$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a2cde97e-8d93-4ad4-a7e7-5d8567617906.roa File: a2cde97e-8d93-4ad4-a7e7-5d8567617906.roa (raw, json) Hash identifier: 57O9yTq0KRx5grouJrTcWQN2hyCLZj2+3QmGLBWw/hk= Subject key identifier: 24:08:8F:7E:C3:AE:93:45:1D:EE:CB:1F:B1:D3:BA:05:05:AE:B2:A5 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 17BAB276DC81A40B7FAB29974118712692C43A0F Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a2cde97e-8d93-4ad4-a7e7-5d8567617906.roa Signing time: Fri 31 Oct 2025 07:27:35 +0000 ROA not before: Fri 31 Oct 2025 07:27:35 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3a40::/43 maxlen: 43 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:ba:b2:76:dc:81:a4:0b:7f:ab:29:97:41:18:71:26:92:c4:3a:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 07:27:35 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=0fc1bdec3456be29418de7371d1906b1ca8bc01f507f614fe323fea659480872, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a7:8f:45:d9:4c:e5:e0:4b:d5:e9:e3:03:de: 71:45:9c:6a:15:2f:e5:c9:07:b4:23:df:1c:46:0f: 1e:ec:06:34:d8:26:ce:7d:c3:26:34:d5:8d:9d:3c: a0:f7:09:9f:cd:be:cf:95:9f:40:16:d5:0b:a6:58: 47:53:ad:bd:89:ae:9e:fa:be:21:7e:92:74:c2:22: 2a:b8:32:e3:18:36:26:76:1d:25:8f:12:ce:c4:61: 75:b5:cc:b9:f3:0f:e2:12:da:47:0c:58:7e:df:5f: b7:f4:e2:07:3a:47:6b:5d:95:93:43:98:4e:36:bd: b0:7d:ef:30:de:8e:5b:1e:4e:91:95:d5:85:38:5a: 39:9e:6b:b1:c3:5f:21:50:89:cb:03:72:8d:97:7e: 66:33:b1:1b:1d:33:28:0f:4f:ec:35:9f:f5:f5:24: 02:b7:25:c3:b8:da:0e:f6:87:72:70:7e:7c:c1:8d: 18:ec:a1:ec:97:5c:09:86:fc:c5:e7:5f:31:52:66: 23:71:5a:31:4b:2f:d6:cc:88:1b:88:bc:58:be:f2: ef:c7:b7:57:20:83:57:b0:2e:6b:69:15:58:50:00: 09:a0:28:a9:9c:67:1f:be:e0:e8:a8:d7:52:47:e1: 57:ee:3b:91:12:2d:f0:e8:ad:f4:bb:1d:d3:a6:d8: 34:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:08:8F:7E:C3:AE:93:45:1D:EE:CB:1F:B1:D3:BA:05:05:AE:B2:A5 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a2cde97e-8d93-4ad4-a7e7-5d8567617906.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3a40::/43 Signature Algorithm: sha256WithRSAEncryption 92:b9:35:7a:fc:1d:3b:d1:b1:8a:38:e3:07:4c:1e:8e:e3:da: bb:59:04:c0:a6:1b:b5:69:16:66:18:f5:96:49:fd:30:06:0b: a9:52:9a:76:2d:c3:89:ea:41:26:80:ed:c6:f7:66:23:15:db: 8f:9b:26:67:a0:5c:a2:91:7b:aa:f7:47:64:5a:22:87:a8:00: fe:b8:76:db:fb:74:81:79:49:ca:3f:91:1f:c3:61:52:4f:6f: a8:20:a5:4a:b3:db:be:04:db:d0:53:86:d2:20:41:31:77:a2: 31:1f:7e:dc:d6:55:bd:6d:8c:d0:2e:f0:4c:e1:d8:82:fb:80: c0:fe:1c:6d:57:0e:bd:00:cd:80:c7:42:b7:f5:9f:4f:2a:47: 13:7b:83:c5:47:63:f0:1a:51:fa:27:48:e1:fd:a3:10:34:ca: 25:6a:58:9b:6b:fa:c7:94:5d:f7:63:f3:73:b1:4b:30:f6:d9: 60:4c:c0:ae:1e:5b:14:81:0a:a9:dc:70:60:f5:68:1d:67:31: dd:41:3b:92:08:fb:be:9d:74:fe:0c:9c:79:31:91:be:dd:60: dd:aa:9e:77:4a:70:61:11:25:e7:69:8a:f8:71:c0:85:94:ed: 1b:b5:46:f5:ee:66:d2:ac:94:2b:75:ee:2e:63:c6:d1:ab:a9: 58:ec:ff:69 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUF7qydtyBpAt/qymXQRhxJpLEOg8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDcyNzM1WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZmMxYmRlYzM0NTZiZTI5NDE4ZGU3MzcxZDE5MDZiMWNh OGJjMDFmNTA3ZjYxNGZlMzIzZmVhNjU5NDgwODcyMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzp49F2Uzl4EvV6eMD3nFFnGoVL+XJB7Qj3xxGDx7sBjTY Js59wyY01Y2dPKD3CZ/Nvs+Vn0AW1QumWEdTrb2Jrp76viF+knTCIiq4MuMYNiZ2 HSWPEs7EYXW1zLnzD+IS2kcMWH7fX7f04gc6R2tdlZNDmE42vbB97zDejlseTpGV 1YU4Wjmea7HDXyFQicsDco2XfmYzsRsdMygPT+w1n/X1JAK3JcO42g72h3JwfnzB jRjsoeyXXAmG/MXnXzFSZiNxWjFLL9bMiBuIvFi+8u/Ht1cgg1ewLmtpFVhQAAmg KKmcZx++4Oio11JH4VfuO5ESLfDorfS7HdOm2DTzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUJAiPfsOuk0Ud7ssfsdO6BQWusqUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2EyY2RlOTdlLThkOTMtNGFkNC1hN2U3LTVkODU2NzYxNzkwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwUmAJAAOkAwDQYJKoZIhvcNAQELBQADggEBAJK5NXr8HTvRsYo44wdMHo7j 2rtZBMCmG7VpFmYY9ZZJ/TAGC6lSmnYtw4nqQSaA7cb3ZiMV24+bJmegXKKRe6r3 R2RaIoeoAP64dtv7dIF5Sco/kR/DYVJPb6ggpUqz274E29BThtIgQTF3ojEfftzW Vb1tjNAu8Ezh2IL7gMD+HG1XDr0AzYDHQrf1n08qRxN7g8VHY/AaUfonSOH9oxA0 yiVqWJtr+seUXfdj83OxSzD22WBMwK4eWxSBCqnccGD1aB1nMd1BO5II+76ddP4M nHkxkb7dYN2qnndKcGERJedpivhxwIWU7Ru1RvXuZtKslCt17i5jxtGrqVjs/2k= -----END CERTIFICATE-----Generated at Wed Nov 5 07:45:58 2025 by rpki-client