$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a5bad53f-2e50-471f-b766-45048ae67f42.roa File: a5bad53f-2e50-471f-b766-45048ae67f42.roa (raw, json) Hash identifier: eRcrhAzVUgeRg5+R57Mf/R19Jw+5Gk+TntWSYRJ+hoE= Subject key identifier: 70:AA:75:94:20:FE:F5:8A:97:6C:7C:20:7A:8F:8E:8E:E7:2B:DE:E5 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 31994FD9D63723351FF2098ABE1C8566FC6664B0 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a5bad53f-2e50-471f-b766-45048ae67f42.roa Signing time: Fri 31 Oct 2025 01:21:49 +0000 ROA not before: Fri 31 Oct 2025 01:21:49 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3aca::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:99:4f:d9:d6:37:23:35:1f:f2:09:8a:be:1c:85:66:fc:66:64:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 01:21:49 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=c4bbbf3b3adebd96bef06b4c8eaebe9062ec0d28c09466264df5bd9139167a8e, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:82:0d:a2:d8:76:57:03:3d:68:1b:6c:68:0d: 63:23:70:cf:07:ae:aa:f5:c5:81:c3:24:83:99:46: 07:25:e6:f0:5e:4e:99:00:47:c3:e4:19:13:92:d2: 78:3b:ba:b9:9a:e2:c2:81:27:58:57:2a:13:f9:8e: ea:8f:20:f8:a1:d1:eb:1e:da:ab:6b:39:f8:c8:84: c0:4b:95:40:fc:3b:b0:b6:54:12:91:e9:06:05:dd: 79:e1:8e:9b:d3:15:f6:be:50:dd:23:0f:67:1f:54: 20:e8:80:2c:14:b3:c9:93:f5:0b:ba:0d:f0:c2:de: 1c:c5:95:05:32:ed:9a:01:b6:14:60:35:c4:e2:5f: 24:3b:b6:78:8c:23:12:4f:8c:f6:c3:d4:c2:0c:38: 6a:02:f3:1e:16:85:95:30:5a:74:75:ec:d8:99:3c: df:a3:50:f7:ed:78:7f:09:a3:3e:71:f9:05:f1:4c: 67:6c:bb:71:d9:d1:07:c6:33:0b:ee:00:86:65:db: ef:04:03:bc:c8:5c:3d:4e:87:9d:1a:e4:6d:d8:97: 61:4b:a9:02:b6:17:1c:66:e5:f8:fa:d3:3f:6a:6d: 2a:f8:12:b2:6d:eb:1c:53:4f:44:dc:10:78:a0:b6: 42:ad:16:e5:e4:06:55:79:7a:74:a4:5b:7c:2a:13: 70:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:AA:75:94:20:FE:F5:8A:97:6C:7C:20:7A:8F:8E:8E:E7:2B:DE:E5 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a5bad53f-2e50-471f-b766-45048ae67f42.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3aca::/47 Signature Algorithm: sha256WithRSAEncryption 12:e2:53:b9:0c:5f:77:94:dc:c9:8d:dc:0f:8a:4f:56:aa:37: 61:8a:bb:8a:16:99:65:5c:fb:52:a1:8f:f2:d2:73:63:2e:20: 34:99:79:56:b8:7f:2f:d0:f7:83:4f:8c:80:64:ed:f9:d9:cd: 93:52:54:39:fd:d7:dc:fc:f2:cb:f5:22:4b:c0:cd:81:93:c1: 03:6d:19:fc:3a:a7:e3:84:99:1c:a0:07:cc:4d:49:d3:90:9c: c7:71:ef:24:f3:2f:35:eb:2b:f4:fb:53:1c:2d:18:7e:0c:29: c8:73:7d:9f:b1:c1:98:c1:b4:04:6c:25:11:bc:df:1e:96:c0: ed:52:d5:ee:6f:07:fb:a5:ca:3d:60:26:34:1f:03:aa:2d:66: 45:a4:cf:51:c7:d0:43:80:22:65:85:08:9d:2f:a9:aa:ff:b6: 56:a6:1c:8c:b8:3f:b1:e5:13:09:7f:bc:d9:1c:bf:10:83:9a: 9d:4f:ea:08:27:9e:37:47:4b:55:20:c2:f4:f3:24:5e:36:cd: 48:04:13:09:6c:b1:c8:73:92:ea:21:72:e4:4f:4c:cf:7a:f5: 3e:9c:12:54:35:af:56:98:f7:b3:b8:cd:98:f9:86:3a:7e:81: 6a:28:70:23:6f:64:2e:46:cc:a7:0c:5f:0c:8b:81:3f:b1:4e: 5b:38:28:52 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMZlP2dY3IzUf8gmKvhyFZvxmZLAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDEyMTQ5WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNGJiYmYzYjNhZGViZDk2YmVmMDZiNGM4ZWFlYmU5MDYy ZWMwZDI4YzA5NDY2MjY0ZGY1YmQ5MTM5MTY3YThlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCegg2i2HZXAz1oG2xoDWMjcM8Hrqr1xYHDJIOZRgcl5vBe TpkAR8PkGROS0ng7urma4sKBJ1hXKhP5juqPIPih0ese2qtrOfjIhMBLlUD8O7C2 VBKR6QYF3XnhjpvTFfa+UN0jD2cfVCDogCwUs8mT9Qu6DfDC3hzFlQUy7ZoBthRg NcTiXyQ7tniMIxJPjPbD1MIMOGoC8x4WhZUwWnR17NiZPN+jUPfteH8Joz5x+QXx TGdsu3HZ0QfGMwvuAIZl2+8EA7zIXD1Oh50a5G3Yl2FLqQK2Fxxm5fj60z9qbSr4 ErJt6xxTT0TcEHigtkKtFuXkBlV5enSkW3wqE3DBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcKp1lCD+9YqXbHwgeo+Ojucr3uUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2E1YmFkNTNmLTJlNTAtNDcxZi1iNzY2LTQ1MDQ4YWU2N2Y0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOsowDQYJKoZIhvcNAQELBQADggEBABLiU7kMX3eU3MmN3A+KT1aq N2GKu4oWmWVc+1Khj/LSc2MuIDSZeVa4fy/Q94NPjIBk7fnZzZNSVDn919z88sv1 IkvAzYGTwQNtGfw6p+OEmRygB8xNSdOQnMdx7yTzLzXrK/T7UxwtGH4MKchzfZ+x wZjBtARsJRG83x6WwO1S1e5vB/ulyj1gJjQfA6otZkWkz1HH0EOAImWFCJ0vqar/ tlamHIy4P7HlEwl/vNkcvxCDmp1P6ggnnjdHS1UgwvTzJF42zUgEEwlsschzkuoh cuRPTM969T6cElQ1r1aY97O4zZj5hjp+gWoocCNvZC5GzKcMXwyLgT+xTls4KFI= -----END CERTIFICATE-----Generated at Wed Nov 5 09:05:47 2025 by rpki-client