$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/be033cfc-a707-4fb0-a448-9a590eddadff.roa File: be033cfc-a707-4fb0-a448-9a590eddadff.roa (raw, json) Hash identifier: PZq3maSRkZhr2g8ryaOr3sJzmG9i3kthb5+DbXFnOP0= Subject key identifier: 72:39:C3:CD:AC:BC:E0:65:20:E6:E0:29:F4:98:3D:87:84:18:98:E0 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 7D6115D8AA940197CE4741E467AFD8253541FA5F Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/be033cfc-a707-4fb0-a448-9a590eddadff.roa Signing time: Thu 30 Oct 2025 21:08:35 +0000 ROA not before: Thu 30 Oct 2025 21:08:35 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:14de::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:61:15:d8:aa:94:01:97:ce:47:41:e4:67:af:d8:25:35:41:fa:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 21:08:35 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=abd5db5a85b6151f6ed63c53010a6ccf0d72b0542a413cd7b4d897bd8e3b0c59, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:03:95:11:14:4c:55:51:5b:98:8c:f6:88:58: d9:33:a7:be:56:72:4e:d9:8b:55:35:6b:3e:ec:89: 9c:7b:6f:0f:7b:f8:f1:25:9b:56:e4:e3:a1:5b:66: ea:dc:08:60:ad:fa:75:f4:a0:34:f3:54:12:37:2a: 82:56:a0:86:d6:5a:b7:f0:8d:94:06:d9:27:c4:ee: bb:6f:8e:0a:c4:4d:0c:d3:24:c2:bd:5b:3a:eb:d7: ab:7c:e7:d0:10:ed:28:f0:37:2f:ba:bd:61:47:87: 70:9c:2f:24:f1:47:3d:67:ce:f7:04:e8:8d:08:fd: 14:92:19:db:8a:89:d9:85:6f:46:e9:99:34:8c:7b: 00:9b:96:7f:b8:7f:39:72:77:0f:d4:c0:1f:2d:dc: 0c:93:f1:d6:14:1f:85:69:72:7e:4b:fe:c8:56:e1: fc:6e:a5:5e:97:92:13:12:87:6a:0d:8d:b4:be:21: ba:d2:b5:95:8c:c6:91:2e:d7:51:57:58:a3:93:fe: 4c:d9:b7:d7:e5:4f:73:9b:16:b5:1e:74:85:89:15: 3c:f4:c4:af:35:f9:c0:d2:4b:93:57:b1:2b:77:31: a5:9f:5b:44:d8:63:51:db:61:d0:b7:e6:10:be:f9: b5:cd:d1:e7:6d:26:a4:6c:e0:e4:42:77:93:53:fc: 21:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:39:C3:CD:AC:BC:E0:65:20:E6:E0:29:F4:98:3D:87:84:18:98:E0 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/be033cfc-a707-4fb0-a448-9a590eddadff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:14de::/47 Signature Algorithm: sha256WithRSAEncryption 92:2a:fa:4f:e7:67:ba:a0:1e:27:57:c1:81:f2:bb:99:3e:e7: 6d:e5:56:dc:6a:49:75:84:f3:93:6e:e1:f4:e4:55:c0:4e:93: dd:6c:59:d1:14:41:32:b7:83:41:9e:b7:3b:20:6a:57:16:15: 6b:eb:cf:60:14:62:ae:00:50:19:92:3a:af:68:e6:11:b5:ac: 82:dc:b8:fa:7c:40:98:bc:81:30:bf:92:a3:0f:39:75:f3:d7: 4b:f3:f8:b6:04:f7:12:84:61:07:0f:ca:f6:c6:c3:e5:8f:dc: c6:31:11:f4:1e:8c:42:d8:36:96:79:33:72:b3:8f:1c:44:e7: cd:10:b8:18:63:f0:fb:b9:e8:e3:74:a9:7d:0a:96:b7:db:0d: 49:3e:15:f0:a1:ef:81:7d:6e:cc:99:f9:fd:b3:1c:c4:a2:2f: 2f:07:e1:1a:6c:3d:fa:0b:b9:bc:fb:c2:ad:5c:3c:cb:42:04: e5:d8:d7:d3:ab:ee:e0:0d:48:df:f3:97:32:39:a7:50:d1:b9: 7c:60:87:a5:68:e0:cf:7b:56:bd:3e:94:5a:1f:13:6d:73:cc: 78:ea:19:b5:2e:44:12:70:9d:97:73:5e:3a:a6:b9:94:b2:6e: 26:7b:a4:06:2a:fb:fb:3a:af:17:a6:67:d2:27:75:48:79:76: a5:a1:b2:20 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfWEV2KqUAZfOR0HkZ6/YJTVB+l8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjEwODM1WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYmQ1ZGI1YTg1YjYxNTFmNmVkNjNjNTMwMTBhNmNjZjBk NzJiMDU0MmE0MTNjZDdiNGQ4OTdiZDhlM2IwYzU5MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiA5URFExVUVuYjPaIWNkzp75Wck7Zi1U1az7siZx7bw97 +PElm1bk46FbZurcCGCt+nX0oDTzVBI3KoJWoIbWWrfwjZQG2SfE7rtvjgrETQzT JMK9Wzrr16t859AQ7SjwNy+6vWFHh3CcLyTxRz1nzvcE6I0I/RSSGduKidmFb0bp mTSMewCbln+4fzlydw/UwB8t3AyT8dYUH4Vpcn5L/shW4fxupV6XkhMSh2oNjbS+ IbrStZWMxpEu11FXWKOT/kzZt9flT3ObFrUedIWJFTz0xK81+cDSS5NXsSt3MaWf W0TYY1HbYdC35hC++bXN0edtJqRs4ORCd5NT/CHRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcjnDzay84GUg5uAp9Jg9h4QYmOAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2JlMDMzY2ZjLWE3MDctNGZiMC1hNDQ4LTlhNTkwZWRkYWRmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAFN4wDQYJKoZIhvcNAQELBQADggEBAJIq+k/nZ7qgHidXwYHyu5k+ 523lVtxqSXWE85Nu4fTkVcBOk91sWdEUQTK3g0GetzsgalcWFWvrz2AUYq4AUBmS Oq9o5hG1rILcuPp8QJi8gTC/kqMPOXXz10vz+LYE9xKEYQcPyvbGw+WP3MYxEfQe jELYNpZ5M3KzjxxE580QuBhj8Pu56ON0qX0KlrfbDUk+FfCh74F9bsyZ+f2zHMSi Ly8H4RpsPfoLubz7wq1cPMtCBOXY19Or7uANSN/zlzI5p1DRuXxgh6Vo4M97Vr0+ lFofE21zzHjqGbUuRBJwnZdzXjqmuZSybiZ7pAYq+/s6rxemZ9IndUh5dqWhsiA= -----END CERTIFICATE-----Generated at Wed Nov 5 10:54:41 2025 by rpki-client