$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ba81f5ef-5624-43ad-a7af-0ed757974f30.roa File: ba81f5ef-5624-43ad-a7af-0ed757974f30.roa (raw, json) Hash identifier: Nj/AbPRtNUpg9BZyMVS4SMr9/hJq7V90uPE9oNr/XqI= Subject key identifier: B2:67:03:B5:91:68:CD:08:7B:EC:2E:82:FA:AA:FC:36:44:39:10:08 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 1E23D9DCCCB7473913D7249101AA2F8A142B512E Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ba81f5ef-5624-43ad-a7af-0ed757974f30.roa Signing time: Fri 31 Oct 2025 07:42:37 +0000 ROA not before: Fri 31 Oct 2025 07:42:37 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3c00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:23:d9:dc:cc:b7:47:39:13:d7:24:91:01:aa:2f:8a:14:2b:51:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 07:42:37 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=c6488aaa6e320f5630f6e9e8fd65a36662b9ad947bdbffbf0b9a558f05fe710c, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:1c:08:8e:10:9f:2f:29:e8:8c:76:59:29:fd: 0a:da:e0:a6:3a:fc:a6:8c:c7:5b:7c:7c:3f:95:e1: 9c:23:63:1f:38:5f:a0:e4:14:11:e6:b8:c2:26:c3: 34:e0:cd:dc:ce:11:de:a0:f4:e7:b9:31:4f:a8:74: c9:e7:45:0f:7c:a5:f1:e0:3e:a2:1f:7d:2b:d2:0c: 80:e1:79:b6:8c:d3:14:98:54:4a:21:3a:db:4d:f2: c4:7e:fc:ac:44:6a:b4:35:9e:c1:7c:3e:76:09:49: 95:2f:89:20:3e:8a:3d:48:cd:35:ca:83:da:6d:e6: d6:63:5c:7b:e5:55:0e:f0:39:1f:a3:fe:dc:bd:08: 9f:26:40:5b:2d:dd:7d:00:b3:78:5b:d7:a6:67:0e: db:b1:32:0b:e9:8c:79:e9:9e:d3:92:47:11:65:17: 86:a7:ff:dc:4a:b7:80:95:49:9e:d1:2d:dd:39:54: 1e:4a:d7:be:a7:df:27:69:63:b9:e9:fc:44:42:3c: bc:06:07:b3:ad:e6:c1:aa:81:f6:db:d4:c0:0f:a1: 42:9b:42:e0:6e:32:4e:8a:9a:b7:56:d6:52:91:92: 49:51:21:5f:e5:94:61:86:57:08:37:36:cb:08:98: c7:b2:e1:7e:0d:ad:a9:4a:71:4a:f6:6a:be:29:ba: 07:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:67:03:B5:91:68:CD:08:7B:EC:2E:82:FA:AA:FC:36:44:39:10:08 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ba81f5ef-5624-43ad-a7af-0ed757974f30.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3c00::/42 Signature Algorithm: sha256WithRSAEncryption 80:ff:49:c8:be:de:c1:6a:08:9e:42:15:5b:92:96:82:fe:75: 51:8a:30:32:a9:32:37:d3:3b:29:6e:04:84:50:65:89:66:81: f1:68:4d:5b:21:22:34:02:d8:2c:f9:43:8c:f4:54:1b:44:c8: 29:ec:0d:b9:26:9c:01:01:c3:c3:59:e6:02:04:87:06:4c:4a: 87:55:9a:fa:e3:2a:ea:0f:ed:82:11:91:3a:d1:a3:8c:93:45: d9:bb:6d:03:0b:4e:2a:7c:b9:d0:03:25:1a:23:57:2e:31:a0: 36:a0:8e:95:57:64:68:cc:76:cb:49:e8:fa:c1:7e:c5:1a:0f: 81:83:ba:bf:9f:30:f2:7d:ba:60:f1:8b:0a:a7:f7:78:0b:32: 07:bc:69:16:f7:6d:18:22:fb:ec:84:de:b2:ec:a6:cb:43:6d: af:e5:fe:58:a7:f8:3c:a7:50:f7:19:83:57:b9:da:74:8d:f9: 24:c2:74:71:f9:6d:a2:ea:db:12:31:c2:60:42:1b:44:9a:7a: 80:ec:44:37:55:88:00:87:6d:fe:ca:f4:b6:97:b7:5d:2b:8c: d1:7b:84:97:82:db:88:32:13:74:51:aa:4b:b4:ec:61:89:d0: 1e:88:d4:66:7a:9e:da:3f:6d:fa:04:1a:9b:57:64:63:6f:b8: 9b:61:c6:ed -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHiPZ3My3RzkT1ySRAaovihQrUS4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDc0MjM3WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNjQ4OGFhYTZlMzIwZjU2MzBmNmU5ZThmZDY1YTM2NjYy YjlhZDk0N2JkYmZmYmYwYjlhNTU4ZjA1ZmU3MTBjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDiHAiOEJ8vKeiMdlkp/Qra4KY6/KaMx1t8fD+V4ZwjYx84 X6DkFBHmuMImwzTgzdzOEd6g9Oe5MU+odMnnRQ98pfHgPqIffSvSDIDhebaM0xSY VEohOttN8sR+/KxEarQ1nsF8PnYJSZUviSA+ij1IzTXKg9pt5tZjXHvlVQ7wOR+j /ty9CJ8mQFst3X0As3hb16ZnDtuxMgvpjHnpntOSRxFlF4an/9xKt4CVSZ7RLd05 VB5K176n3ydpY7np/ERCPLwGB7Ot5sGqgfbb1MAPoUKbQuBuMk6KmrdW1lKRkklR IV/llGGGVwg3NssImMey4X4NralKcUr2ar4pugeTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUsmcDtZFozQh77C6C+qr8NkQ5EAgwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2JhODFmNWVmLTU2MjQtNDNhZC1hN2FmLTBlZDc1Nzk3NGYzMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAJAAPAAwDQYJKoZIhvcNAQELBQADggEBAID/Sci+3sFqCJ5CFVuSloL+ dVGKMDKpMjfTOyluBIRQZYlmgfFoTVshIjQC2Cz5Q4z0VBtEyCnsDbkmnAEBw8NZ 5gIEhwZMSodVmvrjKuoP7YIRkTrRo4yTRdm7bQMLTip8udADJRojVy4xoDagjpVX ZGjMdstJ6PrBfsUaD4GDur+fMPJ9umDxiwqn93gLMge8aRb3bRgi++yE3rLspstD ba/l/lin+DynUPcZg1e52nSN+STCdHH5baLq2xIxwmBCG0SaeoDsRDdViACHbf7K 9LaXt10rjNF7hJeC24gyE3RRqku07GGJ0B6I1GZ6nto/bfoEGptXZGNvuJthxu0= -----END CERTIFICATE-----Generated at Wed Nov 5 09:28:05 2025 by rpki-client