$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9792e108-debf-40c4-b2dd-53503a2d1f5e.roa File: 9792e108-debf-40c4-b2dd-53503a2d1f5e.roa (raw, json) Hash identifier: dq1vbwHDgb0xm+g1g9U6A48jXdsus3AkPtZbYIPbnKw= Subject key identifier: C7:F9:95:C6:E7:46:46:AD:85:47:2E:61:A6:EA:52:60:F8:F5:A1:14 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 19584BAA08984ACEA965564516DFC4DB72DAE671 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9792e108-debf-40c4-b2dd-53503a2d1f5e.roa Signing time: Fri 31 Oct 2025 06:43:55 +0000 ROA not before: Fri 31 Oct 2025 06:43:55 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2a70::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:58:4b:aa:08:98:4a:ce:a9:65:56:45:16:df:c4:db:72:da:e6:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 06:43:55 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=f7e6fd0bbc665bff615e642457b705fa58d74d3bb7140c0545e5e8b56534a378, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:3f:8e:6b:d0:6f:fd:e5:73:06:53:30:73:ef: f2:8d:32:02:57:7a:98:d9:47:44:1f:d1:1d:5c:8f: 1c:d4:99:16:53:fc:68:98:21:f5:3e:5b:e6:74:85: 2d:66:b6:6f:87:44:ab:76:20:48:6b:19:81:06:1d: 66:e6:20:5a:b9:8d:a7:86:01:80:9f:c4:fc:98:e1: ca:6a:43:b4:4c:63:15:a8:ad:66:c1:a0:de:f9:a5: 72:db:d3:5a:2e:23:bb:a2:cb:58:28:bf:9c:0d:3c: 36:20:5b:8c:ba:f1:f0:fe:4c:9b:62:d9:d1:bb:b5: ea:91:33:cf:f1:40:d0:00:f3:24:ff:cf:b3:4c:34: d5:b7:3f:24:ac:bd:5d:8f:1e:b9:61:64:1c:59:3e: 4f:89:44:59:19:97:67:2e:43:a9:fe:ef:54:0f:1d: dc:a7:f1:de:88:16:99:3a:27:0b:90:a1:78:85:61: 52:22:15:17:31:7f:a8:f0:b7:ca:a9:ba:3f:a3:79: 58:35:9c:cc:29:a0:ce:f6:ee:25:4e:3d:3c:fb:a1: d8:d0:5d:c7:f0:82:c3:99:37:01:8f:fc:db:65:30: 93:10:a4:48:3b:98:93:27:66:83:b7:c7:a4:22:5e: 94:09:be:ef:a4:8a:50:fd:28:cd:2b:2f:4a:29:bd: f8:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:F9:95:C6:E7:46:46:AD:85:47:2E:61:A6:EA:52:60:F8:F5:A1:14 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9792e108-debf-40c4-b2dd-53503a2d1f5e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2a70::/44 Signature Algorithm: sha256WithRSAEncryption 88:a4:97:80:01:e4:fe:cd:07:f4:2f:99:0a:85:15:42:ee:86: a5:6e:89:26:26:70:65:53:69:ca:a7:72:19:3a:c2:f8:99:66: 0d:d2:cf:97:32:98:1f:31:8d:2b:c4:14:b7:d3:b5:a0:3d:b1: c5:22:d2:68:b7:4e:72:8c:4d:d9:3d:2b:57:55:b2:40:9e:6b: f1:e2:69:fc:68:49:ff:35:25:c0:45:f1:8a:c9:67:89:c3:41: 54:94:2a:c0:a7:3c:bf:98:29:21:62:0e:67:68:8f:a9:18:b0: 54:6a:2b:1f:15:0c:8a:78:d4:5d:ab:93:51:62:d4:b0:24:f4: 24:a1:94:74:db:26:66:30:11:0e:9d:ab:50:c9:5d:9f:c5:64: 64:16:03:9b:fd:5c:14:74:c4:55:27:c3:45:36:5f:96:3d:23: 87:7a:b3:2d:21:4d:85:66:e8:3a:88:3e:90:99:ee:68:da:b3: 3f:94:8f:e7:8c:15:b2:f7:83:68:97:28:9e:a3:a7:7f:48:c6: 7c:ba:85:e0:9d:d3:6a:42:d6:7a:10:df:01:fd:d7:88:a8:dc: 9a:19:11:be:f7:e9:08:84:8b:76:d2:95:5c:b2:0c:56:20:51: b1:5f:55:cc:8c:05:ab:02:07:24:2f:91:04:55:78:e3:40:5a: ee:f5:ff:5d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGVhLqgiYSs6pZVZFFt/E23La5nEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDY0MzU1WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmN2U2ZmQwYmJjNjY1YmZmNjE1ZTY0MjQ1N2I3MDVmYTU4 ZDc0ZDNiYjcxNDBjMDU0NWU1ZThiNTY1MzRhMzc4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDuP45r0G/95XMGUzBz7/KNMgJXepjZR0Qf0R1cjxzUmRZT /GiYIfU+W+Z0hS1mtm+HRKt2IEhrGYEGHWbmIFq5jaeGAYCfxPyY4cpqQ7RMYxWo rWbBoN75pXLb01ouI7uiy1gov5wNPDYgW4y68fD+TJti2dG7teqRM8/xQNAA8yT/ z7NMNNW3PySsvV2PHrlhZBxZPk+JRFkZl2cuQ6n+71QPHdyn8d6IFpk6JwuQoXiF YVIiFRcxf6jwt8qpuj+jeVg1nMwpoM727iVOPTz7odjQXcfwgsOZNwGP/NtlMJMQ pEg7mJMnZoO3x6QiXpQJvu+kilD9KM0rL0opvfjFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUx/mVxudGRq2FRy5hpupSYPj1oRQwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1Lzk3OTJlMTA4LWRlYmYtNDBjNC1iMmRkLTUzNTAzYTJkMWY1ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAJAAKnAwDQYJKoZIhvcNAQELBQADggEBAIikl4AB5P7NB/QvmQqFFULu hqVuiSYmcGVTacqnchk6wviZZg3Sz5cymB8xjSvEFLfTtaA9scUi0mi3TnKMTdk9 K1dVskCea/HiafxoSf81JcBF8YrJZ4nDQVSUKsCnPL+YKSFiDmdoj6kYsFRqKx8V DIp41F2rk1Fi1LAk9CShlHTbJmYwEQ6dq1DJXZ/FZGQWA5v9XBR0xFUnw0U2X5Y9 I4d6sy0hTYVm6DqIPpCZ7mjasz+Uj+eMFbL3g2iXKJ6jp39Ixny6heCd02pC1noQ 3wH914io3JoZEb736QiEi3bSlVyyDFYgUbFfVcyMBasCByQvkQRVeONAWu71/10= -----END CERTIFICATE-----Generated at Wed Nov 5 11:08:06 2025 by rpki-client