$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a934681f-5ebe-498a-8397-21db4f95ed1f.roa File: a934681f-5ebe-498a-8397-21db4f95ed1f.roa (raw, json) Hash identifier: pWNslq33HnkTPbV07dMNau9/opAPbd6HAJyFpVxD3VU= Subject key identifier: F0:A4:0D:15:5D:83:2A:2E:1C:66:68:46:1B:F4:05:DF:DF:FF:05:95 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 24DD99561DD771AD3F8DEFAF010AA62E5ACA7DFD Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a934681f-5ebe-498a-8397-21db4f95ed1f.roa Signing time: Fri 31 Oct 2025 05:25:26 +0000 ROA not before: Fri 31 Oct 2025 05:25:26 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1b60::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:dd:99:56:1d:d7:71:ad:3f:8d:ef:af:01:0a:a6:2e:5a:ca:7d:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 05:25:26 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=ad8f996711d659e8265d64326ece2e45bcee839d76dc128c11883b02bd1c2c25, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:44:1d:db:b1:7b:74:8a:46:d2:b1:31:7b:20: 84:89:4a:97:24:43:a6:ac:db:5d:d7:00:86:9d:4a: 31:28:35:fb:41:71:ed:68:3b:b4:49:95:a6:1b:4c: c8:91:63:b1:55:ad:f8:9b:12:bd:e4:11:40:16:e5: 8b:1b:b6:ca:87:22:f9:b4:81:27:69:36:44:55:59: f9:25:b3:b0:b5:d6:04:10:af:53:fd:e7:25:73:e0: 47:94:46:73:e4:0c:bf:13:bc:7d:43:bc:61:8e:9a: 94:16:8f:c3:8d:e2:44:fc:0e:69:d7:f3:6d:24:e8: 86:4c:35:6f:50:db:34:7b:32:d6:e3:96:42:32:b4: 88:95:ae:8a:79:93:10:1a:f9:d0:e9:fb:51:8b:00: 14:a6:a1:b6:ea:ff:ae:0b:fb:60:0c:be:77:1b:a5: 78:f8:04:d5:f6:cb:81:dc:f3:f6:b3:13:9d:d4:15: 74:6a:3d:c3:04:1b:0a:2b:2b:83:72:13:ac:77:7b: 21:12:b6:1d:02:9b:2b:0b:1b:82:27:e1:ac:96:a1: 7f:f0:68:01:12:74:e0:15:dd:07:f4:2f:a8:ef:40: 90:a3:84:a3:39:f7:b6:f9:f0:5a:6b:40:01:bc:70: d6:ce:d1:82:e2:4c:b6:c8:50:38:0f:41:22:1f:8f: ce:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:A4:0D:15:5D:83:2A:2E:1C:66:68:46:1B:F4:05:DF:DF:FF:05:95 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a934681f-5ebe-498a-8397-21db4f95ed1f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1b60::/45 Signature Algorithm: sha256WithRSAEncryption 98:3f:30:38:92:c0:ab:2a:5e:d6:72:78:ab:b3:8e:84:fe:35: ec:cc:95:4b:6f:c4:e1:28:a7:14:f7:d7:a1:71:15:56:09:c5: 06:7d:c3:86:3e:1d:3a:b8:2c:1f:92:c1:a1:d2:d8:fb:62:92: 61:95:ea:8a:5d:04:36:7f:84:9a:24:af:bd:ad:fa:4e:76:f9: 32:dd:74:9a:84:34:25:a1:20:d4:ee:46:71:4a:e2:29:2f:9d: f8:07:6c:00:3a:0e:18:0c:0f:64:04:bb:cd:0c:b9:75:12:0e: 91:48:f7:13:d5:eb:50:fe:c6:9b:51:04:0f:87:fe:32:dc:1b: 4f:c9:c5:d1:8f:af:0a:c6:88:16:83:cf:dd:0c:50:51:b0:b7: 1b:24:fd:2a:7a:b7:af:0f:14:c3:19:4f:4b:9d:c6:3a:4c:04: 9b:ac:ba:96:97:3e:0d:04:66:92:84:cd:88:8b:70:db:c3:3c: 8b:bc:21:63:86:f8:17:40:9a:7c:fb:5a:4a:e0:b9:ae:c4:ae: 25:cc:17:e7:5c:b9:16:d1:07:1c:19:8f:07:75:d7:33:4f:85: 7a:24:05:9a:7d:1a:d1:6a:56:b2:6e:c9:b2:77:af:f1:6f:9e: b8:76:66:d2:f2:ac:4b:c3:6f:22:83:82:27:6c:db:78:7a:6c: bb:53:7f:8a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJN2ZVh3Xca0/je+vAQqmLlrKff0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDUyNTI2WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZDhmOTk2NzExZDY1OWU4MjY1ZDY0MzI2ZWNlMmU0NWJj ZWU4MzlkNzZkYzEyOGMxMTg4M2IwMmJkMWMyYzI1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDARB3bsXt0ikbSsTF7IISJSpckQ6as213XAIadSjEoNftB ce1oO7RJlaYbTMiRY7FVrfibEr3kEUAW5YsbtsqHIvm0gSdpNkRVWfkls7C11gQQ r1P95yVz4EeURnPkDL8TvH1DvGGOmpQWj8ON4kT8DmnX820k6IZMNW9Q2zR7Mtbj lkIytIiVrop5kxAa+dDp+1GLABSmobbq/64L+2AMvncbpXj4BNX2y4Hc8/azE53U FXRqPcMEGworK4NyE6x3eyESth0CmysLG4In4ayWoX/waAESdOAV3Qf0L6jvQJCj hKM597b58FprQAG8cNbO0YLiTLbIUDgPQSIfj85JAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8KQNFV2DKi4cZmhGG/QF39//BZUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2E5MzQ2ODFmLTVlYmUtNDk4YS04Mzk3LTIxZGI0Zjk1ZWQxZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAG2AwDQYJKoZIhvcNAQELBQADggEBAJg/MDiSwKsqXtZyeKuzjoT+ NezMlUtvxOEopxT316FxFVYJxQZ9w4Y+HTq4LB+SwaHS2PtikmGV6opdBDZ/hJok r72t+k52+TLddJqENCWhINTuRnFK4ikvnfgHbAA6DhgMD2QEu80MuXUSDpFI9xPV 61D+xptRBA+H/jLcG0/JxdGPrwrGiBaDz90MUFGwtxsk/Sp6t68PFMMZT0udxjpM BJusupaXPg0EZpKEzYiLcNvDPIu8IWOG+BdAmnz7Wkrgua7EriXMF+dcuRbRBxwZ jwd11zNPhXokBZp9GtFqVrJuybJ3r/Fvnrh2ZtLyrEvDbyKDgids23h6bLtTf4o= -----END CERTIFICATE-----Generated at Wed Nov 5 16:00:05 2025 by rpki-client