$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a264e569-c898-422e-8778-bb2090bc1056.roa File: a264e569-c898-422e-8778-bb2090bc1056.roa (raw, json) Hash identifier: /Ha+OuYvj39LGw5ftwK7JlLPolzNWX9W3dsOe+W1ROs= Subject key identifier: 46:02:B3:0A:5D:A0:8A:41:2F:0E:0E:D8:F7:40:20:E6:CF:9F:A3:13 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 359C6D38F33E198AA8953E5B05C14D2E40A0BA1E Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a264e569-c898-422e-8778-bb2090bc1056.roa Signing time: Tue 04 Nov 2025 00:00:08 +0000 ROA not before: Tue 04 Nov 2025 00:00:08 +0000 ROA not after: Tue 09 Dec 2025 23:59:59 +0000 asID: 9498 IP address blocks: 2605:b940:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:9c:6d:38:f3:3e:19:8a:a8:95:3e:5b:05:c1:4d:2e:40:a0:ba:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Nov 4 00:00:08 2025 GMT Not After : Dec 9 23:59:59 2025 GMT Subject: serialNumber=15ec0fe171c3abd1aba70df6dcaf2c82f762d3c2e028fea27927176f60324cd8, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:5c:a4:42:83:11:2e:fb:d4:ca:92:9a:ac:1b: 0a:b6:81:58:3e:20:6d:23:c6:53:50:b3:6e:4b:07: 46:db:ab:dc:4b:5e:ac:f3:19:2c:e8:8e:94:b7:f4: 35:ce:17:d9:90:63:6b:9e:8c:fc:e9:40:8d:c5:06: 13:6d:9f:14:84:f3:f9:d1:0c:81:7b:89:43:e3:ee: 39:cf:27:05:c2:83:31:be:1a:cd:44:20:85:71:0a: 89:da:25:b7:69:5a:97:d8:43:b0:a9:85:7e:a9:28: 70:33:19:24:11:03:e8:f3:0d:f5:82:78:7b:25:a7: a1:a1:25:09:93:5b:8e:09:a6:51:2a:fa:02:4f:26: 1f:be:6f:6a:ff:1d:ec:74:01:32:a5:8a:e9:52:4e: 6f:16:82:62:1e:f0:2e:64:45:50:b3:df:d7:54:1d: 72:5f:ac:a7:52:de:db:3f:5a:73:8f:6a:42:6d:29: 9e:59:16:7a:fc:e7:b5:3e:2c:ae:6e:e0:55:72:40: 92:ac:c1:b5:be:bc:0b:31:d2:e3:ac:54:f3:c2:bc: 6d:15:44:88:fb:ca:6d:dc:41:24:ea:aa:cf:55:f9: 02:17:33:9b:60:d5:1d:a0:57:d5:51:60:96:e1:2f: 42:dd:5d:78:f5:9b:cb:ec:de:f5:cb:68:ef:8c:c4: 0a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:02:B3:0A:5D:A0:8A:41:2F:0E:0E:D8:F7:40:20:E6:CF:9F:A3:13 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a264e569-c898-422e-8778-bb2090bc1056.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:b940:4::/48 Signature Algorithm: sha256WithRSAEncryption 0c:a4:7c:ef:2a:bd:27:4a:42:2e:c2:a2:2e:83:0a:8e:1c:f7: 67:ed:ca:cc:b5:d4:f6:23:51:ee:0a:2e:5f:eb:96:02:08:8c: 12:c1:74:e9:e6:8c:7f:20:e4:6d:fe:37:f8:de:21:b7:7d:56: f1:74:62:7a:ee:a1:eb:2d:4e:19:fe:42:1d:44:d0:e4:c6:3e: e9:51:92:6b:56:ee:cd:e9:ea:20:2a:c0:52:5d:41:fe:d1:5a: ae:6d:b2:fc:17:00:f0:0c:7a:85:83:d5:0b:4a:7d:5f:25:d1: 23:fc:78:95:25:8b:07:d3:33:38:75:e3:a8:53:78:78:d1:26: 8b:fd:56:6e:65:c8:5c:a8:86:9e:8a:13:8a:17:49:2b:ee:98: 36:e8:c3:99:e2:83:03:60:3c:40:0f:61:ed:db:f5:7a:35:8d: a4:d4:0a:a7:3b:ed:aa:f8:9f:0f:d0:bd:22:37:ea:34:9d:c1: cf:97:be:99:8c:49:c2:ca:da:42:e6:a2:86:d6:29:67:b5:46: 4e:41:6e:9f:46:0c:2f:16:cd:56:8d:53:0a:6b:a1:cf:96:9b: 2a:07:15:87:dc:c8:e6:6c:c7:fd:bc:8d:1e:25:8d:0c:00:f4: d4:cd:c3:a2:09:e3:32:94:9c:d3:4f:e3:93:48:9c:30:9f:5e: 1a:f1:2a:33 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNZxtOPM+GYqolT5bBcFNLkCguh4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMTA0MDAwMDA4WhcNMjUxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNWVjMGZlMTcxYzNhYmQxYWJhNzBkZjZkY2FmMmM4MmY3 NjJkM2MyZTAyOGZlYTI3OTI3MTc2ZjYwMzI0Y2Q4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCMXKRCgxEu+9TKkpqsGwq2gVg+IG0jxlNQs25LB0bbq9xL XqzzGSzojpS39DXOF9mQY2uejPzpQI3FBhNtnxSE8/nRDIF7iUPj7jnPJwXCgzG+ Gs1EIIVxConaJbdpWpfYQ7CphX6pKHAzGSQRA+jzDfWCeHslp6GhJQmTW44JplEq +gJPJh++b2r/Hex0ATKliulSTm8WgmIe8C5kRVCz39dUHXJfrKdS3ts/WnOPakJt KZ5ZFnr857U+LK5u4FVyQJKswbW+vAsx0uOsVPPCvG0VRIj7ym3cQSTqqs9V+QIX M5tg1R2gV9VRYJbhL0LdXXj1m8vs3vXLaO+MxArNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQURgKzCl2gikEvDg7Y90Ag5s+foxMwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2EyNjRlNTY5LWM4OTgtNDIyZS04Nzc4LWJiMjA5MGJjMTA1Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBblAAAQwDQYJKoZIhvcNAQELBQADggEBAAykfO8qvSdKQi7Coi6DCo4c 92ftysy11PYjUe4KLl/rlgIIjBLBdOnmjH8g5G3+N/jeIbd9VvF0YnruoestThn+ Qh1E0OTGPulRkmtW7s3p6iAqwFJdQf7RWq5tsvwXAPAMeoWD1QtKfV8l0SP8eJUl iwfTMzh146hTeHjRJov9Vm5lyFyohp6KE4oXSSvumDbow5nigwNgPEAPYe3b9Xo1 jaTUCqc77ar4nw/QvSI36jSdwc+XvpmMScLK2kLmoobWKWe1Rk5Bbp9GDC8WzVaN Uwproc+WmyoHFYfcyOZsx/28jR4ljQwA9NTNw6IJ4zKUnNNP45NInDCfXhrxKjM= -----END CERTIFICATE-----Generated at Wed Nov 5 01:02:26 2025 by rpki-client