$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a8db303a-1248-4fea-b2fa-172937846093.roa File: a8db303a-1248-4fea-b2fa-172937846093.roa (raw, json) Hash identifier: fKHdfd8mxcswimbBQjPdVDLwYX9ikzS2f8AAboFelrA= Subject key identifier: E9:60:EC:DD:73:E0:3A:F4:DC:3F:EF:DA:BF:7A:4E:18:24:73:08:21 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3FADBB7FBA5B269CC81F66A9BAA8DE47AAFD0F17 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a8db303a-1248-4fea-b2fa-172937846093.roa Signing time: Fri 31 Oct 2025 05:23:57 +0000 ROA not before: Fri 31 Oct 2025 05:23:57 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1ad0::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:ad:bb:7f:ba:5b:26:9c:c8:1f:66:a9:ba:a8:de:47:aa:fd:0f:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 05:23:57 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=a882bbd26b77407ea7e3098a450e1b237e6769059dfbe16fc301426923d9ff97, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:3f:25:a3:a9:f4:25:ab:08:e4:ea:65:90:b7: b4:b7:d8:25:09:95:78:97:74:ab:ee:1b:b0:4b:40: 83:c2:1c:9d:b9:fc:18:af:2f:1b:13:fa:11:de:d9: 60:7e:da:09:3c:c6:39:1a:e9:15:41:9d:a9:fc:59: 36:d9:e5:47:e2:7e:b3:cc:80:4e:7e:15:31:4d:f5: b4:4a:e9:39:05:d6:17:fc:eb:0f:f4:24:63:70:44: fd:15:78:49:fc:18:55:e6:86:58:27:c8:26:8f:c8: 36:0c:4b:2a:01:2e:76:26:7d:cc:4a:d7:4c:39:fd: f4:cb:fd:93:61:86:b9:3e:69:45:c1:5b:4b:a6:ce: d8:5a:88:a3:9c:b9:8d:8e:80:1e:11:f0:7b:cc:39: 9c:40:b4:f2:01:92:17:31:83:f3:7c:6a:91:d5:1b: 47:a0:d0:cd:d9:5b:76:2b:58:33:9f:53:0f:d9:b6: 2f:7e:4c:0e:24:87:b3:25:ea:ab:f2:25:e7:17:19: dc:7a:5b:e2:ce:28:4c:4a:74:ee:31:0f:43:50:58: 96:c8:1c:4c:52:33:c4:aa:74:d5:ad:b9:44:6b:b4: 59:ff:c3:65:30:b4:d5:2c:b5:e9:d4:55:6b:8c:e0: 08:76:e0:53:65:f7:b0:87:5a:f0:78:14:54:75:de: 07:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:60:EC:DD:73:E0:3A:F4:DC:3F:EF:DA:BF:7A:4E:18:24:73:08:21 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a8db303a-1248-4fea-b2fa-172937846093.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1ad0::/45 Signature Algorithm: sha256WithRSAEncryption 5e:19:39:46:1c:e3:47:34:f5:be:91:a7:32:c0:bb:84:4a:ff: 42:1c:6c:37:28:22:ef:c7:9d:fc:dd:5e:6a:88:90:ef:72:eb: 85:ef:9b:59:d4:7e:57:0e:fd:b2:ab:b3:e1:7a:1d:26:c9:e9: 29:f4:4c:f6:15:45:10:7c:aa:5d:b0:ad:1b:05:1b:54:73:3f: d8:e1:df:40:c0:e3:67:d1:8d:0d:a8:71:c7:00:46:75:c0:4f: 75:89:bf:86:3c:78:bc:2f:7c:6a:83:63:31:ca:f9:57:76:3d: 1d:51:3b:f3:bd:f8:03:41:2f:05:16:2c:8b:64:d7:1c:95:f8: 46:10:f8:ce:e0:ac:d7:30:a8:6f:77:2a:b7:c8:d2:a5:3f:0d: 6a:b0:62:1a:e9:9d:6e:5f:4e:7d:a5:a1:36:bb:70:d4:b1:ce: 97:18:24:68:51:25:2d:f6:90:f7:a7:63:4c:a6:5d:4b:d3:57: df:e8:75:50:bf:58:57:be:16:93:6a:49:49:83:38:70:43:4a: 58:9a:7b:c9:63:fe:66:77:2c:b9:3f:64:db:e6:fb:bb:c4:3f: 00:9f:8a:79:f2:90:f9:7f:67:30:e7:db:80:6b:df:94:1f:6e: 9f:3c:fd:1c:77:5b:06:77:9c:b4:ef:78:9e:70:1b:59:87:a8: 65:42:44:ec -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUP627f7pbJpzIH2apuqjeR6r9DxcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDUyMzU3WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhODgyYmJkMjZiNzc0MDdlYTdlMzA5OGE0NTBlMWIyMzdl Njc2OTA1OWRmYmUxNmZjMzAxNDI2OTIzZDlmZjk3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOPyWjqfQlqwjk6mWQt7S32CUJlXiXdKvuG7BLQIPCHJ25 /BivLxsT+hHe2WB+2gk8xjka6RVBnan8WTbZ5UfifrPMgE5+FTFN9bRK6TkF1hf8 6w/0JGNwRP0VeEn8GFXmhlgnyCaPyDYMSyoBLnYmfcxK10w5/fTL/ZNhhrk+aUXB W0umzthaiKOcuY2OgB4R8HvMOZxAtPIBkhcxg/N8apHVG0eg0M3ZW3YrWDOfUw/Z ti9+TA4kh7Ml6qvyJecXGdx6W+LOKExKdO4xD0NQWJbIHExSM8SqdNWtuURrtFn/ w2UwtNUstenUVWuM4Ah24FNl97CHWvB4FFR13geFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU6WDs3XPgOvTcP+/av3pOGCRzCCEwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2E4ZGIzMDNhLTEyNDgtNGZlYS1iMmZhLTE3MjkzNzg0NjA5My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAGtAwDQYJKoZIhvcNAQELBQADggEBAF4ZOUYc40c09b6RpzLAu4RK /0IcbDcoIu/HnfzdXmqIkO9y64Xvm1nUflcO/bKrs+F6HSbJ6Sn0TPYVRRB8ql2w rRsFG1RzP9jh30DA42fRjQ2occcARnXAT3WJv4Y8eLwvfGqDYzHK+Vd2PR1RO/O9 +ANBLwUWLItk1xyV+EYQ+M7grNcwqG93KrfI0qU/DWqwYhrpnW5fTn2loTa7cNSx zpcYJGhRJS32kPenY0ymXUvTV9/odVC/WFe+FpNqSUmDOHBDSliae8lj/mZ3LLk/ ZNvm+7vEPwCfinnykPl/ZzDn24Br35Qfbp88/Rx3WwZ3nLTveJ5wG1mHqGVCROw= -----END CERTIFICATE-----Generated at Wed Nov 5 10:32:20 2025 by rpki-client