$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a5e1c5ca-4325-4918-be6c-5457ff4a903b.roa File: a5e1c5ca-4325-4918-be6c-5457ff4a903b.roa (raw, json) Hash identifier: Y9bWEJrHU71/UUBQITd2Xnu/uUFFSWREwT5eGoSpicg= Subject key identifier: 99:2A:E4:3E:CA:A4:6D:01:89:0D:14:88:5F:44:14:0F:84:C1:33:83 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2AFB6EA24E79C8A74272270F0973DA58BF5B87FD Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a5e1c5ca-4325-4918-be6c-5457ff4a903b.roa Signing time: Fri 31 Oct 2025 05:12:13 +0000 ROA not before: Fri 31 Oct 2025 05:12:13 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:15d8::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:fb:6e:a2:4e:79:c8:a7:42:72:27:0f:09:73:da:58:bf:5b:87:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 05:12:13 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=db7cd7ef407f011e5b274005548e8478c321089619295543a5c620cf59436fa3, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f1:a2:33:27:60:b2:b3:5b:41:62:55:97:c3: c0:2d:e9:dd:72:d6:63:1e:2b:51:60:cc:50:5b:ad: 69:50:7b:c1:59:9f:22:fa:ac:a8:06:a3:ae:34:35: fb:ed:86:71:83:99:f1:57:5f:8e:d3:29:62:ef:07: 76:64:43:31:fa:6c:0c:d0:4b:84:19:b2:77:de:62: ea:bd:52:9e:e7:55:d9:d1:36:d2:0a:da:9f:e4:9d: 6d:c0:d7:bf:10:f6:aa:35:8d:33:8f:1f:48:3e:bd: 9f:8b:4f:1f:0c:22:81:8e:2a:de:1c:fb:48:e6:81: 8e:93:7d:a3:f1:38:1e:1b:f5:13:1b:ef:0b:1e:5e: ed:4b:37:46:54:23:19:2c:29:b0:63:c7:fb:90:1d: bc:1b:64:75:28:e1:2b:75:d5:70:2f:87:65:0e:4c: bb:4e:bd:5e:e9:d1:a3:fb:85:eb:ba:79:58:a6:f0: be:10:40:7f:ce:d6:ee:81:ba:01:6c:e2:01:00:f5: 29:0a:29:51:d0:67:7d:61:84:12:79:45:11:dc:d1: 87:dc:34:16:29:dd:72:20:5b:77:12:31:4f:a5:35: 59:15:8b:ea:05:c2:1d:13:17:59:07:46:71:da:6c: a7:9f:60:b7:33:64:5f:9f:de:f6:81:ec:24:e8:6a: 92:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:2A:E4:3E:CA:A4:6D:01:89:0D:14:88:5F:44:14:0F:84:C1:33:83 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a5e1c5ca-4325-4918-be6c-5457ff4a903b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:15d8::/45 Signature Algorithm: sha256WithRSAEncryption 7b:85:fc:86:8f:98:1c:9f:8e:ef:1b:79:e9:07:3c:b9:4d:74: 83:84:5f:59:61:ae:ec:6f:37:57:ec:12:1f:be:f2:9f:e7:cf: b2:3a:58:87:04:c0:f4:63:09:81:cf:ca:71:c3:29:52:be:d8: da:93:48:bc:6e:d9:71:f4:b9:40:cb:49:92:33:c9:61:d9:ee: 6d:d5:08:e0:9c:4a:55:eb:fb:af:13:88:f6:ae:d6:5e:de:70: 04:f3:8f:b2:39:a7:1a:b1:a5:d2:53:2a:de:a6:29:c4:99:5f: 4d:69:f7:7e:c5:1e:d5:3a:75:87:1d:ed:34:70:ae:29:74:76: 34:ca:20:78:d4:e5:49:02:09:f3:47:cd:1b:55:d0:31:aa:2c: 79:51:05:24:33:42:13:2a:dd:b2:99:64:e5:e9:9e:8e:b0:6f: b3:10:01:b2:2c:b6:e8:5a:c4:b6:cb:63:34:9f:f7:7f:f0:5a: ec:fd:a4:b4:bc:d9:4d:89:7d:ea:91:bc:a7:a5:7d:14:ad:fa: 27:7e:cf:85:11:4f:0a:7b:0a:d2:43:a5:b6:e0:5d:1e:b3:52: 47:fd:76:88:1e:18:15:e8:48:b3:ec:3b:b0:d9:03:83:6a:89: b4:c5:d3:8f:e2:c4:75:04:ca:78:f0:59:f4:e6:49:6b:33:94: 38:51:04:5a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKvtuok55yKdCcicPCXPaWL9bh/0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDUxMjEzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYjdjZDdlZjQwN2YwMTFlNWIyNzQwMDU1NDhlODQ3OGMz MjEwODk2MTkyOTU1NDNhNWM2MjBjZjU5NDM2ZmEzMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC18aIzJ2Cys1tBYlWXw8At6d1y1mMeK1FgzFBbrWlQe8FZ nyL6rKgGo640NfvthnGDmfFXX47TKWLvB3ZkQzH6bAzQS4QZsnfeYuq9Up7nVdnR NtIK2p/knW3A178Q9qo1jTOPH0g+vZ+LTx8MIoGOKt4c+0jmgY6TfaPxOB4b9RMb 7wseXu1LN0ZUIxksKbBjx/uQHbwbZHUo4St11XAvh2UOTLtOvV7p0aP7heu6eVim 8L4QQH/O1u6BugFs4gEA9SkKKVHQZ31hhBJ5RRHc0YfcNBYp3XIgW3cSMU+lNVkV i+oFwh0TF1kHRnHabKefYLczZF+f3vaB7CToapJnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUmSrkPsqkbQGJDRSIX0QUD4TBM4MwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2E1ZTFjNWNhLTQzMjUtNDkxOC1iZTZjLTU0NTdmZjRhOTAzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAFdgwDQYJKoZIhvcNAQELBQADggEBAHuF/IaPmByfju8beekHPLlN dIOEX1lhruxvN1fsEh++8p/nz7I6WIcEwPRjCYHPynHDKVK+2NqTSLxu2XH0uUDL SZIzyWHZ7m3VCOCcSlXr+68TiPau1l7ecATzj7I5pxqxpdJTKt6mKcSZX01p937F HtU6dYcd7TRwril0djTKIHjU5UkCCfNHzRtV0DGqLHlRBSQzQhMq3bKZZOXpno6w b7MQAbIstuhaxLbLYzSf93/wWuz9pLS82U2JfeqRvKelfRSt+id+z4URTwp7CtJD pbbgXR6zUkf9dogeGBXoSLPsO7DZA4NqibTF04/ixHUEynjwWfTmSWszlDhRBFo= -----END CERTIFICATE-----Generated at Wed Nov 5 13:59:02 2025 by rpki-client