$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/cf442e0a-dcd6-49c1-9341-a2da84308e5e.roa File: cf442e0a-dcd6-49c1-9341-a2da84308e5e.roa (raw, json) Hash identifier: Ks6w6BT4nocYaJ623mc9Yvf07wqA7kY0AN5tq1lNw7o= Subject key identifier: 08:7D:21:D9:A4:07:1A:0F:68:FA:34:91:40:80:54:CB:D9:F7:04:52 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 1B8AED65C25E52A0C60CD91F39CBBED1A931EDC0 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/cf442e0a-dcd6-49c1-9341-a2da84308e5e.roa Signing time: Fri 31 Oct 2025 02:06:46 +0000 ROA not before: Fri 31 Oct 2025 02:06:46 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3f7e::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:8a:ed:65:c2:5e:52:a0:c6:0c:d9:1f:39:cb:be:d1:a9:31:ed:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 02:06:46 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=768a63d353e328b060915d78e05a6abd8c5d69eb37ab7bde312f52d78b2216dd, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:1b:2d:0f:f9:e4:d3:c2:85:e7:53:6c:99:30: 66:5e:23:ce:87:84:80:6a:07:bd:5a:d0:4a:84:3f: 6a:98:ca:db:3c:20:e3:da:4f:bd:ab:4a:28:ab:4f: 3e:43:e9:7c:81:9d:53:94:5e:14:c1:6d:3b:26:a5: 95:92:9e:34:93:bc:d8:07:31:d5:8b:e2:69:c5:c4: eb:c9:1e:83:9d:65:cf:38:2c:c3:1a:84:95:18:66: 32:7f:68:2c:b4:0a:74:fa:07:97:a9:de:fb:39:bb: 5f:c4:8c:c5:87:73:e3:55:83:b8:9e:d9:f9:52:f1: cb:74:e1:cd:02:69:2a:a0:0a:a8:72:b4:c3:a0:7d: be:ac:fb:47:7c:19:4e:c5:22:92:9d:08:0b:c1:88: c5:88:1e:66:68:1d:c5:78:51:09:a2:1a:02:16:39: 10:2d:70:72:89:15:db:4f:a2:05:9e:51:4a:9b:f6: 5c:bc:4e:2e:e2:21:70:55:ff:1a:9d:75:41:78:f1: ec:35:13:56:17:cd:35:28:6e:d8:78:3d:74:87:57: db:46:26:3a:b0:ad:95:18:39:ef:e5:e7:96:01:95: 7d:27:c3:f2:b9:29:e8:f9:fd:99:66:90:e0:6a:f1: 2f:b6:a5:5f:3b:05:36:fc:99:40:a3:87:af:74:02: d7:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:7D:21:D9:A4:07:1A:0F:68:FA:34:91:40:80:54:CB:D9:F7:04:52 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/cf442e0a-dcd6-49c1-9341-a2da84308e5e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3f7e::/47 Signature Algorithm: sha256WithRSAEncryption 44:18:43:c6:50:69:48:1c:6e:6a:5d:5a:77:09:ef:f6:05:b7: 2a:8a:cc:73:cf:ce:c1:78:05:82:f8:ec:a1:b9:b2:f1:e3:b3: fb:91:e6:24:ba:5c:7f:1b:ff:fc:11:99:5a:e6:c8:2d:55:c7: c7:7e:46:86:41:a6:f9:81:92:9f:f8:c8:05:c8:4e:f9:fe:67: 35:dc:39:33:0d:2a:24:b4:44:b9:88:a5:e8:39:3c:be:bb:f8: b6:14:87:ed:44:cf:f9:ac:32:35:97:eb:0f:64:be:58:f0:7f: 15:b3:23:c5:3d:1d:95:9d:6d:09:94:9c:e3:26:fd:70:56:18: 78:3c:02:d4:a1:6a:17:ac:e3:46:03:4d:4f:63:e4:52:57:4e: 1d:f4:04:ad:f0:fd:3b:95:e0:d8:b2:3a:3c:61:85:71:7f:a1: 65:72:8c:d0:ce:03:23:61:25:bb:0d:ab:83:dd:69:ef:b8:39: 65:99:1c:3c:81:05:eb:05:92:35:59:5d:46:f7:af:dd:c0:6d: cd:d6:01:21:a9:4c:48:09:b8:46:38:24:d5:9f:8f:5a:99:0d: 8d:b5:73:3a:7d:25:da:2a:1b:bb:cd:2d:1a:0b:cb:38:53:26: 31:81:a5:db:1f:e7:38:87:2e:ab:de:48:d8:27:5f:17:3d:36: fa:7c:ff:f6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUG4rtZcJeUqDGDNkfOcu+0akx7cAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDIwNjQ2WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NjhhNjNkMzUzZTMyOGIwNjA5MTVkNzhlMDVhNmFiZDhj NWQ2OWViMzdhYjdiZGUzMTJmNTJkNzhiMjIxNmRkMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdGy0P+eTTwoXnU2yZMGZeI86HhIBqB71a0EqEP2qYyts8 IOPaT72rSiirTz5D6XyBnVOUXhTBbTsmpZWSnjSTvNgHMdWL4mnFxOvJHoOdZc84 LMMahJUYZjJ/aCy0CnT6B5ep3vs5u1/EjMWHc+NVg7ie2flS8ct04c0CaSqgCqhy tMOgfb6s+0d8GU7FIpKdCAvBiMWIHmZoHcV4UQmiGgIWORAtcHKJFdtPogWeUUqb 9ly8Ti7iIXBV/xqddUF48ew1E1YXzTUobth4PXSHV9tGJjqwrZUYOe/l55YBlX0n w/K5Kej5/ZlmkOBq8S+2pV87BTb8mUCjh690AteRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUCH0h2aQHGg9o+jSRQIBUy9n3BFIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2NmNDQyZTBhLWRjZDYtNDljMS05MzQxLWEyZGE4NDMwOGU1ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAP34wDQYJKoZIhvcNAQELBQADggEBAEQYQ8ZQaUgcbmpdWncJ7/YF tyqKzHPPzsF4BYL47KG5svHjs/uR5iS6XH8b//wRmVrmyC1Vx8d+RoZBpvmBkp/4 yAXITvn+ZzXcOTMNKiS0RLmIpeg5PL67+LYUh+1Ez/msMjWX6w9kvljwfxWzI8U9 HZWdbQmUnOMm/XBWGHg8AtShahes40YDTU9j5FJXTh30BK3w/TuV4NiyOjxhhXF/ oWVyjNDOAyNhJbsNq4Pdae+4OWWZHDyBBesFkjVZXUb3r93Abc3WASGpTEgJuEY4 JNWfj1qZDY21czp9JdoqG7vNLRoLyzhTJjGBpdsf5ziHLqveSNgnXxc9Nvp8//Y= -----END CERTIFICATE-----Generated at Wed Nov 5 10:55:17 2025 by rpki-client