$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/aff02b71-6734-47d6-b496-c804efa72a0b.roa File: aff02b71-6734-47d6-b496-c804efa72a0b.roa (raw, json) Hash identifier: FvADYHDUiyRfEWGPCIKZouhFZzkdQy0Xb+LjF4+oWAs= Subject key identifier: 33:71:0C:B4:ED:86:FC:B1:99:40:24:DB:34:7F:CA:5E:5C:24:17:FF Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 39AFA23B695E74272AEDC93956318A020DB09FBB Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/aff02b71-6734-47d6-b496-c804efa72a0b.roa Signing time: Thu 30 Oct 2025 20:26:12 +0000 ROA not before: Thu 30 Oct 2025 20:26:12 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2192::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:af:a2:3b:69:5e:74:27:2a:ed:c9:39:56:31:8a:02:0d:b0:9f:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 20:26:12 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=caebc1f7e41e09db39711d090532f405d5bd5a237223d8fc93ba7baf548f01e1, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e4:66:6c:93:f2:63:58:c3:01:53:bc:df:68: f6:78:8b:80:f5:5b:f1:ac:a1:7b:ea:2a:da:27:3c: 55:22:3c:c2:d6:59:60:03:07:c0:b4:c4:b7:de:46: bd:52:a5:a6:00:62:5b:d3:bd:be:98:b0:87:0c:2f: 07:44:3f:7f:50:97:49:75:09:3c:86:35:a4:3e:1a: 5d:22:bf:36:72:ad:00:c6:19:58:41:6b:13:a5:21: 3e:a9:7c:90:da:99:9f:03:3d:da:07:59:97:9d:30: e5:be:ca:b2:5f:4a:16:4b:e7:3a:76:33:74:f7:5e: e7:92:3e:5c:ef:4d:93:4b:0e:ca:5e:e6:ae:7b:b6: df:81:08:70:96:06:7a:9a:0c:ae:8d:2d:3f:ba:2c: 81:aa:8e:45:db:f5:60:f4:34:3a:f7:6f:bf:9e:7d: cd:1a:79:7d:94:d4:05:e9:82:06:cb:1e:2d:de:e8: 15:93:b3:22:5d:f2:07:27:e3:3d:ad:31:ff:dd:13: 2c:a7:ec:19:33:61:f9:55:57:33:a2:7b:41:c5:68: 08:e5:71:8d:dc:63:e8:8f:1d:da:9a:a7:8d:80:61: 1e:56:c2:72:91:04:2e:0f:88:a3:aa:2f:ad:8e:f3: a0:bc:92:d4:be:d2:5e:34:db:b3:65:72:73:ba:a7: bf:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:71:0C:B4:ED:86:FC:B1:99:40:24:DB:34:7F:CA:5E:5C:24:17:FF X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/aff02b71-6734-47d6-b496-c804efa72a0b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2192::/48 Signature Algorithm: sha256WithRSAEncryption 6a:ce:44:35:eb:5c:67:b4:99:94:b7:0e:3f:4a:2b:87:87:3a: 02:2e:90:41:a0:4c:5b:1f:4a:d6:d1:a5:da:a3:47:80:2d:fd: c1:c4:e5:37:ba:ee:cd:e7:99:12:af:a4:a9:77:94:31:ff:6e: 3d:8a:1b:8b:b3:c1:c6:c5:60:88:f1:df:68:7a:fb:98:16:5f: 2f:b6:3b:90:08:06:da:99:08:43:52:a0:5e:ba:4c:83:5f:55: 51:85:51:3c:d6:7a:ce:89:20:c0:e0:6f:42:db:7d:00:4c:47: e7:9a:c1:9d:48:9f:de:1f:5c:97:ce:76:83:70:7d:c1:69:d3: 77:8d:b2:a4:cc:1a:bb:95:27:3c:02:a2:7d:b4:8d:0f:2f:b7: a8:32:d1:49:b5:80:1c:f7:62:9a:1c:4b:25:dc:04:47:9a:22: 15:db:bc:16:82:6b:56:f1:cc:cc:6f:44:24:b1:d8:6f:fe:8d: 41:02:88:1a:b9:5d:f6:3b:8f:5a:00:b8:d4:46:64:08:4b:40: cf:73:e8:22:32:cc:23:44:99:fc:35:e2:f7:ff:1b:d4:b1:41: d9:61:51:6d:b1:cd:b9:16:8c:15:2d:27:55:6a:83:9d:fd:33: bf:b3:bf:4a:af:b5:2b:b4:f6:43:73:b4:c9:6d:b0:c7:7c:e7: ab:86:77:1e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOa+iO2ledCcq7ck5VjGKAg2wn7swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjAyNjEyWhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYWViYzFmN2U0MWUwOWRiMzk3MTFkMDkwNTMyZjQwNWQ1 YmQ1YTIzNzIyM2Q4ZmM5M2JhN2JhZjU0OGYwMWUxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCr5GZsk/JjWMMBU7zfaPZ4i4D1W/GsoXvqKtonPFUiPMLW WWADB8C0xLfeRr1SpaYAYlvTvb6YsIcMLwdEP39Ql0l1CTyGNaQ+Gl0ivzZyrQDG GVhBaxOlIT6pfJDamZ8DPdoHWZedMOW+yrJfShZL5zp2M3T3XueSPlzvTZNLDspe 5q57tt+BCHCWBnqaDK6NLT+6LIGqjkXb9WD0NDr3b7+efc0aeX2U1AXpggbLHi3e 6BWTsyJd8gcn4z2tMf/dEyyn7BkzYflVVzOie0HFaAjlcY3cY+iPHdqap42AYR5W wnKRBC4PiKOqL62O86C8ktS+0l4027NlcnO6p7+9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUM3EMtO2G/LGZQCTbNH/KXlwkF/8wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2FmZjAyYjcxLTY3MzQtNDdkNi1iNDk2LWM4MDRlZmE3MmEwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAJAAIZIwDQYJKoZIhvcNAQELBQADggEBAGrORDXrXGe0mZS3Dj9KK4eH OgIukEGgTFsfStbRpdqjR4At/cHE5Te67s3nmRKvpKl3lDH/bj2KG4uzwcbFYIjx 32h6+5gWXy+2O5AIBtqZCENSoF66TINfVVGFUTzWes6JIMDgb0LbfQBMR+eawZ1I n94fXJfOdoNwfcFp03eNsqTMGruVJzwCon20jQ8vt6gy0Um1gBz3YpocSyXcBEea IhXbvBaCa1bxzMxvRCSx2G/+jUECiBq5XfY7j1oAuNRGZAhLQM9z6CIyzCNEmfw1 4vf/G9SxQdlhUW2xzbkWjBUtJ1Vqg539M7+zv0qvtSu09kNztMltsMd856uGdx4= -----END CERTIFICATE-----Generated at Wed Nov 5 09:29:22 2025 by rpki-client