$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c56fc947-e9e0-4190-94e6-4dcaa552d823.roa File: c56fc947-e9e0-4190-94e6-4dcaa552d823.roa (raw, json) Hash identifier: 8rcooQq9DsGJcrNjZYgWuwVDcaTbxje8ie3rtPu3LRI= Subject key identifier: 41:8D:E8:D3:C1:D8:86:85:03:66:79:F0:25:B7:79:83:0D:4B:B3:8C Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3D2EFE298F45CBE5782D1241B53CCE7B571235CA Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c56fc947-e9e0-4190-94e6-4dcaa552d823.roa Signing time: Thu 30 Oct 2025 21:40:41 +0000 ROA not before: Thu 30 Oct 2025 21:40:41 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1874::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:2e:fe:29:8f:45:cb:e5:78:2d:12:41:b5:3c:ce:7b:57:12:35:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 21:40:41 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=39a25df415d0af42669bcd9a5bceb0188cb734ba0c5622432820e666fb9615c3, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:b8:15:cd:2f:17:55:b3:27:c9:23:fc:9a:c8: 67:36:ab:c6:92:19:e9:08:d9:6a:0f:02:d8:f9:4a: 01:bf:ba:b3:5c:d5:a3:ed:00:08:17:6e:f1:30:5e: 3b:be:5f:ad:f1:01:78:38:73:67:fb:4d:a0:3a:07: e1:c0:19:da:71:4e:69:d6:e2:cf:87:32:ed:92:1b: 53:5c:1b:4e:23:ff:a9:62:b7:ee:e8:1e:ac:f6:1e: b5:8b:56:f9:94:99:c5:38:3b:1d:5b:f1:7a:11:b5: 0f:7e:57:2f:ca:07:a1:59:39:4a:5a:0f:67:ae:07: 9a:78:1b:bc:a4:e1:a4:02:09:3f:fc:30:76:10:f0: d6:4d:ee:d8:fa:78:56:d7:0c:95:7f:b3:e0:da:76: 87:0d:e7:cb:1c:ea:39:f3:0c:54:73:26:0f:bd:5d: 11:af:dd:de:14:dc:3c:6c:d4:7a:a3:ed:46:8c:6f: 8e:c8:c1:4c:03:e2:f8:c3:11:67:92:9a:1f:b0:ab: 26:12:9d:91:d1:c8:f4:db:2f:be:31:46:5b:a6:ff: 5b:2a:ac:d1:7c:fc:f2:af:55:63:f9:9d:21:37:20: 74:35:77:6d:1b:58:af:48:26:e1:bf:b4:08:15:d6: ed:c1:60:34:7d:c2:12:be:28:de:13:8b:7b:32:61: 19:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:8D:E8:D3:C1:D8:86:85:03:66:79:F0:25:B7:79:83:0D:4B:B3:8C X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c56fc947-e9e0-4190-94e6-4dcaa552d823.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1874::/47 Signature Algorithm: sha256WithRSAEncryption 6c:16:89:9b:63:44:83:32:0e:68:cf:87:72:21:b7:47:7e:8c: 6e:86:43:ca:26:54:b0:05:73:a0:83:92:5a:18:f6:a5:29:01: 74:60:5a:d9:ac:c5:42:75:6c:44:71:d7:e9:85:8d:95:0f:3c: 14:c7:52:44:1b:26:f4:8a:e7:ec:bc:b6:fe:87:c4:20:4a:b9: 14:46:65:88:b7:16:07:85:e9:16:53:62:9b:1f:8f:a8:0e:38: f0:a6:0f:b9:53:77:43:95:b9:49:cc:07:1d:6d:c8:d3:59:a4: 69:79:2b:15:80:c7:e9:f3:7f:e8:f2:87:3e:86:5c:af:55:d7: 74:cf:24:62:3b:3e:f6:38:a1:b5:4f:ce:aa:04:67:a0:e0:7d: 1a:a1:b9:c7:eb:1a:b0:4d:8a:e8:11:7e:da:a4:0d:ba:3a:f2: ca:72:36:9f:d7:ff:ea:c9:0f:fb:2e:28:0e:aa:64:04:49:c2: c7:f5:a2:cd:fa:1f:5c:06:9e:98:b2:47:6f:52:aa:ae:ad:da: 57:9a:43:b3:39:44:59:f5:d2:80:66:ad:61:2a:b8:47:ce:bf: e7:63:01:19:f0:14:4c:f7:4f:b8:1f:d6:96:86:d9:98:54:68: 73:91:92:84:d2:2f:cb:23:d3:79:65:cd:5d:88:21:4d:63:21: 29:9e:a6:2f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPS7+KY9Fy+V4LRJBtTzOe1cSNcowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjE0MDQxWhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzOWEyNWRmNDE1ZDBhZjQyNjY5YmNkOWE1YmNlYjAxODhj YjczNGJhMGM1NjIyNDMyODIwZTY2NmZiOTYxNWMzMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDnuBXNLxdVsyfJI/yayGc2q8aSGekI2WoPAtj5SgG/urNc 1aPtAAgXbvEwXju+X63xAXg4c2f7TaA6B+HAGdpxTmnW4s+HMu2SG1NcG04j/6li t+7oHqz2HrWLVvmUmcU4Ox1b8XoRtQ9+Vy/KB6FZOUpaD2euB5p4G7yk4aQCCT/8 MHYQ8NZN7tj6eFbXDJV/s+DadocN58sc6jnzDFRzJg+9XRGv3d4U3Dxs1Hqj7UaM b47IwUwD4vjDEWeSmh+wqyYSnZHRyPTbL74xRlum/1sqrNF8/PKvVWP5nSE3IHQ1 d20bWK9IJuG/tAgV1u3BYDR9whK+KN4Ti3syYRkVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQY3o08HYhoUDZnnwJbd5gw1Ls4wwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2M1NmZjOTQ3LWU5ZTAtNDE5MC05NGU2LTRkY2FhNTUyZDgyMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAGHQwDQYJKoZIhvcNAQELBQADggEBAGwWiZtjRIMyDmjPh3Iht0d+ jG6GQ8omVLAFc6CDkloY9qUpAXRgWtmsxUJ1bERx1+mFjZUPPBTHUkQbJvSK5+y8 tv6HxCBKuRRGZYi3FgeF6RZTYpsfj6gOOPCmD7lTd0OVuUnMBx1tyNNZpGl5KxWA x+nzf+jyhz6GXK9V13TPJGI7PvY4obVPzqoEZ6DgfRqhucfrGrBNiugRftqkDbo6 8spyNp/X/+rJD/suKA6qZARJwsf1os36H1wGnpiyR29Sqq6t2leaQ7M5RFn10oBm rWEquEfOv+djARnwFEz3T7gf1paG2ZhUaHORkoTSL8sj03llzV2IIU1jISmepi8= -----END CERTIFICATE-----Generated at Wed Nov 5 10:55:56 2025 by rpki-client