$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a269540a-b42c-4365-aa83-094a4a27164f.roa File: a269540a-b42c-4365-aa83-094a4a27164f.roa (raw, json) Hash identifier: QGzSzMKX2e3VrIBrpLM64ui1O/Wd72ftOo91nboKhKo= Subject key identifier: 65:41:53:BB:06:B5:59:C6:FD:B3:3C:20:88:5F:21:9B:21:0C:EE:99 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5C63962CC03FF39AD5ED8D3C4546BAD994A4C7C3 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a269540a-b42c-4365-aa83-094a4a27164f.roa Signing time: Fri 31 Oct 2025 02:53:50 +0000 ROA not before: Fri 31 Oct 2025 02:53:50 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1930::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:63:96:2c:c0:3f:f3:9a:d5:ed:8d:3c:45:46:ba:d9:94:a4:c7:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 02:53:50 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=6decb9c5e368553b65bd0513af98ce4c1302c93553c92617b023af22a0ff4d36, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:ce:5f:12:9f:79:64:d3:b7:2d:82:29:6f:75: 75:f4:d1:b5:31:d5:bb:4a:ce:b5:51:34:0e:7d:76: 27:51:72:f7:50:22:44:04:99:94:c2:b0:c0:90:40: 2d:e6:cd:f0:4d:ed:cd:69:bd:74:85:6f:b8:e9:9a: db:81:26:e5:a0:18:0f:60:9a:ba:08:a7:bb:8f:25: ca:54:6d:af:38:2c:5a:fd:e7:56:7e:4a:2f:6d:81: d0:b1:8e:8b:b3:e7:6a:48:75:74:13:22:09:99:22: 7d:00:31:31:0a:01:33:4a:10:dc:0d:32:6d:4f:47: 96:a1:1f:55:be:4c:2d:87:86:69:2c:68:2a:c3:ce: a8:fd:ea:bc:4e:c6:1c:7a:fe:7c:54:cf:68:87:24: 53:2f:57:3a:7d:71:ff:d8:3d:96:9c:c5:91:0f:26: b7:00:ae:75:0d:6b:c0:dc:03:81:c6:83:d1:18:74: 80:54:92:d7:4c:38:5e:5c:ee:05:57:1b:b7:b2:d8: 96:ad:39:74:f6:d4:5b:20:d7:af:2f:af:f5:fd:c7: b3:57:2f:06:b5:e6:aa:ab:d1:49:a1:b6:31:78:67: 8c:90:31:64:ff:be:68:32:11:68:01:4b:c0:dc:83: d1:34:94:74:d7:cd:e8:c1:3b:60:7f:e4:12:00:99: d1:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:41:53:BB:06:B5:59:C6:FD:B3:3C:20:88:5F:21:9B:21:0C:EE:99 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a269540a-b42c-4365-aa83-094a4a27164f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1930::/46 Signature Algorithm: sha256WithRSAEncryption 2a:39:5c:0a:03:8f:55:d7:e9:7e:70:0f:a2:bc:5c:14:01:6f: 38:74:17:8f:f3:6d:cf:29:8c:03:5f:56:38:9d:d4:d3:95:c5: e8:e4:e5:d5:02:d3:8b:8e:37:ce:53:be:10:45:36:e1:d4:af: f9:e6:04:10:97:78:4f:c2:e1:78:6a:c2:2f:98:45:ca:0f:7a: eb:a7:8d:7e:ed:1b:9b:c3:1e:4c:b2:31:88:44:3e:b4:d1:13: 44:d3:85:ec:51:bd:a3:f5:7c:4f:c1:31:9a:3e:d9:3f:17:8b: b7:99:81:1f:f8:d1:88:00:7d:1e:b3:76:d0:bd:1c:0d:bc:0a: 5b:fb:9d:57:c3:ad:02:2d:d2:a4:3b:93:f5:de:f1:60:ce:83: 6b:c5:4f:7d:52:40:e1:2d:7b:28:ce:f8:4f:0e:a3:ab:3a:83: 41:63:c6:15:0c:4c:07:38:23:ba:52:c2:d3:bd:d0:5a:11:7a: 2f:34:1c:3c:13:df:e7:13:6b:04:ce:19:e3:12:bb:55:19:51: 65:f8:d9:fd:07:10:53:f3:b6:32:25:49:e3:62:97:1f:46:73: cf:13:98:fa:2d:14:e9:d0:fa:74:49:59:eb:18:71:33:43:8a: b5:16:22:6e:71:58:69:75:69:c7:ea:7e:a9:69:bb:e2:f0:d1: f4:07:24:db -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXGOWLMA/85rV7Y08RUa62ZSkx8MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDI1MzUwWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZGVjYjljNWUzNjg1NTNiNjViZDA1MTNhZjk4Y2U0YzEz MDJjOTM1NTNjOTI2MTdiMDIzYWYyMmEwZmY0ZDM2MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmzl8Sn3lk07ctgilvdXX00bUx1btKzrVRNA59didRcvdQ IkQEmZTCsMCQQC3mzfBN7c1pvXSFb7jpmtuBJuWgGA9gmroIp7uPJcpUba84LFr9 51Z+Si9tgdCxjouz52pIdXQTIgmZIn0AMTEKATNKENwNMm1PR5ahH1W+TC2Hhmks aCrDzqj96rxOxhx6/nxUz2iHJFMvVzp9cf/YPZacxZEPJrcArnUNa8DcA4HGg9EY dIBUktdMOF5c7gVXG7ey2JatOXT21Fsg168vr/X9x7NXLwa15qqr0UmhtjF4Z4yQ MWT/vmgyEWgBS8Dcg9E0lHTXzejBO2B/5BIAmdEnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZUFTuwa1Wcb9szwgiF8hmyEM7pkwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2EyNjk1NDBhLWI0MmMtNDM2NS1hYTgzLTA5NGE0YTI3MTY0Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAGTAwDQYJKoZIhvcNAQELBQADggEBACo5XAoDj1XX6X5wD6K8XBQB bzh0F4/zbc8pjANfVjid1NOVxejk5dUC04uON85TvhBFNuHUr/nmBBCXeE/C4Xhq wi+YRcoPeuunjX7tG5vDHkyyMYhEPrTRE0TThexRvaP1fE/BMZo+2T8Xi7eZgR/4 0YgAfR6zdtC9HA28Clv7nVfDrQIt0qQ7k/Xe8WDOg2vFT31SQOEteyjO+E8Oo6s6 g0FjxhUMTAc4I7pSwtO90FoRei80HDwT3+cTawTOGeMSu1UZUWX42f0HEFPztjIl SeNilx9Gc88TmPotFOnQ+nRJWesYcTNDirUWIm5xWGl1acfqfqlpu+Lw0fQHJNs= -----END CERTIFICATE-----Generated at Wed Nov 5 10:55:04 2025 by rpki-client