$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ca7a2948-7176-448a-ad27-0526c68e3e22.roa File: ca7a2948-7176-448a-ad27-0526c68e3e22.roa (raw, json) Hash identifier: XXB7Ei/k4/iUwl7tmm3xUH2+jCg0yV1G3KT4HXXIFkk= Subject key identifier: 96:82:EB:75:8B:04:F5:38:5C:3B:F5:08:C4:35:7A:55:6C:02:20:44 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 570B1EA95693914B56F7885D57E4EE1BA62A57B0 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ca7a2948-7176-448a-ad27-0526c68e3e22.roa Signing time: Fri 31 Oct 2025 06:38:41 +0000 ROA not before: Fri 31 Oct 2025 06:38:41 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1a20::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:0b:1e:a9:56:93:91:4b:56:f7:88:5d:57:e4:ee:1b:a6:2a:57:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 06:38:41 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=9a43e72e96f27e7b346610720a805698092a4aa931cea97a6421323e04b3ae4b, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:95:c5:3c:ff:5b:d0:fa:b9:1d:b4:83:e6:05: 7d:9f:35:47:b2:63:db:c0:b9:fc:ab:2d:81:4b:c7: f2:cb:a3:50:b4:04:47:9a:dd:f5:ed:1b:6c:ea:9b: e0:97:dc:a6:d8:4a:76:79:42:ce:1f:83:44:df:d9: ae:36:8a:75:56:1e:e6:71:41:bd:f0:04:a4:a3:ab: ac:7c:a0:1f:d6:17:f6:11:85:a1:dd:cf:cd:37:b7: b1:c4:d0:3f:1e:ba:82:15:cd:12:c4:f3:05:69:7b: 72:4a:48:73:bc:68:4b:47:8c:7d:36:da:1d:db:21: aa:5b:83:9a:93:3f:e4:27:4f:dc:5a:55:23:96:c7: c1:32:b0:23:bb:01:a0:25:b0:ef:2f:b3:1d:41:80: e6:d5:d6:c3:2f:b3:13:e9:2b:43:79:fe:59:c9:d0: 27:45:42:0d:11:50:b5:76:f7:ff:95:59:f6:28:4b: aa:72:b5:5a:c8:a2:48:5b:02:69:da:7e:53:43:84: d9:8f:99:6f:62:51:09:9f:61:a8:c6:ba:a3:50:91: e3:8b:33:de:20:d0:89:da:cd:52:a3:b5:6d:5d:59: f3:ff:96:ae:75:f3:f7:c8:24:34:d1:84:5b:5a:16: 0b:f7:b5:00:cc:e8:45:e2:95:c9:0c:8f:e4:92:3f: 5b:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:82:EB:75:8B:04:F5:38:5C:3B:F5:08:C4:35:7A:55:6C:02:20:44 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ca7a2948-7176-448a-ad27-0526c68e3e22.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1a20::/44 Signature Algorithm: sha256WithRSAEncryption 29:34:54:9a:f2:66:9f:77:49:5f:b1:14:59:9a:dc:ad:39:cd: 52:f1:7c:b0:65:db:78:c4:be:41:97:31:e9:ca:86:6c:12:3d: db:92:7b:85:69:7c:4b:e1:fa:67:ae:be:6f:25:70:c5:7a:24: 94:65:51:89:7e:d5:67:bb:e8:63:dc:2c:29:32:c7:54:9e:8c: a0:7e:d5:35:f9:4e:f2:29:b1:98:90:c7:76:f5:58:d6:63:cb: 42:0f:74:88:ca:f5:6f:80:eb:ed:99:91:aa:98:3c:f2:d5:82: e1:21:2f:fd:23:45:78:4c:77:6f:3d:28:f6:b0:82:23:71:9a: 9e:22:44:6d:84:c1:56:55:c8:5c:f5:db:49:f4:c2:b4:e5:53: 7c:0e:23:21:af:66:1b:24:ba:82:b9:b8:e2:b9:2c:2a:e3:4c: 6d:cc:29:51:aa:ed:07:fd:33:8b:a5:b5:70:ec:1e:b3:30:c7: 69:54:7d:18:2a:82:66:ed:84:9c:ea:c9:93:d4:0d:15:0b:43: b7:4a:03:e3:65:f7:0b:53:08:50:f5:ea:4b:02:7f:cb:fe:de: 88:ad:9e:d4:ac:e1:26:99:89:19:b7:b2:79:2e:3c:f0:7d:47: 4e:03:b8:03:f3:55:56:cd:b5:ff:b8:8b:fc:5b:45:c2:ac:d6: 04:00:3f:d3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVwseqVaTkUtW94hdV+TuG6YqV7AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDYzODQxWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YTQzZTcyZTk2ZjI3ZTdiMzQ2NjEwNzIwYTgwNTY5ODA5 MmE0YWE5MzFjZWE5N2E2NDIxMzIzZTA0YjNhZTRiMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCelcU8/1vQ+rkdtIPmBX2fNUeyY9vAufyrLYFLx/LLo1C0 BEea3fXtG2zqm+CX3KbYSnZ5Qs4fg0Tf2a42inVWHuZxQb3wBKSjq6x8oB/WF/YR haHdz803t7HE0D8euoIVzRLE8wVpe3JKSHO8aEtHjH022h3bIapbg5qTP+QnT9xa VSOWx8EysCO7AaAlsO8vsx1BgObV1sMvsxPpK0N5/lnJ0CdFQg0RULV29/+VWfYo S6pytVrIokhbAmnaflNDhNmPmW9iUQmfYajGuqNQkeOLM94g0InazVKjtW1dWfP/ lq518/fIJDTRhFtaFgv3tQDM6EXilckMj+SSP1tTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUloLrdYsE9ThcO/UIxDV6VWwCIEQwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2NhN2EyOTQ4LTcxNzYtNDQ4YS1hZDI3LTA1MjZjNjhlM2UyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAJAAGiAwDQYJKoZIhvcNAQELBQADggEBACk0VJryZp93SV+xFFma3K05 zVLxfLBl23jEvkGXMenKhmwSPduSe4VpfEvh+meuvm8lcMV6JJRlUYl+1We76GPc LCkyx1SejKB+1TX5TvIpsZiQx3b1WNZjy0IPdIjK9W+A6+2ZkaqYPPLVguEhL/0j RXhMd289KPawgiNxmp4iRG2EwVZVyFz120n0wrTlU3wOIyGvZhskuoK5uOK5LCrj TG3MKVGq7Qf9M4ultXDsHrMwx2lUfRgqgmbthJzqyZPUDRULQ7dKA+Nl9wtTCFD1 6ksCf8v+3oitntSs4SaZiRm3snkuPPB9R04DuAPzVVbNtf+4i/xbRcKs1gQAP9M= -----END CERTIFICATE-----Generated at Wed Nov 5 16:54:26 2025 by rpki-client