$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8e36ab7a-067d-472f-bd12-6bed695fb2f3.roa File: 8e36ab7a-067d-472f-bd12-6bed695fb2f3.roa (raw, json) Hash identifier: sZdamGmbftWC+rm6+sgYhlRqN/ooIeVMOTL4xOqxbPw= Subject key identifier: A0:08:66:F5:31:81:D8:2A:B1:54:58:7F:0A:B3:A9:50:E0:AA:25:F4 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 19F9651350F9AF9DE00E7E538AC3078A69143C4F Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8e36ab7a-067d-472f-bd12-6bed695fb2f3.roa Signing time: Thu 30 Oct 2025 20:53:55 +0000 ROA not before: Thu 30 Oct 2025 20:53:55 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:13b2::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:f9:65:13:50:f9:af:9d:e0:0e:7e:53:8a:c3:07:8a:69:14:3c:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 20:53:55 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=a928b84a3ec3d2aff4ea3aeb4304b3b13cc12feab1d188cffd1e789555c5f947, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:4e:5e:9c:56:f3:19:a6:a9:30:3a:da:6d:ea: 1d:a2:c0:e5:71:32:05:bd:cd:ba:db:21:43:6c:30: 76:84:d1:2c:ed:81:1d:4a:57:42:45:17:e9:f4:93: 78:b1:c4:73:ea:7a:a8:fa:ed:7f:10:4f:27:ab:83: 2e:6f:7b:2e:2f:8e:61:cd:0d:0b:37:ad:72:0f:a0: 32:d9:87:11:ec:89:09:fd:31:03:e3:35:fa:f9:cb: 4d:18:f1:69:c2:b7:56:de:4f:52:49:9f:81:c0:e0: 7f:2c:81:42:c0:7a:74:64:10:36:e2:8f:82:75:8f: 76:dd:9c:d3:16:3f:30:fc:a5:e3:6e:cc:37:0d:92: 16:6c:17:2a:cb:bd:38:ea:44:ef:0c:2b:29:d5:81: 75:cf:99:84:c3:ea:52:ea:11:0d:e2:28:63:a2:67: 88:e8:d0:cb:5b:37:1f:e7:e8:a1:65:33:b9:51:1d: aa:93:d7:84:7c:50:ad:85:89:22:ac:bd:f6:08:51: 4e:b9:6b:02:0e:0d:04:8a:17:9e:a9:5d:57:1d:18: bf:01:d9:21:ac:58:e1:c9:1e:89:58:51:4f:89:22: a1:45:29:87:12:dc:60:61:23:06:5f:72:b8:4d:13: 48:c3:e8:9e:b0:69:ec:b6:17:85:8e:fd:17:5b:bd: 14:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:08:66:F5:31:81:D8:2A:B1:54:58:7F:0A:B3:A9:50:E0:AA:25:F4 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/8e36ab7a-067d-472f-bd12-6bed695fb2f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:13b2::/47 Signature Algorithm: sha256WithRSAEncryption 45:da:2c:57:72:93:00:c5:c4:a5:ba:98:b9:24:0c:73:2c:2c: 0a:ad:b1:28:21:fd:d7:89:f3:69:ac:68:f4:4a:50:cc:e6:1c: 6a:e7:62:87:b1:a1:20:f0:e4:c8:94:1b:1b:cd:84:e2:68:ec: 7f:76:d1:67:2f:9b:b4:12:35:3b:70:47:9c:a0:f7:af:b9:5c: 22:eb:43:44:cb:b3:e2:54:57:6f:83:d3:7e:e0:db:6e:da:9b: 6d:98:c6:0a:57:99:77:99:b3:16:d3:52:14:47:32:50:f8:03: 84:67:23:70:f2:21:b6:7f:f4:db:62:17:8c:b7:86:e1:49:e3: ae:47:54:0e:64:6d:5b:47:49:44:dc:05:19:f6:b4:79:da:d6: a0:c7:12:01:c4:07:07:ba:74:e8:db:5e:82:13:d3:95:52:e3: d9:cd:0f:35:20:8c:fb:4a:a6:7c:0e:e5:13:a6:98:9d:9e:0e: f3:bc:c5:c7:ca:89:41:9b:3d:27:9b:c7:c4:6e:24:31:2f:77: fc:60:62:85:af:b3:b8:81:af:c6:70:d7:aa:09:30:0d:9f:2a: ca:a7:df:0e:d5:db:b0:8d:c6:5b:02:a6:73:db:a2:70:0d:04: d7:5a:47:c8:a2:56:76:d7:c2:42:90:18:12:87:97:35:63:2c: 6b:4c:d3:3b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGfllE1D5r53gDn5TisMHimkUPE8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjA1MzU1WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhOTI4Yjg0YTNlYzNkMmFmZjRlYTNhZWI0MzA0YjNiMTNj YzEyZmVhYjFkMTg4Y2ZmZDFlNzg5NTU1YzVmOTQ3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXTl6cVvMZpqkwOtpt6h2iwOVxMgW9zbrbIUNsMHaE0Szt gR1KV0JFF+n0k3ixxHPqeqj67X8QTyergy5vey4vjmHNDQs3rXIPoDLZhxHsiQn9 MQPjNfr5y00Y8WnCt1beT1JJn4HA4H8sgULAenRkEDbij4J1j3bdnNMWPzD8peNu zDcNkhZsFyrLvTjqRO8MKynVgXXPmYTD6lLqEQ3iKGOiZ4jo0MtbNx/n6KFlM7lR HaqT14R8UK2FiSKsvfYIUU65awIODQSKF56pXVcdGL8B2SGsWOHJHolYUU+JIqFF KYcS3GBhIwZfcrhNE0jD6J6waey2F4WO/RdbvRRZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUoAhm9TGB2CqxVFh/CrOpUOCqJfQwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzhlMzZhYjdhLTA2N2QtNDcyZi1iZDEyLTZiZWQ2OTVmYjJmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAE7IwDQYJKoZIhvcNAQELBQADggEBAEXaLFdykwDFxKW6mLkkDHMs LAqtsSgh/deJ82msaPRKUMzmHGrnYoexoSDw5MiUGxvNhOJo7H920Wcvm7QSNTtw R5yg96+5XCLrQ0TLs+JUV2+D037g227am22YxgpXmXeZsxbTUhRHMlD4A4RnI3Dy IbZ/9NtiF4y3huFJ465HVA5kbVtHSUTcBRn2tHna1qDHEgHEBwe6dOjbXoIT05VS 49nNDzUgjPtKpnwO5ROmmJ2eDvO8xcfKiUGbPSebx8RuJDEvd/xgYoWvs7iBr8Zw 16oJMA2fKsqn3w7V27CNxlsCpnPbonANBNdaR8iiVnbXwkKQGBKHlzVjLGtM0zs= -----END CERTIFICATE-----Generated at Wed Nov 5 05:36:21 2025 by rpki-client