$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d33290be-37c7-46e3-96d3-6c63e0826462.roa File: d33290be-37c7-46e3-96d3-6c63e0826462.roa (raw, json) Hash identifier: LK2vWgPOZ6MfSf2OizsWsDfhjCVG5r1qpnNnI1mmqkI= Subject key identifier: 76:9C:F6:FD:BB:88:97:82:BB:FB:A6:85:62:2E:0C:8D:62:0B:BE:D4 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2C45728024AE1DC4E2537E135D9A48F63F06DA42 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d33290be-37c7-46e3-96d3-6c63e0826462.roa Signing time: Fri 31 Oct 2025 01:11:33 +0000 ROA not before: Fri 31 Oct 2025 01:11:33 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3a22::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:45:72:80:24:ae:1d:c4:e2:53:7e:13:5d:9a:48:f6:3f:06:da:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 01:11:33 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=5dc0d3e922df61f9e8ae63db7f989d2f33594da96d0d0d2cb8eb16302bbf8031, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f4:1e:31:78:8d:49:2c:50:79:ca:0f:e7:0b: 96:22:9b:15:fe:09:41:85:10:d8:71:85:87:e6:9b: ed:d2:a6:c9:4e:06:c4:d0:fe:97:83:c8:b2:8a:c1: 68:e9:05:59:d2:cb:a2:8f:13:88:fd:15:c4:bd:62: 37:fb:0a:cc:60:0d:e7:92:03:b1:d4:c4:b1:a9:58: 66:90:08:92:9b:0d:bc:33:66:c7:9a:b4:b3:d6:39: 28:3b:d4:a9:90:47:34:3e:de:05:b4:8a:9a:5a:73: 5e:83:59:6d:b2:52:4f:b5:fa:db:42:51:f7:6d:cf: 73:b7:00:e2:4f:a3:27:9e:84:44:31:c5:19:1f:f5: 9a:b5:9c:bf:e7:2e:dd:ed:16:d7:9c:d7:03:4c:b4: 35:3b:bc:0a:8c:8b:43:f2:83:67:07:2d:cb:73:6a: 1a:37:fa:14:c8:75:bf:a9:98:5a:67:7f:5e:3d:f9: e4:0d:07:23:36:66:e2:09:91:15:6b:c7:5a:e3:c2: 90:07:06:ad:1a:0b:0b:83:b0:a9:19:4b:62:06:b4: 74:ef:e4:18:19:31:8f:46:ad:60:6e:0f:bd:d0:19: 7a:9a:52:10:9f:b4:23:b4:df:ef:eb:26:b8:61:f4: 15:e5:df:3c:d7:17:d4:fe:0f:91:7c:dc:57:ab:78: 7f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:9C:F6:FD:BB:88:97:82:BB:FB:A6:85:62:2E:0C:8D:62:0B:BE:D4 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d33290be-37c7-46e3-96d3-6c63e0826462.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3a22::/47 Signature Algorithm: sha256WithRSAEncryption 9b:b6:21:88:e7:fe:92:82:00:f7:d9:69:70:3e:43:64:e4:22: 53:57:5b:62:05:dc:af:b7:6a:36:4d:f9:53:92:72:f8:07:a8: 75:14:a4:49:c7:d8:d8:90:f8:67:ab:bf:fc:72:84:fd:9a:64: 3e:61:f6:12:5e:e7:01:d3:5e:d2:0c:c3:d3:ce:8c:0f:fe:7e: 40:e3:6d:05:38:84:fb:d7:67:2d:47:d6:07:c4:21:14:db:98: 6e:b6:50:eb:60:55:3d:0e:a1:bb:f0:6e:62:c9:74:b8:19:5c: 7e:3f:0e:b4:ca:84:33:aa:2a:73:1b:bf:8b:97:93:ac:c9:e0: 9c:a4:b7:a8:b4:ff:c4:28:e7:9c:20:7c:f3:ea:b6:88:f6:c7: 93:90:dc:5b:24:e6:a1:37:41:8b:ff:49:6f:68:66:a1:64:18: 17:ab:d5:f7:55:72:c2:bd:23:ba:63:47:53:d8:1a:ed:93:77: 5c:00:07:30:57:7d:3c:9b:e3:c4:63:68:6a:fe:23:c6:ab:78: 68:0e:58:ba:b9:d5:7d:89:42:17:28:ad:d4:c4:e7:d6:35:64: d1:cc:6e:1b:dd:60:7b:f3:ff:ba:ea:b5:34:a6:5e:d5:97:aa: 32:a1:2b:8d:78:a2:a8:92:de:e0:c3:0a:17:32:ab:19:fe:d0: 4a:98:b0:c3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULEVygCSuHcTiU34TXZpI9j8G2kIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDExMTMzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZGMwZDNlOTIyZGY2MWY5ZThhZTYzZGI3Zjk4OWQyZjMz NTk0ZGE5NmQwZDBkMmNiOGViMTYzMDJiYmY4MDMxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDS9B4xeI1JLFB5yg/nC5YimxX+CUGFENhxhYfmm+3SpslO BsTQ/peDyLKKwWjpBVnSy6KPE4j9FcS9Yjf7CsxgDeeSA7HUxLGpWGaQCJKbDbwz ZseatLPWOSg71KmQRzQ+3gW0ippac16DWW2yUk+1+ttCUfdtz3O3AOJPoyeehEQx xRkf9Zq1nL/nLt3tFtec1wNMtDU7vAqMi0Pyg2cHLctzaho3+hTIdb+pmFpnf149 +eQNByM2ZuIJkRVrx1rjwpAHBq0aCwuDsKkZS2IGtHTv5BgZMY9GrWBuD73QGXqa UhCftCO03+/rJrhh9BXl3zzXF9T+D5F83FereH/7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUdpz2/buIl4K7+6aFYi4MjWILvtQwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2QzMzI5MGJlLTM3YzctNDZlMy05NmQzLTZjNjNlMDgyNjQ2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOiIwDQYJKoZIhvcNAQELBQADggEBAJu2IYjn/pKCAPfZaXA+Q2Tk IlNXW2IF3K+3ajZN+VOScvgHqHUUpEnH2NiQ+Gerv/xyhP2aZD5h9hJe5wHTXtIM w9POjA/+fkDjbQU4hPvXZy1H1gfEIRTbmG62UOtgVT0OobvwbmLJdLgZXH4/DrTK hDOqKnMbv4uXk6zJ4Jykt6i0/8Qo55wgfPPqtoj2x5OQ3Fsk5qE3QYv/SW9oZqFk GBer1fdVcsK9I7pjR1PYGu2Td1wABzBXfTyb48RjaGr+I8areGgOWLq51X2JQhco rdTE59Y1ZNHMbhvdYHvz/7rqtTSmXtWXqjKhK414oqiS3uDDChcyqxn+0EqYsMM= -----END CERTIFICATE-----Generated at Wed Nov 5 09:05:30 2025 by rpki-client