$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/cf6af67a-46e9-473f-8455-e2137ec7b41d.roa File: cf6af67a-46e9-473f-8455-e2137ec7b41d.roa (raw, json) Hash identifier: XUgDRWUhb0O6hyZgpqgQXlXSkm/CbOfCywlGJQhIItI= Subject key identifier: 07:B3:08:70:C6:09:EE:B8:AA:57:F1:46:64:71:EA:47:03:AA:0D:F8 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 243BD44A77650754E1AFDB117B8D90275E1B1A17 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/cf6af67a-46e9-473f-8455-e2137ec7b41d.roa Signing time: Fri 31 Oct 2025 00:06:56 +0000 ROA not before: Fri 31 Oct 2025 00:06:56 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:32da::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:3b:d4:4a:77:65:07:54:e1:af:db:11:7b:8d:90:27:5e:1b:1a:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 00:06:56 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=b58e51939d02764604f8daccb113e963223bef705e5da42a4059db56b095f69a, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c5:e3:eb:c6:e7:6e:2d:83:4a:d7:86:60:97: 7a:da:2e:f2:c4:a4:37:10:a4:b5:26:6f:88:72:af: bb:72:af:f9:7e:b1:e3:8e:18:20:01:63:fb:f4:3f: db:36:17:87:12:0b:32:5f:19:6c:53:be:4e:04:ff: f7:6c:5b:8d:54:e9:08:f7:99:73:83:0b:b6:3e:cb: 02:4e:f2:76:c3:ec:1e:12:76:4f:0d:3e:56:58:99: 2a:7e:ad:19:cb:44:5f:f4:89:64:54:64:7a:ff:58: 2c:81:a4:c5:30:f9:ab:ac:a5:46:f8:e9:58:06:0c: 92:a5:7c:59:f4:d6:a3:e7:c9:b0:b1:23:4d:85:67: c2:0b:01:e3:62:35:e8:9c:32:f7:52:4f:ac:bc:ee: 80:f4:36:34:05:16:44:e9:48:e4:4a:1f:c8:53:b3: f8:c6:47:62:2e:79:74:9b:3e:7e:5f:75:bd:a8:60: ae:d4:fa:dc:2a:26:be:cb:13:74:12:46:50:8f:06: 4e:c9:32:c4:65:28:90:94:58:ef:64:f1:d1:54:b1: 04:bb:41:6b:1b:54:f1:4b:10:ec:e1:d8:16:a5:53: 66:e8:49:41:1e:d2:79:21:8d:16:4a:00:91:fe:70: af:81:4c:6a:63:f0:36:ae:9a:cf:9e:bf:64:e2:06: da:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:B3:08:70:C6:09:EE:B8:AA:57:F1:46:64:71:EA:47:03:AA:0D:F8 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/cf6af67a-46e9-473f-8455-e2137ec7b41d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:32da::/47 Signature Algorithm: sha256WithRSAEncryption 9c:93:53:37:07:c6:a5:38:52:84:b3:1d:ad:8c:8d:4b:74:ae: 5d:2c:09:c4:41:10:7e:ae:91:63:12:d2:de:af:d3:91:9f:70: 40:3d:65:d3:05:80:f4:29:90:ee:01:b9:57:0f:66:88:11:e3: 41:4b:4c:50:17:d8:18:8b:97:96:26:8e:37:be:c9:d4:e9:6c: 4e:12:39:e0:80:71:55:67:90:87:43:e3:da:72:dd:21:7c:1c: 20:62:c8:c1:ee:f3:41:d2:35:30:d9:8e:77:3a:4e:7c:0b:84: 0e:dc:a1:bf:f1:ab:d6:d6:b4:56:6a:f2:c5:7b:19:cd:a2:b0: f1:72:bf:8e:46:d7:73:bb:27:0d:59:2e:43:26:e5:ea:7e:7f: e5:b4:fe:6f:00:0d:9d:c4:da:ce:08:3b:30:37:40:4d:4f:d7: 74:31:7b:08:e8:9d:0e:82:54:a7:80:b8:a5:97:c6:a0:af:5f: e0:5b:a8:99:c8:81:c6:eb:2f:d5:04:30:1e:37:f2:6c:d8:d6: a6:23:94:55:48:3f:09:38:90:a2:9a:66:a1:55:3b:60:f9:ec: 18:57:08:6c:88:11:af:60:17:65:34:30:6d:26:bc:53:5e:c6: b4:3e:6c:f9:ed:9c:0b:87:a7:1a:21:5c:6c:f6:07:d9:1d:56: a1:7f:c4:e6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJDvUSndlB1Thr9sRe42QJ14bGhcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDAwNjU2WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNThlNTE5MzlkMDI3NjQ2MDRmOGRhY2NiMTEzZTk2MzIy M2JlZjcwNWU1ZGE0MmE0MDU5ZGI1NmIwOTVmNjlhMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7xePrxuduLYNK14Zgl3raLvLEpDcQpLUmb4hyr7tyr/l+ seOOGCABY/v0P9s2F4cSCzJfGWxTvk4E//dsW41U6Qj3mXODC7Y+ywJO8nbD7B4S dk8NPlZYmSp+rRnLRF/0iWRUZHr/WCyBpMUw+auspUb46VgGDJKlfFn01qPnybCx I02FZ8ILAeNiNeicMvdST6y87oD0NjQFFkTpSORKH8hTs/jGR2IueXSbPn5fdb2o YK7U+twqJr7LE3QSRlCPBk7JMsRlKJCUWO9k8dFUsQS7QWsbVPFLEOzh2BalU2bo SUEe0nkhjRZKAJH+cK+BTGpj8Daums+ev2TiBtqvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUB7MIcMYJ7riqV/FGZHHqRwOqDfgwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2NmNmFmNjdhLTQ2ZTktNDczZi04NDU1LWUyMTM3ZWM3YjQxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAMtowDQYJKoZIhvcNAQELBQADggEBAJyTUzcHxqU4UoSzHa2MjUt0 rl0sCcRBEH6ukWMS0t6v05GfcEA9ZdMFgPQpkO4BuVcPZogR40FLTFAX2BiLl5Ym jje+ydTpbE4SOeCAcVVnkIdD49py3SF8HCBiyMHu80HSNTDZjnc6TnwLhA7cob/x q9bWtFZq8sV7Gc2isPFyv45G13O7Jw1ZLkMm5ep+f+W0/m8ADZ3E2s4IOzA3QE1P 13QxewjonQ6CVKeAuKWXxqCvX+BbqJnIgcbrL9UEMB438mzY1qYjlFVIPwk4kKKa ZqFVO2D57BhXCGyIEa9gF2U0MG0mvFNexrQ+bPntnAuHpxohXGz2B9kdVqF/xOY= -----END CERTIFICATE-----Generated at Wed Nov 5 17:26:45 2025 by rpki-client