$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a2b68b65-70d5-40f6-b160-7d8a64b2c2ef.roa File: a2b68b65-70d5-40f6-b160-7d8a64b2c2ef.roa (raw, json) Hash identifier: tHpqNH+oHJERmigaZ5UJY4nW1Uf+tTqtIdlYpVS0eUU= Subject key identifier: 88:EC:A7:EA:80:B7:15:02:31:58:80:B6:35:2B:E8:89:B1:9A:1B:61 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5A8AF51B865C6F51C2D71CE546A17CC44BF61CA1 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a2b68b65-70d5-40f6-b160-7d8a64b2c2ef.roa Signing time: Thu 30 Oct 2025 23:54:01 +0000 ROA not before: Thu 30 Oct 2025 23:54:01 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:31bc::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:8a:f5:1b:86:5c:6f:51:c2:d7:1c:e5:46:a1:7c:c4:4b:f6:1c:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 23:54:01 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=456610fb479a63b3466bdb4cecc0d7537cf3b3d33cb72794bb711110a49f8a01, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:42:fa:2d:37:d7:05:c1:95:d6:cb:a1:9f:5b: 09:8e:48:77:5d:cb:d9:3f:1b:1e:21:9a:cc:86:28: 0b:49:d3:8e:5f:c6:12:ae:99:75:1e:86:d7:bd:cc: 50:57:40:b4:eb:85:fe:5e:2b:86:cb:4c:22:d0:00: 25:70:f9:f8:fb:fa:c1:e0:2d:4d:63:2a:c9:5a:5b: 0a:93:46:d1:dd:d0:29:19:cf:7e:fe:21:f4:9c:fc: fe:64:fb:82:99:d0:a2:04:10:f0:4e:41:41:eb:e0: 79:d0:14:44:5b:2a:9f:dd:06:6a:00:88:dd:6e:7f: 40:e7:3d:f1:79:d0:53:7d:3a:26:1c:72:4d:58:4c: 57:28:0c:09:09:6c:fa:73:4e:bd:7a:32:02:ea:39: f4:c0:93:b0:bb:bf:a7:b5:97:1c:3e:9c:8c:e0:4f: cc:5f:e4:e4:90:7a:00:ac:35:2e:c3:01:b9:1c:36: bb:6c:91:73:fc:42:74:41:90:64:f9:bb:c8:f7:49: e7:66:0f:95:88:1a:6d:0b:5d:b1:0b:99:ce:19:ea: 81:a2:47:57:c8:41:4b:79:e5:5a:b6:b5:dc:6c:4c: 69:21:82:f1:96:ec:b2:6a:b2:25:94:ba:0b:63:6a: 11:73:22:bc:36:ba:05:e8:0c:e8:95:16:e8:bf:20: 30:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:EC:A7:EA:80:B7:15:02:31:58:80:B6:35:2B:E8:89:B1:9A:1B:61 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a2b68b65-70d5-40f6-b160-7d8a64b2c2ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:31bc::/47 Signature Algorithm: sha256WithRSAEncryption 08:20:c8:21:83:08:7c:db:2c:db:2d:5a:78:55:83:f2:e4:d1: ad:ee:70:90:d0:1d:e2:1f:9c:ca:56:01:df:d3:04:75:a3:cd: 45:f1:60:cd:fa:ce:62:78:57:30:ae:93:71:fd:75:47:21:2c: d6:f3:26:1c:60:a1:6d:0d:b2:2a:09:85:b6:c5:cd:4c:71:bd: ea:ef:52:e4:83:1c:6d:21:48:99:df:9b:4a:45:c4:7c:b9:71: 7a:5a:60:e6:4b:10:0a:c0:15:85:b8:15:8c:3b:84:b8:39:5f: 77:14:df:10:d6:0c:58:75:6e:7a:3d:3e:ae:ea:16:a8:f5:b2: 80:bd:ee:31:60:13:a3:b6:f9:f3:ef:63:63:e2:f0:dd:34:b5: 9b:5e:b8:5a:c7:7a:38:1f:29:59:6c:35:a1:65:cb:c1:97:8e: da:5a:17:20:5b:6b:57:2c:40:02:51:d4:89:41:9d:24:d9:f9: 1d:40:07:ae:a9:43:00:bb:c8:13:ae:63:2b:65:fa:3f:bd:40: 3b:bc:00:ca:16:3b:77:6b:5b:0c:05:a8:78:af:62:94:3a:33: b4:f2:d4:e6:b7:b8:03:2c:71:44:13:f0:c1:41:3c:3d:c8:4f: d8:97:ae:93:a1:aa:0f:09:5b:11:52:75:33:40:a7:9b:eb:a5: fb:4a:d3:ef -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWor1G4Zcb1HC1xzlRqF8xEv2HKEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjM1NDAxWhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NTY2MTBmYjQ3OWE2M2IzNDY2YmRiNGNlY2MwZDc1Mzdj ZjNiM2QzM2NiNzI3OTRiYjcxMTExMGE0OWY4YTAxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzQvotN9cFwZXWy6GfWwmOSHddy9k/Gx4hmsyGKAtJ045f xhKumXUehte9zFBXQLTrhf5eK4bLTCLQACVw+fj7+sHgLU1jKslaWwqTRtHd0CkZ z37+IfSc/P5k+4KZ0KIEEPBOQUHr4HnQFERbKp/dBmoAiN1uf0DnPfF50FN9OiYc ck1YTFcoDAkJbPpzTr16MgLqOfTAk7C7v6e1lxw+nIzgT8xf5OSQegCsNS7DAbkc NrtskXP8QnRBkGT5u8j3SedmD5WIGm0LXbELmc4Z6oGiR1fIQUt55Vq2tdxsTGkh gvGW7LJqsiWUugtjahFzIrw2ugXoDOiVFui/IDBZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUiOyn6oC3FQIxWIC2NSvoibGaG2EwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2EyYjY4YjY1LTcwZDUtNDBmNi1iMTYwLTdkOGE2NGIyYzJlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAMbwwDQYJKoZIhvcNAQELBQADggEBAAggyCGDCHzbLNstWnhVg/Lk 0a3ucJDQHeIfnMpWAd/TBHWjzUXxYM36zmJ4VzCuk3H9dUchLNbzJhxgoW0NsioJ hbbFzUxxvervUuSDHG0hSJnfm0pFxHy5cXpaYOZLEArAFYW4FYw7hLg5X3cU3xDW DFh1bno9Pq7qFqj1soC97jFgE6O2+fPvY2Pi8N00tZteuFrHejgfKVlsNaFly8GX jtpaFyBba1csQAJR1IlBnSTZ+R1AB66pQwC7yBOuYytl+j+9QDu8AMoWO3drWwwF qHivYpQ6M7Ty1Oa3uAMscUQT8MFBPD3IT9iXrpOhqg8JWxFSdTNAp5vrpftK0+8= -----END CERTIFICATE-----Generated at Wed Nov 5 09:05:39 2025 by rpki-client