$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c23893db-692e-4259-91f3-06f3f1cf4a11.roa File: c23893db-692e-4259-91f3-06f3f1cf4a11.roa (raw, json) Hash identifier: 9amGFHE0dQqib4eOQTx5GUKSxiMl0z+Yq6mz7ozfR7s= Subject key identifier: 9F:27:F1:FF:3B:04:7B:92:1D:C4:AA:5E:BE:C9:1F:CA:16:BF:31:25 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2E16025360528D9C37DF5D06CD8F8051A7C51D1E Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c23893db-692e-4259-91f3-06f3f1cf4a11.roa Signing time: Fri 31 Oct 2025 01:52:03 +0000 ROA not before: Fri 31 Oct 2025 01:52:03 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3e0c::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:16:02:53:60:52:8d:9c:37:df:5d:06:cd:8f:80:51:a7:c5:1d:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 01:52:03 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=ede462c267f12c204e4e0e1621f35d4820dd87dcac1cc07c66abc82d207dacb7, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:1b:1d:e6:8c:30:b5:06:ab:07:45:10:48:84: 6f:13:07:b7:13:e1:88:7e:c8:70:81:3a:29:5a:df: c9:06:29:6e:d1:79:e9:47:e3:18:99:6a:bb:a8:66: f5:3a:e4:5b:7b:31:6d:7b:4a:48:8d:6e:4b:a0:79: 8d:14:65:bd:07:b5:9c:33:a4:e9:cd:72:83:75:d1: 3c:dc:c6:90:37:fb:20:61:35:03:31:ad:5d:83:52: 74:54:38:be:5e:13:4c:07:cf:0d:aa:cb:cc:18:d3: c2:a8:09:af:79:69:82:a9:2a:78:74:da:47:36:1d: c9:87:57:70:e2:e2:3c:21:5a:c7:b6:1c:e3:db:90: 0c:e1:1a:ed:7e:cf:a8:f2:87:50:b2:c1:c7:af:da: 85:8f:89:f8:f7:42:94:16:8f:ac:79:3f:92:1a:34: d9:c4:6e:b8:77:42:d9:53:b6:28:d7:17:23:dd:30: d6:4d:65:ff:08:65:27:ea:27:16:a1:b6:60:c6:f7: 8a:0b:08:9e:c4:c4:bf:9f:8c:91:4f:35:b6:d3:4c: 58:76:d2:7a:5a:c5:ab:19:52:2a:42:3a:27:76:af: 84:66:52:f9:5e:67:4f:2f:a9:5d:5d:f3:6b:67:b8: a4:58:e9:ed:7e:3a:07:ac:9e:ce:d2:43:75:6f:56: b0:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:27:F1:FF:3B:04:7B:92:1D:C4:AA:5E:BE:C9:1F:CA:16:BF:31:25 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c23893db-692e-4259-91f3-06f3f1cf4a11.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3e0c::/47 Signature Algorithm: sha256WithRSAEncryption 6f:75:50:22:19:be:27:a9:ee:6d:bb:b5:76:17:76:14:f9:78: 57:d6:77:f5:16:51:da:bb:8e:2e:ac:41:3a:c8:ac:e0:87:4b: 43:63:91:4c:05:b6:2a:a9:93:02:39:72:7b:ab:4f:9b:78:ae: 7e:c2:bb:ff:b6:08:2d:04:48:8c:66:71:4a:a6:13:f3:5a:2c: d7:2c:57:d3:f9:9f:03:32:f3:43:9d:8a:f0:0a:4a:3f:20:ad: 85:ff:e6:92:57:c1:23:dd:86:13:a1:c2:4b:53:a8:63:0d:f5: d6:34:84:3b:e3:d8:d9:95:47:24:c8:95:70:72:62:9a:5e:e9: c8:9d:2b:dc:d5:12:8c:60:45:13:be:b2:3b:6b:b9:ae:d3:29: 7d:cf:fe:1d:dc:c9:4c:02:57:29:d8:5a:a2:79:e0:44:01:b6: fd:27:53:17:3a:9d:13:90:ff:34:c5:07:69:e0:75:b9:ab:cd: e6:aa:ce:4e:16:7a:f0:95:d7:4d:23:30:21:83:5a:e7:8a:9b: 61:48:e4:c3:50:a1:7e:08:0d:06:57:f6:55:d2:91:9d:bc:cb: 9a:f4:f2:3e:f1:36:64:dc:1d:c8:f5:80:7b:8e:52:38:15:12: d7:23:60:ff:3e:7e:2d:a7:d9:22:90:fc:43:0d:7f:9d:08:00: 63:3f:94:e0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULhYCU2BSjZw3310GzY+AUafFHR4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDE1MjAzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZGU0NjJjMjY3ZjEyYzIwNGU0ZTBlMTYyMWYzNWQ0ODIw ZGQ4N2RjYWMxY2MwN2M2NmFiYzgyZDIwN2RhY2I3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrGx3mjDC1BqsHRRBIhG8TB7cT4Yh+yHCBOila38kGKW7R eelH4xiZaruoZvU65Ft7MW17SkiNbkugeY0UZb0HtZwzpOnNcoN10TzcxpA3+yBh NQMxrV2DUnRUOL5eE0wHzw2qy8wY08KoCa95aYKpKnh02kc2HcmHV3Di4jwhWse2 HOPbkAzhGu1+z6jyh1Cywcev2oWPifj3QpQWj6x5P5IaNNnEbrh3QtlTtijXFyPd MNZNZf8IZSfqJxahtmDG94oLCJ7ExL+fjJFPNbbTTFh20npaxasZUipCOid2r4Rm UvleZ08vqV1d82tnuKRY6e1+Ogesns7SQ3VvVrDrAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUnyfx/zsEe5IdxKpevskfyha/MSUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2MyMzg5M2RiLTY5MmUtNDI1OS05MWYzLTA2ZjNmMWNmNGExMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAPgwwDQYJKoZIhvcNAQELBQADggEBAG91UCIZviep7m27tXYXdhT5 eFfWd/UWUdq7ji6sQTrIrOCHS0NjkUwFtiqpkwI5cnurT5t4rn7Cu/+2CC0ESIxm cUqmE/NaLNcsV9P5nwMy80OdivAKSj8grYX/5pJXwSPdhhOhwktTqGMN9dY0hDvj 2NmVRyTIlXByYppe6cidK9zVEoxgRRO+sjtrua7TKX3P/h3cyUwCVynYWqJ54EQB tv0nUxc6nROQ/zTFB2ngdbmrzeaqzk4WevCV100jMCGDWueKm2FI5MNQoX4IDQZX 9lXSkZ28y5r08j7xNmTcHcj1gHuOUjgVEtcjYP8+fi2n2SKQ/EMNf50IAGM/lOA= -----END CERTIFICATE-----Generated at Wed Nov 5 10:42:58 2025 by rpki-client