$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d2f00b46-5e49-41b7-8a82-043cf929d121.roa File: d2f00b46-5e49-41b7-8a82-043cf929d121.roa (raw, json) Hash identifier: 3ltyMoKh3y6IB2bB4OrtedaEuVt8JoNKY6VI8flVM+s= Subject key identifier: 49:0A:D4:02:D4:C7:93:B1:CD:73:64:92:CB:13:1E:35:6E:25:42:52 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 42871F415D9F0DFFED0714D35A1C4A13391F8481 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d2f00b46-5e49-41b7-8a82-043cf929d121.roa Signing time: Fri 31 Oct 2025 04:58:45 +0000 ROA not before: Fri 31 Oct 2025 04:58:45 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3ff0::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:87:1f:41:5d:9f:0d:ff:ed:07:14:d3:5a:1c:4a:13:39:1f:84:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 04:58:45 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=4e4dfd498c229c7dfc097c2f7f12b5ae8bb94422104ed6e1f3cefcb06e538eee, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d4:1e:71:ef:7e:1c:98:f0:07:83:10:16:d8: d7:28:d3:fa:18:20:02:b5:82:72:7f:37:12:c3:da: 86:57:83:73:83:68:c3:29:78:f0:52:a6:ff:ce:03: 3d:8e:9d:cc:4b:ce:db:81:66:06:b0:c0:b4:37:41: e7:8b:a1:a2:6a:fb:c2:4b:b0:0c:83:4e:05:1e:05: 79:2d:b8:5c:d9:81:77:12:c9:05:37:d9:8d:8b:3f: 4f:fb:e6:77:f6:12:48:18:6b:54:e3:de:56:53:fc: 25:dd:9a:94:b1:c1:09:12:7c:2b:b3:33:53:f5:8b: 86:df:aa:96:97:03:55:81:62:c2:44:ae:8a:d9:bc: a0:b1:45:26:da:26:e0:0d:b3:8f:d8:d0:c9:29:bf: c5:bf:bb:9a:57:6d:72:a4:0e:bd:d3:ab:68:09:6a: 9e:06:2b:43:22:cb:ce:d4:e9:c1:0e:4d:fd:f9:19: b1:34:14:51:47:43:4a:e9:a5:4f:08:67:54:c1:cd: e9:9d:5c:de:10:59:ca:d7:bb:eb:1d:c7:51:32:f8: 54:11:9a:f6:f9:df:c9:ab:da:1b:ac:c6:74:01:a4: 73:14:29:63:ba:73:06:cd:75:19:14:dc:77:43:97: 13:9e:44:75:bf:8a:3a:41:2f:1c:92:be:29:57:2f: c2:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:0A:D4:02:D4:C7:93:B1:CD:73:64:92:CB:13:1E:35:6E:25:42:52 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d2f00b46-5e49-41b7-8a82-043cf929d121.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3ff0::/46 Signature Algorithm: sha256WithRSAEncryption 67:00:3d:1e:91:19:f0:b0:cc:22:ab:22:7f:5f:5c:d8:ba:01: 7f:9a:70:95:25:1e:85:d2:b9:31:c1:df:82:71:0a:93:55:2a: 18:98:17:42:23:ba:63:11:39:2d:3c:79:36:c9:f0:81:a9:38: fc:39:9f:98:d0:9e:78:e3:44:2d:01:2c:c6:c7:09:3b:95:07: c9:4a:c2:30:d1:a1:5f:be:08:c8:38:69:2d:23:d9:d0:6e:b0: 30:77:7d:c7:d5:24:fd:18:29:cc:bf:d1:44:e8:ee:4c:87:74: 57:98:ee:74:08:99:08:90:23:96:9f:24:18:7f:ce:58:68:7f: d4:67:e0:19:76:1a:cf:9c:07:6f:ab:86:51:01:20:7d:e9:73: 23:1c:f8:7e:64:53:42:ff:df:1f:63:56:62:10:86:12:24:8b: 5d:73:7b:8f:b1:cf:bc:16:f9:9a:1c:45:03:e6:73:f2:d3:8f: a4:b1:bb:0f:85:bd:a3:08:4f:09:4b:d2:ce:b4:ca:4d:25:c2: 3b:16:ed:6c:f5:ac:6c:83:5a:98:55:2d:8f:77:21:8c:a5:1a: e5:0c:8f:57:fb:2a:8b:71:1f:0a:0f:dc:27:7d:28:45:0d:52: 47:f4:5a:e4:dc:22:cb:b0:37:a1:52:20:06:f3:d7:e4:f8:7c: 12:0b:5e:7e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQocfQV2fDf/tBxTTWhxKEzkfhIEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDQ1ODQ1WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZTRkZmQ0OThjMjI5YzdkZmMwOTdjMmY3ZjEyYjVhZThi Yjk0NDIyMTA0ZWQ2ZTFmM2NlZmNiMDZlNTM4ZWVlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCl1B5x734cmPAHgxAW2Nco0/oYIAK1gnJ/NxLD2oZXg3OD aMMpePBSpv/OAz2OncxLztuBZgawwLQ3QeeLoaJq+8JLsAyDTgUeBXktuFzZgXcS yQU32Y2LP0/75nf2EkgYa1Tj3lZT/CXdmpSxwQkSfCuzM1P1i4bfqpaXA1WBYsJE rorZvKCxRSbaJuANs4/Y0Mkpv8W/u5pXbXKkDr3Tq2gJap4GK0Miy87U6cEOTf35 GbE0FFFHQ0rppU8IZ1TBzemdXN4QWcrXu+sdx1Ey+FQRmvb538mr2husxnQBpHMU KWO6cwbNdRkU3HdDlxOeRHW/ijpBLxySvilXL8IBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUSQrUAtTHk7HNc2SSyxMeNW4lQlIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2QyZjAwYjQ2LTVlNDktNDFiNy04YTgyLTA0M2NmOTI5ZDEyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAP/AwDQYJKoZIhvcNAQELBQADggEBAGcAPR6RGfCwzCKrIn9fXNi6 AX+acJUlHoXSuTHB34JxCpNVKhiYF0IjumMROS08eTbJ8IGpOPw5n5jQnnjjRC0B LMbHCTuVB8lKwjDRoV++CMg4aS0j2dBusDB3fcfVJP0YKcy/0UTo7kyHdFeY7nQI mQiQI5afJBh/zlhof9Rn4Bl2Gs+cB2+rhlEBIH3pcyMc+H5kU0L/3x9jVmIQhhIk i11ze4+xz7wW+ZocRQPmc/LTj6Sxuw+FvaMITwlL0s60yk0lwjsW7Wz1rGyDWphV LY93IYylGuUMj1f7KotxHwoP3Cd9KEUNUkf0WuTcIsuwN6FSIAbz1+T4fBILXn4= -----END CERTIFICATE-----Generated at Wed Nov 5 10:56:10 2025 by rpki-client