$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bd30581e-d15a-45d1-8cec-d56a6870814e.roa File: bd30581e-d15a-45d1-8cec-d56a6870814e.roa (raw, json) Hash identifier: kegdp2rU5Ci5IOB38pTfzgeMHAxAHgwp30xsEa0zie0= Subject key identifier: F3:45:1A:09:D9:BE:69:17:28:D0:F9:14:4B:B1:ED:9A:8E:F9:4E:6B Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 721EACC4805F6AD424EC2CBB824B61DE1D6409E3 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bd30581e-d15a-45d1-8cec-d56a6870814e.roa Signing time: Fri 31 Oct 2025 00:55:11 +0000 ROA not before: Fri 31 Oct 2025 00:55:11 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3870::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:1e:ac:c4:80:5f:6a:d4:24:ec:2c:bb:82:4b:61:de:1d:64:09:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 00:55:11 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=133cbce982713c55a87dc8977cce8f2adbcf4b7bd1e9e8a6cc10d9739f1e7725, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:4e:13:7a:0c:fc:8d:2e:b9:d5:3b:90:50:29: fd:41:dc:1f:81:ad:56:11:3d:81:76:3e:98:a5:ae: 7a:ca:c5:d0:d8:53:46:50:97:ee:b9:d7:ec:ea:56: 60:88:93:cc:8f:e1:e0:79:dd:0d:20:24:b5:95:11: 2b:c2:67:39:3b:03:ae:38:ed:b6:67:f3:73:9e:7f: 8f:70:25:81:7f:81:16:39:1e:d3:22:dd:89:76:55: a0:62:29:d6:6c:ef:7d:6a:38:8e:e2:1f:19:67:19: f9:08:71:fb:ee:87:e1:1e:cd:04:3f:c5:12:b8:d2: a6:64:5d:56:f5:01:0a:dd:d6:6d:07:99:bc:15:fd: d3:b5:b2:9c:e1:3a:c1:b0:9a:38:1d:1c:70:7f:1d: 05:8d:80:e1:c2:7f:3e:f6:30:82:61:34:1d:d8:9a: 92:20:84:18:51:ed:e5:b5:8e:df:36:08:36:1c:d3: eb:dd:56:8d:a0:de:2b:4e:32:b4:cd:2c:95:b5:7b: 1c:2f:e6:05:b5:ad:83:13:e7:95:b1:f3:8b:75:66: ae:9c:8c:ef:d0:bd:6c:c0:70:dc:c8:c4:44:a7:48: a6:10:92:31:51:1e:fe:e8:43:9c:44:8a:a5:b9:ac: c1:74:28:42:ed:d4:23:ab:a4:d5:f7:1c:87:c2:71: 63:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:45:1A:09:D9:BE:69:17:28:D0:F9:14:4B:B1:ED:9A:8E:F9:4E:6B X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bd30581e-d15a-45d1-8cec-d56a6870814e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3870::/47 Signature Algorithm: sha256WithRSAEncryption 0f:14:5d:bf:10:a4:76:25:98:ff:b9:b5:8d:00:a1:b0:94:dd: 63:1b:0d:ca:48:f9:27:47:66:53:eb:88:36:3a:be:c0:a1:ca: c2:d0:72:12:c3:a8:a7:38:26:63:e6:23:83:09:ce:6a:6c:b4: c6:05:9b:8b:5f:e8:29:d4:c1:f1:d2:fa:34:1b:26:9b:de:ba: 66:c9:c2:c0:59:38:9a:32:05:7a:5f:f2:8c:9e:14:1f:1d:45: ac:04:c9:12:be:8b:0a:4d:53:b7:05:d9:3e:fc:7c:a8:ef:98: 7a:47:e1:21:6a:9e:82:4d:b9:f2:77:6c:7d:7a:ba:7b:bd:0b: ef:ba:f5:1d:1f:a4:17:a0:de:17:ac:96:3b:af:02:22:f1:ab: 5a:4c:eb:10:24:b9:c9:ed:f9:d0:74:fa:67:d7:3c:2a:ac:26: ba:8e:55:47:b9:11:89:94:7d:7e:53:91:f6:a2:16:f5:12:79: be:7d:7b:35:0b:64:f9:f0:fe:cf:4c:d3:07:af:74:75:9d:d6: 00:2b:08:9f:54:79:df:2c:5f:e6:3b:9e:00:9f:42:75:98:1b: c8:59:b1:8d:f1:32:dd:8c:49:6e:0f:f6:d0:00:42:e6:5f:96: 2e:89:cf:9b:48:4f:f4:66:29:47:54:3c:63:b6:e4:5c:a2:b5: ab:81:eb:a9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUch6sxIBfatQk7Cy7gkth3h1kCeMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDA1NTExWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMzNjYmNlOTgyNzEzYzU1YTg3ZGM4OTc3Y2NlOGYyYWRi Y2Y0YjdiZDFlOWU4YTZjYzEwZDk3MzlmMWU3NzI1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmThN6DPyNLrnVO5BQKf1B3B+BrVYRPYF2PpilrnrKxdDY U0ZQl+651+zqVmCIk8yP4eB53Q0gJLWVESvCZzk7A6447bZn83Oef49wJYF/gRY5 HtMi3Yl2VaBiKdZs731qOI7iHxlnGfkIcfvuh+EezQQ/xRK40qZkXVb1AQrd1m0H mbwV/dO1spzhOsGwmjgdHHB/HQWNgOHCfz72MIJhNB3YmpIghBhR7eW1jt82CDYc 0+vdVo2g3itOMrTNLJW1exwv5gW1rYMT55Wx84t1Zq6cjO/QvWzAcNzIxESnSKYQ kjFRHv7oQ5xEiqW5rMF0KELt1COrpNX3HIfCcWPBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU80UaCdm+aRco0PkUS7Htmo75TmswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2JkMzA1ODFlLWQxNWEtNDVkMS04Y2VjLWQ1NmE2ODcwODE0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOHAwDQYJKoZIhvcNAQELBQADggEBAA8UXb8QpHYlmP+5tY0AobCU 3WMbDcpI+SdHZlPriDY6vsChysLQchLDqKc4JmPmI4MJzmpstMYFm4tf6CnUwfHS +jQbJpveumbJwsBZOJoyBXpf8oyeFB8dRawEyRK+iwpNU7cF2T78fKjvmHpH4SFq noJNufJ3bH16unu9C++69R0fpBeg3hesljuvAiLxq1pM6xAkucnt+dB0+mfXPCqs JrqOVUe5EYmUfX5TkfaiFvUSeb59ezULZPnw/s9M0wevdHWd1gArCJ9Ued8sX+Y7 ngCfQnWYG8hZsY3xMt2MSW4P9tAAQuZfli6Jz5tIT/RmKUdUPGO25FyitauB66k= -----END CERTIFICATE-----Generated at Wed Nov 5 05:34:08 2025 by rpki-client