$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9fce038d-eca6-4de1-8340-94e0c0efb14d.roa File: 9fce038d-eca6-4de1-8340-94e0c0efb14d.roa (raw, json) Hash identifier: 7FeuQE0EnSDiPFHuuTH9dEO8EGOJFtQZON38UA8XHyw= Subject key identifier: 8C:0F:7B:FE:00:C2:5E:77:80:2B:E0:16:89:F6:BB:E7:D5:D4:39:80 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 045C130315E93B62E0F13959F89689B84832951D Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9fce038d-eca6-4de1-8340-94e0c0efb14d.roa Signing time: Fri 31 Oct 2025 01:08:28 +0000 ROA not before: Fri 31 Oct 2025 01:08:28 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:396e::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:5c:13:03:15:e9:3b:62:e0:f1:39:59:f8:96:89:b8:48:32:95:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 01:08:28 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=ef6126bc308221fd56df8f8f92b24fd9cb738d46f69db58fca1616a7576b5083, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:64:a3:e4:3a:8f:1b:d3:5d:81:64:97:2f:8c: d4:e2:ea:6a:ae:09:d7:ec:22:b7:5b:05:49:33:11: f1:6c:22:2a:68:27:d6:03:c0:09:0f:c0:60:23:e6: ba:fc:55:1a:91:93:5f:03:f2:d8:aa:2d:7c:3f:a7: 5f:20:06:6f:3c:e1:a6:86:98:a2:41:14:92:c3:71: 2d:38:68:14:eb:5d:93:41:77:25:03:92:8d:60:93: fe:2e:70:04:cc:31:5a:9d:65:b0:e7:c4:20:28:e5: 0c:71:68:e0:5b:f6:d3:81:96:48:47:2b:91:96:52: 6f:bc:fb:40:d9:38:eb:9a:06:47:d4:a2:62:0c:01: 39:77:ba:f4:03:eb:7d:ac:8e:c0:ee:4d:92:27:61: 88:43:3e:7d:08:ce:6f:cf:ae:c8:e1:cb:68:b4:aa: e8:4d:59:59:e8:09:80:68:cf:66:5e:cb:26:83:f4: b6:4c:0c:0a:c5:45:ac:cf:19:0c:4a:21:23:fe:c6: 8f:69:0d:e1:17:df:c3:68:c0:41:fe:49:b8:5c:00: b2:c0:21:dd:0e:11:97:63:d5:f1:ca:34:8a:53:c7: 6d:f2:b1:55:50:69:db:a6:99:d0:4b:ef:3b:39:7f: 69:f9:61:e5:c0:58:0f:8d:3f:10:a7:10:ec:df:d4: f4:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:0F:7B:FE:00:C2:5E:77:80:2B:E0:16:89:F6:BB:E7:D5:D4:39:80 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9fce038d-eca6-4de1-8340-94e0c0efb14d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:396e::/47 Signature Algorithm: sha256WithRSAEncryption 75:2f:2e:c7:1d:40:de:5b:3c:6f:59:cf:dd:df:f0:5d:ea:b7: 68:aa:0c:51:d6:a1:09:b9:6c:e9:1f:4d:6d:0e:15:54:35:3d: 64:29:a4:40:84:1e:06:91:14:d4:6f:c4:04:6d:7c:24:b6:93: 87:91:65:7b:3e:95:75:b6:01:18:df:d9:a6:8c:d2:95:a2:fb: d2:4d:af:f7:ee:b7:83:1d:0a:1d:ed:16:13:3e:16:fd:e6:c2: d5:7c:61:4a:b0:16:66:81:bb:4f:18:ca:dd:64:68:21:4b:d7: 03:b8:79:ef:eb:a3:ef:a6:70:93:ff:5e:f8:3c:c2:0d:ec:09: dd:87:48:3c:dd:7e:1b:58:c8:26:e2:b1:19:a8:e1:e6:24:d6: 18:75:75:82:6a:96:19:0a:73:a8:1d:95:29:63:ae:8e:d6:e6: e5:09:93:f4:ed:85:40:f9:4b:52:a3:de:7d:a8:27:59:b3:40: 51:ba:68:cc:27:e2:e3:07:08:af:2a:a0:d8:47:49:06:f2:0d: da:23:c8:11:ff:d5:5b:17:da:3c:e1:35:87:0f:d2:52:ee:1f: f5:4f:39:51:eb:07:68:1c:24:53:3a:c3:a6:24:d4:42:27:60: 2a:2d:71:3a:50:89:c4:1c:6d:cb:20:b1:9a:4a:d1:3d:3f:46: 06:7d:64:b0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBFwTAxXpO2Lg8TlZ+JaJuEgylR0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDEwODI4WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZjYxMjZiYzMwODIyMWZkNTZkZjhmOGY5MmIyNGZkOWNi NzM4ZDQ2ZjY5ZGI1OGZjYTE2MTZhNzU3NmI1MDgzMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCZKPkOo8b012BZJcvjNTi6mquCdfsIrdbBUkzEfFsIipo J9YDwAkPwGAj5rr8VRqRk18D8tiqLXw/p18gBm884aaGmKJBFJLDcS04aBTrXZNB dyUDko1gk/4ucATMMVqdZbDnxCAo5QxxaOBb9tOBlkhHK5GWUm+8+0DZOOuaBkfU omIMATl3uvQD632sjsDuTZInYYhDPn0Izm/Prsjhy2i0quhNWVnoCYBoz2ZeyyaD 9LZMDArFRazPGQxKISP+xo9pDeEX38NowEH+SbhcALLAId0OEZdj1fHKNIpTx23y sVVQadummdBL7zs5f2n5YeXAWA+NPxCnEOzf1PQHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUjA97/gDCXneAK+AWifa759XUOYAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzlmY2UwMzhkLWVjYTYtNGRlMS04MzQwLTk0ZTBjMGVmYjE0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOW4wDQYJKoZIhvcNAQELBQADggEBAHUvLscdQN5bPG9Zz93f8F3q t2iqDFHWoQm5bOkfTW0OFVQ1PWQppECEHgaRFNRvxARtfCS2k4eRZXs+lXW2ARjf 2aaM0pWi+9JNr/fut4MdCh3tFhM+Fv3mwtV8YUqwFmaBu08Yyt1kaCFL1wO4ee/r o++mcJP/Xvg8wg3sCd2HSDzdfhtYyCbisRmo4eYk1hh1dYJqlhkKc6gdlSljro7W 5uUJk/TthUD5S1Kj3n2oJ1mzQFG6aMwn4uMHCK8qoNhHSQbyDdojyBH/1VsX2jzh NYcP0lLuH/VPOVHrB2gcJFM6w6Yk1EInYCotcTpQicQcbcsgsZpK0T0/RgZ9ZLA= -----END CERTIFICATE-----Generated at Wed Nov 5 10:42:53 2025 by rpki-client