$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/aa03f89e-530d-402e-bd80-489a4c481851.roa File: aa03f89e-530d-402e-bd80-489a4c481851.roa (raw, json) Hash identifier: n1aDsC3teKreSVCcvMups+Unu68xKoWgKN65Y/tk3AI= Subject key identifier: 1D:CA:11:A5:A2:DE:D2:7F:55:BE:BB:DC:8E:70:BE:34:6B:BF:6A:21 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 1609D31341AF9A3E46E2991AAECB443CE2897D3F Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/aa03f89e-530d-402e-bd80-489a4c481851.roa Signing time: Thu 30 Oct 2025 20:40:11 +0000 ROA not before: Thu 30 Oct 2025 20:40:11 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:12ae::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:09:d3:13:41:af:9a:3e:46:e2:99:1a:ae:cb:44:3c:e2:89:7d:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 20:40:11 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=8e44a8cdcb2fbbe7b01f8e7da9b637d0d2e16e7f4f8ec9226a29223b5d1bfde8, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5a:5e:cf:79:f3:24:cb:95:ab:c8:cd:0b:23: 7a:55:94:ec:59:ef:eb:4d:23:f5:4d:3f:b1:d6:87: a7:11:f2:51:38:0a:df:f1:7a:d7:b1:c1:f8:2a:e0: 53:d1:b9:de:bc:27:f2:e8:7f:4c:3b:63:8c:0c:5d: c8:2d:e4:e5:a6:18:41:fb:eb:06:b1:8a:fc:cb:59: a2:8b:dc:d4:b5:2e:cd:fa:f5:05:27:c8:13:f4:4c: 86:f8:86:1d:92:44:85:50:c9:62:4b:f1:81:25:6a: 8d:ae:c4:2f:ce:42:34:8b:e5:11:9d:f5:8c:9e:ec: 7b:a7:78:a0:c8:d0:3e:2a:26:ad:bb:b3:21:93:5c: 3c:ec:7b:de:e8:34:f5:10:60:13:8d:6a:f0:3a:59: 96:4d:22:7c:8d:96:10:8d:a3:24:13:7b:d1:1e:46: 1a:ee:e9:76:82:f2:b3:0e:55:69:1b:ff:b1:ff:11: 9d:1c:5f:52:19:89:18:37:4f:b2:2e:b4:9d:d3:68: 4e:7c:d6:1d:c5:dc:23:11:6b:1b:ad:5f:f8:a8:7b: 22:05:f3:5e:5e:b0:2c:21:aa:93:2f:93:da:53:81: f2:ab:0c:75:8a:7e:9c:fc:90:e9:be:a8:06:00:e9: 62:3c:df:5a:00:e4:19:ed:07:9e:3d:c2:07:7f:85: 5b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:CA:11:A5:A2:DE:D2:7F:55:BE:BB:DC:8E:70:BE:34:6B:BF:6A:21 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/aa03f89e-530d-402e-bd80-489a4c481851.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:12ae::/47 Signature Algorithm: sha256WithRSAEncryption 10:11:53:e7:e3:cc:d6:25:94:4a:c2:ae:77:18:94:95:bd:fc: 59:9b:09:a2:9d:a2:f9:cd:d6:4b:79:25:6a:a6:6e:d3:91:39: 93:94:94:02:ed:69:fa:e4:1f:51:1b:5c:dd:c1:e9:18:4d:b0: e2:f2:28:ac:3b:31:2f:dd:cf:80:f4:3f:4e:60:6e:d3:3a:41: ac:87:de:2d:fd:61:42:c0:7a:4b:f1:ae:56:98:d6:c5:02:d4: 2c:41:4a:24:7d:71:10:8d:29:65:12:fb:08:57:cc:50:f7:f0: be:9f:19:a9:43:b8:0d:20:b3:10:eb:4d:87:c5:5d:30:e1:cb: 58:35:f4:6c:ea:2c:f5:39:dc:36:37:bd:7a:db:da:c5:a7:f7: 65:69:40:43:cd:e4:8c:0c:4a:1d:84:a4:77:98:e6:33:d0:48: c1:5d:6c:3c:22:6c:c3:74:aa:a5:19:c9:d6:78:e4:34:62:bf: 5f:a2:59:2a:c7:cc:f9:07:75:d9:d3:9b:37:db:d3:8d:d4:39: cf:77:26:12:82:6b:a3:4e:3f:2f:50:25:9e:a0:cb:c9:f2:8b: 87:18:19:ba:85:13:47:88:1c:2d:16:ea:ab:7d:86:ac:7b:ca: f0:82:67:a4:c4:dd:50:e1:b6:b6:5d:c3:79:74:4e:4d:19:37: 81:45:15:bc -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFgnTE0Gvmj5G4pkarstEPOKJfT8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjA0MDExWhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZTQ0YThjZGNiMmZiYmU3YjAxZjhlN2RhOWI2MzdkMGQy ZTE2ZTdmNGY4ZWM5MjI2YTI5MjIzYjVkMWJmZGU4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnWl7PefMky5WryM0LI3pVlOxZ7+tNI/VNP7HWh6cR8lE4 Ct/xetexwfgq4FPRud68J/Lof0w7Y4wMXcgt5OWmGEH76waxivzLWaKL3NS1Ls36 9QUnyBP0TIb4hh2SRIVQyWJL8YElao2uxC/OQjSL5RGd9Yye7HuneKDI0D4qJq27 syGTXDzse97oNPUQYBONavA6WZZNInyNlhCNoyQTe9EeRhru6XaC8rMOVWkb/7H/ EZ0cX1IZiRg3T7IutJ3TaE581h3F3CMRaxutX/ioeyIF815esCwhqpMvk9pTgfKr DHWKfpz8kOm+qAYA6WI831oA5BntB549wgd/hVsJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUHcoRpaLe0n9VvrvcjnC+NGu/aiEwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2FhMDNmODllLTUzMGQtNDAyZS1iZDgwLTQ4OWE0YzQ4MTg1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAEq4wDQYJKoZIhvcNAQELBQADggEBABARU+fjzNYllErCrncYlJW9 /FmbCaKdovnN1kt5JWqmbtOROZOUlALtafrkH1EbXN3B6RhNsOLyKKw7MS/dz4D0 P05gbtM6QayH3i39YULAekvxrlaY1sUC1CxBSiR9cRCNKWUS+whXzFD38L6fGalD uA0gsxDrTYfFXTDhy1g19GzqLPU53DY3vXrb2sWn92VpQEPN5IwMSh2EpHeY5jPQ SMFdbDwibMN0qqUZydZ45DRiv1+iWSrHzPkHddnTmzfb043UOc93JhKCa6NOPy9Q JZ6gy8nyi4cYGbqFE0eIHC0W6qt9hqx7yvCCZ6TE3VDhtrZdw3l0Tk0ZN4FFFbw= -----END CERTIFICATE-----Generated at Wed Nov 5 10:54:46 2025 by rpki-client