$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ceaea654-953a-4ae0-8df0-34679b952e07.roa File: ceaea654-953a-4ae0-8df0-34679b952e07.roa (raw, json) Hash identifier: bjuPOAgIdsKCW5gQO5FMMBiVs6o1NYvGPmc6Xo/Ap2w= Subject key identifier: AD:D9:19:1F:CF:A6:34:11:93:B2:14:C9:AD:9C:FB:70:FB:B0:15:60 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 18F91B5819F9DB55515185C0DCA72377602D9652 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ceaea654-953a-4ae0-8df0-34679b952e07.roa Signing time: Fri 31 Oct 2025 00:21:52 +0000 ROA not before: Fri 31 Oct 2025 00:21:52 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:347a::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:f9:1b:58:19:f9:db:55:51:51:85:c0:dc:a7:23:77:60:2d:96:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 00:21:52 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=8b9d36826493cd9cc0b9ed48d94b62a4787d6fbd0ef49f7528daa62b99d0d7b8, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b0:58:a3:53:7c:f5:a1:d7:85:95:23:4c:33: da:d9:de:28:e0:a3:e3:4c:01:34:4a:ed:79:7d:1e: d6:3f:94:f4:96:43:02:e7:d6:2f:4f:6f:ad:3c:0e: 0c:1b:a0:c4:2a:c5:d4:5d:bb:ff:ac:66:5b:8f:76: ac:c5:d2:28:dc:31:bc:2d:2c:78:d9:fc:fc:c5:ac: 4f:4a:cf:5b:c9:5b:dd:f6:84:65:40:63:40:4a:18: 08:e9:ac:01:af:35:64:ca:a5:eb:ba:04:c0:77:e2: 08:97:46:b5:fc:1f:2c:64:4d:01:5d:5b:4d:ac:ee: 6f:00:cc:b9:fc:15:8b:e5:b0:cc:05:18:92:94:0e: 06:87:24:f8:25:07:78:5f:5d:89:a8:bf:45:c4:25: d5:d3:58:fd:63:54:4f:f0:85:7f:44:1a:db:28:9f: f5:40:74:14:79:c3:3f:26:57:56:25:5e:e8:0f:2c: 9d:13:1f:52:7b:78:88:fb:2b:4b:9e:75:73:9a:79: 71:68:cd:8e:ce:07:64:a0:7a:35:12:9f:64:45:bd: 6f:99:46:fd:91:c7:e5:cf:8d:02:5e:08:9a:91:b0: fa:12:d4:7f:e9:f2:a4:64:77:06:c9:75:be:0d:0f: 67:c0:94:d0:c2:bd:23:f2:2e:29:d4:6b:b7:17:40: d3:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:D9:19:1F:CF:A6:34:11:93:B2:14:C9:AD:9C:FB:70:FB:B0:15:60 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ceaea654-953a-4ae0-8df0-34679b952e07.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:347a::/47 Signature Algorithm: sha256WithRSAEncryption 3c:54:27:b3:70:55:a6:1b:22:d9:f8:9c:5d:51:c2:27:9c:40: ed:41:ab:14:96:29:5b:5e:15:99:75:13:62:70:87:c0:57:df: 86:d0:f1:3c:70:48:ec:a4:2a:64:42:56:d5:89:8f:b7:a6:20: 73:0c:09:9c:87:1d:62:f3:e4:8f:96:b7:09:86:0a:a6:9b:e4: 5f:7a:5e:40:2e:39:8f:8b:dd:b1:f2:50:53:97:e5:2e:a3:fa: 2e:22:d6:b8:67:9f:98:b5:3e:5c:f6:27:5a:a3:b3:3b:1d:6e: a0:2a:da:7f:80:f7:40:9d:4c:fb:e6:76:60:d9:46:98:6c:0d: 7a:66:3c:33:10:5e:6c:fc:24:e3:84:22:a3:02:66:22:a0:e9: c6:a5:67:06:14:4c:34:3c:f4:bb:ad:1a:53:ec:dc:36:b2:2b: e4:75:ca:e9:73:a5:c4:1e:50:f6:e2:ba:fa:59:9b:4b:e3:81: 94:ab:b9:72:d2:34:e1:26:f3:b8:8d:ef:f9:5f:78:7d:cb:e6: bc:98:f4:fe:3f:11:21:86:65:3b:cf:ae:e4:a7:83:ee:aa:27: 12:cb:c0:d7:3d:36:fb:7f:2a:88:78:1c:08:91:8f:92:33:29: f8:48:34:81:11:e4:25:a1:16:8a:89:00:36:07:a7:31:5d:7d: 0e:c8:ec:90 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGPkbWBn521VRUYXA3Kcjd2AtllIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDAyMTUyWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YjlkMzY4MjY0OTNjZDljYzBiOWVkNDhkOTRiNjJhNDc4 N2Q2ZmJkMGVmNDlmNzUyOGRhYTYyYjk5ZDBkN2I4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNsFijU3z1odeFlSNMM9rZ3ijgo+NMATRK7Xl9HtY/lPSW QwLn1i9Pb608DgwboMQqxdRdu/+sZluPdqzF0ijcMbwtLHjZ/PzFrE9Kz1vJW932 hGVAY0BKGAjprAGvNWTKpeu6BMB34giXRrX8HyxkTQFdW02s7m8AzLn8FYvlsMwF GJKUDgaHJPglB3hfXYmov0XEJdXTWP1jVE/whX9EGtson/VAdBR5wz8mV1YlXugP LJ0TH1J7eIj7K0uedXOaeXFozY7OB2SgejUSn2RFvW+ZRv2Rx+XPjQJeCJqRsPoS 1H/p8qRkdwbJdb4ND2fAlNDCvSPyLinUa7cXQNONAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUrdkZH8+mNBGTshTJrZz7cPuwFWAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2NlYWVhNjU0LTk1M2EtNGFlMC04ZGYwLTM0Njc5Yjk1MmUwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAANHowDQYJKoZIhvcNAQELBQADggEBADxUJ7NwVaYbItn4nF1Rwiec QO1BqxSWKVteFZl1E2Jwh8BX34bQ8TxwSOykKmRCVtWJj7emIHMMCZyHHWLz5I+W twmGCqab5F96XkAuOY+L3bHyUFOX5S6j+i4i1rhnn5i1Plz2J1qjszsdbqAq2n+A 90CdTPvmdmDZRphsDXpmPDMQXmz8JOOEIqMCZiKg6calZwYUTDQ89LutGlPs3Day K+R1yulzpcQeUPbiuvpZm0vjgZSruXLSNOEm87iN7/lfeH3L5ryY9P4/ESGGZTvP ruSng+6qJxLLwNc9Nvt/Koh4HAiRj5IzKfhINIER5CWhFoqJADYHpzFdfQ7I7JA= -----END CERTIFICATE-----Generated at Wed Nov 5 09:25:23 2025 by rpki-client