$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/afd6bf9f-1dc9-4ad1-a927-40c9abcd95f3.roa File: afd6bf9f-1dc9-4ad1-a927-40c9abcd95f3.roa (raw, json) Hash identifier: EsO4KfXLw//j4MuurwK8uJthPf3WR3Hsz7u4MqXJ+WM= Subject key identifier: CC:B9:DD:4D:D3:B0:4A:27:30:63:AD:90:F5:C9:BE:0A:6D:2F:33:C9 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5E55A4AF781E9481C42D45108543AB5B074B509D Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/afd6bf9f-1dc9-4ad1-a927-40c9abcd95f3.roa Signing time: Fri 31 Oct 2025 00:38:35 +0000 ROA not before: Fri 31 Oct 2025 00:38:35 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3686::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:55:a4:af:78:1e:94:81:c4:2d:45:10:85:43:ab:5b:07:4b:50:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 00:38:35 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=ab04b5cd74d1b55e23c72421ed11a14822b5fc55a4274a613fdc8fb18c1d5225, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c4:dd:76:dc:eb:82:af:ed:ae:67:6d:53:fb: 54:11:2c:d0:8d:ed:dc:57:07:2a:67:52:6b:10:ce: 8d:b0:c0:c7:ac:00:f0:1f:e2:f1:a4:9e:c4:54:87: a3:fe:e2:fe:d3:ad:48:b4:27:e4:d3:90:ab:a0:65: bc:f0:a8:18:56:9a:2b:23:8c:d3:d5:d9:e1:21:b5: e6:ba:9c:56:d4:c2:a9:c3:09:5e:ef:2e:c3:7b:73: 1f:5a:b6:4e:8e:14:e3:db:28:6c:8f:97:24:93:f2: 93:41:37:44:7a:5c:d4:f0:f2:a5:a4:dd:5c:39:ce: 01:31:aa:be:0e:1e:b4:e7:20:6f:36:db:d2:be:f7: 98:18:48:c7:58:95:c8:c1:ff:6b:3f:6d:a5:53:03: e6:62:b7:99:42:71:7c:8e:19:9c:a9:89:30:6a:71: ad:ef:81:72:ad:b9:f9:eb:53:f6:d2:e7:ef:fe:e3: 70:99:18:38:29:2c:6d:de:ce:b2:89:4b:2d:55:5c: 06:1d:f6:68:14:de:bb:54:07:e2:90:0d:4a:ba:d3: 82:eb:7a:ee:ac:47:3e:fe:4e:cc:47:82:ea:f7:43: 29:ed:44:34:85:27:a3:58:5d:ba:24:4f:bb:3b:b1: 2b:71:29:d9:da:b5:b5:2f:7c:05:48:ad:4e:68:be: 33:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:B9:DD:4D:D3:B0:4A:27:30:63:AD:90:F5:C9:BE:0A:6D:2F:33:C9 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/afd6bf9f-1dc9-4ad1-a927-40c9abcd95f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3686::/47 Signature Algorithm: sha256WithRSAEncryption 29:8e:ca:0d:1f:fa:38:a1:cc:bb:3d:74:1e:3e:51:2c:bb:69: a5:99:aa:ce:69:ab:4a:96:4f:45:1b:cf:80:9a:ed:78:a9:1a: 9a:b2:fd:99:2c:be:76:4b:7f:ea:f5:ef:e4:d9:29:15:6e:f3: 2a:fe:31:66:93:32:3a:bd:86:d4:0a:e7:c6:49:05:3a:ff:2a: 21:19:fc:42:ea:1f:bf:30:83:03:a9:74:ac:3e:7f:1b:27:fd: 62:87:9e:db:85:b5:dd:43:28:77:f4:2a:4d:eb:d3:32:c3:56: 21:9a:8c:06:7b:e3:ef:f4:f4:1f:a5:49:8f:e1:82:02:b4:0a: b2:f8:10:c6:d7:c2:84:1b:75:cd:b7:9a:1f:07:e8:fe:78:6f: 87:36:d1:8b:2d:72:17:be:7d:46:08:2b:6d:9d:9e:40:ef:8c: 07:93:5c:48:e7:61:69:16:98:8d:85:3a:b9:aa:e3:95:c7:87: b1:ea:cd:16:ed:46:fb:0f:af:df:0f:b1:61:75:6d:27:1c:72: d3:a1:90:90:c1:3e:ee:df:9f:4c:5a:fc:e9:bf:4a:18:17:07: a9:c5:57:67:fc:b4:8d:24:96:5d:8a:d4:03:fe:de:d8:97:42: 35:ff:ed:1a:bf:05:19:36:a9:df:76:35:e3:c2:eb:1d:d8:3b: 4a:83:20:3a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXlWkr3gelIHELUUQhUOrWwdLUJ0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDAzODM1WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYjA0YjVjZDc0ZDFiNTVlMjNjNzI0MjFlZDExYTE0ODIy YjVmYzU1YTQyNzRhNjEzZmRjOGZiMThjMWQ1MjI1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClxN123OuCr+2uZ21T+1QRLNCN7dxXBypnUmsQzo2wwMes APAf4vGknsRUh6P+4v7TrUi0J+TTkKugZbzwqBhWmisjjNPV2eEhtea6nFbUwqnD CV7vLsN7cx9atk6OFOPbKGyPlyST8pNBN0R6XNTw8qWk3Vw5zgExqr4OHrTnIG82 29K+95gYSMdYlcjB/2s/baVTA+Zit5lCcXyOGZypiTBqca3vgXKtufnrU/bS5+/+ 43CZGDgpLG3ezrKJSy1VXAYd9mgU3rtUB+KQDUq604Lreu6sRz7+TsxHgur3Qynt RDSFJ6NYXbokT7s7sStxKdnatbUvfAVIrU5ovjN7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUzLndTdOwSicwY62Q9cm+Cm0vM8kwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2FmZDZiZjlmLTFkYzktNGFkMS1hOTI3LTQwYzlhYmNkOTVmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAANoYwDQYJKoZIhvcNAQELBQADggEBACmOyg0f+jihzLs9dB4+USy7 aaWZqs5pq0qWT0Ubz4Ca7XipGpqy/ZksvnZLf+r17+TZKRVu8yr+MWaTMjq9htQK 58ZJBTr/KiEZ/ELqH78wgwOpdKw+fxsn/WKHntuFtd1DKHf0Kk3r0zLDViGajAZ7 4+/09B+lSY/hggK0CrL4EMbXwoQbdc23mh8H6P54b4c20Ystche+fUYIK22dnkDv jAeTXEjnYWkWmI2FOrmq45XHh7HqzRbtRvsPr98PsWF1bSccctOhkJDBPu7fn0xa /Om/ShgXB6nFV2f8tI0kll2K1AP+3tiXQjX/7Rq/BRk2qd92NePC6x3YO0qDIDo= -----END CERTIFICATE-----Generated at Wed Nov 5 10:43:09 2025 by rpki-client