$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c0a7e434-7687-4566-992a-90fd4a659281.roa File: c0a7e434-7687-4566-992a-90fd4a659281.roa (raw, json) Hash identifier: +KP6cMCYshu/oGEsQMrm6NYfIpI+eG5cpN5OTAjFZ/Y= Subject key identifier: E5:61:64:CD:2A:9A:A1:9E:13:3E:DA:2B:65:49:6D:07:96:4A:7C:AF Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 534909C347FE2E5A7F510ED0BE36014C80BEAFF7 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c0a7e434-7687-4566-992a-90fd4a659281.roa Signing time: Fri 31 Oct 2025 01:55:03 +0000 ROA not before: Fri 31 Oct 2025 01:55:03 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3e7e::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:49:09:c3:47:fe:2e:5a:7f:51:0e:d0:be:36:01:4c:80:be:af:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 01:55:03 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=8e2870dc8d15e3d4aaaf51578deccd0a29c220f36f79d1c42fac5a913d65efc4, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:89:dc:a9:e2:c8:fa:65:5e:97:a7:9c:89:ff: 43:b9:17:02:bb:a0:a2:8e:e2:2f:44:05:1f:78:f4: 6b:94:fe:81:f2:75:07:9c:1f:48:8c:13:bb:d9:12: 0b:99:89:21:cd:eb:78:90:a9:d5:b6:79:de:fd:3e: ba:a5:5e:f9:2f:28:3b:c8:c7:25:0e:05:e1:2a:c5: 3b:49:a5:f7:c2:49:41:8a:da:46:b4:6a:97:7a:8d: b6:fd:fd:f9:45:16:cf:31:e0:32:30:0e:39:d0:0c: 98:cf:6f:9a:3a:70:25:8d:33:38:04:da:34:b6:7e: 21:12:7c:da:cd:88:70:2c:03:24:9c:1a:88:89:d8: 58:ad:db:37:a9:20:4b:1b:7e:e3:1b:07:ce:12:2c: 15:d5:58:08:4c:d2:06:e7:c3:a1:be:57:0c:20:49: 5a:a2:ee:ee:95:a7:f6:e7:3c:7b:ab:3c:82:cf:0c: 9c:36:75:38:26:28:01:39:78:72:e9:43:c6:b7:0a: cd:54:96:ee:24:61:8d:17:49:2b:56:b2:fd:34:d5: 86:dc:80:79:9b:6c:1f:b8:6f:bf:19:50:0c:42:a1: 42:a9:a9:bd:b0:e4:a8:76:63:21:e6:c2:6b:aa:36: 23:36:c6:f1:5f:da:46:eb:99:4c:f7:f9:66:81:91: 30:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:61:64:CD:2A:9A:A1:9E:13:3E:DA:2B:65:49:6D:07:96:4A:7C:AF X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c0a7e434-7687-4566-992a-90fd4a659281.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3e7e::/47 Signature Algorithm: sha256WithRSAEncryption 73:98:16:d3:f8:9b:9b:ec:71:20:f5:6c:83:2e:00:0e:e2:69: 08:7c:92:47:38:3c:fe:48:a1:3a:49:c2:f8:f2:a7:0e:4f:96: d1:61:3e:7f:77:1a:c7:7e:6b:ba:fa:7d:83:79:ec:08:17:b8: 49:3a:b6:8f:7c:3f:a3:ad:e4:0e:37:98:64:a1:a8:8f:18:9f: 4d:1f:1c:fb:be:60:22:a9:b0:6d:02:11:43:44:0e:6b:54:78: bd:73:8d:44:bc:ad:f3:39:e1:b7:77:d6:81:4a:82:f3:fd:7a: 96:1f:27:0d:bc:9e:a0:36:85:b5:a7:70:65:7b:4d:56:23:32: 17:e5:4d:da:6f:91:21:5a:e0:d0:84:31:11:e6:99:26:7b:e8: bc:b5:c7:04:f1:d5:46:d4:c3:f9:fc:ba:a8:f8:14:88:d3:39: d6:dc:b7:71:a0:5f:70:41:0b:7e:8f:14:95:b4:e1:12:6c:a3: 94:5a:e0:31:b4:7f:ed:8d:96:2c:f4:5a:f7:88:b2:e9:19:1a: cf:1f:05:40:97:6d:76:0d:72:55:b4:ee:3c:a5:d7:22:0d:a2: a6:f6:18:c5:a6:4d:fa:df:e4:e7:71:ef:46:eb:4c:88:e0:2c: cf:af:39:f2:2a:31:71:f0:cf:8b:42:47:23:c5:0a:96:0c:96: 7b:d5:4a:05 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUU0kJw0f+Llp/UQ7QvjYBTIC+r/cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDE1NTAzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZTI4NzBkYzhkMTVlM2Q0YWFhZjUxNTc4ZGVjY2QwYTI5 YzIyMGYzNmY3OWQxYzQyZmFjNWE5MTNkNjVlZmM0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFidyp4sj6ZV6Xp5yJ/0O5FwK7oKKO4i9EBR949GuU/oHy dQecH0iME7vZEguZiSHN63iQqdW2ed79PrqlXvkvKDvIxyUOBeEqxTtJpffCSUGK 2ka0apd6jbb9/flFFs8x4DIwDjnQDJjPb5o6cCWNMzgE2jS2fiESfNrNiHAsAySc GoiJ2Fit2zepIEsbfuMbB84SLBXVWAhM0gbnw6G+VwwgSVqi7u6Vp/bnPHurPILP DJw2dTgmKAE5eHLpQ8a3Cs1Ulu4kYY0XSStWsv001YbcgHmbbB+4b78ZUAxCoUKp qb2w5Kh2YyHmwmuqNiM2xvFf2kbrmUz3+WaBkTC/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5WFkzSqaoZ4TPtorZUltB5ZKfK8wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2MwYTdlNDM0LTc2ODctNDU2Ni05OTJhLTkwZmQ0YTY1OTI4MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAPn4wDQYJKoZIhvcNAQELBQADggEBAHOYFtP4m5vscSD1bIMuAA7i aQh8kkc4PP5IoTpJwvjypw5PltFhPn93Gsd+a7r6fYN57AgXuEk6to98P6Ot5A43 mGShqI8Yn00fHPu+YCKpsG0CEUNEDmtUeL1zjUS8rfM54bd31oFKgvP9epYfJw28 nqA2hbWncGV7TVYjMhflTdpvkSFa4NCEMRHmmSZ76Ly1xwTx1UbUw/n8uqj4FIjT Odbct3GgX3BBC36PFJW04RJso5Ra4DG0f+2Nliz0WveIsukZGs8fBUCXbXYNclW0 7jyl1yINoqb2GMWmTfrf5Odx70brTIjgLM+vOfIqMXHwz4tCRyPFCpYMlnvVSgU= -----END CERTIFICATE-----Generated at Wed Nov 5 07:40:19 2025 by rpki-client