$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b9598cb4-28ac-4a39-8508-3604cab0ea83.roa File: b9598cb4-28ac-4a39-8508-3604cab0ea83.roa (raw, json) Hash identifier: qquaBXdrn5rCH6Rmq95BFgj0KFAuH2J131OtSBno7F0= Subject key identifier: 42:35:8C:E9:40:7C:D1:F1:CF:75:B7:64:09:B6:DD:02:A9:72:54:6C Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 14485470935365B7BE3BFEE6CCE0C59C90ACDC24 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b9598cb4-28ac-4a39-8508-3604cab0ea83.roa Signing time: Fri 31 Oct 2025 07:36:59 +0000 ROA not before: Fri 31 Oct 2025 07:36:59 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1a00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:48:54:70:93:53:65:b7:be:3b:fe:e6:cc:e0:c5:9c:90:ac:dc:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 07:36:59 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=b97cab96b451a51fbfb02e54cfdc6f40aab3ed9ea5ef0f5c9526e0de91782d39, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b6:ca:ef:02:22:47:95:d2:32:a7:18:24:48: 42:b3:a2:67:bf:3a:93:04:34:3e:fc:70:8d:ce:ff: c2:dc:17:12:25:35:50:d9:7c:6c:92:1a:a8:17:ae: fc:59:1a:5c:b2:e1:49:0f:ac:70:a6:9f:b7:28:68: 41:c1:52:80:34:c4:f6:7e:b4:5d:8d:f1:ec:40:78: 95:35:d3:df:82:11:2a:58:f8:5f:f5:a0:1b:78:ac: 5e:56:7d:ed:bf:58:1e:98:0b:10:29:39:14:21:e4: 0f:cf:60:bf:46:7e:31:3b:ba:c8:a0:98:9e:a9:a3: 4d:4a:15:9f:cc:9d:1e:30:9e:32:51:f3:fa:50:39: 24:c1:fa:fb:62:d7:d9:f6:95:f3:ef:f5:4e:b0:c7: c1:51:ef:b6:2b:bd:1d:d2:0d:6b:87:db:ce:b7:ad: 52:f2:2b:c0:1f:96:4f:42:a9:5e:05:55:e9:cf:8d: 54:ac:d1:22:18:37:9f:d6:c3:09:c2:e6:8e:b9:79: 02:f3:f0:6b:c7:54:67:90:95:26:52:e2:8c:c6:27: 3e:15:93:c0:ae:e7:95:b3:1e:49:ed:e6:a3:f6:6c: 94:88:d4:4f:97:e0:de:83:a2:89:bc:12:3c:bf:54: 08:75:57:81:23:3f:ff:4b:5c:34:24:2d:a0:5c:3a: 9a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:35:8C:E9:40:7C:D1:F1:CF:75:B7:64:09:B6:DD:02:A9:72:54:6C X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b9598cb4-28ac-4a39-8508-3604cab0ea83.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1a00::/42 Signature Algorithm: sha256WithRSAEncryption a0:de:99:16:bf:af:f8:3f:69:24:0b:88:42:cf:5b:4a:9d:17: 1c:30:78:da:70:42:35:d4:d2:03:31:37:41:41:bf:8d:2a:c2: 1a:49:a7:12:63:47:c6:9f:57:54:7a:e7:36:47:8d:1e:e7:15: b8:36:99:d3:72:af:21:e1:0a:54:b8:85:43:9d:98:1d:40:0b: 89:a0:57:a8:fe:9e:eb:5a:bf:c7:b7:b2:b5:41:2b:78:6c:66: 7c:7f:0a:9b:65:a9:7e:a5:e3:ea:a6:3b:8a:d9:cf:bf:0f:4b: 3e:18:a1:d4:6a:d5:39:28:78:67:5f:de:12:61:f9:41:90:ea: 10:a6:37:e2:60:72:4e:af:bf:e8:4a:d1:4b:ed:95:8a:78:16: 03:a1:c3:ea:4d:e6:7c:df:05:c4:30:2c:dc:73:92:00:27:ae: fc:01:0e:fe:cc:f0:3a:70:6e:04:90:97:0c:45:e0:2b:75:08: 43:c0:91:b8:cc:74:e0:93:ca:12:3a:a6:ee:93:2d:4e:86:d2: 8c:1b:0b:f5:5b:92:f8:18:2f:1d:7c:96:c1:0a:4e:9e:72:9c: a2:93:76:c7:f7:74:03:cd:61:0f:b6:b9:2f:e2:3c:05:f4:62: fa:ab:81:fe:a3:99:f4:0d:f8:04:ed:96:80:3c:3f:df:15:a3: 75:8d:3b:aa -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFEhUcJNTZbe+O/7mzODFnJCs3CQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDczNjU5WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOTdjYWI5NmI0NTFhNTFmYmZiMDJlNTRjZmRjNmY0MGFh YjNlZDllYTVlZjBmNWM5NTI2ZTBkZTkxNzgyZDM5MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjtsrvAiJHldIypxgkSEKzome/OpMEND78cI3O/8LcFxIl NVDZfGySGqgXrvxZGlyy4UkPrHCmn7coaEHBUoA0xPZ+tF2N8exAeJU109+CESpY +F/1oBt4rF5Wfe2/WB6YCxApORQh5A/PYL9GfjE7usigmJ6po01KFZ/MnR4wnjJR 8/pQOSTB+vti19n2lfPv9U6wx8FR77YrvR3SDWuH2863rVLyK8Aflk9CqV4FVenP jVSs0SIYN5/WwwnC5o65eQLz8GvHVGeQlSZS4ozGJz4Vk8Cu55WzHknt5qP2bJSI 1E+X4N6Doom8Ejy/VAh1V4EjP/9LXDQkLaBcOpoxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQjWM6UB80fHPdbdkCbbdAqlyVGwwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2I5NTk4Y2I0LTI4YWMtNGEzOS04NTA4LTM2MDRjYWIwZWE4My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAJAAGgAwDQYJKoZIhvcNAQELBQADggEBAKDemRa/r/g/aSQLiELPW0qd FxwweNpwQjXU0gMxN0FBv40qwhpJpxJjR8afV1R65zZHjR7nFbg2mdNyryHhClS4 hUOdmB1AC4mgV6j+nutav8e3srVBK3hsZnx/CptlqX6l4+qmO4rZz78PSz4YodRq 1TkoeGdf3hJh+UGQ6hCmN+Jgck6vv+hK0UvtlYp4FgOhw+pN5nzfBcQwLNxzkgAn rvwBDv7M8DpwbgSQlwxF4Ct1CEPAkbjMdOCTyhI6pu6TLU6G0owbC/VbkvgYLx18 lsEKTp5ynKKTdsf3dAPNYQ+2uS/iPAX0Yvqrgf6jmfQN+ATtloA8P98Vo3WNO6o= -----END CERTIFICATE-----Generated at Wed Nov 5 12:30:23 2025 by rpki-client