$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bef0158f-b934-4565-9667-bd3fed9bfc28.roa File: bef0158f-b934-4565-9667-bd3fed9bfc28.roa (raw, json) Hash identifier: rzYUSN1YwR1UF6+Mdv5LQ6OurEpeJkVT8It7TdUgi48= Subject key identifier: 5D:74:21:66:B2:C6:D8:E8:CA:D3:3C:D8:69:29:B1:75:D2:F2:4A:F1 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 1BCA96D22583979B9BA1BD560ABF9941151240C0 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bef0158f-b934-4565-9667-bd3fed9bfc28.roa Signing time: Thu 30 Oct 2025 22:22:01 +0000 ROA not before: Thu 30 Oct 2025 22:22:01 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1c58::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:ca:96:d2:25:83:97:9b:9b:a1:bd:56:0a:bf:99:41:15:12:40:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 22:22:01 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=b6e7378d99fd847fb59653602295cde4132a6f7ee5813331de433f4d5705c9c5, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:4e:15:60:3a:12:80:92:2a:c9:0f:3e:19:26: 80:f6:d3:64:1b:8f:fa:68:6d:bc:1f:8f:a4:a5:05: 75:7b:90:e9:52:b6:74:21:f6:1a:18:5d:9c:66:0d: 84:8d:bf:7b:a7:51:a8:df:ae:0f:7b:e2:17:75:1b: 42:a9:8f:25:13:86:93:85:2d:01:6b:37:28:6c:50: b4:ee:dc:e9:ea:c9:91:ae:d9:df:04:e4:fd:a9:e6: 4a:e5:52:1c:30:96:42:1d:c2:7a:9f:16:79:ad:75: 78:0c:f2:a8:de:87:2c:34:43:02:6f:9b:48:b1:e4: f2:85:3b:04:00:3e:fc:f3:81:bb:89:58:e7:2c:ee: b0:2b:97:d6:11:c4:09:9a:f7:f3:cd:a3:74:12:d7: 06:ea:3d:2c:cf:b1:fc:f6:41:26:1b:1a:f1:36:c1: 25:c0:56:4b:4f:98:43:84:10:63:73:f1:67:38:12: d9:c4:19:0a:7a:33:0a:c4:10:a7:f1:c0:78:14:7f: ce:87:8c:84:e1:e6:9a:b0:9c:6e:2b:34:54:e1:97: dd:ff:60:03:be:53:86:fa:e6:9f:38:87:0a:f9:1a: 64:28:de:9c:b9:41:bf:10:27:5a:e3:12:e7:ab:3d: 0c:2a:98:6e:f5:b8:6a:65:53:ee:f8:d4:8b:78:96: cd:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:74:21:66:B2:C6:D8:E8:CA:D3:3C:D8:69:29:B1:75:D2:F2:4A:F1 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bef0158f-b934-4565-9667-bd3fed9bfc28.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1c58::/47 Signature Algorithm: sha256WithRSAEncryption 60:e1:82:8f:7d:d7:da:8b:97:f4:2d:3a:d7:7c:79:9d:04:69: 09:25:89:61:89:cd:85:4a:86:fe:cb:64:b7:6a:97:10:bb:3b: c5:3f:6d:e3:10:fd:97:3a:6f:86:04:83:36:c1:02:2c:4e:87: 96:98:7b:3a:85:c1:6a:6c:cf:91:dd:cc:2b:c9:b7:cd:89:cc: 91:52:18:f6:87:4e:bb:af:a0:01:30:ab:89:01:63:0e:53:6e: 1c:58:de:f7:43:fd:60:d5:ae:2e:52:9f:1f:75:e0:9f:96:9b: 66:03:54:94:9e:68:41:ba:77:5b:f1:db:6b:0b:23:44:53:b9: 07:03:bb:26:a1:e4:ab:e3:cd:1d:b7:fe:63:9b:d0:0f:2a:a9: e3:6a:17:81:23:e6:df:3c:6a:15:48:8c:0a:1d:98:08:5b:be: 1a:b3:ba:72:e6:6c:3c:47:96:a0:55:9e:3e:c1:bc:8a:7c:ec: 6a:29:94:29:b7:c5:1f:41:19:3a:6e:34:f1:c8:b4:2c:c3:df: 69:78:6e:1d:3e:ed:72:cb:32:e9:5b:06:bf:ea:a8:f6:6e:6a: 75:7a:46:50:4f:77:59:fb:90:d4:01:18:c6:f1:f0:76:35:bd: e4:0c:f5:02:36:52:21:17:7c:b9:33:64:59:10:0b:b0:2a:9d: 7c:11:37:58 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUG8qW0iWDl5ubob1WCr+ZQRUSQMAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjIyMjAxWhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNmU3Mzc4ZDk5ZmQ4NDdmYjU5NjUzNjAyMjk1Y2RlNDEz MmE2ZjdlZTU4MTMzMzFkZTQzM2Y0ZDU3MDVjOWM1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFThVgOhKAkirJDz4ZJoD202Qbj/pobbwfj6SlBXV7kOlS tnQh9hoYXZxmDYSNv3unUajfrg974hd1G0KpjyUThpOFLQFrNyhsULTu3OnqyZGu 2d8E5P2p5krlUhwwlkIdwnqfFnmtdXgM8qjehyw0QwJvm0ix5PKFOwQAPvzzgbuJ WOcs7rArl9YRxAma9/PNo3QS1wbqPSzPsfz2QSYbGvE2wSXAVktPmEOEEGNz8Wc4 EtnEGQp6MwrEEKfxwHgUf86HjITh5pqwnG4rNFThl93/YAO+U4b65p84hwr5GmQo 3py5Qb8QJ1rjEuerPQwqmG71uGplU+741It4ls2PAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUXXQhZrLG2OjK0zzYaSmxddLySvEwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2JlZjAxNThmLWI5MzQtNDU2NS05NjY3LWJkM2ZlZDliZmMyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAHFgwDQYJKoZIhvcNAQELBQADggEBAGDhgo9919qLl/QtOtd8eZ0E aQkliWGJzYVKhv7LZLdqlxC7O8U/beMQ/Zc6b4YEgzbBAixOh5aYezqFwWpsz5Hd zCvJt82JzJFSGPaHTruvoAEwq4kBYw5TbhxY3vdD/WDVri5Snx914J+Wm2YDVJSe aEG6d1vx22sLI0RTuQcDuyah5KvjzR23/mOb0A8qqeNqF4Ej5t88ahVIjAodmAhb vhqzunLmbDxHlqBVnj7BvIp87GoplCm3xR9BGTpuNPHItCzD32l4bh0+7XLLMulb Br/qqPZuanV6RlBPd1n7kNQBGMbx8HY1veQM9QI2UiEXfLkzZFkQC7AqnXwRN1g= -----END CERTIFICATE-----Generated at Wed Nov 5 07:40:23 2025 by rpki-client