$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/98f520b1-aa98-4da7-81ef-01fc66685b91.roa File: 98f520b1-aa98-4da7-81ef-01fc66685b91.roa (raw, json) Hash identifier: fzYRiFKGlRz3+96jAD10vUW37k428zCstVFhPijiJBs= Subject key identifier: 2D:49:48:73:E4:48:C4:BF:E8:10:81:5B:19:1C:C2:88:AC:A5:24:CC Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 6586450D6E27898AC84D72ABBEB5BAC219E5578D Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/98f520b1-aa98-4da7-81ef-01fc66685b91.roa Signing time: Fri 31 Oct 2025 04:28:24 +0000 ROA not before: Fri 31 Oct 2025 04:28:24 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:39a8::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:86:45:0d:6e:27:89:8a:c8:4d:72:ab:be:b5:ba:c2:19:e5:57:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 04:28:24 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=9584ae430de3574dc6abd6dc30dad1d65d0d6d080b5b67aba962e9625943cad7, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f9:6a:1d:1d:f7:d5:33:2f:3b:7f:e7:ee:b5: 27:ec:2e:39:f6:28:b0:c7:5e:6f:c2:d8:a8:e4:b5: 38:11:4e:d9:cd:cc:09:a6:3e:b3:11:ee:ce:3c:b1: 9b:17:1c:dd:76:20:7d:ff:d8:30:c5:5b:a6:3c:62: 6e:89:76:b3:d3:ae:e0:12:73:90:4b:bb:b7:48:05: a4:cc:86:96:2d:96:06:7d:fe:ba:f9:56:4d:eb:e0: 4e:6f:b2:2c:ff:1a:ab:96:6a:0c:dc:14:be:de:ed: a2:ca:02:34:92:1c:16:2b:c3:97:86:16:56:d9:26: ac:d0:f5:d7:5c:6b:df:a0:f0:21:fa:8d:94:1b:c9: 19:ef:ba:28:ab:ba:bd:61:44:49:d5:87:2a:a7:8c: 05:23:12:60:99:a8:62:a0:4d:35:bc:16:e8:99:d8: e3:4b:65:c5:7b:79:7f:17:c7:33:51:05:b6:3a:d8: 63:17:b0:b1:3f:8b:cb:94:63:b4:6e:3a:f1:b1:24: f0:d0:43:f8:d5:50:ea:b5:f9:12:32:6c:61:18:61: 21:fb:da:d7:c4:12:f4:d2:e5:e6:55:8b:64:2a:a1: b8:01:ae:aa:65:eb:f1:79:f6:a2:25:4b:91:cd:51: 1e:b1:5a:60:f7:cc:5e:97:f7:41:04:5f:d7:19:58: 6e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:49:48:73:E4:48:C4:BF:E8:10:81:5B:19:1C:C2:88:AC:A5:24:CC X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/98f520b1-aa98-4da7-81ef-01fc66685b91.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:39a8::/46 Signature Algorithm: sha256WithRSAEncryption 96:76:e6:38:8e:b2:ae:e0:08:2b:19:ba:fc:8a:74:d2:5f:1d: 67:c2:3e:ec:9b:3b:1a:23:bb:9f:19:48:b3:bc:da:15:fd:26: 9b:a8:55:4d:1f:73:2d:c6:06:e0:56:14:7c:98:cf:33:ff:a8: 58:31:a0:2f:67:e1:b1:14:ea:df:31:b5:99:62:d4:4a:27:1e: 2c:ce:47:74:f1:21:7d:97:69:99:7c:5c:ef:84:c1:f7:02:61: e6:29:83:9a:d3:66:c0:22:e5:ff:f1:29:58:dd:bc:fb:15:bc: 36:26:1f:33:74:d2:de:c4:6f:d6:d1:61:34:2b:cb:4d:dc:be: 1d:bb:69:25:e9:57:07:79:e8:ec:f7:c3:90:92:f3:bd:ab:69: 24:47:b4:a4:cc:be:5b:25:29:09:b4:35:14:19:44:97:2e:49: 96:10:1b:59:a3:2c:c7:24:49:15:42:20:39:36:15:b8:b4:49: 77:38:ab:6f:bd:e2:44:ee:57:67:12:b0:bc:3e:62:1d:63:d0: ce:f5:f9:30:20:8e:a4:fa:23:1f:ea:be:18:9c:22:7b:98:66: c8:d2:87:7d:fd:03:e0:73:23:ef:b5:a9:1c:f6:b3:6e:88:1f: 13:07:e7:5a:4f:f5:df:ce:95:25:e7:7c:87:69:b2:db:a3:75: 09:54:d3:bc -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZYZFDW4niYrITXKrvrW6whnlV40wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDQyODI0WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NTg0YWU0MzBkZTM1NzRkYzZhYmQ2ZGMzMGRhZDFkNjVk MGQ2ZDA4MGI1YjY3YWJhOTYyZTk2MjU5NDNjYWQ3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCd+WodHffVMy87f+futSfsLjn2KLDHXm/C2KjktTgRTtnN zAmmPrMR7s48sZsXHN12IH3/2DDFW6Y8Ym6JdrPTruASc5BLu7dIBaTMhpYtlgZ9 /rr5Vk3r4E5vsiz/GquWagzcFL7e7aLKAjSSHBYrw5eGFlbZJqzQ9ddca9+g8CH6 jZQbyRnvuiirur1hREnVhyqnjAUjEmCZqGKgTTW8FuiZ2ONLZcV7eX8XxzNRBbY6 2GMXsLE/i8uUY7RuOvGxJPDQQ/jVUOq1+RIybGEYYSH72tfEEvTS5eZVi2QqobgB rqpl6/F59qIlS5HNUR6xWmD3zF6X90EEX9cZWG4/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQULUlIc+RIxL/oEIFbGRzCiKylJMwwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1Lzk4ZjUyMGIxLWFhOTgtNGRhNy04MWVmLTAxZmM2NjY4NWI5MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAOagwDQYJKoZIhvcNAQELBQADggEBAJZ25jiOsq7gCCsZuvyKdNJf HWfCPuybOxoju58ZSLO82hX9JpuoVU0fcy3GBuBWFHyYzzP/qFgxoC9n4bEU6t8x tZli1EonHizOR3TxIX2XaZl8XO+EwfcCYeYpg5rTZsAi5f/xKVjdvPsVvDYmHzN0 0t7Eb9bRYTQry03cvh27aSXpVwd56Oz3w5CS872raSRHtKTMvlslKQm0NRQZRJcu SZYQG1mjLMckSRVCIDk2Fbi0SXc4q2+94kTuV2cSsLw+Yh1j0M71+TAgjqT6Ix/q vhicInuYZsjSh339A+BzI++1qRz2s26IHxMH51pP9d/OlSXnfIdpstujdQlU07w= -----END CERTIFICATE-----Generated at Wed Nov 5 16:54:49 2025 by rpki-client