$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9b84b930-cf00-4646-8d31-02549f0fa450.roa File: 9b84b930-cf00-4646-8d31-02549f0fa450.roa (raw, json) Hash identifier: FdXyeNJv+fxawnicQLP6JxzZclBIk9nOpSCNPKXFZtE= Subject key identifier: 58:FD:A4:58:0C:BC:A6:C4:52:BB:7E:66:3B:B9:75:8B:F5:FF:38:EB Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 701EA320EBAE326998C81FF9231412874EF4AE77 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9b84b930-cf00-4646-8d31-02549f0fa450.roa Signing time: Thu 30 Oct 2025 20:24:56 +0000 ROA not before: Thu 30 Oct 2025 20:24:56 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:27f6::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:1e:a3:20:eb:ae:32:69:98:c8:1f:f9:23:14:12:87:4e:f4:ae:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 20:24:56 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=86674b5b470e561e0caf48032b4d7c0f8d18f7125051cdf53beb527644100138, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c8:34:f0:fd:07:66:d0:a1:8b:95:81:76:a2: 26:35:7b:48:98:14:32:34:9e:a5:04:da:50:6c:02: 91:39:da:83:18:dc:d9:bc:cd:f1:3c:d7:78:49:9a: a6:64:cf:6b:fc:17:94:e5:aa:1f:76:ba:21:3e:2f: 1b:f4:e7:bd:ae:34:f6:66:cb:a7:e9:8f:d3:d8:5c: 9f:92:26:e7:5a:05:45:9d:b3:2e:75:77:b7:f5:76: 88:9c:55:36:33:3b:1c:ca:5d:4a:93:d7:67:24:aa: 24:a2:dd:04:3a:d2:af:3b:04:28:4c:e7:2b:83:e4: 4f:1b:64:db:e2:ae:96:d9:2d:4a:07:6f:0b:97:1e: df:cb:8f:e4:99:d5:ef:f8:82:76:c4:ba:64:0e:8d: 5e:a4:1a:ba:e9:bd:9b:03:f0:3b:e7:00:c2:4a:e6: 43:b7:fd:ca:a0:77:1f:ea:69:75:d3:e3:95:52:4a: ce:72:44:09:42:0a:9d:ce:dd:5c:ca:04:f1:52:c6: 6a:de:a1:bb:be:23:16:1a:20:8d:7b:06:03:39:88: 8d:a2:27:4b:34:5d:02:5b:d7:1f:0a:95:7f:b8:6c: b9:28:c3:62:a0:7f:e6:5e:96:62:25:8a:05:04:f0: 37:78:e0:ae:0f:e7:70:a9:e3:df:b7:f7:cd:19:26: 6a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:FD:A4:58:0C:BC:A6:C4:52:BB:7E:66:3B:B9:75:8B:F5:FF:38:EB X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9b84b930-cf00-4646-8d31-02549f0fa450.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:27f6::/47 Signature Algorithm: sha256WithRSAEncryption ad:27:7c:44:a4:3b:b0:32:90:e2:6a:92:a3:93:ea:18:0e:36: 21:0b:eb:c1:91:7c:10:7b:30:b1:5d:0d:f7:4b:88:f6:98:07: f4:2d:3f:98:19:ba:e4:42:19:a6:31:74:69:37:a1:4b:f8:cc: ea:a2:ca:97:c4:cc:09:5d:98:58:24:5d:c0:3e:13:69:06:94: 50:42:8f:5c:99:60:46:d1:ec:a9:01:58:d8:35:9d:44:bf:22: a3:cc:de:bb:8e:72:56:47:40:2c:2d:d4:d5:1f:4a:93:4b:45: 19:46:88:19:0e:7b:4f:6f:62:6b:4b:17:26:fe:07:91:b0:3b: d1:a7:f8:ec:7f:97:c4:44:69:1b:aa:69:58:f2:e3:84:76:b6: 72:2b:5d:df:78:50:01:7b:b7:aa:95:36:3a:ab:2a:bb:cf:0c: fa:be:71:62:cd:8a:50:e9:75:72:23:6f:01:de:cc:46:b0:c9: 0c:10:8c:6c:d4:9b:53:24:d4:18:6d:9f:57:b0:cc:83:85:85: 88:7a:18:b1:f5:19:f0:69:b4:a2:f0:24:b9:26:b1:3c:78:0c: b2:ef:4a:80:2c:dd:ef:7d:58:ff:e9:db:f8:de:b1:02:93:b8: 25:48:20:de:dc:cf:2a:80:10:06:b0:87:b2:c5:45:ee:39:ce: 67:40:fb:a4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcB6jIOuuMmmYyB/5IxQSh070rncwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjAyNDU2WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NjY3NGI1YjQ3MGU1NjFlMGNhZjQ4MDMyYjRkN2MwZjhk MThmNzEyNTA1MWNkZjUzYmViNTI3NjQ0MTAwMTM4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjyDTw/Qdm0KGLlYF2oiY1e0iYFDI0nqUE2lBsApE52oMY 3Nm8zfE813hJmqZkz2v8F5Tlqh92uiE+Lxv0572uNPZmy6fpj9PYXJ+SJudaBUWd sy51d7f1doicVTYzOxzKXUqT12ckqiSi3QQ60q87BChM5yuD5E8bZNvirpbZLUoH bwuXHt/Lj+SZ1e/4gnbEumQOjV6kGrrpvZsD8DvnAMJK5kO3/cqgdx/qaXXT45VS Ss5yRAlCCp3O3VzKBPFSxmreobu+IxYaII17BgM5iI2iJ0s0XQJb1x8KlX+4bLko w2Kgf+ZelmIligUE8Dd44K4P53Cp49+3980ZJmoXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUWP2kWAy8psRSu35mO7l1i/X/OOswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzliODRiOTMwLWNmMDAtNDY0Ni04ZDMxLTAyNTQ5ZjBmYTQ1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAJ/YwDQYJKoZIhvcNAQELBQADggEBAK0nfESkO7AykOJqkqOT6hgO NiEL68GRfBB7MLFdDfdLiPaYB/QtP5gZuuRCGaYxdGk3oUv4zOqiypfEzAldmFgk XcA+E2kGlFBCj1yZYEbR7KkBWNg1nUS/IqPM3ruOclZHQCwt1NUfSpNLRRlGiBkO e09vYmtLFyb+B5GwO9Gn+Ox/l8REaRuqaVjy44R2tnIrXd94UAF7t6qVNjqrKrvP DPq+cWLNilDpdXIjbwHezEawyQwQjGzUm1Mk1Bhtn1ewzIOFhYh6GLH1GfBptKLw JLkmsTx4DLLvSoAs3e99WP/p2/jesQKTuCVIIN7czyqAEAawh7LFRe45zmdA+6Q= -----END CERTIFICATE-----Generated at Wed Nov 5 05:37:04 2025 by rpki-client