZmY0MjU1LWY2MWQtNDJkOS1hY2IzLTRkYTM2NTA5NjI1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAKtAwDQYJKoZIhvcNAQELBQADggEBAIXEXczBcjJEdbEDM4h2FySF x+JBxnMCUA2atC4NyE+CnKWMZCMLZ2ijYAIDDF9XjVF4g6VU2FeyEVzcWFALq3Mq bnNrdJOsAwCOSET6042rwFy3gCsYN4KiT0RrQaRXqlA2oTVQ0baY/+XOVoA82IiS 9QTk2tcCtiQu0h23UXjTI2Y1WzgjFJawR6CnPTIF/Q2fp2oLTY3tC9d40z2v29Fw F+b2F5wrsPUvlOsbd5GmuBfjUD2MAgv8Z4Pu9v35Mtp9IPBqhM3hBJzB/VNikj3m lF40cvK0Ku38Ga9BOJurBh+UKESJtWNafk1SpVNgvsg0oBCB68up3wmv65m3jS4= -----END CERTIFICATE-----Generated at Wed Nov 5 16:54:32 2025 by rpki-client