$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a3d80bfa-82ee-4766-ada5-6df760e99c63.roa File: a3d80bfa-82ee-4766-ada5-6df760e99c63.roa (raw, json) Hash identifier: VVTovhUzfzaHlhl6GLT9Tf0Xq/hRjmc4iD5wfQ/go7s= Subject key identifier: 9A:F3:74:8A:69:DC:4D:E1:02:78:BC:15:69:E5:75:B7:1E:01:57:74 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 7FB5F3BE7B62039462477C2749484A0CF7EDCA8B Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a3d80bfa-82ee-4766-ada5-6df760e99c63.roa Signing time: Thu 30 Oct 2025 23:55:30 +0000 ROA not before: Thu 30 Oct 2025 23:55:30 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:31da::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:b5:f3:be:7b:62:03:94:62:47:7c:27:49:48:4a:0c:f7:ed:ca:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 23:55:30 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=dbd5b2c17831e2d235d1609de64d906c3b359561a3bc0d12c08b5ccca79b2b0b, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0a:6e:2f:52:a3:b9:bb:69:fe:10:4f:3e:fb: 2f:c3:b2:8e:54:32:f3:7d:3f:ca:60:d8:64:93:17: f3:69:53:7b:82:df:71:42:85:36:7b:8b:05:78:af: 61:27:0f:b7:bb:05:aa:c5:3b:28:c7:5e:6f:59:fa: 18:7c:70:0a:35:97:a7:3d:90:89:cd:58:49:01:bd: 74:fd:96:03:85:a3:dd:1a:e1:a7:f6:dc:61:66:04: ac:38:44:3c:97:cb:ec:88:b1:e5:3c:93:f0:16:91: bc:a1:1e:41:bd:16:3e:d7:33:1b:19:8e:6c:84:c3: e5:14:e7:8f:3b:d8:6e:33:f2:ae:6d:5a:8f:cb:46: c2:c6:a7:a9:c0:7f:8c:b4:ec:aa:89:ff:82:88:31: 4a:1e:41:f3:3c:2e:4a:b2:04:56:ec:97:0f:5e:f4: bd:42:cd:6f:a8:30:5d:98:ec:17:42:9f:e9:9d:84: 0c:08:3c:6b:72:b1:c9:bb:3b:aa:f0:8b:e2:fa:97: a5:10:ee:9f:1b:9a:fb:6e:8f:38:9d:4a:ca:1f:15: a2:06:aa:75:61:30:f1:96:42:a7:82:5e:b6:4b:21: 30:bd:92:64:a8:0a:27:9d:0d:a5:e2:7e:ba:3a:3c: dc:62:68:8e:41:11:2d:b6:af:e0:39:a2:05:f2:ac: d6:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:F3:74:8A:69:DC:4D:E1:02:78:BC:15:69:E5:75:B7:1E:01:57:74 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a3d80bfa-82ee-4766-ada5-6df760e99c63.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:31da::/47 Signature Algorithm: sha256WithRSAEncryption 2c:95:d2:79:4b:da:8b:98:03:ad:21:97:f6:9c:62:ad:a3:87: 6b:f1:67:37:ec:3f:0e:1e:0a:5d:92:6d:57:3d:0a:e8:67:ea: e5:3d:34:f4:2f:7a:cb:f1:f1:68:43:b1:b7:d4:69:5d:b4:d7: 36:08:a8:a6:13:8b:ab:c0:01:76:b7:4f:f3:fd:4c:f0:8f:5a: bf:3a:41:63:30:03:0f:c0:e5:92:0f:2d:ab:2e:41:1e:23:28: 8e:f6:1b:7a:28:ea:64:e4:f4:3a:0e:52:6b:37:ca:be:5c:7c: 02:0e:54:09:bf:a8:7c:8b:b5:e0:0a:e0:41:b6:b1:0d:41:88: f1:d5:77:47:24:76:e0:c0:27:12:f8:8c:96:5d:57:8c:f5:43: e6:93:6a:bc:38:95:cf:bb:83:69:29:2b:27:f3:65:8c:dc:5e: 52:c2:7c:00:b6:49:a9:36:c5:12:d7:52:3e:ce:9d:d4:8d:c0: 51:ce:b4:cb:f5:36:37:17:c6:25:e7:21:12:50:3f:70:84:7d: a6:16:9b:37:f3:52:60:26:d4:a9:7d:60:60:68:61:d4:86:45: 71:23:a1:59:7b:f7:74:a1:b2:bc:a7:13:af:87:76:bd:b3:65: 86:e1:09:e5:6a:e3:c8:28:63:56:d1:53:5f:ca:b7:76:dd:0f: 8c:af:5f:d5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUf7XzvntiA5RiR3wnSUhKDPftyoswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjM1NTMwWhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYmQ1YjJjMTc4MzFlMmQyMzVkMTYwOWRlNjRkOTA2YzNi MzU5NTYxYTNiYzBkMTJjMDhiNWNjY2E3OWIyYjBiMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1Cm4vUqO5u2n+EE8++y/Dso5UMvN9P8pg2GSTF/NpU3uC 33FChTZ7iwV4r2EnD7e7BarFOyjHXm9Z+hh8cAo1l6c9kInNWEkBvXT9lgOFo90a 4af23GFmBKw4RDyXy+yIseU8k/AWkbyhHkG9Fj7XMxsZjmyEw+UU54872G4z8q5t Wo/LRsLGp6nAf4y07KqJ/4KIMUoeQfM8LkqyBFbslw9e9L1CzW+oMF2Y7BdCn+md hAwIPGtyscm7O6rwi+L6l6UQ7p8bmvtujzidSsofFaIGqnVhMPGWQqeCXrZLITC9 kmSoCiedDaXifro6PNxiaI5BES22r+A5ogXyrNZHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUmvN0imncTeECeLwVaeV1tx4BV3QwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2EzZDgwYmZhLTgyZWUtNDc2Ni1hZGE1LTZkZjc2MGU5OWM2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAMdowDQYJKoZIhvcNAQELBQADggEBACyV0nlL2ouYA60hl/acYq2j h2vxZzfsPw4eCl2SbVc9Cuhn6uU9NPQvesvx8WhDsbfUaV201zYIqKYTi6vAAXa3 T/P9TPCPWr86QWMwAw/A5ZIPLasuQR4jKI72G3oo6mTk9DoOUms3yr5cfAIOVAm/ qHyLteAK4EG2sQ1BiPHVd0ckduDAJxL4jJZdV4z1Q+aTarw4lc+7g2kpKyfzZYzc XlLCfAC2Sak2xRLXUj7OndSNwFHOtMv1NjcXxiXnIRJQP3CEfaYWmzfzUmAm1Kl9 YGBoYdSGRXEjoVl793ShsrynE6+Hdr2zZYbhCeVq48goY1bRU1/Kt3bdD4yvX9U= -----END CERTIFICATE-----Generated at Wed Nov 5 05:34:26 2025 by rpki-client