$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a24ca0e1-c31b-436a-a236-299a0d25cedf.roa File: a24ca0e1-c31b-436a-a236-299a0d25cedf.roa (raw, json) Hash identifier: Jkr/Y41rE1CgszI69+ohUVHP4ZOD7ZdZNw2KL2wHJIM= Subject key identifier: F4:58:22:E6:13:4D:7B:2F:31:16:7A:95:33:E5:95:6D:8A:AF:80:2C Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 6E5FB1C80ABE4D97620B68B3099C0144FA9DFBC5 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a24ca0e1-c31b-436a-a236-299a0d25cedf.roa Signing time: Fri 31 Oct 2025 03:42:03 +0000 ROA not before: Fri 31 Oct 2025 03:42:03 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2d88::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:5f:b1:c8:0a:be:4d:97:62:0b:68:b3:09:9c:01:44:fa:9d:fb:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 03:42:03 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=0b70ab46e3a790017f222006cc7847aeb8cf3eb58b46979d14ae30cd515f86e4, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:75:06:13:b5:47:16:fd:ec:14:5c:eb:c5:48: 2f:19:ac:e0:f9:da:f2:93:25:9d:d8:3e:d3:81:20: 2e:e8:97:d6:43:7d:26:25:01:9e:37:ef:6b:c2:9e: 92:b9:23:6a:e1:ab:9e:2f:2d:66:15:c3:86:69:a7: 29:fb:81:29:5f:ff:8d:9a:3a:4b:df:09:7d:1d:8c: d6:2a:61:39:d6:61:73:e4:68:e6:52:73:a7:f8:47: dd:35:78:61:8e:17:75:a8:28:8b:15:07:22:de:43: 3d:ca:13:0a:80:a7:e8:98:5d:eb:a0:ee:e5:44:5a: 5a:46:06:60:5c:ca:9b:f5:f3:ac:1a:58:16:9c:88: 0f:c0:02:bd:d6:c8:08:b3:b7:68:a5:08:6b:fb:5f: f1:3f:f5:1b:9f:30:e8:77:40:e6:ef:70:68:64:e6: 08:fc:54:68:59:a3:e7:3c:17:eb:6a:3f:18:85:03: 7e:c5:c9:60:42:22:b8:72:d9:c4:03:8a:0d:89:7f: 31:80:6c:17:f7:6c:0f:0b:e9:a5:bb:77:a4:e3:93: fe:6f:ba:16:76:5e:fe:a6:cb:51:4e:d6:10:c4:0f: 4f:32:66:b0:7c:b1:cd:43:0f:57:e5:f7:50:d1:86: 1a:ba:a4:9c:34:de:c6:d6:87:77:41:e9:70:2e:0b: 6c:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:58:22:E6:13:4D:7B:2F:31:16:7A:95:33:E5:95:6D:8A:AF:80:2C X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a24ca0e1-c31b-436a-a236-299a0d25cedf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2d88::/46 Signature Algorithm: sha256WithRSAEncryption 63:b6:5b:bd:ab:52:25:41:bd:2b:d4:99:60:e6:55:8d:61:f4: 50:e9:c6:cd:a1:9a:f3:02:77:e5:f2:e2:20:6d:37:d5:21:f8: 7d:70:b9:9b:e9:2c:4c:59:21:c0:d2:4f:92:dd:73:8d:30:fd: 36:99:8b:0d:b8:70:78:12:9a:6c:d1:e8:e5:98:e7:07:9c:d8: af:7a:76:db:5c:e1:43:c9:8a:11:df:5a:97:34:c8:09:f3:01: 4d:7b:3a:42:56:47:46:bf:f3:09:fe:e4:bf:51:60:71:0d:0b: c1:80:51:93:d4:d2:42:be:02:c6:d4:3f:5c:88:c1:e9:12:58: 7a:99:a2:2d:8c:b6:0b:8e:25:ce:63:2f:60:5e:e4:c3:fa:75: 12:9f:90:2c:ba:68:73:cf:7f:4f:45:47:3c:c7:01:42:f7:1f: b6:31:8d:49:c9:dd:1a:ee:33:7d:95:30:e7:fc:a4:f5:66:65: aa:f1:0f:6d:03:9c:73:b9:81:2b:10:88:3e:2d:e4:39:89:1d: eb:37:4e:ff:cc:22:89:ca:26:17:d4:9a:ee:31:06:b7:55:b2: 0f:60:de:73:04:91:ed:7a:07:6d:82:e5:3a:30:4c:f0:6f:f9: 90:cf:70:9e:98:0b:39:8a:57:5e:b9:e4:79:f0:fd:61:9c:23: e5:5b:ab:dc -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbl+xyAq+TZdiC2izCZwBRPqd+8UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDM0MjAzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYjcwYWI0NmUzYTc5MDAxN2YyMjIwMDZjYzc4NDdhZWI4 Y2YzZWI1OGI0Njk3OWQxNGFlMzBjZDUxNWY4NmU0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCndQYTtUcW/ewUXOvFSC8ZrOD52vKTJZ3YPtOBIC7ol9ZD fSYlAZ4372vCnpK5I2rhq54vLWYVw4Zppyn7gSlf/42aOkvfCX0djNYqYTnWYXPk aOZSc6f4R901eGGOF3WoKIsVByLeQz3KEwqAp+iYXeug7uVEWlpGBmBcypv186wa WBaciA/AAr3WyAizt2ilCGv7X/E/9RufMOh3QObvcGhk5gj8VGhZo+c8F+tqPxiF A37FyWBCIrhy2cQDig2JfzGAbBf3bA8L6aW7d6Tjk/5vuhZ2Xv6my1FO1hDED08y ZrB8sc1DD1fl91DRhhq6pJw03sbWh3dB6XAuC2yJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU9Fgi5hNNey8xFnqVM+WVbYqvgCwwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2EyNGNhMGUxLWMzMWItNDM2YS1hMjM2LTI5OWEwZDI1Y2VkZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAALYgwDQYJKoZIhvcNAQELBQADggEBAGO2W72rUiVBvSvUmWDmVY1h 9FDpxs2hmvMCd+Xy4iBtN9Uh+H1wuZvpLExZIcDST5Ldc40w/TaZiw24cHgSmmzR 6OWY5wec2K96dttc4UPJihHfWpc0yAnzAU17OkJWR0a/8wn+5L9RYHENC8GAUZPU 0kK+AsbUP1yIwekSWHqZoi2MtguOJc5jL2Be5MP6dRKfkCy6aHPPf09FRzzHAUL3 H7YxjUnJ3RruM32VMOf8pPVmZarxD20DnHO5gSsQiD4t5DmJHes3Tv/MIonKJhfU mu4xBrdVsg9g3nMEke16B22C5TowTPBv+ZDPcJ6YCzmKV1655Hnw/WGcI+Vbq9w= -----END CERTIFICATE-----Generated at Wed Nov 5 10:55:49 2025 by rpki-client