$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b861eb6f-0f14-4b1a-8618-959892225c1a.roa File: b861eb6f-0f14-4b1a-8618-959892225c1a.roa (raw, json) Hash identifier: wfm8gVcJeVY7NoNvRL+J3gJuBbNEiOjBaa1E0SaUtGE= Subject key identifier: 52:7D:6C:27:50:E1:56:2A:A6:09:BD:A7:85:9D:4A:CC:4E:77:20:E4 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 13DC4EF5D17C1D735B7638F0FF9C0B71804BF5AF Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b861eb6f-0f14-4b1a-8618-959892225c1a.roa Signing time: Fri 31 Oct 2025 00:56:39 +0000 ROA not before: Fri 31 Oct 2025 00:56:39 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:38b6::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:dc:4e:f5:d1:7c:1d:73:5b:76:38:f0:ff:9c:0b:71:80:4b:f5:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 00:56:39 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=e71086565067ad814f7df40c2415c1ee83d6d4839fc47d0fbada5d9568df76f8, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ac:70:8e:9c:10:dc:6e:9b:8f:7f:0d:14:f8: b7:f0:c6:d7:6d:af:1c:41:03:c3:0b:ee:3f:3b:1b: 43:6f:f9:34:fe:cc:24:95:e2:c2:b1:fa:40:6a:fa: 8a:fd:a9:df:9f:f0:39:1a:0f:6d:00:d6:05:6b:9a: df:0f:61:6b:8b:91:e9:bc:43:d4:3a:5c:3d:63:10: ed:f9:ab:f4:6a:08:d8:ad:b1:20:fb:b5:22:9d:b6: f3:c9:bd:f8:57:31:47:a5:c8:59:bd:69:51:30:ed: 4e:1f:60:00:b9:e5:96:fa:39:58:5e:85:16:2d:90: 84:0c:01:8b:c9:68:3a:70:cd:6b:51:89:2e:ba:2a: ab:78:71:07:53:b7:27:0d:e5:98:08:3c:76:11:81: 63:ce:fb:10:34:59:92:88:b4:80:d9:6b:70:8e:ef: ed:3e:f5:f1:de:83:bf:55:ec:68:38:03:c7:22:e2: 79:5a:e4:63:c2:eb:c6:a1:ce:a0:06:a4:85:34:0b: be:89:77:2b:e9:97:aa:22:a1:c2:20:72:63:da:e9: 99:65:c7:53:33:56:e0:7d:19:24:f7:3b:44:a8:24: ae:d4:f1:33:31:12:67:3e:fb:09:cc:9a:61:9c:3b: fa:07:34:b3:65:4a:b6:99:cc:70:71:49:8e:0a:60: 88:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:7D:6C:27:50:E1:56:2A:A6:09:BD:A7:85:9D:4A:CC:4E:77:20:E4 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b861eb6f-0f14-4b1a-8618-959892225c1a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:38b6::/47 Signature Algorithm: sha256WithRSAEncryption 95:05:69:73:3a:63:11:b3:f4:a8:5f:65:d5:22:d9:f4:c0:bb: 80:02:23:9a:a5:41:ec:75:21:5a:73:2d:c8:b6:b1:e4:e2:00: 6d:2a:52:1b:31:c5:b2:bd:38:cc:21:80:95:f2:6a:2b:1b:9c: e0:fe:09:6c:bc:fe:3f:b0:81:95:13:be:ad:b0:18:dd:9b:3c: 81:11:a9:32:ea:6d:97:33:04:6e:f4:ef:00:37:ea:9c:c5:ca: d3:84:c7:1b:a9:b2:ac:09:f1:8e:8c:bc:ef:e2:86:47:71:3a: a4:2d:c1:1c:2d:cc:dc:7a:2d:c3:15:e2:79:80:d5:53:28:f8: 1c:a6:8a:3b:77:17:13:da:d2:54:49:49:4e:4b:91:4f:4d:4c: 55:bd:22:f3:51:7c:15:64:3d:1f:ad:37:aa:a7:9e:24:08:7c: 76:b9:28:0e:9b:a3:10:d1:f6:63:fc:fd:11:f7:e0:00:84:09: 43:ce:bb:a0:6b:c7:a3:46:a8:2e:15:8a:81:4f:06:0d:4c:34: a4:0d:ed:b9:32:3f:36:31:ba:18:de:4c:c0:a2:52:cb:2a:fd: 53:56:f5:4d:42:6b:98:f3:92:a2:94:e7:af:38:15:b0:53:5c: 92:93:97:49:f8:1d:90:97:e5:f6:79:3d:73:48:73:9e:c7:fd: f6:32:2c:b7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUE9xO9dF8HXNbdjjw/5wLcYBL9a8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDA1NjM5WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzEwODY1NjUwNjdhZDgxNGY3ZGY0MGMyNDE1YzFlZTgz ZDZkNDgzOWZjNDdkMGZiYWRhNWQ5NTY4ZGY3NmY4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfrHCOnBDcbpuPfw0U+LfwxtdtrxxBA8ML7j87G0Nv+TT+ zCSV4sKx+kBq+or9qd+f8DkaD20A1gVrmt8PYWuLkem8Q9Q6XD1jEO35q/RqCNit sSD7tSKdtvPJvfhXMUelyFm9aVEw7U4fYAC55Zb6OVhehRYtkIQMAYvJaDpwzWtR iS66Kqt4cQdTtycN5ZgIPHYRgWPO+xA0WZKItIDZa3CO7+0+9fHeg79V7Gg4A8ci 4nla5GPC68ahzqAGpIU0C76Jdyvpl6oiocIgcmPa6Zllx1MzVuB9GST3O0SoJK7U 8TMxEmc++wnMmmGcO/oHNLNlSraZzHBxSY4KYIjxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUn1sJ1DhViqmCb2nhZ1KzE53IOQwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2I4NjFlYjZmLTBmMTQtNGIxYS04NjE4LTk1OTg5MjIyNWMxYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOLYwDQYJKoZIhvcNAQELBQADggEBAJUFaXM6YxGz9KhfZdUi2fTA u4ACI5qlQex1IVpzLci2seTiAG0qUhsxxbK9OMwhgJXyaisbnOD+CWy8/j+wgZUT vq2wGN2bPIERqTLqbZczBG707wA36pzFytOExxupsqwJ8Y6MvO/ihkdxOqQtwRwt zNx6LcMV4nmA1VMo+Bymijt3FxPa0lRJSU5LkU9NTFW9IvNRfBVkPR+tN6qnniQI fHa5KA6boxDR9mP8/RH34ACECUPOu6Brx6NGqC4VioFPBg1MNKQN7bkyPzYxuhje TMCiUssq/VNW9U1Ca5jzkqKU5684FbBTXJKTl0n4HZCX5fZ5PXNIc57H/fYyLLc= -----END CERTIFICATE-----Generated at Wed Nov 5 10:54:34 2025 by rpki-client