$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8d825459-8f8a-466f-b1a1-7eed5496edce.roa File: 8d825459-8f8a-466f-b1a1-7eed5496edce.roa (raw, json) Hash identifier: CW5MkXl/85A77S4Y5GoIjfKpFJh9AQYj5r4lM8F5/JQ= Subject key identifier: 54:D6:70:8D:2A:A1:CC:8E:F4:A2:E1:F6:C8:17:B3:D3:B4:BF:73:D9 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 7CFB2214FF6A9FF6AABA01B29C0E8C2FECA871C0 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8d825459-8f8a-466f-b1a1-7eed5496edce.roa Signing time: Fri 31 Oct 2025 07:40:52 +0000 ROA not before: Fri 31 Oct 2025 07:40:52 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:31c0::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:fb:22:14:ff:6a:9f:f6:aa:ba:01:b2:9c:0e:8c:2f:ec:a8:71:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 07:40:52 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=ddc428bed780224c262d244a5aa5431cbf095e141e71f601c304b1a1f02a4e8a, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:bc:fb:5a:37:92:67:d1:7a:a7:a2:85:42:0d: 29:58:30:b8:67:b0:cc:f2:97:ee:d7:ef:6d:34:30: 8d:aa:64:5a:f2:8c:ed:e7:c4:a1:bf:33:5c:45:e5: ee:e7:49:0d:9a:65:35:46:4a:ff:f6:e3:e2:75:ec: 13:7e:af:0c:da:68:cf:89:a7:cd:16:e4:28:42:f3: 4e:6f:d9:54:06:2c:1f:e6:cb:c5:59:92:75:80:c5: d7:2c:72:34:82:9a:40:69:7e:67:3d:ba:d9:24:47: 45:1d:57:63:35:4c:0b:3c:dc:63:2d:03:4b:ba:06: d7:23:dc:f5:68:29:2d:b6:60:35:23:7a:79:1e:d1: e5:31:b2:d5:7b:07:82:1a:54:9e:7c:05:83:e8:d2: 60:7f:b3:f8:49:9a:7b:5d:cf:c2:b8:47:7a:4b:96: 44:5c:36:83:fc:c5:2a:55:b9:8f:94:81:ae:5a:47: 8f:3b:ea:84:1b:54:9a:a7:ba:c2:97:e7:a3:47:5c: 4d:c9:2a:38:6b:2c:40:d4:8f:4d:d6:2f:9b:c6:45: e9:d0:b3:98:eb:21:29:6f:c9:87:f4:f6:9f:01:66: 42:b4:d3:05:96:2a:d4:10:85:db:a2:37:c0:29:fb: 8b:c6:32:bb:e4:b0:83:bf:bf:c7:58:f8:cd:c1:5a: b6:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:D6:70:8D:2A:A1:CC:8E:F4:A2:E1:F6:C8:17:B3:D3:B4:BF:73:D9 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8d825459-8f8a-466f-b1a1-7eed5496edce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:31c0::/42 Signature Algorithm: sha256WithRSAEncryption b8:4f:cd:6d:4e:52:45:ea:b4:c8:1d:6b:7e:84:6d:25:53:4d: 22:57:e6:39:89:da:d0:23:2a:f7:bf:d3:4c:5f:e9:79:f1:4a: 89:7a:79:d3:23:ab:60:ff:93:58:d7:02:41:44:fc:d3:f3:76: 07:73:ce:f2:4a:54:2d:97:c0:4f:58:9b:a5:bc:47:ec:4f:78: f5:ce:7b:cb:8d:c2:db:41:18:e0:e5:4e:d8:c2:c6:17:b3:b9: 4f:16:5a:3d:56:db:ff:bf:d2:06:f9:1a:ad:50:00:e6:67:07: 92:5c:d3:d3:05:f8:6a:1b:07:df:3c:89:3b:92:88:d4:6a:0c: 66:f3:45:6e:b1:ac:11:a1:09:1b:0f:0c:3c:af:fa:da:03:40: 84:85:42:18:10:b5:59:4e:63:95:af:49:e9:86:a9:36:3a:5e: 3e:b3:1a:54:b1:79:2f:8d:5d:0a:b4:6e:08:47:6d:bc:d2:c2: 7d:fd:d9:79:3f:f0:8a:67:6d:a8:55:0d:fc:74:35:6c:4d:66: f7:b2:79:80:31:8a:0e:43:c0:25:38:19:78:b8:51:08:13:69: 50:f6:91:ae:b9:a2:88:72:1d:e4:30:fb:f4:a7:03:c2:05:d0: af:de:78:1a:5b:b2:3f:84:1f:fb:c3:2f:b6:f5:96:fd:71:d7: 51:f5:06:59 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfPsiFP9qn/aqugGynA6ML+yoccAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDc0MDUyWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZGM0MjhiZWQ3ODAyMjRjMjYyZDI0NGE1YWE1NDMxY2Jm MDk1ZTE0MWU3MWY2MDFjMzA0YjFhMWYwMmE0ZThhMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPvPtaN5Jn0XqnooVCDSlYMLhnsMzyl+7X7200MI2qZFry jO3nxKG/M1xF5e7nSQ2aZTVGSv/24+J17BN+rwzaaM+Jp80W5ChC805v2VQGLB/m y8VZknWAxdcscjSCmkBpfmc9utkkR0UdV2M1TAs83GMtA0u6Btcj3PVoKS22YDUj enke0eUxstV7B4IaVJ58BYPo0mB/s/hJmntdz8K4R3pLlkRcNoP8xSpVuY+Uga5a R4876oQbVJqnusKX56NHXE3JKjhrLEDUj03WL5vGRenQs5jrISlvyYf09p8BZkK0 0wWWKtQQhduiN8Ap+4vGMrvksIO/v8dY+M3BWrZ7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUVNZwjSqhzI70ouH2yBez07S/c9kwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzhkODI1NDU5LThmOGEtNDY2Zi1iMWExLTdlZWQ1NDk2ZWRjZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAJAAMcAwDQYJKoZIhvcNAQELBQADggEBALhPzW1OUkXqtMgda36EbSVT TSJX5jmJ2tAjKve/00xf6XnxSol6edMjq2D/k1jXAkFE/NPzdgdzzvJKVC2XwE9Y m6W8R+xPePXOe8uNwttBGODlTtjCxhezuU8WWj1W2/+/0gb5Gq1QAOZnB5Jc09MF +GobB988iTuSiNRqDGbzRW6xrBGhCRsPDDyv+toDQISFQhgQtVlOY5WvSemGqTY6 Xj6zGlSxeS+NXQq0bghHbbzSwn392Xk/8IpnbahVDfx0NWxNZveyeYAxig5DwCU4 GXi4UQgTaVD2ka65oohyHeQw+/SnA8IF0K/eeBpbsj+EH/vDL7b1lv1x11H1Blk= -----END CERTIFICATE-----Generated at Wed Nov 5 10:32:34 2025 by rpki-client