$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a8e303fd-0aae-4f4c-9db4-85776cb28fd2.roa File: a8e303fd-0aae-4f4c-9db4-85776cb28fd2.roa (raw, json) Hash identifier: OeBaITwSmtp40Yn9Z2MVx73Zvh6hgVaWyJLFEtluzCI= Subject key identifier: AE:FC:A6:02:6E:23:16:A6:FE:B6:A8:1F:67:9B:D9:B9:21:29:F1:0C Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 315D7C2E4C2701C56A8D6C2D132F2BFFC5E4BF1A Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a8e303fd-0aae-4f4c-9db4-85776cb28fd2.roa Signing time: Fri 31 Oct 2025 06:38:53 +0000 ROA not before: Fri 31 Oct 2025 06:38:53 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1b90::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:5d:7c:2e:4c:27:01:c5:6a:8d:6c:2d:13:2f:2b:ff:c5:e4:bf:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 06:38:53 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=dc4c0b476b86136f77ee618e925d083338dd2be14c7c15092314da7051947977, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:d1:2a:cf:4d:48:d6:db:ed:2a:4f:89:0b:34: 0d:9e:ac:62:f3:68:36:ae:ab:2e:65:b0:f6:98:5b: fc:c7:81:ae:f0:dc:e1:26:83:36:5c:b7:84:7f:5a: bc:ea:65:17:d8:db:0c:a2:9a:db:e5:b3:33:23:13: 7f:db:d2:19:06:e0:d5:c1:5a:ee:c3:36:a2:27:cb: 9d:68:4b:d5:89:c6:9e:0b:a3:4b:39:ed:b0:e6:6c: d2:9c:47:56:bd:96:80:5d:8b:e6:66:7d:fe:09:4d: b5:9b:1d:a5:d9:64:e7:21:b1:f5:a8:23:b4:7d:bb: 56:2c:8b:cc:43:40:f5:f8:01:4d:b9:6a:60:55:11: 01:38:39:26:6d:e9:72:38:18:77:58:9b:2d:7f:03: 36:d8:3f:79:27:03:48:d5:b2:f6:da:92:d0:88:59: 7c:ee:44:10:5d:3f:af:82:d9:46:f1:84:4b:cf:4f: ce:f1:ca:29:ad:5b:53:0c:af:8a:22:d3:22:1d:3a: ff:aa:48:5d:06:51:4e:eb:0b:49:73:b6:cd:2a:63: 34:1d:35:7b:d7:b9:60:2f:72:36:4e:4c:26:9d:bf: 0f:8f:ab:0b:1d:43:25:8f:aa:7e:14:12:04:af:0f: f9:4a:db:6f:7c:59:b4:38:f9:68:c8:d2:43:7d:59: a9:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:FC:A6:02:6E:23:16:A6:FE:B6:A8:1F:67:9B:D9:B9:21:29:F1:0C X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a8e303fd-0aae-4f4c-9db4-85776cb28fd2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1b90::/44 Signature Algorithm: sha256WithRSAEncryption 3e:cb:db:ac:eb:63:b8:42:81:80:13:ed:6b:66:14:30:b7:f7: 19:83:23:b2:0b:dc:6c:d3:90:10:44:e9:94:85:42:25:82:58: 99:01:ef:8a:13:2f:ff:98:34:ae:2a:40:25:26:93:17:82:12: 53:5c:39:64:2e:60:ef:83:d5:5b:70:18:33:2e:2d:bb:92:4f: 32:be:6f:64:64:6f:e3:09:dc:cb:53:6f:28:63:8a:a2:51:2a: fb:9c:ea:99:ab:4c:71:c6:01:92:f2:a3:c9:2a:8c:2d:ff:ba: 9b:11:a6:2b:73:7d:81:ef:07:16:61:e4:99:ff:26:65:16:90: a0:4f:80:10:bf:ae:a8:86:b2:f7:d2:79:87:95:05:62:ce:37: 7e:99:e9:dd:0d:d0:55:75:89:56:73:b9:9d:f6:95:07:d4:16: bd:92:81:ea:40:90:cb:10:e4:16:8c:db:11:3b:85:50:7a:0a: d1:8b:db:55:3f:e1:a1:42:33:9f:81:74:d7:b5:88:9f:73:30: 77:36:c6:92:9e:33:db:77:35:25:2a:5d:22:39:28:55:4d:9b: ca:c9:0f:37:fe:e6:c6:b2:44:b3:a3:23:f2:ad:fa:5d:90:52: 90:23:d3:24:29:0c:20:24:61:c0:34:85:b0:a4:8f:e5:e5:9f: fb:3c:4b:49 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMV18LkwnAcVqjWwtEy8r/8XkvxowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDYzODUzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYzRjMGI0NzZiODYxMzZmNzdlZTYxOGU5MjVkMDgzMzM4 ZGQyYmUxNGM3YzE1MDkyMzE0ZGE3MDUxOTQ3OTc3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDX0SrPTUjW2+0qT4kLNA2erGLzaDauqy5lsPaYW/zHga7w 3OEmgzZct4R/WrzqZRfY2wyimtvlszMjE3/b0hkG4NXBWu7DNqIny51oS9WJxp4L o0s57bDmbNKcR1a9loBdi+Zmff4JTbWbHaXZZOchsfWoI7R9u1Ysi8xDQPX4AU25 amBVEQE4OSZt6XI4GHdYmy1/AzbYP3knA0jVsvbaktCIWXzuRBBdP6+C2UbxhEvP T87xyimtW1MMr4oi0yIdOv+qSF0GUU7rC0lzts0qYzQdNXvXuWAvcjZOTCadvw+P qwsdQyWPqn4UEgSvD/lK2298WbQ4+WjI0kN9WakFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUrvymAm4jFqb+tqgfZ5vZuSEp8QwwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2E4ZTMwM2ZkLTBhYWUtNGY0Yy05ZGI0LTg1Nzc2Y2IyOGZkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAJAAG5AwDQYJKoZIhvcNAQELBQADggEBAD7L26zrY7hCgYAT7WtmFDC3 9xmDI7IL3GzTkBBE6ZSFQiWCWJkB74oTL/+YNK4qQCUmkxeCElNcOWQuYO+D1Vtw GDMuLbuSTzK+b2Rkb+MJ3MtTbyhjiqJRKvuc6pmrTHHGAZLyo8kqjC3/upsRpitz fYHvBxZh5Jn/JmUWkKBPgBC/rqiGsvfSeYeVBWLON36Z6d0N0FV1iVZzuZ32lQfU Fr2SgepAkMsQ5BaM2xE7hVB6CtGL21U/4aFCM5+BdNe1iJ9zMHc2xpKeM9t3NSUq XSI5KFVNm8rJDzf+5sayRLOjI/Kt+l2QUpAj0yQpDCAkYcA0hbCkj+Xln/s8S0k= -----END CERTIFICATE-----Generated at Wed Nov 5 07:46:15 2025 by rpki-client