$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d1acdb82-5c84-4776-a724-fd3f1c7b5f8b.roa File: d1acdb82-5c84-4776-a724-fd3f1c7b5f8b.roa (raw, json) Hash identifier: IdZ/l02o0YiHAF46suFbvGe7ex3V5RoDMy+fNs/+gmk= Subject key identifier: 03:BA:3B:4E:1D:7A:48:A9:F4:52:8F:CE:1A:11:2B:D3:6A:BF:1D:42 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3F8C245DAD57BED61C60F77961D3CB23580BBC7A Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d1acdb82-5c84-4776-a724-fd3f1c7b5f8b.roa Signing time: Fri 31 Oct 2025 07:13:17 +0000 ROA not before: Fri 31 Oct 2025 07:13:17 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:20a0::/43 maxlen: 43 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:8c:24:5d:ad:57:be:d6:1c:60:f7:79:61:d3:cb:23:58:0b:bc:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 07:13:17 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=97b40f4bdfa6df4047e3ac9ada5b4ae5bb9db9285f8f64b96fb1c02d10a86e83, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:0c:7b:05:fb:09:9e:f0:03:0e:89:ca:6f:e5: d1:f7:2d:c3:bc:90:bc:24:7a:6f:0f:8c:92:9d:e0: b7:cd:d5:8f:1f:b5:e2:7a:d3:80:43:4a:c0:8f:ed: aa:31:32:9d:4c:5e:f0:2e:81:21:b3:84:b0:50:3c: e3:b3:aa:9e:a2:76:f5:d1:38:8d:ce:27:c0:3e:6f: 89:c6:64:2e:02:42:b5:86:9b:18:30:e3:64:e0:9f: 1d:63:16:f0:5d:a0:63:be:b5:8a:c1:5a:a6:33:3e: 5b:c6:cd:28:a1:60:f4:95:21:ae:77:88:62:7a:5b: cd:d4:17:13:e9:55:28:e1:5d:97:74:8f:cf:c7:a8: a4:8b:25:24:e5:10:ca:93:15:0b:76:e1:2d:51:8e: 99:42:5c:d7:90:ee:99:43:29:e8:2d:a7:04:6f:3d: e8:8c:9b:74:91:9b:53:3b:83:82:d4:2c:b7:52:7e: c4:5c:b0:9e:32:3e:93:14:38:50:a7:13:60:dd:5a: a5:08:ea:fa:b0:89:da:32:ea:7d:c2:fe:46:b7:42: 54:fe:1d:39:71:28:c2:4b:16:12:0c:ea:11:5e:1b: 23:fb:e1:20:cf:1d:8d:d6:05:53:b4:5c:c6:b9:44: 9c:9b:4c:3d:a4:a8:38:5e:1f:20:ac:34:e0:f8:3a: 7a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:BA:3B:4E:1D:7A:48:A9:F4:52:8F:CE:1A:11:2B:D3:6A:BF:1D:42 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d1acdb82-5c84-4776-a724-fd3f1c7b5f8b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:20a0::/43 Signature Algorithm: sha256WithRSAEncryption 4c:ac:8f:46:de:81:77:8f:d0:71:cc:2f:55:8d:13:94:ea:47: 30:7f:e5:88:d7:0e:2b:8c:6f:08:e4:b1:0b:f0:07:fa:fe:2a: 29:d5:bc:2c:68:93:0d:64:e8:30:27:ce:e7:ce:bb:d6:cf:77: 36:8a:8f:1a:72:d5:47:26:62:b1:3b:a6:02:88:6b:85:6f:d3: 81:04:d0:37:c1:c2:2b:c4:dc:44:14:56:d4:cb:86:66:08:fb: af:be:bf:cc:bf:b3:92:1e:d8:01:04:cc:ca:fd:f0:1d:31:c3: d7:84:f2:dd:9a:4a:68:98:4f:2d:bc:88:cc:83:60:40:46:ab: 03:d7:ee:8c:58:79:85:a7:7d:c5:b4:63:6d:30:43:1e:14:6d: 0d:e6:f6:3b:46:59:fa:df:6e:45:21:b8:a9:57:5a:9b:99:eb: c1:02:bc:af:f5:f5:01:2b:ab:32:d1:6b:8e:5c:e0:fa:89:b8: 44:a1:61:26:b3:00:aa:c8:70:36:02:51:23:c6:6c:bb:89:6a: 95:07:a5:bc:c2:be:74:d3:0c:c4:66:5d:74:97:a4:6f:24:65: fc:b0:62:a8:3e:3a:26:dd:d6:a6:c0:72:5b:8f:fb:cd:a2:53: 12:a0:a3:11:e6:0a:de:79:71:9c:73:e7:5d:27:09:17:26:fb: 26:9e:00:2c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUP4wkXa1XvtYcYPd5YdPLI1gLvHowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDcxMzE3WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5N2I0MGY0YmRmYTZkZjQwNDdlM2FjOWFkYTViNGFlNWJi OWRiOTI4NWY4ZjY0Yjk2ZmIxYzAyZDEwYTg2ZTgzMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuDHsF+wme8AMOicpv5dH3LcO8kLwkem8PjJKd4LfN1Y8f teJ604BDSsCP7aoxMp1MXvAugSGzhLBQPOOzqp6idvXROI3OJ8A+b4nGZC4CQrWG mxgw42Tgnx1jFvBdoGO+tYrBWqYzPlvGzSihYPSVIa53iGJ6W83UFxPpVSjhXZd0 j8/HqKSLJSTlEMqTFQt24S1RjplCXNeQ7plDKegtpwRvPeiMm3SRm1M7g4LULLdS fsRcsJ4yPpMUOFCnE2DdWqUI6vqwidoy6n3C/ka3QlT+HTlxKMJLFhIM6hFeGyP7 4SDPHY3WBVO0XMa5RJybTD2kqDheHyCsNOD4OnrFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUA7o7Th16SKn0Uo/OGhEr02q/HUIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2QxYWNkYjgyLTVjODQtNDc3Ni1hNzI0LWZkM2YxYzdiNWY4Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwUmAJAAIKAwDQYJKoZIhvcNAQELBQADggEBAEysj0begXeP0HHML1WNE5Tq RzB/5YjXDiuMbwjksQvwB/r+KinVvCxokw1k6DAnzufOu9bPdzaKjxpy1UcmYrE7 pgKIa4Vv04EE0DfBwivE3EQUVtTLhmYI+6++v8y/s5Ie2AEEzMr98B0xw9eE8t2a SmiYTy28iMyDYEBGqwPX7oxYeYWnfcW0Y20wQx4UbQ3m9jtGWfrfbkUhuKlXWpuZ 68ECvK/19QErqzLRa45c4PqJuEShYSazAKrIcDYCUSPGbLuJapUHpbzCvnTTDMRm XXSXpG8kZfywYqg+Oibd1qbAcluP+82iUxKgoxHmCt55cZxz510nCRcm+yaeACw= -----END CERTIFICATE-----Generated at Wed Nov 5 10:42:45 2025 by rpki-client