$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9226fe58-4be2-48db-be17-df48569986dc.roa File: 9226fe58-4be2-48db-be17-df48569986dc.roa (raw, json) Hash identifier: Un0fCSvvlqCvW84BLV2jhknDtQULRqGGEOXK1npBgZ4= Subject key identifier: 2B:E7:75:A0:2A:2C:7D:95:B5:B4:DB:81:86:86:03:79:7E:60:57:65 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 6E6E843C0E6F2F96CB35382B34FDF7ACA53FCE Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9226fe58-4be2-48db-be17-df48569986dc.roa Signing time: Fri 31 Oct 2025 06:07:05 +0000 ROA not before: Fri 31 Oct 2025 06:07:05 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3748::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:6e:84:3c:0e:6f:2f:96:cb:35:38:2b:34:fd:f7:ac:a5:3f:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 06:07:05 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=68364e3cafcfd9ab4f5e983aa98fea3df97935cf355a16dfedcd9c2ae1afe7ed, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:9e:bd:f7:32:1d:08:12:ed:54:cb:bf:76:08: 1a:20:79:ab:d3:4d:38:77:b9:7c:08:4e:2e:08:70: 7a:b8:c1:82:bc:8c:d0:36:58:c3:62:f6:1f:d5:5e: d6:a5:6a:b5:3c:d5:75:af:cb:54:27:8b:02:40:0a: c8:87:df:70:d3:b9:e8:ce:d6:10:4d:ad:85:6f:ce: da:41:85:7d:88:73:e3:2c:dc:21:43:a5:77:b2:f5: 08:a4:05:9d:a8:45:db:3c:61:a3:a8:7e:f4:3a:eb: a0:9d:f4:4f:27:72:d5:0c:a6:89:fd:2d:e4:2e:be: 74:04:e5:5e:4c:d8:65:08:17:2a:2d:45:72:2f:4a: 73:d6:cd:99:f3:a4:76:f0:f5:e6:77:53:a5:ae:ca: 9a:0e:fe:62:03:d0:ba:fe:5b:6f:46:9a:ad:51:d8: 4b:8b:c9:43:18:10:7f:65:2e:e7:ea:1f:ec:28:dc: 4b:35:48:1b:9e:50:c4:ff:21:4d:f8:69:22:51:a6: f7:07:08:75:c6:65:64:8b:06:c5:c6:a4:56:81:d5: 44:8a:f3:b0:76:73:60:b0:f9:c6:bd:a6:ce:42:79: e7:1a:a2:46:6b:e2:17:d6:5f:6d:a1:f3:53:e9:c9: 8c:1b:8e:3e:49:13:9c:db:bf:67:f8:e0:78:65:0b: 45:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:E7:75:A0:2A:2C:7D:95:B5:B4:DB:81:86:86:03:79:7E:60:57:65 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9226fe58-4be2-48db-be17-df48569986dc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3748::/45 Signature Algorithm: sha256WithRSAEncryption 61:ec:8d:fa:ec:17:57:bb:04:52:55:2a:e6:4e:36:78:a3:0e: d8:dd:6d:64:85:68:78:67:bd:cc:55:cb:fa:ba:ef:64:1d:90: 16:c0:87:2a:51:01:cd:8d:b3:d5:b6:cb:1b:31:be:4c:5f:8c: 44:59:9a:62:4e:c6:cb:ef:28:9a:99:3c:e9:3d:55:36:b9:d9: 90:13:25:c6:d5:44:ef:d7:19:35:34:ef:d0:94:7d:46:07:65: 54:c4:19:72:5a:f4:98:a3:82:19:c3:83:0f:b1:5e:f8:36:a5: 30:fa:62:57:44:35:ac:6c:91:40:4c:82:2b:ab:c1:92:63:47: 60:a2:0f:44:df:2f:87:59:75:d1:24:f2:ef:86:51:2d:de:7d: 4f:27:32:dc:95:f7:4f:89:fb:62:ac:16:8c:a2:ed:e7:92:94: 3f:0d:5a:e3:fa:1e:05:ee:07:6b:7f:90:55:b9:c1:a2:3a:09: 1e:34:11:da:e7:53:0d:0f:10:68:12:72:39:55:af:a5:1f:25: 2e:f9:bb:9d:db:bf:3d:39:4a:6b:d1:81:d4:ab:c2:56:b4:68: e5:37:bc:07:de:18:cd:35:37:ab:b4:12:44:c2:05:a3:b4:dc: 46:06:68:02:c1:7d:b6:f0:e2:f7:07:b7:ec:d7:4e:ec:de:ef: 40:2d:c7:6e -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgITbm6EPA5vL5bLNTgrNP33rKU/zjANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI1NTEyMDkwMjdmNWU3YWQ1NGUwNGYwNDJlNGFjMGU5ZTY1 YzU2ZTU1Yzc3NDc4ZDJjZTAeFw0yNTEwMzEwNjA3MDVaFw0yNTEyMDUyMzU5NTla MHoxSTBHBgNVBAUTQDY4MzY0ZTNjYWZjZmQ5YWI0ZjVlOTgzYWE5OGZlYTNkZjk3 OTM1Y2YzNTVhMTZkZmVkY2Q5YzJhZTFhZmU3ZWQxLTArBgNVBAMTJDlmMjMwZmE5 LWFhMmYtNDAyMC1hZTJhLTFhNjAzNzQwODRiODCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAJeevfcyHQgS7VTLv3YIGiB5q9NNOHe5fAhOLghwerjBgryM 0DZYw2L2H9Ve1qVqtTzVda/LVCeLAkAKyIffcNO56M7WEE2thW/O2kGFfYhz4yzc IUOld7L1CKQFnahF2zxho6h+9DrroJ30Tydy1Qymif0t5C6+dATlXkzYZQgXKi1F ci9Kc9bNmfOkdvD15ndTpa7Kmg7+YgPQuv5bb0aarVHYS4vJQxgQf2Uu5+of7Cjc SzVIG55QxP8hTfhpIlGm9wcIdcZlZIsGxcakVoHVRIrzsHZzYLD5xr2mzkJ55xqi RmviF9ZfbaHzU+nJjBuOPkkTnNu/Z/jgeGULRYMCAwEAAaOCArQwggKwMB0GA1Ud DgQWBBQr53WgKix9lbW024GGhgN5fmBXZTAfBgNVHSMEGDAWgBTo88Ug4g7yXTq3 oha7FAQxajc48TAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv ZjYwYzlmMzItYTg3Yy00MzM5LWEyZjMtNjI5OWEzYjAyZTI5Lzk5ZjhmZWQyLTI5 MmItNDcyMi1iOTI4LWZlZTdiZjBhNTkxMC81NTEyMDkwMjdmNWU3YWQ1NGUwNGYw NDJlNGFjMGU5ZTY1YzU2ZTU1Yzc3NDc4ZDJjZS5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9lNzUxOGFmNS1hMzQzLTQyOGQtYmY3OC1mOTgy YjZlNjA1MDUvOTIyNmZlNTgtNGJlMi00OGRiLWJlMTctZGY0ODU2OTk4NmRjLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgt Zjk4MmI2ZTYwNTA1L1huclZUZ1R3UXVTc0RwNWx4VzVWeDNSNDBzNC5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHAyYAkAA3SDANBgkqhkiG9w0BAQsFAAOCAQEAYeyN+uwXV7sEUlUq5k42eKMO 2N1tZIVoeGe9zFXL+rrvZB2QFsCHKlEBzY2z1bbLGzG+TF+MRFmaYk7Gy+8ompk8 6T1VNrnZkBMlxtVE79cZNTTv0JR9RgdlVMQZclr0mKOCGcODD7Fe+DalMPpiV0Q1 rGyRQEyCK6vBkmNHYKIPRN8vh1l10STy74ZRLd59Tycy3JX3T4n7YqwWjKLt55KU Pw1a4/oeBe4Ha3+QVbnBojoJHjQR2udTDQ8QaBJyOVWvpR8lLvm7ndu/PTlKa9GB 1KvCVrRo5Te8B94YzTU3q7QSRMIFo7TcRgZoAsF9tvDi9we37NdO7N7vQC3Hbg== -----END CERTIFICATE-----Generated at Wed Nov 5 10:42:44 2025 by rpki-client