$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a935398c-657b-422c-b139-f778e1300e1b.roa File: a935398c-657b-422c-b139-f778e1300e1b.roa (raw, json) Hash identifier: 5dpPYWN0PSHCw6h9/CkUWjgnXozhj4Sp0nH3q4/Rvi0= Subject key identifier: 19:4F:6E:0B:C0:3A:61:8A:5B:5A:F5:FA:D7:CA:49:42:AE:21:21:61 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3A721ED8EE0075FD9759E0F7A15962633B608922 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a935398c-657b-422c-b139-f778e1300e1b.roa Signing time: Fri 31 Oct 2025 01:08:35 +0000 ROA not before: Fri 31 Oct 2025 01:08:35 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:398c::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:72:1e:d8:ee:00:75:fd:97:59:e0:f7:a1:59:62:63:3b:60:89:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 01:08:35 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=dc2c3f381a603bb7ae1cef5aa58ab51086074511d1cd2564301b46f2f30b736c, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2b:80:13:69:3e:f2:e7:b3:59:f7:fe:59:03: 3f:55:59:4c:40:df:d2:af:7b:e3:e2:2e:c1:6b:77: ef:3b:9f:25:7d:ca:29:92:d4:2f:02:50:8b:2d:e2: b7:76:49:6c:cf:6c:61:bd:ee:9d:a1:8b:a7:bf:e7: f8:e7:f3:ff:06:14:45:e6:86:e6:d4:7f:f5:7a:4f: 4b:41:25:2a:ea:fc:92:74:bb:62:1d:39:c7:32:c4: 3f:44:9f:fe:bb:76:86:89:60:b6:67:98:4f:69:12: 79:60:8a:9b:d9:46:29:e9:43:4a:37:6d:27:94:2b: 07:ca:90:98:02:8f:45:4f:69:5d:3b:b8:e8:fc:56: d8:a9:3b:cc:97:64:1b:cf:c4:05:04:c2:5c:08:43: 1a:6a:a6:58:98:5f:33:af:d5:bc:94:0c:26:16:67: 3a:c3:1e:e6:01:41:d3:8b:29:25:87:c5:cd:91:30: f6:1c:8a:84:2f:bd:ac:62:a8:d1:1a:59:c8:71:7c: 90:95:93:c5:2f:59:24:c6:91:40:fe:58:23:d6:8b: 6a:1a:71:02:2a:e5:27:76:9f:ed:8c:24:9e:0a:2d: 69:cd:44:fe:81:09:d1:91:87:e6:38:50:65:5f:5c: d6:46:86:6b:e2:33:af:e1:12:10:01:77:5d:81:b6: a3:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:4F:6E:0B:C0:3A:61:8A:5B:5A:F5:FA:D7:CA:49:42:AE:21:21:61 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a935398c-657b-422c-b139-f778e1300e1b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:398c::/47 Signature Algorithm: sha256WithRSAEncryption 42:43:e9:b7:a1:f4:bc:45:61:fc:af:d3:a5:8d:9f:6a:59:7c: 80:1e:17:40:b8:c2:55:6e:89:d4:36:5e:53:2d:cd:88:bd:5f: d7:d6:36:17:2f:0a:6d:89:be:53:3f:95:04:ae:0f:0c:60:ad: b2:06:c6:a0:fb:99:a5:79:04:69:e1:56:cd:87:b7:ff:5a:49: e7:a1:46:78:09:e0:dd:a8:45:d0:cc:96:cf:c8:f4:0b:f1:ba: 07:2b:88:44:37:ae:bf:2b:58:e5:ea:d6:c1:5a:36:4f:ed:ff: 8d:f2:65:c7:6e:2b:49:c2:69:bb:1b:87:74:1f:84:13:05:cb: 00:95:11:9c:46:2f:9d:4c:69:46:46:df:73:73:b7:30:41:53: d1:d9:8f:44:25:11:a6:4b:66:73:01:5e:17:e2:5e:9f:9a:86: 7f:38:05:35:9b:dd:0f:c5:db:eb:68:b2:20:aa:91:28:e8:6a: 12:f1:45:7d:93:16:e7:f3:e2:b1:76:b0:f2:51:70:50:a7:68: 21:7d:b3:58:3f:7b:90:d4:2d:6e:3f:fc:6d:2c:1c:c6:23:a6: be:77:39:cc:9a:9c:ff:e5:11:f4:a0:cd:6e:ce:b9:63:53:88: 15:5d:30:74:2e:e7:bd:5a:10:ac:6b:99:7c:be:9a:70:2e:60: 2c:75:80:8a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOnIe2O4Adf2XWeD3oVliYztgiSIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDEwODM1WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYzJjM2YzODFhNjAzYmI3YWUxY2VmNWFhNThhYjUxMDg2 MDc0NTExZDFjZDI1NjQzMDFiNDZmMmYzMGI3MzZjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsK4ATaT7y57NZ9/5ZAz9VWUxA39Kve+PiLsFrd+87nyV9 yimS1C8CUIst4rd2SWzPbGG97p2hi6e/5/jn8/8GFEXmhubUf/V6T0tBJSrq/JJ0 u2IdOccyxD9En/67doaJYLZnmE9pEnlgipvZRinpQ0o3bSeUKwfKkJgCj0VPaV07 uOj8VtipO8yXZBvPxAUEwlwIQxpqpliYXzOv1byUDCYWZzrDHuYBQdOLKSWHxc2R MPYcioQvvaxiqNEaWchxfJCVk8UvWSTGkUD+WCPWi2oacQIq5Sd2n+2MJJ4KLWnN RP6BCdGRh+Y4UGVfXNZGhmviM6/hEhABd12BtqPtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUGU9uC8A6YYpbWvX618pJQq4hIWEwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2E5MzUzOThjLTY1N2ItNDIyYy1iMTM5LWY3NzhlMTMwMGUxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOYwwDQYJKoZIhvcNAQELBQADggEBAEJD6beh9LxFYfyv06WNn2pZ fIAeF0C4wlVuidQ2XlMtzYi9X9fWNhcvCm2JvlM/lQSuDwxgrbIGxqD7maV5BGnh Vs2Ht/9aSeehRngJ4N2oRdDMls/I9AvxugcriEQ3rr8rWOXq1sFaNk/t/43yZcdu K0nCabsbh3QfhBMFywCVEZxGL51MaUZG33NztzBBU9HZj0QlEaZLZnMBXhfiXp+a hn84BTWb3Q/F2+tosiCqkSjoahLxRX2TFufz4rF2sPJRcFCnaCF9s1g/e5DULW4/ /G0sHMYjpr53OcyanP/lEfSgzW7OuWNTiBVdMHQu571aEKxrmXy+mnAuYCx1gIo= -----END CERTIFICATE-----Generated at Wed Nov 5 10:55:04 2025 by rpki-client