$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b65a7165-9b1a-4fac-bc17-685f9bd68997.roa File: b65a7165-9b1a-4fac-bc17-685f9bd68997.roa (raw, json) Hash identifier: 7l40Fx8EnHF2O0FCVMW7ZaWXB6SpTTSBuiD5NjEFkwU= Subject key identifier: 83:7F:83:DA:4A:16:18:11:27:56:D5:33:37:54:71:19:0C:58:75:AA Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0AD53A4DCE5764B2014D9C518DBA068A297C364C Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b65a7165-9b1a-4fac-bc17-685f9bd68997.roa Signing time: Fri 31 Oct 2025 06:22:01 +0000 ROA not before: Fri 31 Oct 2025 06:22:01 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3ca0::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:d5:3a:4d:ce:57:64:b2:01:4d:9c:51:8d:ba:06:8a:29:7c:36:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 06:22:01 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=91c918d00a157355c8ef18dfe5aab0a8f3af850ea1f426f6523ac4335871112a, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:a1:2d:8f:b3:66:43:45:58:25:d0:99:20:72: 4f:b4:4a:23:0a:d7:5b:ad:82:2e:8f:36:cc:e6:92: 32:b0:04:aa:d4:20:ad:d5:92:02:d2:af:e4:14:9a: df:47:e7:f2:88:07:98:9f:94:22:5b:82:7d:93:9d: 8e:bc:eb:f4:02:34:8f:a3:85:d5:fb:86:e3:bb:d5: f1:03:bf:5d:cd:da:c4:80:b2:67:6c:69:76:51:41: ab:ba:e5:47:55:5b:28:83:51:9e:54:ed:e2:ce:f5: a2:56:8c:4b:bf:b6:d0:77:41:59:99:ce:21:5d:80: 26:b2:98:0e:d3:ae:ee:65:9b:c8:bb:47:ea:16:1f: c8:6a:67:c5:41:de:97:02:88:65:d2:ad:e2:cb:0c: 1b:23:bc:46:55:9f:8a:fd:03:89:0b:47:1d:cd:bb: a2:a1:5d:1e:e8:a1:c5:1f:a1:ff:0f:af:6e:d2:0a: ff:59:e8:af:e5:89:df:bc:69:ed:25:85:dc:63:ed: 3e:b4:9a:aa:4e:53:f1:10:08:ea:ff:5f:d8:b3:90: cc:d6:40:78:e7:30:31:50:96:06:c1:11:73:fb:48: 0a:83:87:bb:5b:74:c1:3d:5c:72:c0:6a:02:a5:d7: 19:eb:96:8a:07:8a:e2:ec:0c:d0:d4:54:7c:39:05: d6:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:7F:83:DA:4A:16:18:11:27:56:D5:33:37:54:71:19:0C:58:75:AA X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b65a7165-9b1a-4fac-bc17-685f9bd68997.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3ca0::/45 Signature Algorithm: sha256WithRSAEncryption 61:85:cf:e0:ed:c7:2f:04:2c:af:86:f1:26:0c:7f:21:c1:ee: 35:8f:20:d0:94:65:6e:c5:a0:cd:49:fe:b5:52:51:9c:79:de: bf:d6:df:fd:5c:41:77:ab:e0:1d:6c:fd:d3:51:8f:96:e5:44: 60:33:b2:d9:75:75:70:92:5b:50:0b:03:0d:bd:65:d4:eb:30: a3:a4:ce:6b:b7:14:e6:0c:32:b7:d3:e6:d3:5c:2a:05:b6:d6: 83:c7:de:9a:fc:89:7d:5f:11:bc:72:50:23:62:61:38:5c:73: ec:fa:ce:ee:d3:d1:4b:d0:b1:5a:e7:67:f8:90:e2:ee:de:a4: 3a:88:d3:2c:34:e5:a3:9f:67:8e:0b:02:b0:61:76:d5:bf:44: 37:5a:d2:66:9b:eb:53:fd:54:3b:80:9d:3f:cf:62:3b:47:9f: 30:12:0d:fd:f8:88:76:e4:eb:a0:00:08:e1:b4:7c:b7:fd:70: 16:59:21:a7:27:5d:b6:b6:37:b9:00:74:29:e7:6f:25:33:05: 17:61:ed:ba:f5:c0:01:5d:f3:af:59:ce:7a:c5:56:f4:2d:9c: 26:6d:e7:04:1e:e7:ed:5c:4c:8c:50:ac:e2:c7:76:68:58:a8: e6:b4:a0:05:2d:44:fa:30:81:6a:bf:c6:4b:97:90:f5:be:3b: 28:f5:b3:44 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCtU6Tc5XZLIBTZxRjboGiil8NkwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDYyMjAxWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MWM5MThkMDBhMTU3MzU1YzhlZjE4ZGZlNWFhYjBhOGYz YWY4NTBlYTFmNDI2ZjY1MjNhYzQzMzU4NzExMTJhMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJoS2Ps2ZDRVgl0Jkgck+0SiMK11utgi6PNszmkjKwBKrU IK3VkgLSr+QUmt9H5/KIB5iflCJbgn2TnY686/QCNI+jhdX7huO71fEDv13N2sSA smdsaXZRQau65UdVWyiDUZ5U7eLO9aJWjEu/ttB3QVmZziFdgCaymA7Tru5lm8i7 R+oWH8hqZ8VB3pcCiGXSreLLDBsjvEZVn4r9A4kLRx3Nu6KhXR7oocUfof8Pr27S Cv9Z6K/lid+8ae0lhdxj7T60mqpOU/EQCOr/X9izkMzWQHjnMDFQlgbBEXP7SAqD h7tbdME9XHLAagKl1xnrlooHiuLsDNDUVHw5BdabAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUg3+D2koWGBEnVtUzN1RxGQxYdaowHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2I2NWE3MTY1LTliMWEtNGZhYy1iYzE3LTY4NWY5YmQ2ODk5Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAPKAwDQYJKoZIhvcNAQELBQADggEBAGGFz+Dtxy8ELK+G8SYMfyHB 7jWPINCUZW7FoM1J/rVSUZx53r/W3/1cQXer4B1s/dNRj5blRGAzstl1dXCSW1AL Aw29ZdTrMKOkzmu3FOYMMrfT5tNcKgW21oPH3pr8iX1fEbxyUCNiYThcc+z6zu7T 0UvQsVrnZ/iQ4u7epDqI0yw05aOfZ44LArBhdtW/RDda0mab61P9VDuAnT/PYjtH nzASDf34iHbk66AACOG0fLf9cBZZIacnXba2N7kAdCnnbyUzBRdh7br1wAFd869Z znrFVvQtnCZt5wQe5+1cTIxQrOLHdmhYqOa0oAUtRPowgWq/xkuXkPW+Oyj1s0Q= -----END CERTIFICATE-----Generated at Wed Nov 5 09:26:58 2025 by rpki-client