$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b551ac6b-8a5b-463c-862c-045d3a2a6c36.roa File: b551ac6b-8a5b-463c-862c-045d3a2a6c36.roa (raw, json) Hash identifier: 6eKG0RYvJp1y/z3J1YslUQkG1QNyND68N7nEzridr7w= Subject key identifier: 97:0F:7C:F0:66:59:A8:96:A8:EC:FB:E1:92:60:4F:AD:26:69:A1:D4 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0ACCB8920C4EF172F0FBE6AA7EC7890C6065525B Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b551ac6b-8a5b-463c-862c-045d3a2a6c36.roa Signing time: Thu 30 Oct 2025 22:25:30 +0000 ROA not before: Thu 30 Oct 2025 22:25:30 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1d02::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:cc:b8:92:0c:4e:f1:72:f0:fb:e6:aa:7e:c7:89:0c:60:65:52:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 22:25:30 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=0f2ab0d0319ee8095d76c4f79b88c1be762ccd3437502e33028281c07e01059d, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:af:bc:f1:b7:54:ad:67:03:8a:cc:a4:77:dc: bd:64:1d:65:26:3f:ae:11:72:11:fe:98:4b:ff:07: 20:24:80:58:a4:bd:ac:c2:61:74:3e:92:94:93:2f: 33:be:c6:3a:6f:ba:fe:e5:d7:8e:99:61:68:83:4d: 65:21:d9:c9:81:36:76:6d:5d:28:ad:a2:27:60:cf: 27:06:ea:7b:ce:82:cf:89:d3:a5:68:76:37:81:e0: bc:aa:35:3e:e2:55:78:18:8f:5d:9c:96:b6:98:60: 65:9a:fd:31:06:5c:12:63:83:b7:53:a6:31:56:53: f7:e3:25:81:c3:97:c3:d7:cc:d2:61:e8:4a:2d:cf: 80:b6:58:3a:57:eb:5d:fa:0c:4e:ca:63:ef:bc:14: 57:02:cb:82:5a:c2:d1:d2:65:51:f8:23:ca:f6:09: 51:95:e3:a8:e8:24:a8:a9:52:0e:97:46:14:a5:5d: 0d:6c:b4:02:c5:7e:3f:0a:04:3f:b9:8a:1a:b3:74: 18:e9:13:8e:d0:fe:02:8a:f0:db:56:41:21:95:ae: 40:a1:a0:33:51:0f:ba:29:73:58:d0:9b:a8:e8:a2: 9d:68:3a:00:d3:cc:f4:02:28:27:65:1f:5d:50:26: a0:7d:0c:7c:8f:88:02:f1:58:50:48:58:ae:f8:70: f9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:0F:7C:F0:66:59:A8:96:A8:EC:FB:E1:92:60:4F:AD:26:69:A1:D4 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b551ac6b-8a5b-463c-862c-045d3a2a6c36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1d02::/47 Signature Algorithm: sha256WithRSAEncryption 99:31:79:93:27:43:b8:30:0e:31:8b:72:96:a9:c2:67:e5:3b: a7:59:b2:84:cf:dc:7d:65:aa:12:a4:6b:be:3c:34:65:e4:88: fc:c4:af:1b:27:44:50:93:38:ac:23:63:bb:07:92:da:99:8a: a6:6a:b0:34:05:93:3b:80:64:89:37:4b:d4:72:40:bf:12:e7: 63:7f:12:fc:9b:25:89:6e:16:1d:4f:4f:09:57:40:52:10:80: c7:20:9d:37:f7:46:2a:61:61:98:03:13:9f:73:80:8d:b9:cc: 3b:9d:1b:24:01:0e:1c:01:f9:a6:35:10:ed:86:55:af:c6:b1: a5:e7:cf:37:25:90:f2:17:24:2b:d5:2e:f2:a0:c8:ec:45:11: d7:14:23:47:20:16:ca:b4:b8:e8:9f:71:5b:7d:13:d8:23:7c: ab:d2:e4:b5:be:bb:76:66:c6:14:80:bd:83:6a:e7:c8:a6:5d: 4c:df:09:63:09:78:f2:20:50:bd:cf:14:be:f6:24:d3:86:41: cc:1d:e0:2d:48:79:5d:51:80:ad:45:12:85:7a:60:d8:7d:92: 8c:d1:f5:9e:b3:96:33:e8:2b:97:08:d5:c9:7b:70:9c:14:b7: d4:14:33:f5:f7:33:25:da:fd:af:43:07:6e:a4:ee:fc:25:38: 99:46:32:0c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCsy4kgxO8XLw++aqfseJDGBlUlswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjIyNTMwWhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZjJhYjBkMDMxOWVlODA5NWQ3NmM0Zjc5Yjg4YzFiZTc2 MmNjZDM0Mzc1MDJlMzMwMjgyODFjMDdlMDEwNTlkMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5r7zxt1StZwOKzKR33L1kHWUmP64RchH+mEv/ByAkgFik vazCYXQ+kpSTLzO+xjpvuv7l146ZYWiDTWUh2cmBNnZtXSitoidgzycG6nvOgs+J 06VodjeB4LyqNT7iVXgYj12clraYYGWa/TEGXBJjg7dTpjFWU/fjJYHDl8PXzNJh 6Eotz4C2WDpX6136DE7KY++8FFcCy4JawtHSZVH4I8r2CVGV46joJKipUg6XRhSl XQ1stALFfj8KBD+5ihqzdBjpE47Q/gKK8NtWQSGVrkChoDNRD7opc1jQm6joop1o OgDTzPQCKCdlH11QJqB9DHyPiALxWFBIWK74cPmDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUlw988GZZqJao7PvhkmBPrSZpodQwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2I1NTFhYzZiLThhNWItNDYzYy04NjJjLTA0NWQzYTJhNmMzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAHQIwDQYJKoZIhvcNAQELBQADggEBAJkxeZMnQ7gwDjGLcpapwmfl O6dZsoTP3H1lqhKka748NGXkiPzErxsnRFCTOKwjY7sHktqZiqZqsDQFkzuAZIk3 S9RyQL8S52N/EvybJYluFh1PTwlXQFIQgMcgnTf3RiphYZgDE59zgI25zDudGyQB DhwB+aY1EO2GVa/GsaXnzzclkPIXJCvVLvKgyOxFEdcUI0cgFsq0uOifcVt9E9gj fKvS5LW+u3ZmxhSAvYNq58imXUzfCWMJePIgUL3PFL72JNOGQcwd4C1IeV1RgK1F EoV6YNh9kozR9Z6zljPoK5cI1cl7cJwUt9QUM/X3MyXa/a9DB26k7vwlOJlGMgw= -----END CERTIFICATE-----Generated at Wed Nov 5 10:56:12 2025 by rpki-client