$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c5ba17ac-603b-4ea8-b513-76e71997010d.roa File: c5ba17ac-603b-4ea8-b513-76e71997010d.roa (raw, json) Hash identifier: 19H48VrVCf4YrDS2XuizzZ9wz502onQ0rSelhemPDlk= Subject key identifier: 47:2B:3E:24:28:C2:53:46:29:AD:91:F5:35:BE:2B:C0:84:7A:98:E8 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 11154731F8DE3946669C88A647D081A46A7C26AB Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c5ba17ac-603b-4ea8-b513-76e71997010d.roa Signing time: Fri 31 Oct 2025 05:42:18 +0000 ROA not before: Fri 31 Oct 2025 05:42:18 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2ba0::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:15:47:31:f8:de:39:46:66:9c:88:a6:47:d0:81:a4:6a:7c:26:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 05:42:18 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=f22718feb01ada02d215279897cac35368f7a58eabdfed510a096181f04f7c9b, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ea:7d:6d:df:0d:7f:16:d5:9e:6b:e9:e3:2a: 2d:81:17:8b:ad:8b:71:4b:c1:49:bf:5b:83:74:fb: c0:0c:6d:54:73:47:f5:38:c3:72:c0:7f:79:4b:4d: df:2b:ae:50:a3:c9:97:8c:7f:36:6a:de:07:05:8b: 7a:3a:6e:99:16:90:4d:d5:81:5a:22:6d:e7:7d:da: 9f:d8:1b:33:39:8a:05:e4:cd:06:7e:e1:27:ad:d0: 9e:65:5b:2d:81:2c:e6:be:3f:11:04:9c:3d:88:4e: 84:ee:20:3f:f9:4c:25:65:e4:7a:3c:33:67:e5:a0: 22:c1:50:08:28:ba:d6:e6:b2:c3:12:79:f9:ee:d6: dd:b3:72:63:08:f8:43:b8:84:ba:52:e2:87:86:96: 01:07:3d:3f:f0:f3:3d:5a:77:e1:7d:07:26:bd:af: 47:66:9c:83:72:a2:70:11:4c:12:47:9c:48:73:3a: 61:6b:fc:1e:1e:0c:03:74:d0:78:72:3c:c6:b8:9c: 22:c2:2f:15:e3:60:ff:0e:b1:5e:d3:7c:b5:bf:a8: 82:fa:92:8d:22:f1:bb:f7:9c:c9:f0:80:0f:37:30: 4d:cb:d1:73:d8:5d:f2:6e:6d:1f:33:76:38:7a:9c: 04:d3:70:c4:87:2f:5e:8b:23:21:ef:55:27:08:11: 13:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:2B:3E:24:28:C2:53:46:29:AD:91:F5:35:BE:2B:C0:84:7A:98:E8 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c5ba17ac-603b-4ea8-b513-76e71997010d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2ba0::/45 Signature Algorithm: sha256WithRSAEncryption 11:5a:8c:0c:40:71:1b:4d:4a:31:ea:15:4d:f4:70:84:f2:b8: 8e:22:ae:d7:a0:ca:66:94:d7:02:3f:b8:3e:7b:08:5b:ab:5d: bf:88:9e:f8:9e:5d:f9:5f:6c:4d:04:82:10:f9:2f:2d:23:5c: d9:82:da:74:f7:01:1a:fd:f6:07:86:0d:b0:ce:1c:57:58:5e: f2:6e:ff:4e:46:03:0c:a6:12:2d:d5:96:14:ff:cd:a9:cd:7b: 0b:b6:79:9e:6e:f4:2b:d9:ba:d9:0e:6e:e2:ce:56:93:e5:a2: c7:dc:ba:3b:d8:ce:8b:d2:41:52:59:29:18:83:78:8b:9f:9e: fc:a6:51:e3:36:b8:b2:af:70:52:6c:c7:5a:a6:e7:46:27:a1: f6:d6:ef:70:f8:ee:fb:88:b0:71:67:71:cc:03:47:56:d1:66: 35:52:84:c9:85:2e:f4:3c:36:fb:b5:15:cf:eb:13:8b:56:98: 3a:25:4b:21:80:6c:e3:48:6f:47:0a:0a:fd:40:b6:09:25:48: 15:6e:ac:11:7b:8a:88:3c:bb:16:c4:72:fe:e6:e5:29:86:2e: 51:a3:20:a1:e9:ba:67:ad:1f:04:d9:e7:62:80:fb:ed:15:88: db:7b:59:d8:7c:9d:5d:34:54:04:b6:ff:f6:c2:2f:22:b3:a0: 89:e8:e1:ce -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUERVHMfjeOUZmnIimR9CBpGp8JqswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDU0MjE4WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMjI3MThmZWIwMWFkYTAyZDIxNTI3OTg5N2NhYzM1MzY4 ZjdhNThlYWJkZmVkNTEwYTA5NjE4MWYwNGY3YzliMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC16n1t3w1/FtWea+njKi2BF4uti3FLwUm/W4N0+8AMbVRz R/U4w3LAf3lLTd8rrlCjyZeMfzZq3gcFi3o6bpkWkE3VgVoibed92p/YGzM5igXk zQZ+4Set0J5lWy2BLOa+PxEEnD2IToTuID/5TCVl5Ho8M2floCLBUAgoutbmssMS efnu1t2zcmMI+EO4hLpS4oeGlgEHPT/w8z1ad+F9Bya9r0dmnINyonARTBJHnEhz OmFr/B4eDAN00HhyPMa4nCLCLxXjYP8OsV7TfLW/qIL6ko0i8bv3nMnwgA83ME3L 0XPYXfJubR8zdjh6nATTcMSHL16LIyHvVScIERMJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQURys+JCjCU0YprZH1Nb4rwIR6mOgwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2M1YmExN2FjLTYwM2ItNGVhOC1iNTEzLTc2ZTcxOTk3MDEwZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAK6AwDQYJKoZIhvcNAQELBQADggEBABFajAxAcRtNSjHqFU30cITy uI4irtegymaU1wI/uD57CFurXb+InvieXflfbE0EghD5Ly0jXNmC2nT3ARr99geG DbDOHFdYXvJu/05GAwymEi3VlhT/zanNewu2eZ5u9CvZutkObuLOVpPlosfcujvY zovSQVJZKRiDeIufnvymUeM2uLKvcFJsx1qm50YnofbW73D47vuIsHFnccwDR1bR ZjVShMmFLvQ8Nvu1Fc/rE4tWmDolSyGAbONIb0cKCv1AtgklSBVurBF7iog8uxbE cv7m5SmGLlGjIKHpumetHwTZ52KA++0ViNt7Wdh8nV00VAS2//bCLyKzoIno4c4= -----END CERTIFICATE-----Generated at Wed Nov 5 07:40:15 2025 by rpki-client