$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bedebf78-70dd-4210-87db-ed94258132e4.roa File: bedebf78-70dd-4210-87db-ed94258132e4.roa (raw, json) Hash identifier: 3eYi4ki4a/XbIFHVvvETnHpKJVrACDHxgkuapJWWnew= Subject key identifier: 3F:93:AA:28:74:DF:99:3E:2E:0F:36:F6:5E:1A:6E:32:80:34:22:44 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 19919FB2D21E6190D572518A989D9B9E7ECB575A Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bedebf78-70dd-4210-87db-ed94258132e4.roa Signing time: Fri 31 Oct 2025 05:53:42 +0000 ROA not before: Fri 31 Oct 2025 05:53:42 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2f60::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:91:9f:b2:d2:1e:61:90:d5:72:51:8a:98:9d:9b:9e:7e:cb:57:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 05:53:42 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=28ac2326302754006763941970ec76cb340785d7ffcf0b14a1a20b721cd48c17, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:bb:e8:62:72:8a:aa:90:46:69:ec:26:ba:50: 5b:ae:c6:d0:63:df:51:3e:f5:5b:66:85:ab:c4:73: 57:00:f0:98:88:2e:fa:e6:3e:58:78:ab:80:03:ba: 84:7a:8d:08:a7:17:e1:35:f7:5b:ec:a3:73:3c:fa: 44:fe:89:28:4e:0a:78:ad:9e:b5:35:34:78:13:b0: 05:2e:ad:e5:aa:8e:a8:0d:1c:ae:e1:d9:c5:4c:66: d4:4e:91:60:48:cd:61:e8:78:8f:f5:82:b0:48:45: 02:62:a8:a9:ae:ab:60:c8:31:26:9b:95:d6:dc:f2: 94:ff:ca:42:8e:b5:7e:6a:04:e9:b5:09:0b:17:42: d1:d4:a9:2e:b1:f1:98:f2:e8:a1:bc:eb:40:d1:0a: c8:6c:43:01:e8:43:40:b8:36:a8:21:3a:8b:79:fa: 21:4b:7f:06:c5:f2:1a:5c:d5:b2:30:39:ca:82:39: d0:4c:fd:44:99:2f:76:24:b2:38:4b:c7:98:d6:16: 73:a8:85:cb:71:bb:77:e7:4f:bd:66:de:52:3d:7b: 5b:bd:42:56:9f:da:18:e9:16:3e:1c:26:af:3a:77: a0:7c:ec:38:a2:fe:7b:98:d6:ef:ba:60:88:ac:c8: e5:08:5d:a9:09:2f:fe:61:68:36:71:d3:00:3b:ba: ce:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:93:AA:28:74:DF:99:3E:2E:0F:36:F6:5E:1A:6E:32:80:34:22:44 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bedebf78-70dd-4210-87db-ed94258132e4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2f60::/45 Signature Algorithm: sha256WithRSAEncryption 38:20:90:ca:74:6a:9e:ae:7a:7e:60:e3:a3:a4:04:b2:aa:b0: 08:26:ce:7f:39:9a:62:14:26:a3:7f:69:e6:d5:fd:4b:cb:f8: ab:c7:8b:58:a1:a0:6d:92:4e:27:c2:25:1c:b7:b8:82:6e:97: 7c:2b:f0:d1:65:56:17:7c:a0:a3:09:e0:94:b3:a4:24:52:84: 99:dd:0a:8c:0a:b1:aa:72:a2:44:7a:85:6f:36:25:dc:9c:b7: 08:cb:3e:c1:48:7f:0b:b8:dd:5b:0b:10:30:a1:e4:32:9b:e1: 74:97:0d:64:3f:08:c8:bc:37:e5:ec:f7:a1:d3:6c:e1:38:5a: 23:4c:6d:74:46:51:33:2a:eb:45:e6:f9:4c:eb:7a:07:48:d7: 72:ee:f3:93:44:f1:ae:48:cd:8a:81:2f:60:7c:36:d4:db:68: f4:ec:00:bd:80:84:94:b4:0f:f1:86:40:20:7b:4f:cd:df:be: d2:35:da:8c:53:fc:bb:0f:39:7f:f3:92:6e:90:ac:7a:09:25: 2f:c7:c2:ff:0a:3e:bd:21:19:7c:97:2b:aa:49:fd:f2:4d:95: a5:fc:dc:aa:0d:4e:11:6e:4c:94:0b:7e:0c:0b:cf:8c:ed:94: ec:5a:dd:58:4b:bb:c7:65:bd:24:5e:0d:52:15:50:f0:6b:73: 57:f5:ac:c1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGZGfstIeYZDVclGKmJ2bnn7LV1owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDU1MzQyWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOGFjMjMyNjMwMjc1NDAwNjc2Mzk0MTk3MGVjNzZjYjM0 MDc4NWQ3ZmZjZjBiMTRhMWEyMGI3MjFjZDQ4YzE3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpu+hicoqqkEZp7Ca6UFuuxtBj31E+9VtmhavEc1cA8JiI LvrmPlh4q4ADuoR6jQinF+E191vso3M8+kT+iShOCnitnrU1NHgTsAUureWqjqgN HK7h2cVMZtROkWBIzWHoeI/1grBIRQJiqKmuq2DIMSabldbc8pT/ykKOtX5qBOm1 CQsXQtHUqS6x8Zjy6KG860DRCshsQwHoQ0C4NqghOot5+iFLfwbF8hpc1bIwOcqC OdBM/USZL3YksjhLx5jWFnOohctxu3fnT71m3lI9e1u9Qlaf2hjpFj4cJq86d6B8 7Dii/nuY1u+6YIisyOUIXakJL/5haDZx0wA7us5NAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUP5OqKHTfmT4uDzb2XhpuMoA0IkQwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2JlZGViZjc4LTcwZGQtNDIxMC04N2RiLWVkOTQyNTgxMzJlNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAL2AwDQYJKoZIhvcNAQELBQADggEBADggkMp0ap6uen5g46OkBLKq sAgmzn85mmIUJqN/aebV/UvL+KvHi1ihoG2STifCJRy3uIJul3wr8NFlVhd8oKMJ 4JSzpCRShJndCowKsapyokR6hW82JdyctwjLPsFIfwu43VsLEDCh5DKb4XSXDWQ/ CMi8N+Xs96HTbOE4WiNMbXRGUTMq60Xm+UzregdI13Lu85NE8a5IzYqBL2B8NtTb aPTsAL2AhJS0D/GGQCB7T83fvtI12oxT/LsPOX/zkm6QrHoJJS/Hwv8KPr0hGXyX K6pJ/fJNlaX83KoNThFuTJQLfgwLz4ztlOxa3VhLu8dlvSReDVIVUPBrc1f1rME= -----END CERTIFICATE-----Generated at Wed Nov 5 10:54:56 2025 by rpki-client