$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bf3d9cfc-9af2-4762-8f51-5db4238ef291.roa File: bf3d9cfc-9af2-4762-8f51-5db4238ef291.roa (raw, json) Hash identifier: BAA2nyUQ1EcGaOQsBPkMH9YDyr0KMKFrO1uwRRHIP8U= Subject key identifier: 85:8E:19:C6:40:16:7B:B7:DD:A8:BF:01:4F:B8:A8:8B:A0:C5:F6:D2 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 1515D49AB001BB7E18FD9645251F91BBD29B81A9 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bf3d9cfc-9af2-4762-8f51-5db4238ef291.roa Signing time: Fri 31 Oct 2025 04:28:17 +0000 ROA not before: Fri 31 Oct 2025 04:28:17 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3970::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:15:d4:9a:b0:01:bb:7e:18:fd:96:45:25:1f:91:bb:d2:9b:81:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 04:28:17 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=1caa985daa7ebd466948f4461c13a8916b98e9a3d59b91b2dba2f4ace7b12639, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:aa:41:15:bc:97:c8:aa:bd:32:d6:8e:e9:10: 0c:6f:cf:1d:87:7d:68:79:ed:ce:84:e3:f9:d1:20: 1e:c1:33:a3:33:88:45:a9:da:ea:cd:f2:52:5f:6c: 2a:ba:b5:9d:db:29:49:6a:0a:7a:3b:98:e7:ab:da: ea:6a:59:7b:4c:12:c6:19:dc:3d:d4:c0:eb:76:da: 51:0a:ad:c7:e3:4c:68:27:96:7b:96:10:ae:11:fc: 21:b5:5a:75:14:5c:e8:a4:3a:08:59:d9:b9:1d:6a: 19:54:8e:9f:55:97:81:ea:d7:40:bd:9a:be:b7:a9: 0f:3b:1f:9d:cd:10:59:b4:20:cc:00:a9:8f:f7:49: 26:9b:86:be:10:aa:39:b3:1f:86:4e:dc:84:5f:ec: 49:99:62:3b:ee:22:0d:22:b0:03:9e:22:60:02:a7: 79:c8:74:46:e9:de:e5:b7:5a:3d:4a:63:fd:c1:d0: 5b:ec:c7:b8:15:50:ac:54:10:81:97:f5:72:5a:5e: d4:2d:47:67:77:2e:00:4c:de:78:5b:54:49:47:d1: 84:df:3b:5c:fd:b1:88:5a:b5:8f:6d:19:b6:54:ec: 34:20:75:38:92:d0:2f:c9:bf:27:18:b4:b2:68:69: b0:aa:21:88:b6:cc:39:97:6c:18:bd:72:b6:17:41: 13:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:8E:19:C6:40:16:7B:B7:DD:A8:BF:01:4F:B8:A8:8B:A0:C5:F6:D2 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bf3d9cfc-9af2-4762-8f51-5db4238ef291.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3970::/46 Signature Algorithm: sha256WithRSAEncryption 83:28:17:1b:c3:4d:60:bf:3a:a9:65:71:af:45:1e:45:42:6c: 0d:a5:f2:d6:de:eb:37:f8:ef:e6:f8:8d:d0:be:12:82:77:d3: f2:b9:e2:4e:e7:ee:54:7b:b8:d8:b3:67:33:68:04:c4:3e:05: 33:7f:ee:47:b1:6b:f1:1e:59:78:7e:82:1d:1f:ef:9a:d8:cb: ba:5f:99:b5:3d:cc:1e:86:66:90:3b:39:dd:88:09:fc:c8:9b: dd:4b:ab:23:2a:22:7e:2e:5a:9c:49:52:e7:f7:d5:61:e8:56: 28:d7:7c:e6:28:38:2c:77:b9:0d:c2:ce:3b:c1:fc:ef:80:c2: cc:f8:cd:2c:d7:5c:27:2a:31:5b:f7:46:f1:e4:53:2c:a6:1e: f1:a2:6d:fd:7f:ad:6e:1c:c3:d2:43:44:55:07:e3:2a:8e:c6: a6:e2:67:92:04:2e:95:a4:f4:e9:98:7c:ff:c9:43:1f:a9:f4: 83:00:4f:ed:30:8e:0f:d9:86:a5:17:8c:0f:2c:dd:c3:d7:c0: f1:a4:40:f2:ef:60:ae:2a:cb:01:63:5e:2f:72:95:34:45:92: 7b:f0:f1:04:8e:dc:7b:91:32:dc:9f:9a:e2:a3:93:f9:f7:6d: e3:f4:72:57:89:2e:da:cd:cc:b6:93:d4:1b:28:a8:ef:ba:9d: 3e:a8:04:d7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFRXUmrABu34Y/ZZFJR+Ru9KbgakwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDQyODE3WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxY2FhOTg1ZGFhN2ViZDQ2Njk0OGY0NDYxYzEzYTg5MTZi OThlOWEzZDU5YjkxYjJkYmEyZjRhY2U3YjEyNjM5MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOqkEVvJfIqr0y1o7pEAxvzx2HfWh57c6E4/nRIB7BM6Mz iEWp2urN8lJfbCq6tZ3bKUlqCno7mOer2upqWXtMEsYZ3D3UwOt22lEKrcfjTGgn lnuWEK4R/CG1WnUUXOikOghZ2bkdahlUjp9Vl4Hq10C9mr63qQ87H53NEFm0IMwA qY/3SSabhr4QqjmzH4ZO3IRf7EmZYjvuIg0isAOeImACp3nIdEbp3uW3Wj1KY/3B 0Fvsx7gVUKxUEIGX9XJaXtQtR2d3LgBM3nhbVElH0YTfO1z9sYhatY9tGbZU7DQg dTiS0C/JvycYtLJoabCqIYi2zDmXbBi9crYXQRNVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUhY4ZxkAWe7fdqL8BT7ioi6DF9tIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2JmM2Q5Y2ZjLTlhZjItNDc2Mi04ZjUxLTVkYjQyMzhlZjI5MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAOXAwDQYJKoZIhvcNAQELBQADggEBAIMoFxvDTWC/Oqllca9FHkVC bA2l8tbe6zf47+b4jdC+EoJ30/K54k7n7lR7uNizZzNoBMQ+BTN/7kexa/EeWXh+ gh0f75rYy7pfmbU9zB6GZpA7Od2ICfzIm91LqyMqIn4uWpxJUuf31WHoVijXfOYo OCx3uQ3CzjvB/O+Awsz4zSzXXCcqMVv3RvHkUyymHvGibf1/rW4cw9JDRFUH4yqO xqbiZ5IELpWk9OmYfP/JQx+p9IMAT+0wjg/ZhqUXjA8s3cPXwPGkQPLvYK4qywFj Xi9ylTRFknvw8QSO3HuRMtyfmuKjk/n3beP0cleJLtrNzLaT1BsoqO+6nT6oBNc= -----END CERTIFICATE-----Generated at Wed Nov 5 10:53:42 2025 by rpki-client