$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bf0cd320-9336-422a-a574-f0a11560488c.roa File: bf0cd320-9336-422a-a574-f0a11560488c.roa (raw, json) Hash identifier: Fs++iX+a+hk6LyC7IYuP7szCX2/I1s6x0NSqvoDFK/8= Subject key identifier: 28:84:C5:0C:ED:A1:34:E3:55:DC:7E:21:90:8A:36:B8:1E:81:0E:A8 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 19EDF00EBD4EDBAB768B9DCC40BB8B8FC00DF05B Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bf0cd320-9336-422a-a574-f0a11560488c.roa Signing time: Fri 31 Oct 2025 04:53:22 +0000 ROA not before: Fri 31 Oct 2025 04:53:22 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3d8c::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:ed:f0:0e:bd:4e:db:ab:76:8b:9d:cc:40:bb:8b:8f:c0:0d:f0:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 04:53:22 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=6dd8ecfbb2201963e7426b92e363b7848e438300d9aff35910a090d7dbce383d, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:5c:43:67:21:3d:c8:cf:25:1c:46:bb:d3:a2: fe:6f:43:85:41:df:36:40:2b:35:eb:b3:c4:84:48: 9a:20:df:d6:9f:c9:b8:f5:b1:65:38:ae:4d:60:a7: 6a:15:ed:a7:75:8c:3c:03:d4:7b:17:44:e9:4b:f1: 1c:5d:7e:2c:e5:96:cf:ac:07:63:ed:38:f5:ae:5a: 57:52:36:0b:59:80:f1:9c:fb:0e:75:ec:6e:22:2d: 21:62:4f:91:b2:78:2f:2f:6c:fd:29:9e:1c:61:4b: 3a:2f:d7:62:1d:d2:57:73:93:6b:7c:3f:fa:dd:d8: 73:5f:48:be:af:8d:46:0f:a0:f5:84:21:4f:0f:da: c0:19:14:45:0d:04:81:f1:41:f0:33:25:79:02:07: 3d:97:e4:de:eb:e7:6c:2b:52:ef:5e:92:2d:7e:70: 82:b8:70:4b:31:b5:94:aa:b0:37:35:78:ed:51:45: d6:7d:69:b7:49:84:06:91:d4:ef:79:fd:98:02:59: 4d:97:49:63:5e:3d:be:23:63:de:f4:df:ad:7c:5c: 15:78:23:e9:f1:41:fc:b8:6a:73:f2:b5:31:ab:0f: db:34:85:77:9d:96:04:61:c8:56:82:4e:c5:3a:95: 54:a2:91:fa:c5:2f:32:46:5c:4e:4d:5a:4d:a3:17: 7b:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:84:C5:0C:ED:A1:34:E3:55:DC:7E:21:90:8A:36:B8:1E:81:0E:A8 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bf0cd320-9336-422a-a574-f0a11560488c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3d8c::/46 Signature Algorithm: sha256WithRSAEncryption 64:79:de:45:fc:5c:0f:b5:74:e1:94:84:c7:d7:ae:90:bc:49: d0:6c:9d:17:1b:d1:d8:07:e2:0f:ea:4e:1e:e0:99:4e:64:e8: d1:df:81:7b:b6:23:43:bd:08:72:61:ad:0e:22:60:37:23:b1: 9b:84:0a:7c:c5:01:aa:9f:17:54:ae:f3:7f:f6:ee:6b:39:2c: b7:a8:c5:aa:35:6c:c6:8c:72:84:38:7e:e2:14:fd:9e:94:a6: 98:c0:bc:49:00:f6:7c:7f:e6:92:4f:0e:ab:61:f4:73:02:1e: 15:44:dd:0a:e4:26:f3:f0:45:11:b3:87:dc:2b:22:b6:d5:bf: 8c:2f:cd:3d:c2:cf:2e:ba:59:cf:1f:20:8d:6d:1e:73:54:cd: 87:b8:30:a3:41:1a:fc:c5:71:c0:5a:bc:44:31:c7:71:54:4e: 37:08:87:53:00:9a:46:b3:b1:27:64:2f:ef:b6:40:cb:c6:20: e2:5e:f7:1e:48:fa:14:31:c6:77:cc:83:39:c5:06:58:a1:d6: 59:f3:65:7f:93:e9:2a:ad:28:90:b3:25:f2:8b:e2:0c:46:9c: 93:ad:d8:7c:b6:c0:31:53:65:4e:7b:fb:ca:38:d1:dd:e7:8d: 68:05:96:60:1a:88:a7:49:6b:a1:b3:9c:f5:2c:e1:2b:ae:f9: 9a:97:8a:fc -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGe3wDr1O26t2i53MQLuLj8AN8FswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDQ1MzIyWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZGQ4ZWNmYmIyMjAxOTYzZTc0MjZiOTJlMzYzYjc4NDhl NDM4MzAwZDlhZmYzNTkxMGEwOTBkN2RiY2UzODNkMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtXENnIT3IzyUcRrvTov5vQ4VB3zZAKzXrs8SESJog39af ybj1sWU4rk1gp2oV7ad1jDwD1HsXROlL8Rxdfizlls+sB2PtOPWuWldSNgtZgPGc +w517G4iLSFiT5GyeC8vbP0pnhxhSzov12Id0ldzk2t8P/rd2HNfSL6vjUYPoPWE IU8P2sAZFEUNBIHxQfAzJXkCBz2X5N7r52wrUu9eki1+cIK4cEsxtZSqsDc1eO1R RdZ9abdJhAaR1O95/ZgCWU2XSWNePb4jY9703618XBV4I+nxQfy4anPytTGrD9s0 hXedlgRhyFaCTsU6lVSikfrFLzJGXE5NWk2jF3ujAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKITFDO2hNONV3H4hkIo2uB6BDqgwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2JmMGNkMzIwLTkzMzYtNDIyYS1hNTc0LWYwYTExNTYwNDg4Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAPYwwDQYJKoZIhvcNAQELBQADggEBAGR53kX8XA+1dOGUhMfXrpC8 SdBsnRcb0dgH4g/qTh7gmU5k6NHfgXu2I0O9CHJhrQ4iYDcjsZuECnzFAaqfF1Su 83/27ms5LLeoxao1bMaMcoQ4fuIU/Z6UppjAvEkA9nx/5pJPDqth9HMCHhVE3Qrk JvPwRRGzh9wrIrbVv4wvzT3Czy66Wc8fII1tHnNUzYe4MKNBGvzFccBavEQxx3FU TjcIh1MAmkazsSdkL++2QMvGIOJe9x5I+hQxxnfMgznFBlih1lnzZX+T6SqtKJCz JfKL4gxGnJOt2Hy2wDFTZU57+8o40d3njWgFlmAaiKdJa6GznPUs4Suu+ZqXivw= -----END CERTIFICATE-----Generated at Wed Nov 5 09:29:03 2025 by rpki-client