$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ad70a217-71ea-4b80-86f1-9f66497ddfa9.roa File: ad70a217-71ea-4b80-86f1-9f66497ddfa9.roa (raw, json) Hash identifier: +72f8msqiXi4LbGIEXhNxuGiccbpFx3DjaBmgoLVdHw= Subject key identifier: 23:4A:DA:37:47:14:E6:89:77:5A:7A:7F:70:A0:59:D9:E6:F7:F5:DD Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 7A6D26E9E346FA5F7161B21781F38D552146AD60 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ad70a217-71ea-4b80-86f1-9f66497ddfa9.roa Signing time: Fri 31 Oct 2025 00:06:47 +0000 ROA not before: Fri 31 Oct 2025 00:06:47 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:32ba::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:6d:26:e9:e3:46:fa:5f:71:61:b2:17:81:f3:8d:55:21:46:ad:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 00:06:47 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=c8b66a8ccd8a048cede3ca01bac9b26562555acb03664b7b511cca268ab14ae8, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:aa:22:2c:50:90:7f:a4:d2:af:b0:fb:48:ff: 32:7a:28:4a:cf:86:d5:f8:de:db:11:c6:91:e3:d0: 72:41:95:64:ce:0b:b8:24:15:56:77:9a:7b:32:6f: 16:a8:13:d3:7b:12:24:9d:0d:35:59:39:bf:c9:a2: bc:4f:0c:dd:f3:2e:82:f3:ea:99:80:d4:6c:9e:d4: 8a:8b:11:98:45:30:bf:32:17:f0:52:16:6c:f8:83: cc:ea:8e:61:d7:91:b3:65:02:56:da:fb:28:33:cb: 1b:f3:d5:a4:81:ee:60:6f:46:a5:a8:a0:73:f9:ad: d1:dc:38:b4:d0:3b:da:94:35:0c:f0:d0:0b:08:ee: 4f:0d:10:4d:ea:8c:e4:0f:28:ab:8d:8b:62:04:b5: 94:a7:ca:5f:c7:5f:79:ff:46:23:1a:dd:2d:72:f2: 58:24:22:bc:35:32:c7:18:ed:19:d0:1b:8e:25:80: 21:68:7f:97:35:38:1b:af:6b:44:a5:5b:09:39:7b: f2:70:15:65:64:2b:b2:4d:53:47:84:30:f3:d1:25: 80:73:a4:b2:e9:d5:13:e4:c1:0e:96:cf:c4:bc:5c: 6e:03:d9:d7:ec:b2:01:14:30:bf:0c:63:5e:c3:95: 0a:09:31:15:5f:14:10:28:13:98:5d:36:51:4a:9a: af:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:4A:DA:37:47:14:E6:89:77:5A:7A:7F:70:A0:59:D9:E6:F7:F5:DD X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ad70a217-71ea-4b80-86f1-9f66497ddfa9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:32ba::/47 Signature Algorithm: sha256WithRSAEncryption 6b:d0:d4:98:e7:fc:9d:73:22:89:3f:eb:c7:fa:50:e0:31:cd: 34:6e:1b:2c:77:e7:ec:10:85:4b:bd:3b:3e:9a:7e:d0:92:35: ca:6f:17:63:75:e3:14:9e:3f:8d:5c:04:4a:80:12:a5:4e:da: 77:be:92:2d:20:94:70:e0:3a:77:a0:10:af:a0:6f:bb:b6:a5: fb:50:7a:30:fe:8f:ef:ce:33:a1:fb:39:3f:6c:6a:6a:98:2f: 27:58:22:2e:a7:60:6e:25:70:58:a0:4b:7e:12:ed:fc:b8:3c: 05:ac:69:87:aa:dc:7b:d5:60:5d:36:c3:24:63:68:cc:71:39: 7f:12:d0:24:f6:58:19:c6:33:64:10:26:e6:65:09:10:14:a4: 35:df:8c:1c:12:08:a3:ed:d1:ee:65:89:52:f9:b1:43:cb:b4: fa:ac:60:c0:c8:f1:87:9c:d7:d8:69:c6:5f:79:a1:09:bb:1a: 32:34:e8:1b:57:78:c8:11:79:bd:ba:92:0c:36:8a:95:d0:8c: 6e:5a:57:2a:44:eb:e3:c9:f4:2f:6a:90:a5:f4:60:86:bd:ff: e8:73:12:ad:53:cf:fa:1c:27:27:60:58:ab:2c:a7:54:9f:30: d4:51:4c:b7:14:89:d0:0c:8d:e4:e9:0e:cf:0c:dc:8c:d7:c3: 3b:2b:aa:a2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUem0m6eNG+l9xYbIXgfONVSFGrWAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDAwNjQ3WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjOGI2NmE4Y2NkOGEwNDhjZWRlM2NhMDFiYWM5YjI2NTYy NTU1YWNiMDM2NjRiN2I1MTFjY2EyNjhhYjE0YWU4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAqiIsUJB/pNKvsPtI/zJ6KErPhtX43tsRxpHj0HJBlWTO C7gkFVZ3mnsybxaoE9N7EiSdDTVZOb/JorxPDN3zLoLz6pmA1Gye1IqLEZhFML8y F/BSFmz4g8zqjmHXkbNlAlba+ygzyxvz1aSB7mBvRqWooHP5rdHcOLTQO9qUNQzw 0AsI7k8NEE3qjOQPKKuNi2IEtZSnyl/HX3n/RiMa3S1y8lgkIrw1MscY7RnQG44l gCFof5c1OBuva0SlWwk5e/JwFWVkK7JNU0eEMPPRJYBzpLLp1RPkwQ6Wz8S8XG4D 2dfssgEUML8MY17DlQoJMRVfFBAoE5hdNlFKmq8TAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUI0raN0cU5ol3Wnp/cKBZ2eb39d0wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2FkNzBhMjE3LTcxZWEtNGI4MC04NmYxLTlmNjY0OTdkZGZhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAMrowDQYJKoZIhvcNAQELBQADggEBAGvQ1Jjn/J1zIok/68f6UOAx zTRuGyx35+wQhUu9Oz6aftCSNcpvF2N14xSeP41cBEqAEqVO2ne+ki0glHDgOneg EK+gb7u2pftQejD+j+/OM6H7OT9samqYLydYIi6nYG4lcFigS34S7fy4PAWsaYeq 3HvVYF02wyRjaMxxOX8S0CT2WBnGM2QQJuZlCRAUpDXfjBwSCKPt0e5liVL5sUPL tPqsYMDI8Yec19hpxl95oQm7GjI06BtXeMgReb26kgw2ipXQjG5aVypE6+PJ9C9q kKX0YIa9/+hzEq1Tz/ocJydgWKssp1SfMNRRTLcUidAMjeTpDs8M3IzXwzsrqqI= -----END CERTIFICATE-----Generated at Wed Nov 5 07:46:05 2025 by rpki-client