$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bacd36f3-ac68-4d9d-9918-21dd6f335186.roa File: bacd36f3-ac68-4d9d-9918-21dd6f335186.roa (raw, json) Hash identifier: 0L/9KBc0VyWW197+y3yDSpZAslBNMZpGdU6DXAvjRwM= Subject key identifier: B5:C7:38:E2:83:56:DC:9E:A7:C0:D1:68:42:0A:82:D1:83:DA:DB:7D Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4AD5F36C941CD304D55ACB4B64829A7ECA62BD42 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bacd36f3-ac68-4d9d-9918-21dd6f335186.roa Signing time: Thu 30 Oct 2025 21:07:02 +0000 ROA not before: Thu 30 Oct 2025 21:07:02 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:14b6::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:d5:f3:6c:94:1c:d3:04:d5:5a:cb:4b:64:82:9a:7e:ca:62:bd:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 21:07:02 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=88c7d88089c1a230c5dd80cbce602f9d9c2aed897cc9e7f4d3311b925aa1f1cf, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:ff:d3:27:8c:ab:a1:ee:ae:d8:73:dd:a8:ab: 7e:57:ed:46:11:8d:06:d4:d1:4c:83:a4:31:17:32: 6b:74:e6:bb:89:d6:03:c8:63:c7:33:09:66:f1:da: 80:d7:bc:bf:5b:cf:59:54:a6:62:12:10:3e:5d:ce: 4d:9a:b9:5d:ab:3b:3c:5c:7c:2f:d8:64:35:ac:43: 82:de:88:62:a2:45:90:94:f6:10:7e:9b:e9:98:13: eb:5a:58:67:9f:7b:03:6c:d2:11:f3:fb:7d:03:b5: c9:a6:49:ea:1d:7d:f3:45:9e:5a:bd:a3:75:ba:2f: c0:3e:98:22:b6:4d:5f:ca:fd:b3:2b:3b:be:82:6f: 42:5f:7d:a7:9c:14:d8:ac:13:23:f0:6d:0c:d3:db: 4f:49:3a:b6:c8:7c:1e:4b:b8:20:bb:95:34:a7:25: 76:e3:b5:56:7d:d8:27:4e:52:90:6a:d7:50:b1:5f: 0d:3b:51:4e:95:d8:c5:5c:86:a0:86:75:c1:84:7c: 3c:5f:96:a9:1b:44:7e:f3:14:a4:c7:4f:ce:55:bf: 1a:72:56:df:71:fb:8d:d1:88:01:f1:27:f5:9b:fe: 2b:26:68:58:ee:32:fd:2a:5e:27:5b:a8:3e:cf:05: f0:f0:7b:3c:7f:fc:53:85:39:29:b4:50:01:eb:5a: 2f:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:C7:38:E2:83:56:DC:9E:A7:C0:D1:68:42:0A:82:D1:83:DA:DB:7D X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bacd36f3-ac68-4d9d-9918-21dd6f335186.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:14b6::/47 Signature Algorithm: sha256WithRSAEncryption 52:de:2d:fd:9e:01:c6:8e:21:f9:20:fb:9b:70:18:12:16:52: 9e:c2:d3:6e:4d:c9:02:2c:54:e1:0a:3c:39:f8:cb:df:56:24: 4e:5a:9d:39:d4:ee:e5:c9:56:50:02:91:98:4b:a4:e0:fa:a9: 52:e0:f9:c4:c3:ef:9c:65:1e:64:5e:f1:aa:64:7b:a9:04:4b: b7:30:b9:90:20:f7:95:8f:6b:29:05:68:4b:74:17:bb:63:ff: 54:73:67:16:73:0a:b4:84:66:24:4b:cb:5e:d1:87:0c:9f:0c: 50:89:a7:fd:94:9d:45:99:5a:3e:1d:f6:a7:dd:d9:78:02:ca: 34:e2:00:e4:fe:1b:43:09:cb:28:57:ba:75:70:cf:d3:6a:44: b7:b2:66:45:db:36:6f:64:45:85:9d:f8:1a:8b:f5:a9:cc:81: c3:9a:ab:92:64:0f:b1:b6:74:b5:98:d4:1a:92:63:a6:60:27: 7d:58:85:b8:3c:41:e1:a5:1a:6b:df:58:0b:aa:ac:db:18:30: 60:26:af:e6:33:36:d4:6a:27:fa:dd:d2:79:10:a5:2f:1d:52: 50:6a:95:ae:c8:21:b2:1b:3f:10:4f:d2:5d:3e:8c:5e:cf:d7: e8:86:40:8a:3d:44:c4:d2:8f:43:86:bd:71:4e:98:a9:ec:70: 44:a5:d5:51 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUStXzbJQc0wTVWstLZIKafspivUIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjEwNzAyWhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4OGM3ZDg4MDg5YzFhMjMwYzVkZDgwY2JjZTYwMmY5ZDlj MmFlZDg5N2NjOWU3ZjRkMzMxMWI5MjVhYTFmMWNmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCW/9MnjKuh7q7Yc92oq35X7UYRjQbU0UyDpDEXMmt05ruJ 1gPIY8czCWbx2oDXvL9bz1lUpmISED5dzk2auV2rOzxcfC/YZDWsQ4LeiGKiRZCU 9hB+m+mYE+taWGefewNs0hHz+30DtcmmSeodffNFnlq9o3W6L8A+mCK2TV/K/bMr O76Cb0JffaecFNisEyPwbQzT209JOrbIfB5LuCC7lTSnJXbjtVZ92CdOUpBq11Cx Xw07UU6V2MVchqCGdcGEfDxflqkbRH7zFKTHT85VvxpyVt9x+43RiAHxJ/Wb/ism aFjuMv0qXidbqD7PBfDwezx//FOFOSm0UAHrWi/RAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUtcc44oNW3J6nwNFoQgqC0YPa230wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2JhY2QzNmYzLWFjNjgtNGQ5ZC05OTE4LTIxZGQ2ZjMzNTE4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAFLYwDQYJKoZIhvcNAQELBQADggEBAFLeLf2eAcaOIfkg+5twGBIW Up7C025NyQIsVOEKPDn4y99WJE5anTnU7uXJVlACkZhLpOD6qVLg+cTD75xlHmRe 8apke6kES7cwuZAg95WPaykFaEt0F7tj/1RzZxZzCrSEZiRLy17RhwyfDFCJp/2U nUWZWj4d9qfd2XgCyjTiAOT+G0MJyyhXunVwz9NqRLeyZkXbNm9kRYWd+BqL9anM gcOaq5JkD7G2dLWY1BqSY6ZgJ31Yhbg8QeGlGmvfWAuqrNsYMGAmr+YzNtRqJ/rd 0nkQpS8dUlBqla7IIbIbPxBP0l0+jF7P1+iGQIo9RMTSj0OGvXFOmKnscESl1VE= -----END CERTIFICATE-----Generated at Wed Nov 5 07:40:39 2025 by rpki-client