$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c3a40d22-b081-402b-b3fe-96c41908c733.roa File: c3a40d22-b081-402b-b3fe-96c41908c733.roa (raw, json) Hash identifier: 1zEnbkIT40mgopVXugQGQCh0oO4mO1yApvC5h3w2HAk= Subject key identifier: 22:AE:8B:A8:69:25:91:11:CE:0B:63:E8:79:EA:ED:5B:BD:95:D3:C0 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3140FC7CD9A7B5F9716A52FCC35D42C9BCA104B1 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c3a40d22-b081-402b-b3fe-96c41908c733.roa Signing time: Fri 31 Oct 2025 05:21:56 +0000 ROA not before: Fri 31 Oct 2025 05:21:56 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:18a8::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:40:fc:7c:d9:a7:b5:f9:71:6a:52:fc:c3:5d:42:c9:bc:a1:04:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 05:21:56 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=18cb6e16f52ee382580153e168cb5c9fb0895f59e6869a1ac5e523a2b8634a14, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:9a:b6:1a:a1:eb:0c:07:75:9b:33:b1:07:74: ec:29:44:d7:8a:bc:e3:b0:c0:cb:e5:83:51:05:90: 38:86:9b:0b:0c:42:ec:4a:9d:6c:8b:7f:f1:50:f4: 5a:03:cd:a9:85:0e:52:a5:ee:e3:cc:28:8e:bf:6f: 00:bf:3e:60:7b:30:6c:9a:b0:d5:a3:2b:85:1e:4b: 3c:68:02:7a:fb:18:bf:19:86:c8:cb:47:97:bb:89: a3:e2:e0:0f:06:b4:df:cd:8d:f7:7a:e4:92:43:7c: fc:ce:bc:e6:3f:11:35:f5:bd:45:3d:c7:c6:32:4a: df:53:f7:7f:5a:49:dc:3e:e5:0c:83:f0:30:04:6c: 74:2e:58:73:90:04:21:44:52:61:9b:c9:0c:73:79: 96:4c:33:a7:e8:65:c5:57:60:ed:62:85:64:98:f7: b2:d0:fc:9c:69:15:03:ea:27:ae:6b:74:7e:2d:35: c0:99:6f:66:aa:db:18:a2:3d:e6:d7:67:d7:1a:dc: 66:ee:cf:b6:0f:d9:68:46:7e:96:ff:7e:3e:65:0c: 90:85:cd:0f:0b:15:80:16:8f:43:ca:fe:81:be:dd: 46:0a:91:56:6a:46:51:77:39:54:8e:00:d9:cb:fc: 27:49:cc:b2:a8:6a:4e:ae:fa:83:68:d8:7e:e0:c5: 28:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:AE:8B:A8:69:25:91:11:CE:0B:63:E8:79:EA:ED:5B:BD:95:D3:C0 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c3a40d22-b081-402b-b3fe-96c41908c733.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:18a8::/45 Signature Algorithm: sha256WithRSAEncryption 83:19:eb:9c:0a:0b:23:c1:d9:97:4b:78:ca:37:c2:2d:71:04: 39:ef:82:4d:ef:bb:b8:0f:49:a4:6c:cf:1c:34:ff:ea:70:e4: 53:23:4e:a0:87:d4:7f:b9:b4:87:b4:70:48:5d:be:ff:7d:0b: 64:ad:bb:4d:f1:96:17:dd:14:49:8d:44:0c:d5:aa:76:b3:95: a0:03:d7:32:d9:5b:15:6a:61:0b:30:02:f6:e4:65:52:4a:f1: fa:9f:5e:0d:ea:83:5b:49:b7:cc:2b:13:b9:18:b8:71:c0:48: 08:ac:2c:04:3b:7e:c4:82:15:cb:ec:4b:b4:52:7d:83:5f:4c: 41:38:5c:fe:60:67:11:d5:a2:15:b6:8f:96:31:2d:bf:d1:fd: 96:e6:5f:3f:7f:65:c3:06:0e:e4:a5:66:d1:02:41:aa:67:0b: 69:83:79:1a:59:a4:77:f4:4f:e5:1c:3c:d4:85:c8:0d:5d:6f: 23:46:4c:59:96:d3:8c:1c:dc:d8:75:68:66:cf:e3:74:ae:e6: a0:d8:f4:65:79:23:5d:29:9f:fc:57:35:d3:9c:b3:f1:12:6e: 4a:73:36:1a:1f:17:80:e3:f0:49:ae:e9:1c:8c:ce:77:0c:9f: 22:9a:af:50:30:24:7d:82:c1:c4:6c:23:5f:44:2b:df:ab:f4: a3:d1:70:1e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMUD8fNmntflxalL8w11CybyhBLEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDUyMTU2WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxOGNiNmUxNmY1MmVlMzgyNTgwMTUzZTE2OGNiNWM5ZmIw ODk1ZjU5ZTY4NjlhMWFjNWU1MjNhMmI4NjM0YTE0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjmrYaoesMB3WbM7EHdOwpRNeKvOOwwMvlg1EFkDiGmwsM QuxKnWyLf/FQ9FoDzamFDlKl7uPMKI6/bwC/PmB7MGyasNWjK4UeSzxoAnr7GL8Z hsjLR5e7iaPi4A8GtN/Njfd65JJDfPzOvOY/ETX1vUU9x8YySt9T939aSdw+5QyD 8DAEbHQuWHOQBCFEUmGbyQxzeZZMM6foZcVXYO1ihWSY97LQ/JxpFQPqJ65rdH4t NcCZb2aq2xiiPebXZ9ca3Gbuz7YP2WhGfpb/fj5lDJCFzQ8LFYAWj0PK/oG+3UYK kVZqRlF3OVSOANnL/CdJzLKoak6u+oNo2H7gxSihAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUIq6LqGklkRHOC2PoeertW72V08AwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2MzYTQwZDIyLWIwODEtNDAyYi1iM2ZlLTk2YzQxOTA4YzczMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAGKgwDQYJKoZIhvcNAQELBQADggEBAIMZ65wKCyPB2ZdLeMo3wi1x BDnvgk3vu7gPSaRszxw0/+pw5FMjTqCH1H+5tIe0cEhdvv99C2Stu03xlhfdFEmN RAzVqnazlaAD1zLZWxVqYQswAvbkZVJK8fqfXg3qg1tJt8wrE7kYuHHASAisLAQ7 fsSCFcvsS7RSfYNfTEE4XP5gZxHVohW2j5YxLb/R/ZbmXz9/ZcMGDuSlZtECQapn C2mDeRpZpHf0T+UcPNSFyA1dbyNGTFmW04wc3Nh1aGbP43Su5qDY9GV5I10pn/xX NdOcs/ESbkpzNhofF4Dj8Emu6RyMzncMnyKar1AwJH2CwcRsI19EK9+r9KPRcB4= -----END CERTIFICATE-----Generated at Wed Nov 5 09:27:04 2025 by rpki-client