$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a7671049-11fa-4982-9f1d-836707f792e6.roa File: a7671049-11fa-4982-9f1d-836707f792e6.roa (raw, json) Hash identifier: FN1NZbOgBT+Ds8OPwZSY1stZYcNR37+vt8MYqnUzylc= Subject key identifier: 3A:D5:3E:D9:2C:86:2A:ED:01:C6:44:A6:DD:91:D9:82:C2:66:07:83 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4A201EDB1B2C43E8E617EC155B3C848B31DD7231 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a7671049-11fa-4982-9f1d-836707f792e6.roa Signing time: Fri 31 Oct 2025 07:08:27 +0000 ROA not before: Fri 31 Oct 2025 07:08:27 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3de0::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:20:1e:db:1b:2c:43:e8:e6:17:ec:15:5b:3c:84:8b:31:dd:72:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 07:08:27 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=2104ad51d86d97193d0de62563f869aeb32e2b3c74aa1d8b67e312dbe6c359ea, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:0d:e3:37:9d:bb:06:ad:5b:86:9c:de:54:de: ee:0f:0d:fe:76:2a:5a:3e:ee:9c:e4:7e:37:a8:ae: a7:fe:a2:f7:fd:6d:df:16:41:87:c4:82:80:0a:8b: 89:e3:31:fd:16:16:00:6d:b3:3f:b3:62:cf:20:6c: 7d:e4:fd:87:6a:5b:2e:8c:59:07:eb:ca:05:63:c7: f3:fc:f3:a0:a6:0e:d0:cb:b2:7a:ff:b6:82:c4:0b: d9:12:14:24:81:65:22:8c:3f:53:5e:5d:1f:12:f0: fe:3f:45:ed:00:f7:5d:19:62:55:9e:b2:60:6f:e3: 88:8f:4b:64:8c:3c:39:3c:8c:f5:55:f0:c2:ee:41: da:2c:37:e3:f0:86:61:7b:c9:f1:43:39:d9:6b:74: 9b:3e:ec:cb:f3:c6:fd:c0:db:6f:a9:7a:ef:4a:81: 6a:0c:5f:2d:bc:47:6c:48:dd:1b:3a:af:0a:31:64: 19:f5:10:aa:e9:ae:06:75:31:02:7a:d6:88:34:58: ce:9d:50:2d:5b:b5:8d:77:92:e0:d6:5c:12:a0:b4: c3:83:e0:b2:81:1d:6e:aa:94:7e:db:67:e2:79:4a: e4:e8:1f:d8:5d:f9:a0:ca:3a:ae:14:76:0d:b0:f3: 05:fa:5e:c3:d3:0b:ab:ea:8a:b8:ee:22:70:a9:21: 7f:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:D5:3E:D9:2C:86:2A:ED:01:C6:44:A6:DD:91:D9:82:C2:66:07:83 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a7671049-11fa-4982-9f1d-836707f792e6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3de0::/44 Signature Algorithm: sha256WithRSAEncryption 12:7b:db:a5:37:b6:5d:bf:a6:e8:4c:4f:52:4f:ab:a5:cb:87: 0b:f2:f7:f2:fd:d0:99:be:7b:4f:1b:d3:31:c8:8a:12:4a:c5: a0:ac:53:2e:71:53:a0:49:b9:5c:53:ba:d6:03:a0:1d:71:0d: 58:9c:c4:8c:b2:98:0c:dd:20:16:f9:87:f9:8f:b8:94:d8:7e: d5:9d:1b:4e:ba:b6:05:22:43:6d:76:c0:ef:8c:6a:4c:30:75: b4:de:0c:fc:7c:20:41:2a:36:ea:e6:a3:35:b1:46:37:f5:ae: 2c:ad:75:da:c0:c4:2d:22:6b:d0:fd:0d:36:3d:a7:b9:c5:ca: ea:88:da:c7:ee:0f:6e:df:00:62:0e:6f:40:8d:29:4b:d1:5f: 07:ac:58:70:61:0f:ce:f8:6f:b6:5a:33:f1:18:80:fd:84:66: 17:22:ba:00:77:0c:92:19:f2:e8:0a:b4:56:80:a3:8f:2a:ad: 21:c5:2c:02:3d:76:b6:35:99:59:9b:7a:36:64:31:2e:4e:7d: 89:8b:a7:9f:db:87:cf:d2:07:92:a3:c0:f2:9a:b0:a5:03:6a: 1a:65:2e:33:4d:3a:ec:f1:5e:bc:b6:54:16:2e:1e:a5:98:87: dd:e3:d3:e6:cd:1c:f1:60:f0:bd:59:44:8b:b3:3c:e7:8c:fd: de:54:e7:5a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSiAe2xssQ+jmF+wVWzyEizHdcjEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDcwODI3WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMTA0YWQ1MWQ4NmQ5NzE5M2QwZGU2MjU2M2Y4NjlhZWIz MmUyYjNjNzRhYTFkOGI2N2UzMTJkYmU2YzM1OWVhMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXDeM3nbsGrVuGnN5U3u4PDf52Klo+7pzkfjeorqf+ovf9 bd8WQYfEgoAKi4njMf0WFgBtsz+zYs8gbH3k/YdqWy6MWQfrygVjx/P886CmDtDL snr/toLEC9kSFCSBZSKMP1NeXR8S8P4/Re0A910ZYlWesmBv44iPS2SMPDk8jPVV 8MLuQdosN+PwhmF7yfFDOdlrdJs+7Mvzxv3A22+peu9KgWoMXy28R2xI3Rs6rwox ZBn1EKrprgZ1MQJ61og0WM6dUC1btY13kuDWXBKgtMOD4LKBHW6qlH7bZ+J5SuTo H9hd+aDKOq4Udg2w8wX6XsPTC6vqirjuInCpIX87AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUOtU+2SyGKu0BxkSm3ZHZgsJmB4MwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2E3NjcxMDQ5LTExZmEtNDk4Mi05ZjFkLTgzNjcwN2Y3OTJlNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAJAAPeAwDQYJKoZIhvcNAQELBQADggEBABJ726U3tl2/puhMT1JPq6XL hwvy9/L90Jm+e08b0zHIihJKxaCsUy5xU6BJuVxTutYDoB1xDVicxIyymAzdIBb5 h/mPuJTYftWdG066tgUiQ212wO+MakwwdbTeDPx8IEEqNurmozWxRjf1riytddrA xC0ia9D9DTY9p7nFyuqI2sfuD27fAGIOb0CNKUvRXwesWHBhD874b7ZaM/EYgP2E ZhciugB3DJIZ8ugKtFaAo48qrSHFLAI9drY1mVmbejZkMS5OfYmLp5/bh8/SB5Kj wPKasKUDahplLjNNOuzxXry2VBYuHqWYh93j0+bNHPFg8L1ZRIuzPOeM/d5U51o= -----END CERTIFICATE-----Generated at Wed Nov 5 10:32:21 2025 by rpki-client