$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a65d68a4-d0f8-4258-b119-66874a1e9111.roa File: a65d68a4-d0f8-4258-b119-66874a1e9111.roa (raw, json) Hash identifier: DApoIc+pYPTyVFbtlyzddnEcB2a56rUWS2w0WqWSOjY= Subject key identifier: CA:47:A0:F1:85:30:BF:C5:20:34:68:0A:6C:DD:00:9A:C4:14:2A:4E Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 474B62520DE2F6532660655C47B16AD2A0E3DAFA Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a65d68a4-d0f8-4258-b119-66874a1e9111.roa Signing time: Thu 30 Oct 2025 20:40:10 +0000 ROA not before: Thu 30 Oct 2025 20:40:10 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:12ac::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:4b:62:52:0d:e2:f6:53:26:60:65:5c:47:b1:6a:d2:a0:e3:da:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 20:40:10 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=a47545eb71363aa2c89f3ac47f1ef3444bfa2b5467df84b7bc1c47986e1f9f5d, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:10:2e:ee:6e:b0:fc:6f:fe:34:af:cb:a1:5f: db:b7:38:2c:c0:7d:54:41:b3:ef:b8:aa:e5:ca:74: 94:4a:87:83:fb:3f:dd:34:1b:7e:a7:56:67:43:7a: f1:a9:f9:a9:d9:df:20:21:f2:e1:34:ab:df:03:a3: 5d:77:7f:58:68:e2:e6:bd:28:b1:6d:80:03:f1:93: 96:20:b2:f3:1c:57:4a:60:38:5e:7a:ae:4a:2d:e1: a0:84:93:ee:61:cc:f6:80:5d:89:67:f6:67:6d:49: 54:c1:74:e6:40:c0:ed:7e:86:20:d9:6a:02:70:6c: 9f:07:be:ff:e6:fe:6a:65:84:74:01:cd:73:01:96: 97:f6:b8:46:04:b6:b1:46:8f:d7:40:33:b4:46:ad: f5:61:86:cf:59:0c:79:d5:60:d4:90:46:87:5a:3d: ef:dd:3c:c7:dd:f3:6f:9f:e1:31:da:2d:ac:3a:49: a3:d4:45:aa:4a:b6:10:02:3c:0c:b1:0d:fa:d4:87: 9f:76:cf:4d:19:9e:33:ad:1f:df:5b:b9:b4:ed:96: 2c:bc:80:6a:2b:4d:e6:f7:4e:39:fb:0d:77:27:65: 73:12:f8:10:3f:49:cb:66:9e:e9:ac:8b:be:dd:60: 9a:79:5d:b8:f4:b6:bc:3d:11:9a:ae:b0:70:ef:a1: 31:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:47:A0:F1:85:30:BF:C5:20:34:68:0A:6C:DD:00:9A:C4:14:2A:4E X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a65d68a4-d0f8-4258-b119-66874a1e9111.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:12ac::/47 Signature Algorithm: sha256WithRSAEncryption 1a:25:23:02:a0:47:8d:22:e6:79:c3:5c:01:ed:b7:2b:9f:58: d8:86:8e:ab:f1:c6:fe:56:f0:19:7d:f1:6b:16:1c:9e:3b:13: 47:9b:1d:5a:24:07:d2:8d:4d:18:09:77:54:5d:af:5e:ad:13: c6:25:99:1e:64:3d:36:5c:98:3e:77:e6:5d:91:97:b3:92:a6: 8e:b8:d9:cc:75:4b:b3:75:df:96:66:41:27:13:aa:48:81:41: c5:1b:a1:ec:91:ba:c0:0d:e6:a4:7c:0b:bc:2d:43:d9:34:e1: f8:7e:6b:a0:df:9c:80:1d:c8:9a:48:de:30:3c:5f:1b:18:81: 52:da:ce:a9:41:af:85:45:60:d3:63:25:53:e9:7e:4b:cf:59: 04:76:4e:f0:d5:75:49:38:ff:51:e1:b7:89:ba:37:ae:d4:6d: 0d:5e:da:63:08:6f:c7:96:3d:cc:70:0a:b3:30:a5:8d:b2:b9: fa:9f:7a:80:98:fa:42:32:d8:96:e6:58:38:e7:38:98:dc:8e: db:a0:88:df:a8:31:ec:31:7c:75:eb:8d:97:3f:4f:e8:cc:a5: 59:9e:66:d3:2a:64:07:c0:5b:17:0f:8e:ca:db:1b:d4:f1:b4: 39:de:3a:d4:d0:a2:6b:49:c6:f1:6a:1b:44:e8:4b:0f:18:38: 47:d0:be:52 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUR0tiUg3i9lMmYGVcR7Fq0qDj2vowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjA0MDEwWhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNDc1NDVlYjcxMzYzYWEyYzg5ZjNhYzQ3ZjFlZjM0NDRi ZmEyYjU0NjdkZjg0YjdiYzFjNDc5ODZlMWY5ZjVkMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9EC7ubrD8b/40r8uhX9u3OCzAfVRBs++4quXKdJRKh4P7 P900G36nVmdDevGp+anZ3yAh8uE0q98Do113f1ho4ua9KLFtgAPxk5YgsvMcV0pg OF56rkot4aCEk+5hzPaAXYln9mdtSVTBdOZAwO1+hiDZagJwbJ8Hvv/m/mplhHQB zXMBlpf2uEYEtrFGj9dAM7RGrfVhhs9ZDHnVYNSQRodaPe/dPMfd82+f4THaLaw6 SaPURapKthACPAyxDfrUh592z00ZnjOtH99bubTtliy8gGorTeb3Tjn7DXcnZXMS +BA/Sctmnumsi77dYJp5Xbj0trw9EZqusHDvoTF7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUykeg8YUwv8UgNGgKbN0AmsQUKk4wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2E2NWQ2OGE0LWQwZjgtNDI1OC1iMTE5LTY2ODc0YTFlOTExMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAEqwwDQYJKoZIhvcNAQELBQADggEBABolIwKgR40i5nnDXAHttyuf WNiGjqvxxv5W8Bl98WsWHJ47E0ebHVokB9KNTRgJd1Rdr16tE8YlmR5kPTZcmD53 5l2Rl7OSpo642cx1S7N135ZmQScTqkiBQcUboeyRusAN5qR8C7wtQ9k04fh+a6Df nIAdyJpI3jA8XxsYgVLazqlBr4VFYNNjJVPpfkvPWQR2TvDVdUk4/1Hht4m6N67U bQ1e2mMIb8eWPcxwCrMwpY2yufqfeoCY+kIy2JbmWDjnOJjcjtugiN+oMewxfHXr jZc/T+jMpVmeZtMqZAfAWxcPjsrbG9TxtDneOtTQomtJxvFqG0ToSw8YOEfQvlI= -----END CERTIFICATE-----Generated at Wed Nov 5 09:27:51 2025 by rpki-client