$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/93dd43af-cf85-42c9-aea9-a038725225af.roa File: 93dd43af-cf85-42c9-aea9-a038725225af.roa (raw, json) Hash identifier: i4ZUvew6gXolztDkPo2yVafx8cGrlrjwZE22iEqCN+I= Subject key identifier: 39:29:92:CF:27:EC:E5:CF:C1:3E:12:5C:B9:2F:7A:98:EB:4F:5D:D1 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4BFE4E78C9F0A6881DFE546C8F052381A3AEDA Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/93dd43af-cf85-42c9-aea9-a038725225af.roa Signing time: Thu 30 Oct 2025 21:57:04 +0000 ROA not before: Thu 30 Oct 2025 21:57:04 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1a0a::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:fe:4e:78:c9:f0:a6:88:1d:fe:54:6c:8f:05:23:81:a3:ae:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 21:57:04 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=2c9213d5cc252fde02ede649376ae86513325a6c66d08a2972ab28effe15529a, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:68:4a:a6:9a:3b:a3:4d:66:fa:79:00:76:e0: 20:be:07:19:fe:12:12:8a:6b:44:34:00:34:5b:54: 93:76:40:bb:56:80:f1:02:95:d3:bf:37:c6:a7:f0: 3c:3e:d7:5a:93:fd:83:e6:63:76:19:66:4c:1c:49: 00:be:27:68:56:97:b8:af:d1:f5:55:bd:d2:2c:94: b4:d6:e8:b6:f9:fd:95:fa:01:c1:82:36:12:ea:0c: 64:9b:f9:ed:ea:43:5c:12:5f:17:c5:7a:be:a7:0e: d2:9c:08:bd:05:8a:54:3f:83:2c:1c:f7:22:c5:af: 60:d5:c8:48:ab:b5:59:0b:b0:d6:37:90:98:22:b1: 7c:52:60:e7:d2:d6:9a:b0:80:94:b4:60:ec:84:7f: c7:f9:3c:6f:13:e6:8d:e5:e6:1e:93:5b:b8:36:04: 8a:65:05:b5:53:b1:07:75:f0:b0:fd:c6:06:2f:5b: fd:c8:17:82:1e:ac:8b:ec:45:1c:b6:6a:d9:28:0f: 96:0e:6f:8d:ad:f8:b2:88:48:5e:79:09:a0:a9:1d: 6e:50:52:01:78:57:a8:84:8f:f0:c1:2f:d2:8d:e1: fd:95:77:fe:fe:83:af:b1:fd:fd:f4:74:82:27:09: 2d:44:4c:c7:54:28:c5:06:db:f4:7d:8f:92:f2:10: 3b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:29:92:CF:27:EC:E5:CF:C1:3E:12:5C:B9:2F:7A:98:EB:4F:5D:D1 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/93dd43af-cf85-42c9-aea9-a038725225af.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1a0a::/47 Signature Algorithm: sha256WithRSAEncryption 77:49:c9:04:f1:ac:35:62:b7:18:2d:14:ec:96:eb:33:89:cc: d1:91:c6:41:9b:13:74:91:37:38:e0:72:44:72:35:49:f1:96: 3e:e3:6e:d5:ab:38:ca:a6:6a:95:17:44:cb:be:15:07:fc:b5: 5d:34:1b:22:ba:95:ff:91:13:d2:13:cf:e6:e4:74:1d:ef:3a: 7a:f5:72:0a:94:d3:62:6f:b5:2d:83:6e:fe:36:bf:09:0a:2d: bb:c3:b9:ff:56:c0:b6:d6:e7:b8:73:cf:3d:b5:6c:52:30:8a: bd:1c:c5:9a:7e:0d:82:91:fd:32:00:c8:27:c6:27:57:b4:da: 4f:bd:90:e0:b0:48:c5:ba:28:73:57:54:69:2f:c0:6a:54:0f: 7c:18:4a:55:55:2a:7e:ee:60:e2:29:9e:79:4c:09:64:78:52: 21:10:68:7c:f9:09:10:62:fe:9a:c4:55:3a:91:47:d1:03:a5: fc:97:0b:90:e7:44:8c:b4:e0:36:ac:a7:65:c5:db:e9:30:87: b3:f3:fa:c9:7c:5c:15:24:39:c0:25:82:dc:db:9f:d5:7d:e8: 2e:b3:2c:93:9b:97:dd:41:d4:bf:37:cd:14:74:2e:7d:e5:07: d5:c6:e5:8b:fd:b8:de:f9:f2:94:f6:8d:27:b8:09:b2:3e:fd: 3f:fb:6f:02 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgITS/5OeMnwpogd/lRsjwUjgaOu2jANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI1NTEyMDkwMjdmNWU3YWQ1NGUwNGYwNDJlNGFjMGU5ZTY1 YzU2ZTU1Yzc3NDc4ZDJjZTAeFw0yNTEwMzAyMTU3MDRaFw0yNTEyMDQyMzU5NTla MHoxSTBHBgNVBAUTQDJjOTIxM2Q1Y2MyNTJmZGUwMmVkZTY0OTM3NmFlODY1MTMz MjVhNmM2NmQwOGEyOTcyYWIyOGVmZmUxNTUyOWExLTArBgNVBAMTJDlmMjMwZmE5 LWFhMmYtNDAyMC1hZTJhLTFhNjAzNzQwODRiODCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAJZoSqaaO6NNZvp5AHbgIL4HGf4SEoprRDQANFtUk3ZAu1aA 8QKV0783xqfwPD7XWpP9g+ZjdhlmTBxJAL4naFaXuK/R9VW90iyUtNbotvn9lfoB wYI2EuoMZJv57epDXBJfF8V6vqcO0pwIvQWKVD+DLBz3IsWvYNXISKu1WQuw1jeQ mCKxfFJg59LWmrCAlLRg7IR/x/k8bxPmjeXmHpNbuDYEimUFtVOxB3XwsP3GBi9b /cgXgh6si+xFHLZq2SgPlg5vja34sohIXnkJoKkdblBSAXhXqISP8MEv0o3h/ZV3 /v6Dr7H9/fR0gicJLURMx1QoxQbb9H2PkvIQOy0CAwEAAaOCArQwggKwMB0GA1Ud DgQWBBQ5KZLPJ+zlz8E+Ely5L3qY609d0TAfBgNVHSMEGDAWgBTo88Ug4g7yXTq3 oha7FAQxajc48TAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv ZjYwYzlmMzItYTg3Yy00MzM5LWEyZjMtNjI5OWEzYjAyZTI5Lzk5ZjhmZWQyLTI5 MmItNDcyMi1iOTI4LWZlZTdiZjBhNTkxMC81NTEyMDkwMjdmNWU3YWQ1NGUwNGYw NDJlNGFjMGU5ZTY1YzU2ZTU1Yzc3NDc4ZDJjZS5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9lNzUxOGFmNS1hMzQzLTQyOGQtYmY3OC1mOTgy YjZlNjA1MDUvOTNkZDQzYWYtY2Y4NS00MmM5LWFlYTktYTAzODcyNTIyNWFmLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgt Zjk4MmI2ZTYwNTA1L1huclZUZ1R3UXVTc0RwNWx4VzVWeDNSNDBzNC5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHASYAkAAaCjANBgkqhkiG9w0BAQsFAAOCAQEAd0nJBPGsNWK3GC0U7JbrM4nM 0ZHGQZsTdJE3OOByRHI1SfGWPuNu1as4yqZqlRdEy74VB/y1XTQbIrqV/5ET0hPP 5uR0He86evVyCpTTYm+1LYNu/ja/CQotu8O5/1bAttbnuHPPPbVsUjCKvRzFmn4N gpH9MgDIJ8YnV7TaT72Q4LBIxbooc1dUaS/AalQPfBhKVVUqfu5g4imeeUwJZHhS IRBofPkJEGL+msRVOpFH0QOl/JcLkOdEjLTgNqynZcXb6TCHs/P6yXxcFSQ5wCWC 3Nuf1X3oLrMsk5uX3UHUvzfNFHQufeUH1cbli/243vnylPaNJ7gJsj79P/tvAg== -----END CERTIFICATE-----Generated at Wed Nov 5 07:38:49 2025 by rpki-client