$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b42c9f73-c457-4bdd-8db7-f6c425617115.roa File: b42c9f73-c457-4bdd-8db7-f6c425617115.roa (raw, json) Hash identifier: nviFO+E5HGwvcvefOskY48/hgn3QBnt9ExCnHaEE9ls= Subject key identifier: 43:A0:0F:F6:F5:02:9A:82:36:E6:CD:C3:31:8D:25:64:04:02:0D:17 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 6DCBB46F8AFB26811CAA366F20FDF090D5D5248C Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b42c9f73-c457-4bdd-8db7-f6c425617115.roa Signing time: Fri 31 Oct 2025 00:12:00 +0000 ROA not before: Fri 31 Oct 2025 00:12:00 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:33c0::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:cb:b4:6f:8a:fb:26:81:1c:aa:36:6f:20:fd:f0:90:d5:d5:24:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 00:12:00 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=3ef138f94e9cb438b96a3cc32441228f6d86a4ac602e32cc069c08bd3335531d, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ab:bd:c5:68:0c:67:cc:31:a7:fa:84:5a:e5: 98:65:7e:f9:34:41:cf:87:d0:a6:75:14:20:01:b3: 00:72:c5:73:4e:c6:9d:35:be:06:c6:2e:92:7b:bc: 1a:80:45:a3:a8:5c:f6:cc:f9:85:e4:ff:f5:7f:ec: 9a:58:f0:7f:f6:3a:28:77:bc:1b:f7:bc:68:5a:cc: bf:57:f5:6f:9e:a7:ff:60:46:29:3c:a0:8e:bf:f5: e2:61:91:4f:ab:8c:c8:1f:07:c0:da:64:ce:fe:6e: 45:f3:8a:cd:f3:99:2a:f3:34:b2:2b:af:fb:98:9c: 58:c8:8f:3e:78:84:33:27:7a:ee:c7:1f:f9:be:e1: e0:b1:0f:52:9c:cc:65:94:51:be:d2:4e:0a:49:6d: 07:06:46:cb:ab:e0:fe:96:6c:73:f5:43:61:d8:01: 14:2b:85:27:15:e0:e2:51:c9:02:c3:f2:60:d0:a4: 3f:45:52:d6:d6:ca:80:9b:f4:45:ba:67:e8:13:b6: 7b:11:d5:fe:80:05:7a:f9:81:c7:92:e9:11:92:e3: d1:86:81:2b:06:4b:5f:cd:a6:0c:e1:82:e5:73:68: 71:7e:62:06:a5:b2:f8:6f:08:66:43:c3:d5:cb:c4: a0:57:ea:cd:26:19:8c:ca:ef:c7:e5:92:fa:83:8d: 00:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:A0:0F:F6:F5:02:9A:82:36:E6:CD:C3:31:8D:25:64:04:02:0D:17 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b42c9f73-c457-4bdd-8db7-f6c425617115.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:33c0::/47 Signature Algorithm: sha256WithRSAEncryption 6f:72:25:3f:8f:9f:f2:92:b8:04:2d:01:c6:03:ec:6b:50:09: ca:c3:e8:06:ce:33:02:ec:b5:05:4c:a7:cd:7b:e8:e0:68:3b: 40:12:17:a2:13:bf:c2:c7:64:5d:b2:82:f5:08:7d:9f:a0:39: b7:7e:b1:a0:67:6f:2e:8d:d2:86:bd:a5:b5:d6:28:48:92:cd: 56:01:36:9e:de:3d:3b:28:16:6d:86:93:4c:d4:1a:a1:12:54: d1:ce:1b:08:5b:2c:bf:32:f1:d5:17:2c:71:0f:80:0c:fb:bb: fd:8e:15:00:5d:af:cd:65:13:74:ae:ce:6e:f6:62:2c:81:66: d1:5a:23:d7:e6:09:e5:0f:fe:a5:6d:cc:74:70:fb:51:d7:51: f9:57:d0:77:01:d4:06:24:5f:2e:37:c0:01:cf:40:90:51:e4: e0:d7:bc:21:50:58:14:40:b8:56:1d:17:1b:a3:21:f5:6f:58: 87:38:f4:c9:51:b7:da:bb:fe:93:82:13:db:f5:04:2e:d1:13: d8:47:99:0e:a6:b3:17:18:dd:9e:f2:6b:74:7c:cc:d2:02:42: 4e:41:8b:e7:08:41:b8:4e:01:48:1c:65:e3:d0:26:fb:c2:6e: e1:26:8e:16:94:92:b5:00:70:40:a2:03:b2:eb:11:46:4e:e0: 4f:8f:41:bb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbcu0b4r7JoEcqjZvIP3wkNXVJIwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDAxMjAwWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZWYxMzhmOTRlOWNiNDM4Yjk2YTNjYzMyNDQxMjI4ZjZk ODZhNGFjNjAyZTMyY2MwNjljMDhiZDMzMzU1MzFkMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUq73FaAxnzDGn+oRa5Zhlfvk0Qc+H0KZ1FCABswByxXNO xp01vgbGLpJ7vBqARaOoXPbM+YXk//V/7JpY8H/2Oih3vBv3vGhazL9X9W+ep/9g Rik8oI6/9eJhkU+rjMgfB8DaZM7+bkXzis3zmSrzNLIrr/uYnFjIjz54hDMneu7H H/m+4eCxD1KczGWUUb7STgpJbQcGRsur4P6WbHP1Q2HYARQrhScV4OJRyQLD8mDQ pD9FUtbWyoCb9EW6Z+gTtnsR1f6ABXr5gceS6RGS49GGgSsGS1/NpgzhguVzaHF+ YgalsvhvCGZDw9XLxKBX6s0mGYzK78flkvqDjQCBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQ6AP9vUCmoI25s3DMY0lZAQCDRcwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2I0MmM5ZjczLWM0NTctNGJkZC04ZGI3LWY2YzQyNTYxNzExNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAM8AwDQYJKoZIhvcNAQELBQADggEBAG9yJT+Pn/KSuAQtAcYD7GtQ CcrD6AbOMwLstQVMp8176OBoO0ASF6ITv8LHZF2ygvUIfZ+gObd+saBnby6N0oa9 pbXWKEiSzVYBNp7ePTsoFm2Gk0zUGqESVNHOGwhbLL8y8dUXLHEPgAz7u/2OFQBd r81lE3Suzm72YiyBZtFaI9fmCeUP/qVtzHRw+1HXUflX0HcB1AYkXy43wAHPQJBR 5ODXvCFQWBRAuFYdFxujIfVvWIc49MlRt9q7/pOCE9v1BC7RE9hHmQ6msxcY3Z7y a3R8zNICQk5Bi+cIQbhOAUgcZePQJvvCbuEmjhaUkrUAcECiA7LrEUZO4E+PQbs= -----END CERTIFICATE-----Generated at Wed Nov 5 10:55:37 2025 by rpki-client