$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a532119f-11dc-4af5-b413-976b3b7a264e.roa File: a532119f-11dc-4af5-b413-976b3b7a264e.roa (raw, json) Hash identifier: 4EPaOudJNhsEzuM7qgtQTKmDFPHGq/VZfAw+xIJXC3c= Subject key identifier: 42:66:DE:26:04:89:36:20:27:20:DE:2F:39:A0:C9:48:27:4C:43:27 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 66DE98ABD7B017D32F415554C42835783B7DEAA0 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a532119f-11dc-4af5-b413-976b3b7a264e.roa Signing time: Fri 31 Oct 2025 06:27:28 +0000 ROA not before: Fri 31 Oct 2025 06:27:28 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1490::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:de:98:ab:d7:b0:17:d3:2f:41:55:54:c4:28:35:78:3b:7d:ea:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 06:27:28 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=cdac20967e7038dbca72da30864bf7d79ed0aa1cab78bd4a41d9e97bb57ea71b, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:f6:44:eb:86:77:aa:46:f6:ab:fa:11:c6:8a: e9:bb:a9:66:4d:b3:52:c4:fc:1a:ba:39:0a:02:88: c2:9f:19:8e:88:75:47:ef:ca:32:3d:3a:0e:a9:b8: f1:d4:5f:e5:5e:ed:2a:86:5e:e6:43:39:49:cd:03: 02:a0:de:cb:27:3d:81:b6:60:10:c1:09:de:34:1e: 56:a5:7d:11:36:6e:89:f2:3e:e8:84:bb:c9:42:fb: cd:a4:07:b5:22:57:c8:42:a4:95:be:50:7c:ea:35: b3:80:1e:c7:04:a0:7f:d0:03:ea:fb:9e:c7:0c:5c: b0:bb:9d:63:2f:03:93:dd:6e:35:d4:70:ec:f9:d2: bb:32:a3:9d:a8:a5:f0:0c:b2:1e:f5:45:5a:e5:32: 20:d4:de:24:8a:3e:66:3a:04:11:7c:38:aa:05:ba: 69:67:c6:6a:71:95:d3:0d:86:9a:f4:07:de:25:48: ec:b8:11:fe:8d:b1:cd:8a:bc:b0:98:45:a8:b5:67: 38:96:fe:29:91:a0:22:4b:11:c6:f3:18:b4:e2:f6: 75:b5:37:86:72:de:24:6e:e6:50:96:e6:5a:c4:ec: eb:cd:c2:03:33:bd:05:27:82:f8:d9:f0:de:4b:b0: 8f:4d:24:09:ad:e2:f8:18:c6:5b:37:c1:1d:fa:e2: ed:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:66:DE:26:04:89:36:20:27:20:DE:2F:39:A0:C9:48:27:4C:43:27 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a532119f-11dc-4af5-b413-976b3b7a264e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1490::/44 Signature Algorithm: sha256WithRSAEncryption 73:5c:78:78:f3:26:ec:dd:be:2d:45:de:6b:51:29:07:ad:fc: 31:e2:a5:67:74:01:ff:5e:86:e1:0b:0d:3e:43:6a:f5:01:70: e1:6e:a9:c2:28:a3:33:4a:e6:01:5d:72:f9:88:b9:65:0c:ed: 8c:f8:b9:8f:cc:9a:7a:2d:70:2c:f8:99:47:ac:1e:be:3d:f4: 00:d7:74:95:e3:ac:9a:c3:e0:af:bb:10:c5:f8:a8:5d:68:71: 24:76:39:2f:ab:7b:56:13:b4:0f:2a:fa:19:36:15:79:c4:7c: 8c:eb:9a:fa:b7:71:f2:5a:78:1e:e0:6d:fe:e5:e7:d7:c8:cb: c1:54:f7:42:ad:73:3c:5f:3c:de:4a:64:fe:44:0a:83:b5:9f: 15:65:29:a2:38:b1:12:8f:7c:62:1b:b3:af:3f:f8:4f:72:e4: 9f:e6:04:f0:e6:5b:be:d3:65:8e:e1:32:63:97:08:9a:30:c6: 42:d2:21:db:4c:0c:8c:0b:c6:22:a4:c7:5d:a6:e1:f8:f3:47: f1:09:b6:3b:23:6f:ff:3c:cc:45:04:8a:a2:48:2e:fb:f9:e2: b8:49:d9:d0:98:cb:89:f7:04:98:bc:76:d2:11:be:ab:31:24: cd:f4:69:d4:cf:d6:9a:42:26:34:fb:42:31:3a:4a:19:0e:52: 9b:0f:c2:80 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZt6Yq9ewF9MvQVVUxCg1eDt96qAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDYyNzI4WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZGFjMjA5NjdlNzAzOGRiY2E3MmRhMzA4NjRiZjdkNzll ZDBhYTFjYWI3OGJkNGE0MWQ5ZTk3YmI1N2VhNzFiMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDl9kTrhneqRvar+hHGium7qWZNs1LE/Bq6OQoCiMKfGY6I dUfvyjI9Og6puPHUX+Ve7SqGXuZDOUnNAwKg3ssnPYG2YBDBCd40HlalfRE2bony PuiEu8lC+82kB7UiV8hCpJW+UHzqNbOAHscEoH/QA+r7nscMXLC7nWMvA5PdbjXU cOz50rsyo52opfAMsh71RVrlMiDU3iSKPmY6BBF8OKoFumlnxmpxldMNhpr0B94l SOy4Ef6Nsc2KvLCYRai1ZziW/imRoCJLEcbzGLTi9nW1N4Zy3iRu5lCW5lrE7OvN wgMzvQUngvjZ8N5LsI9NJAmt4vgYxls3wR364u2rAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQmbeJgSJNiAnIN4vOaDJSCdMQycwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2E1MzIxMTlmLTExZGMtNGFmNS1iNDEzLTk3NmIzYjdhMjY0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAJAAFJAwDQYJKoZIhvcNAQELBQADggEBAHNceHjzJuzdvi1F3mtRKQet /DHipWd0Af9ehuELDT5DavUBcOFuqcIoozNK5gFdcvmIuWUM7Yz4uY/MmnotcCz4 mUesHr499ADXdJXjrJrD4K+7EMX4qF1ocSR2OS+re1YTtA8q+hk2FXnEfIzrmvq3 cfJaeB7gbf7l59fIy8FU90KtczxfPN5KZP5ECoO1nxVlKaI4sRKPfGIbs68/+E9y 5J/mBPDmW77TZY7hMmOXCJowxkLSIdtMDIwLxiKkx12m4fjzR/EJtjsjb/88zEUE iqJILvv54rhJ2dCYy4n3BJi8dtIRvqsxJM30adTP1ppCJjT7QjE6ShkOUpsPwoA= -----END CERTIFICATE-----Generated at Wed Nov 5 09:27:44 2025 by rpki-client