$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/caaf5b7d-5454-4f76-af19-8099ec0630f6.roa File: caaf5b7d-5454-4f76-af19-8099ec0630f6.roa (raw, json) Hash identifier: 1qHnAZDGec99Sp5AusTDa47BHj2g9hMZwE6hb/zbJXA= Subject key identifier: 72:9F:A1:07:26:FF:1D:BE:A2:42:3F:AA:66:E3:1D:8C:BA:33:37:C7 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4F980436C620B47443E859D3B29B61C44CA02860 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/caaf5b7d-5454-4f76-af19-8099ec0630f6.roa Signing time: Thu 30 Oct 2025 22:07:07 +0000 ROA not before: Thu 30 Oct 2025 22:07:07 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1ae4::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:98:04:36:c6:20:b4:74:43:e8:59:d3:b2:9b:61:c4:4c:a0:28:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 22:07:07 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=db19d89becac5896747a7817ac45365edc6df75a6788a266d58c6b12363ce1db, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2d:7d:e8:0b:6a:08:f7:2a:b9:b6:d8:d8:8e: 7c:c4:9f:3f:a4:d3:b2:dd:bc:03:d2:3f:0a:0b:d8: b0:47:59:8a:c5:6b:37:fc:14:68:1e:32:14:fc:9c: 58:65:67:84:88:df:64:1f:ff:98:da:ef:87:be:f2: 1c:c3:00:bd:e9:d2:b8:57:42:4d:89:3a:09:e6:bc: a5:74:0d:73:6a:78:c6:47:51:8e:c3:7c:f9:94:09: 32:d4:fd:39:38:d1:1c:55:d7:ac:ac:b4:20:c2:e7: f9:86:4c:88:5b:4a:4d:ca:1d:e5:26:46:32:24:ba: f7:76:2c:fe:c2:1e:66:54:b8:71:70:c3:08:ce:fe: 4d:f2:d0:57:63:34:29:77:3d:b1:82:87:07:0c:73: 42:bd:60:7c:98:3d:43:ad:0d:e5:e0:e6:b2:39:e4: 65:de:a2:23:ee:8a:7a:06:5e:27:0f:3a:3b:db:23: d0:cc:f0:d1:b0:3c:65:3e:2e:18:54:26:d1:17:26: 87:0c:e1:74:fd:b9:e1:f4:60:90:54:27:e8:eb:17: 48:c2:6f:91:b4:7d:e7:be:2c:e0:22:95:77:51:c6: 58:8a:59:30:02:b3:1e:39:75:8e:5b:e2:ad:15:ec: e7:e3:a3:f7:54:0b:9e:0d:d6:45:76:f2:ea:ff:74: 52:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:9F:A1:07:26:FF:1D:BE:A2:42:3F:AA:66:E3:1D:8C:BA:33:37:C7 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/caaf5b7d-5454-4f76-af19-8099ec0630f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1ae4::/47 Signature Algorithm: sha256WithRSAEncryption 11:1a:b9:93:40:8b:86:4c:47:1d:82:c9:ef:08:d9:58:f9:f4: 36:47:74:f9:63:25:34:c1:b6:6d:13:da:f7:8b:32:a5:ea:0d: 83:a5:92:7a:c4:cd:25:6c:62:12:36:e4:bd:2c:08:67:e4:80: 28:94:15:e5:42:64:f7:67:dd:e0:86:cc:9a:e3:19:19:45:17: a6:7a:66:9a:13:59:ff:30:3b:c2:b7:67:94:80:3a:9d:fa:4e: 0d:ca:1b:53:b2:6f:c5:da:df:f6:66:9a:73:43:00:3f:13:42: 14:1b:fa:27:bc:fd:58:ed:19:e9:8a:2f:40:ff:d0:75:ec:89: 79:dd:c0:06:3c:4a:e6:d8:f9:f8:02:a0:10:5c:1b:d9:e0:6e: c3:06:f1:e7:8f:24:15:ca:34:83:9f:42:99:68:85:d0:bc:f0: 92:18:06:17:44:0e:67:69:fc:2c:50:3c:c8:63:f4:d6:f1:b3: 2a:aa:5e:b4:0f:90:43:49:2c:cc:d2:55:fe:32:ac:e6:f6:ae: 4b:66:a7:fa:d1:bf:8c:9b:00:15:43:ed:95:6e:71:5d:df:23: 21:32:df:f2:77:d9:eb:59:b0:97:7c:f8:79:20:70:b6:3a:11: d6:3a:bf:c2:2e:ba:2d:80:a8:f0:10:cf:aa:df:c0:68:80:ff: e4:73:5b:e0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUT5gENsYgtHRD6FnTspthxEygKGAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjIwNzA3WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYjE5ZDg5YmVjYWM1ODk2NzQ3YTc4MTdhYzQ1MzY1ZWRj NmRmNzVhNjc4OGEyNjZkNThjNmIxMjM2M2NlMWRiMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFLX3oC2oI9yq5ttjYjnzEnz+k07LdvAPSPwoL2LBHWYrF azf8FGgeMhT8nFhlZ4SI32Qf/5ja74e+8hzDAL3p0rhXQk2JOgnmvKV0DXNqeMZH UY7DfPmUCTLU/Tk40RxV16ystCDC5/mGTIhbSk3KHeUmRjIkuvd2LP7CHmZUuHFw wwjO/k3y0FdjNCl3PbGChwcMc0K9YHyYPUOtDeXg5rI55GXeoiPuinoGXicPOjvb I9DM8NGwPGU+LhhUJtEXJocM4XT9ueH0YJBUJ+jrF0jCb5G0fee+LOAilXdRxliK WTACsx45dY5b4q0V7Ofjo/dUC54N1kV28ur/dFLbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcp+hByb/Hb6iQj+qZuMdjLozN8cwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2NhYWY1YjdkLTU0NTQtNGY3Ni1hZjE5LTgwOTllYzA2MzBmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAGuQwDQYJKoZIhvcNAQELBQADggEBABEauZNAi4ZMRx2Cye8I2Vj5 9DZHdPljJTTBtm0T2veLMqXqDYOlknrEzSVsYhI25L0sCGfkgCiUFeVCZPdn3eCG zJrjGRlFF6Z6ZpoTWf8wO8K3Z5SAOp36Tg3KG1Oyb8Xa3/ZmmnNDAD8TQhQb+ie8 /VjtGemKL0D/0HXsiXndwAY8SubY+fgCoBBcG9ngbsMG8eePJBXKNIOfQplohdC8 8JIYBhdEDmdp/CxQPMhj9NbxsyqqXrQPkENJLMzSVf4yrOb2rktmp/rRv4ybABVD 7ZVucV3fIyEy3/J32etZsJd8+HkgcLY6EdY6v8Iuui2AqPAQz6rfwGiA/+RzW+A= -----END CERTIFICATE-----Generated at Wed Nov 5 05:36:34 2025 by rpki-client