$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d08b9469-583c-4960-a506-801a946d4c0a.roa File: d08b9469-583c-4960-a506-801a946d4c0a.roa (raw, json) Hash identifier: qqXO5h0XFeulNTIY80mBqZDuMc0Lhd06cTqIcihSkl8= Subject key identifier: DE:B6:D4:C7:AC:F3:AE:2C:30:83:49:FB:05:74:FE:B7:A8:69:A1:8F Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 23282A04E1324F889169754AD108B96F980272B2 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d08b9469-583c-4960-a506-801a946d4c0a.roa Signing time: Fri 31 Oct 2025 01:06:49 +0000 ROA not before: Fri 31 Oct 2025 01:06:49 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3924::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:28:2a:04:e1:32:4f:88:91:69:75:4a:d1:08:b9:6f:98:02:72:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 01:06:49 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=acfa20149a97f0510afaec128d40a1e7441c269b2d6f03e46246e0b7fe5d4a88, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:42:89:3d:39:3e:bf:26:38:5c:cd:a5:43:17: 50:d0:7b:f4:ad:b0:74:50:2e:9f:b0:7f:7c:d9:bd: 21:07:0b:36:86:0b:f0:8a:5d:bc:20:18:35:d4:84: bb:17:25:48:09:75:9c:c1:97:8e:5b:9e:10:e6:b9: 07:75:ea:10:80:54:c6:3b:ad:6a:d5:5e:da:41:04: 19:66:4e:6d:7f:6d:bb:53:3a:a0:02:db:5e:1c:9d: 88:42:81:69:20:48:a2:53:a0:35:63:af:5c:0f:df: 7d:59:6e:ee:3a:f7:08:6d:23:b6:f2:45:42:32:26: 0a:c7:36:50:94:38:9e:8c:2e:fd:7a:f5:a6:a7:0b: c8:9c:1e:76:ab:68:e1:a7:2a:90:89:42:0d:46:bb: 64:d0:6d:85:07:c2:15:e3:0a:37:ab:98:d6:31:b3: bc:df:6d:17:24:16:de:f0:8c:af:8f:3d:ed:f3:9a: f5:2a:7d:66:00:47:8e:d7:51:9b:07:fe:9c:a0:c6: 59:75:70:ca:a0:de:e8:d6:e3:6a:ac:6b:a0:25:5b: 1b:5f:e6:26:2c:d4:11:9e:c1:4b:3c:30:70:f6:08: 44:30:cf:9a:ed:6a:c7:b6:f4:46:9f:62:49:4b:cb: 3c:fc:98:95:6a:dc:23:8d:52:80:ab:09:39:13:28: 0b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:B6:D4:C7:AC:F3:AE:2C:30:83:49:FB:05:74:FE:B7:A8:69:A1:8F X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d08b9469-583c-4960-a506-801a946d4c0a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3924::/47 Signature Algorithm: sha256WithRSAEncryption 03:c1:35:05:0c:49:d2:bb:e3:f6:f8:68:8a:7a:d8:9e:ac:19: 2e:5c:03:91:57:10:81:87:05:dd:45:e7:71:9d:a1:85:28:ac: fe:e3:12:11:1a:62:ed:1e:24:f5:91:e2:96:1b:d6:b8:c2:12: f4:ea:de:59:9b:12:30:79:2f:cd:78:c5:2e:76:02:ee:06:ab: 9b:f0:bb:89:9e:1e:c0:4b:c3:7e:a1:7e:28:c7:db:af:bc:6d: bb:a2:d6:27:a4:07:a0:71:b6:b9:a1:9a:9a:a4:9f:34:99:0e: 36:f5:01:08:c7:95:60:d8:f5:a6:df:cb:9a:bf:98:fd:2e:16: 79:c1:37:5d:88:44:0b:2c:a0:da:b9:15:cb:b7:6c:a1:d2:57: 05:53:10:e2:cb:fd:0e:24:60:b5:51:88:8d:c8:f5:36:9f:4e: 20:05:66:19:0b:ca:9d:8a:d9:19:93:88:b0:b2:d2:4a:54:4e: 87:ce:27:33:ae:46:a0:df:f1:b8:20:07:0f:25:e8:e0:d6:d0: 0b:a2:4f:ff:f0:f6:72:bc:c9:2d:3e:4e:a6:4d:5a:da:67:21: 1b:a3:4b:8f:fd:22:c3:0b:f3:69:06:d7:c7:04:61:fd:d4:5d: 18:b0:ce:ee:74:13:5e:ac:0e:b3:2b:15:84:d6:ad:1f:1e:02: 8d:49:9a:fb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIygqBOEyT4iRaXVK0Qi5b5gCcrIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDEwNjQ5WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhY2ZhMjAxNDlhOTdmMDUxMGFmYWVjMTI4ZDQwYTFlNzQ0 MWMyNjliMmQ2ZjAzZTQ2MjQ2ZTBiN2ZlNWQ0YTg4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjQok9OT6/JjhczaVDF1DQe/StsHRQLp+wf3zZvSEHCzaG C/CKXbwgGDXUhLsXJUgJdZzBl45bnhDmuQd16hCAVMY7rWrVXtpBBBlmTm1/bbtT OqAC214cnYhCgWkgSKJToDVjr1wP331Zbu469whtI7byRUIyJgrHNlCUOJ6MLv16 9aanC8icHnaraOGnKpCJQg1Gu2TQbYUHwhXjCjermNYxs7zfbRckFt7wjK+PPe3z mvUqfWYAR47XUZsH/pygxll1cMqg3ujW42qsa6AlWxtf5iYs1BGewUs8MHD2CEQw z5rtase29EafYklLyzz8mJVq3CONUoCrCTkTKAsRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3rbUx6zzriwwg0n7BXT+t6hpoY8wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2QwOGI5NDY5LTU4M2MtNDk2MC1hNTA2LTgwMWE5NDZkNGMwYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOSQwDQYJKoZIhvcNAQELBQADggEBAAPBNQUMSdK74/b4aIp62J6s GS5cA5FXEIGHBd1F53GdoYUorP7jEhEaYu0eJPWR4pYb1rjCEvTq3lmbEjB5L814 xS52Au4Gq5vwu4meHsBLw36hfijH26+8bbui1iekB6BxtrmhmpqknzSZDjb1AQjH lWDY9abfy5q/mP0uFnnBN12IRAssoNq5Fcu3bKHSVwVTEOLL/Q4kYLVRiI3I9Taf TiAFZhkLyp2K2RmTiLCy0kpUTofOJzOuRqDf8bggBw8l6ODW0AuiT//w9nK8yS0+ TqZNWtpnIRujS4/9IsML82kG18cEYf3UXRiwzu50E16sDrMrFYTWrR8eAo1Jmvs= -----END CERTIFICATE-----Generated at Wed Nov 5 12:49:17 2025 by rpki-client