$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bf510587-ccad-4d8c-9778-12a7447381d6.roa File: bf510587-ccad-4d8c-9778-12a7447381d6.roa (raw, json) Hash identifier: /GbOph7PZ/gpyD3CH7rK94xGdxEpu5NNFMQuCFF6nLo= Subject key identifier: 5D:DD:08:F2:73:73:20:0D:85:2A:09:D5:C2:1E:87:A4:E2:69:60:32 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 34BD62468017FD0178E594A4319FA99F4AA9E6D5 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bf510587-ccad-4d8c-9778-12a7447381d6.roa Signing time: Fri 31 Oct 2025 00:38:22 +0000 ROA not before: Fri 31 Oct 2025 00:38:22 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3652::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:bd:62:46:80:17:fd:01:78:e5:94:a4:31:9f:a9:9f:4a:a9:e6:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 00:38:22 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=93e91e59c3839174a20486f235402d4ad3c3f47ea3d3b8c998fbf8a072a15ab7, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1d:1d:68:f3:55:a1:82:5f:ea:91:84:93:82: 41:25:36:a9:38:a1:ab:54:64:81:66:2b:14:a6:77: cd:d0:dc:2f:3b:67:23:67:55:3a:be:7a:0d:ea:80: 06:c0:5f:00:ba:bc:cd:b7:46:b7:51:b0:e9:e0:7e: e9:9a:45:f6:ef:03:92:9a:e8:fd:38:01:83:6c:be: 68:f3:98:d7:4c:62:ea:4d:e9:51:0e:07:f5:b6:97: ee:93:67:23:6d:8c:35:0c:e3:8f:77:ad:9e:be:f5: 31:8e:82:9f:a4:11:9b:86:b1:de:2d:8b:f2:f3:75: 33:74:0d:ea:d9:e7:02:50:e2:f9:86:70:a4:29:14: 58:f1:10:01:37:a9:95:e3:20:a1:aa:58:d6:7a:3f: c7:29:52:bc:11:1a:a9:72:19:33:a9:19:21:b5:8d: 91:0f:d5:aa:b8:45:30:30:7a:c4:1e:14:ab:6c:b2: 5f:86:a6:fd:3f:20:20:c7:63:b4:2b:56:80:fb:a2: f5:fd:7b:9f:2d:0e:d7:8e:ef:d2:6f:bb:01:fb:9a: de:bf:54:6b:67:e9:4d:1f:c6:75:ee:d0:d9:b9:e1: d9:75:ae:52:5a:1b:92:ad:9b:f3:dc:a0:9b:c6:62: 9c:fb:ee:e5:c2:1d:b0:d0:1f:4d:7b:14:a1:35:25: 9b:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:DD:08:F2:73:73:20:0D:85:2A:09:D5:C2:1E:87:A4:E2:69:60:32 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bf510587-ccad-4d8c-9778-12a7447381d6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3652::/47 Signature Algorithm: sha256WithRSAEncryption 43:c2:70:b1:9a:c3:e5:b6:8c:6f:91:bc:a9:9f:23:52:e7:ac: 4d:a6:29:3b:37:d4:0d:f1:65:d4:4b:e2:a6:70:f7:e0:db:e1: 90:72:73:0f:38:6a:c5:9d:63:e7:f2:22:2d:c3:3d:18:3d:02: 0b:bd:89:6c:9a:46:81:f1:a4:69:9e:ca:eb:d5:21:57:5f:b4: 01:84:34:93:7e:cf:c7:9d:43:36:d1:cc:12:75:14:8c:09:3a: ad:54:bc:21:25:2a:42:df:53:ff:67:0b:bb:34:d5:3b:61:1d: d8:23:25:49:11:b4:4a:69:52:be:46:53:54:07:c0:b7:d6:2b: 48:84:bd:5b:8f:33:78:99:d4:14:30:a5:91:73:0b:65:2b:fc: 6c:e7:88:73:d3:7e:6b:42:c0:6c:84:da:1e:92:46:6f:0d:63: b1:b8:74:d7:9a:eb:be:97:da:07:38:af:d3:53:82:bf:b2:ec: 17:2d:4a:2a:a4:21:c3:f4:8a:13:22:2f:4f:35:40:dd:22:69: b3:88:85:b5:e4:73:44:1c:8b:dc:3d:b5:64:b5:15:fb:9c:a4: 1a:1b:45:55:7d:f2:e9:21:b2:c4:cc:4d:a7:6c:5f:9a:bc:85: 51:d4:bb:44:87:f5:97:02:eb:88:12:8c:4b:06:13:e3:cf:78: 6c:9f:9f:0c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNL1iRoAX/QF45ZSkMZ+pn0qp5tUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDAzODIyWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5M2U5MWU1OWMzODM5MTc0YTIwNDg2ZjIzNTQwMmQ0YWQz YzNmNDdlYTNkM2I4Yzk5OGZiZjhhMDcyYTE1YWI3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+HR1o81Whgl/qkYSTgkElNqk4oatUZIFmKxSmd83Q3C87 ZyNnVTq+eg3qgAbAXwC6vM23RrdRsOngfumaRfbvA5Ka6P04AYNsvmjzmNdMYupN 6VEOB/W2l+6TZyNtjDUM4493rZ6+9TGOgp+kEZuGsd4ti/LzdTN0DerZ5wJQ4vmG cKQpFFjxEAE3qZXjIKGqWNZ6P8cpUrwRGqlyGTOpGSG1jZEP1aq4RTAwesQeFKts sl+Gpv0/ICDHY7QrVoD7ovX9e58tDteO79JvuwH7mt6/VGtn6U0fxnXu0Nm54dl1 rlJaG5Ktm/PcoJvGYpz77uXCHbDQH017FKE1JZtfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUXd0I8nNzIA2FKgnVwh6HpOJpYDIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2JmNTEwNTg3LWNjYWQtNGQ4Yy05Nzc4LTEyYTc0NDczODFkNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAANlIwDQYJKoZIhvcNAQELBQADggEBAEPCcLGaw+W2jG+RvKmfI1Ln rE2mKTs31A3xZdRL4qZw9+Db4ZBycw84asWdY+fyIi3DPRg9Agu9iWyaRoHxpGme yuvVIVdftAGENJN+z8edQzbRzBJ1FIwJOq1UvCElKkLfU/9nC7s01TthHdgjJUkR tEppUr5GU1QHwLfWK0iEvVuPM3iZ1BQwpZFzC2Ur/GzniHPTfmtCwGyE2h6SRm8N Y7G4dNea676X2gc4r9NTgr+y7BctSiqkIcP0ihMiL081QN0iabOIhbXkc0Qci9w9 tWS1FfucpBobRVV98ukhssTMTadsX5q8hVHUu0SH9ZcC64gSjEsGE+PPeGyfnww= -----END CERTIFICATE-----Generated at Wed Nov 5 05:36:50 2025 by rpki-client