$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/be5d9727-e453-40c5-be42-abd00d6fc9c4.roa File: be5d9727-e453-40c5-be42-abd00d6fc9c4.roa (raw, json) Hash identifier: ZCjhHbW/Yuv1EPEiGhJmkJsI6Xr/4mNWf2dXSnCRRqY= Subject key identifier: 29:38:03:0C:46:BC:8C:90:A1:15:73:EB:05:8E:E9:E0:64:15:76:3B Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 340598A5023260FE89C0CA0579C92944BA0611A9 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/be5d9727-e453-40c5-be42-abd00d6fc9c4.roa Signing time: Fri 31 Oct 2025 05:44:08 +0000 ROA not before: Fri 31 Oct 2025 05:44:08 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2d80::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:05:98:a5:02:32:60:fe:89:c0:ca:05:79:c9:29:44:ba:06:11:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 05:44:08 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=7119ceabe6295679b112321112010a777fd5e603dac9a0efbee225825f25ad01, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:89:b6:c9:21:29:94:1b:47:b8:b7:a9:b5:50: 59:99:fa:63:e6:58:5f:08:aa:ed:0c:02:27:8f:ad: 2f:21:76:4b:95:b6:cb:84:a2:ef:3d:c0:5b:e2:34: ee:91:d4:37:3e:76:21:ac:4d:19:11:e5:69:ea:d6: 9c:8b:f1:e9:b1:36:b4:04:36:2c:e0:34:22:cf:56: f2:a0:a4:64:8e:7a:88:49:e6:06:1f:a4:5a:5a:5b: 8f:99:0d:24:be:98:f5:a4:80:b4:53:9c:c3:23:99: 24:86:1d:92:10:59:75:70:bc:94:4a:91:47:37:4f: c7:fa:26:09:95:2a:76:f0:5f:ba:72:75:3f:a4:46: 8a:f8:e0:b0:de:e1:e6:5f:75:64:7b:84:de:66:be: 7b:bc:f2:61:ab:34:6d:48:13:98:92:7e:4d:50:ae: d9:7e:9d:da:38:de:5e:56:d4:92:ca:70:40:b2:d1: 80:fb:02:c5:59:74:e9:c3:a5:52:12:80:ef:d9:37: 80:38:6c:98:b2:cd:ed:d4:89:e5:fd:f4:f7:9c:fa: 2b:d8:aa:5d:56:33:47:35:c1:e8:27:e6:42:a5:28: 48:99:b5:2b:e9:97:32:87:38:8a:f0:b6:d9:9d:d8: 14:0b:f9:ba:30:d2:3e:ca:c3:d2:e7:41:36:f5:26: da:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:38:03:0C:46:BC:8C:90:A1:15:73:EB:05:8E:E9:E0:64:15:76:3B X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/be5d9727-e453-40c5-be42-abd00d6fc9c4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2d80::/45 Signature Algorithm: sha256WithRSAEncryption 67:46:eb:e7:b8:e1:ef:d3:d6:52:8c:2b:1e:f2:45:e4:67:de: 4d:c8:e2:4f:f4:db:6f:c4:60:bb:39:a6:76:e0:da:df:57:d6: 23:95:fd:65:04:a4:ab:eb:06:bf:b5:8e:f8:be:07:85:90:a1: 1e:d6:df:31:9b:e1:7f:73:de:38:b8:5c:00:0c:80:00:df:42: 94:8e:cf:b6:e9:13:7c:e3:44:4b:8b:68:aa:87:a7:f6:f4:13: d7:11:64:e0:c4:95:6f:71:38:08:1a:57:fe:cc:e2:12:b9:34: 41:7b:f6:52:4f:bb:0b:3c:17:0c:60:55:4c:db:56:ce:88:dd: 28:e5:e0:a8:aa:eb:44:ea:cf:b4:87:89:13:45:33:cf:08:35: 0e:c7:e5:91:e6:99:20:b4:ac:37:77:5b:9a:4b:76:e2:8c:61: fa:69:01:dc:19:ab:69:5b:fb:be:b4:6c:8e:7c:47:3a:b5:4a: 0c:8d:db:dc:09:5b:3e:39:7c:d6:3e:ad:46:97:c8:10:6c:40: 8c:5c:43:c7:5b:b0:ee:3d:27:89:90:23:16:f5:e7:44:12:54: ca:6d:c7:a6:89:0a:05:f3:73:c8:3b:26:78:35:31:30:ff:71: f5:b3:85:27:6e:79:65:f0:aa:f1:2f:dc:61:7a:2b:31:50:27: 08:30:fa:d9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNAWYpQIyYP6JwMoFeckpRLoGEakwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDU0NDA4WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MTE5Y2VhYmU2Mjk1Njc5YjExMjMyMTExMjAxMGE3Nzdm ZDVlNjAzZGFjOWEwZWZiZWUyMjU4MjVmMjVhZDAxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXibbJISmUG0e4t6m1UFmZ+mPmWF8Iqu0MAiePrS8hdkuV tsuEou89wFviNO6R1Dc+diGsTRkR5Wnq1pyL8emxNrQENizgNCLPVvKgpGSOeohJ 5gYfpFpaW4+ZDSS+mPWkgLRTnMMjmSSGHZIQWXVwvJRKkUc3T8f6JgmVKnbwX7py dT+kRor44LDe4eZfdWR7hN5mvnu88mGrNG1IE5iSfk1Qrtl+ndo43l5W1JLKcECy 0YD7AsVZdOnDpVISgO/ZN4A4bJiyze3UieX99Pec+ivYql1WM0c1wegn5kKlKEiZ tSvplzKHOIrwttmd2BQL+bow0j7Kw9LnQTb1JtrZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKTgDDEa8jJChFXPrBY7p4GQVdjswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2JlNWQ5NzI3LWU0NTMtNDBjNS1iZTQyLWFiZDAwZDZmYzljNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAALYAwDQYJKoZIhvcNAQELBQADggEBAGdG6+e44e/T1lKMKx7yReRn 3k3I4k/022/EYLs5pnbg2t9X1iOV/WUEpKvrBr+1jvi+B4WQoR7W3zGb4X9z3ji4 XAAMgADfQpSOz7bpE3zjREuLaKqHp/b0E9cRZODElW9xOAgaV/7M4hK5NEF79lJP uws8FwxgVUzbVs6I3Sjl4Kiq60Tqz7SHiRNFM88INQ7H5ZHmmSC0rDd3W5pLduKM YfppAdwZq2lb+760bI58Rzq1SgyN29wJWz45fNY+rUaXyBBsQIxcQ8dbsO49J4mQ Ixb150QSVMptx6aJCgXzc8g7Jng1MTD/cfWzhSdueWXwqvEv3GF6KzFQJwgw+tk= -----END CERTIFICATE-----Generated at Wed Nov 5 10:55:57 2025 by rpki-client