$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/aa1d6a2e-f0ee-498b-b21b-5314f1de20f2.roa File: aa1d6a2e-f0ee-498b-b21b-5314f1de20f2.roa (raw, json) Hash identifier: B5SEUATfCk/oed/dVUlbnJQkQSEO8qUnVYwTloW+hDw= Subject key identifier: 2D:A3:F0:85:77:A3:38:87:9B:35:15:10:E0:B1:A7:60:D3:9B:F5:59 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 32F9A5E2F29774D4EE591AB28F4A833A53D7A327 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/aa1d6a2e-f0ee-498b-b21b-5314f1de20f2.roa Signing time: Thu 30 Oct 2025 22:10:19 +0000 ROA not before: Thu 30 Oct 2025 22:10:19 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1b4c::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:f9:a5:e2:f2:97:74:d4:ee:59:1a:b2:8f:4a:83:3a:53:d7:a3:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 22:10:19 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=f12bc3e6f07aa2daf2aa893cb4ab1b130af7dcf270a13aa475e03b01f1d26f3e, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2a:4d:c5:df:9e:22:eb:4d:7a:66:5e:07:1e: 4f:ec:e3:f4:e2:ad:e5:22:0e:05:0a:f9:62:28:ab: 2e:a3:60:e9:91:ea:8f:ce:5c:af:0d:55:8f:1d:27: 6a:be:a1:b0:3a:c1:08:df:9d:98:14:e4:66:7b:91: 5c:50:dc:7b:9d:34:ab:9b:cf:dc:3b:f6:7f:6d:a8: 61:b6:88:f1:9a:9b:e6:ca:1d:34:2a:e6:a4:cb:97: d1:df:79:d3:4c:15:28:ee:aa:90:e8:b7:fc:51:66: 11:eb:a1:ea:fd:04:4f:40:5c:b0:2c:cd:71:17:7e: cf:12:25:8c:43:2c:0c:7a:c4:9c:f3:0e:82:ec:bd: 7e:0f:74:19:32:8e:1f:86:10:89:e9:bb:0e:a9:74: 2c:4e:eb:d3:22:b4:46:d8:fc:f9:db:9f:e1:fe:b2: 54:0f:f9:65:09:bc:2b:26:65:d6:5c:4b:31:0c:f5: ef:84:eb:c4:cb:de:85:8e:a6:c5:96:8b:c9:2c:91: c5:d0:3b:b1:f9:b2:a2:d3:a3:eb:8f:81:ee:ff:22: b7:b1:ee:00:e1:22:c3:28:ad:d4:8a:24:b5:29:df: f3:35:5c:be:e6:31:92:1f:7f:a8:2d:59:c3:bf:a6: 40:8e:bf:0d:84:df:9b:b5:46:a9:ba:91:3d:84:8e: 05:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:A3:F0:85:77:A3:38:87:9B:35:15:10:E0:B1:A7:60:D3:9B:F5:59 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/aa1d6a2e-f0ee-498b-b21b-5314f1de20f2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1b4c::/47 Signature Algorithm: sha256WithRSAEncryption 58:3d:73:27:cc:b0:79:4c:7e:9a:1d:e7:d3:ab:7b:91:99:2c: 35:7c:64:1c:8a:a1:90:b5:6b:8b:b5:e3:a1:c2:91:cc:10:bd: d5:72:fd:62:69:65:b5:a2:90:12:42:c5:f0:1d:44:43:19:e5: c6:d3:a6:e2:39:c0:2f:ac:00:26:65:ab:ec:56:82:4a:c6:e9: f8:b6:52:33:7d:96:08:dc:78:bb:c6:bb:0d:48:be:b4:b5:08: c9:cf:8a:51:6d:35:60:1c:c9:ac:c5:b6:65:87:b7:af:04:55: b7:8f:02:58:e7:e4:07:ee:22:6d:8a:e2:68:4b:8a:95:41:01: 34:6c:0e:01:bf:06:08:43:93:88:8e:7f:b8:db:0d:a6:da:06: e9:35:9b:bf:2f:60:12:a3:37:09:71:43:25:78:b5:76:a0:1b: d2:80:d5:ce:90:c9:42:e0:cf:21:42:f8:d7:20:06:40:7a:cb: 43:59:e0:ec:da:7c:a1:0b:cb:da:a9:13:8b:4f:50:b9:12:9f: bc:d7:6d:c4:3f:a2:5e:ed:48:ce:e4:44:ca:4f:c5:d6:78:1b: 2e:b3:d8:e6:8e:3b:9e:de:39:8b:16:9c:f8:e0:67:df:32:e7: 3b:d3:f7:68:05:1a:39:9a:3e:b2:be:e3:dc:d5:12:2d:97:80: e8:2a:67:fe -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMvml4vKXdNTuWRqyj0qDOlPXoycwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjIxMDE5WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMTJiYzNlNmYwN2FhMmRhZjJhYTg5M2NiNGFiMWIxMzBh ZjdkY2YyNzBhMTNhYTQ3NWUwM2IwMWYxZDI2ZjNlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHKk3F354i6016Zl4HHk/s4/TireUiDgUK+WIoqy6jYOmR 6o/OXK8NVY8dJ2q+obA6wQjfnZgU5GZ7kVxQ3HudNKubz9w79n9tqGG2iPGam+bK HTQq5qTLl9HfedNMFSjuqpDot/xRZhHroer9BE9AXLAszXEXfs8SJYxDLAx6xJzz DoLsvX4PdBkyjh+GEInpuw6pdCxO69MitEbY/Pnbn+H+slQP+WUJvCsmZdZcSzEM 9e+E68TL3oWOpsWWi8kskcXQO7H5sqLTo+uPge7/Irex7gDhIsMordSKJLUp3/M1 XL7mMZIff6gtWcO/pkCOvw2E35u1Rqm6kT2EjgXDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQULaPwhXejOIebNRUQ4LGnYNOb9VkwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2FhMWQ2YTJlLWYwZWUtNDk4Yi1iMjFiLTUzMTRmMWRlMjBmMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAG0wwDQYJKoZIhvcNAQELBQADggEBAFg9cyfMsHlMfpod59Ore5GZ LDV8ZByKoZC1a4u146HCkcwQvdVy/WJpZbWikBJCxfAdREMZ5cbTpuI5wC+sACZl q+xWgkrG6fi2UjN9lgjceLvGuw1IvrS1CMnPilFtNWAcyazFtmWHt68EVbePAljn 5AfuIm2K4mhLipVBATRsDgG/BghDk4iOf7jbDabaBuk1m78vYBKjNwlxQyV4tXag G9KA1c6QyULgzyFC+NcgBkB6y0NZ4OzafKELy9qpE4tPULkSn7zXbcQ/ol7tSM7k RMpPxdZ4Gy6z2OaOO57eOYsWnPjgZ98y5zvT92gFGjmaPrK+49zVEi2XgOgqZ/4= -----END CERTIFICATE-----Generated at Wed Nov 5 05:34:13 2025 by rpki-client