$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a7e8f658-938b-423b-827f-9781855cfd20.roa File: a7e8f658-938b-423b-827f-9781855cfd20.roa (raw, json) Hash identifier: jMeUNhpYJT2UxlKb1tBgf3ZGEnJeQpHE+mrD2w42VD8= Subject key identifier: 42:73:1E:84:29:E6:05:9C:B8:01:81:30:0C:18:8A:06:CF:C9:FB:83 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 07A8854422969938814C139C572D41C591BA0111 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a7e8f658-938b-423b-827f-9781855cfd20.roa Signing time: Thu 30 Oct 2025 21:13:52 +0000 ROA not before: Thu 30 Oct 2025 21:13:52 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:15f2::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:a8:85:44:22:96:99:38:81:4c:13:9c:57:2d:41:c5:91:ba:01:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 21:13:52 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=748e956cb06c241fb7c55fda405ded911721e11d7e94cf73888922d280fe2abb, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e8:35:0d:b8:b1:2b:c1:0b:3f:55:54:75:84: 47:8a:5a:bc:be:35:c8:6b:ce:85:8f:44:72:9b:bc: 23:6d:03:11:f3:db:0c:c9:55:a0:f5:5c:a5:42:1c: 41:01:94:1d:20:4a:82:2f:1b:15:a4:29:7d:24:d0: ba:e3:dc:7a:28:4f:ac:18:05:f7:ba:67:70:8d:be: db:71:f5:3f:23:d8:9c:90:97:d1:9d:88:9e:0c:04: 08:ab:8c:38:94:40:57:a4:e7:af:db:22:dd:fd:4b: 92:d4:61:35:b0:41:7c:df:23:a0:39:f8:f5:f3:ef: 06:b2:dd:a4:48:e9:9f:90:66:21:b7:9c:31:52:14: 7e:ba:fd:ad:27:04:fb:80:9c:7e:74:2c:ac:3a:04: c9:b5:cd:c3:0b:95:81:6a:06:49:14:cf:77:ac:60: de:78:f7:3a:ba:dc:e1:09:01:ce:3f:8c:4e:52:1e: bb:39:05:a6:2a:dd:9e:39:76:2c:d8:db:ab:a2:2d: 81:59:79:73:b1:f9:b5:23:b3:6c:65:cc:63:d9:ed: 1e:9e:37:98:25:bf:c2:e2:d2:56:9d:44:9a:34:ec: 9a:3b:5d:4b:d8:2e:9e:9f:f0:7c:a7:26:0c:9c:27: 35:92:f4:b8:73:57:c3:02:82:25:0d:e2:46:65:10: ce:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:73:1E:84:29:E6:05:9C:B8:01:81:30:0C:18:8A:06:CF:C9:FB:83 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a7e8f658-938b-423b-827f-9781855cfd20.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:15f2::/47 Signature Algorithm: sha256WithRSAEncryption 27:6f:b7:b5:1a:d9:24:0d:0d:b1:43:47:ab:ca:b9:c9:76:b5: 3a:7e:1f:3d:84:4f:d5:db:a3:54:3a:62:ce:2b:f3:f7:eb:f8: 5e:5f:3f:9d:80:ed:8f:50:0d:4c:f4:7b:1d:70:f2:f6:b3:26: c6:4b:c3:a1:e4:2a:3e:9f:4b:ab:5c:ea:95:75:7d:a7:2c:3d: 9c:4a:6a:10:09:eb:22:a0:d4:a8:f9:b0:41:51:61:42:53:4d: d8:11:03:3c:92:dc:3e:11:02:88:02:cf:13:0f:3f:3c:95:4b: af:af:07:4c:48:04:57:f3:43:5f:7e:d2:fa:19:c2:9a:32:09: 1b:72:a2:13:a2:13:54:c7:5c:0b:a9:97:21:e6:54:36:11:bc: b1:89:92:2e:38:1d:a5:9a:52:03:a7:06:10:da:81:dc:21:01: 00:e5:eb:ea:32:af:5c:1a:85:2e:f8:46:fa:89:ab:72:fe:a9: ec:b1:d0:95:53:21:fa:69:b6:e4:60:11:87:e7:1e:df:40:f9: e6:fd:04:79:64:89:d7:18:f2:17:0e:5a:3b:d2:4b:f8:57:95: a8:d4:65:ce:c5:a1:5a:29:4e:56:b8:06:d8:e2:c5:78:40:b0: 8f:ea:d6:fc:e6:9f:bc:39:50:48:b7:ba:1b:7b:90:e8:06:ff: 37:36:77:b0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUB6iFRCKWmTiBTBOcVy1BxZG6AREwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjExMzUyWhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NDhlOTU2Y2IwNmMyNDFmYjdjNTVmZGE0MDVkZWQ5MTE3 MjFlMTFkN2U5NGNmNzM4ODg5MjJkMjgwZmUyYWJiMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC56DUNuLErwQs/VVR1hEeKWry+NchrzoWPRHKbvCNtAxHz 2wzJVaD1XKVCHEEBlB0gSoIvGxWkKX0k0Lrj3HooT6wYBfe6Z3CNvttx9T8j2JyQ l9GdiJ4MBAirjDiUQFek56/bIt39S5LUYTWwQXzfI6A5+PXz7way3aRI6Z+QZiG3 nDFSFH66/a0nBPuAnH50LKw6BMm1zcMLlYFqBkkUz3esYN549zq63OEJAc4/jE5S Hrs5BaYq3Z45dizY26uiLYFZeXOx+bUjs2xlzGPZ7R6eN5glv8Li0ladRJo07Jo7 XUvYLp6f8HynJgycJzWS9LhzV8MCgiUN4kZlEM4fAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQnMehCnmBZy4AYEwDBiKBs/J+4MwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2E3ZThmNjU4LTkzOGItNDIzYi04MjdmLTk3ODE4NTVjZmQyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAFfIwDQYJKoZIhvcNAQELBQADggEBACdvt7Ua2SQNDbFDR6vKucl2 tTp+Hz2ET9Xbo1Q6Ys4r8/fr+F5fP52A7Y9QDUz0ex1w8vazJsZLw6HkKj6fS6tc 6pV1facsPZxKahAJ6yKg1Kj5sEFRYUJTTdgRAzyS3D4RAogCzxMPPzyVS6+vB0xI BFfzQ19+0voZwpoyCRtyohOiE1THXAuplyHmVDYRvLGJki44HaWaUgOnBhDagdwh AQDl6+oyr1wahS74RvqJq3L+qeyx0JVTIfpptuRgEYfnHt9A+eb9BHlkidcY8hcO WjvSS/hXlajUZc7FoVopTla4BtjixXhAsI/q1vzmn7w5UEi3uht7kOgG/zc2d7A= -----END CERTIFICATE-----Generated at Wed Nov 5 10:43:26 2025 by rpki-client