$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d5408428-588c-4e40-8f78-66bc858240f8.roa File: d5408428-588c-4e40-8f78-66bc858240f8.roa (raw, json) Hash identifier: +karZRKUl+8eZl07R9FKv1Y1g9owfV9rVm7CGydGVUY= Subject key identifier: CB:A9:7D:3C:5C:9F:F5:18:99:7A:C9:C3:74:73:77:DC:E3:8C:C9:85 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 165D94F0C0321240B72FE908B5244AC8CF5CE321 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d5408428-588c-4e40-8f78-66bc858240f8.roa Signing time: Fri 31 Oct 2025 05:27:17 +0000 ROA not before: Fri 31 Oct 2025 05:27:17 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1cd8::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:5d:94:f0:c0:32:12:40:b7:2f:e9:08:b5:24:4a:c8:cf:5c:e3:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 05:27:17 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=aafe4ac239963dd666a5ade3b153dd1c9c16eacb2533ab22ac4a206a6a752ffc, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:2c:25:81:c9:69:a7:29:1c:2b:38:54:26:24: 93:31:25:d5:92:e1:9f:85:9b:36:2c:d3:8c:30:98: 55:b5:10:7a:ae:17:d6:64:f8:19:da:29:8a:fc:a6: 7d:95:71:57:9c:49:51:de:64:6a:6d:c2:db:40:3d: 09:91:9a:47:1d:74:d3:8c:57:ae:b2:ba:2e:18:38: 9f:ba:5f:38:b9:85:c2:fe:20:d8:ef:6c:5a:3d:21: 5f:58:bf:b7:90:a2:f3:ea:e3:f8:f4:3a:6b:38:c0: c5:32:cf:17:40:f0:cf:94:96:18:6d:c1:24:cc:9a: 4a:e7:ce:a5:2a:30:d9:3e:5e:c2:cf:3a:53:48:68: 86:7e:b9:b9:a8:a7:24:1d:43:51:68:2d:6b:91:ad: 9e:17:5d:c7:d8:a5:73:fb:31:c6:df:5a:da:e9:40: ef:ac:2e:e5:b3:a3:a0:99:09:a0:b9:ac:15:9b:7e: 2b:9f:49:32:45:42:43:2b:ba:7e:3b:1a:66:5a:77: c4:c3:40:6a:0a:14:6b:6f:80:7c:87:38:dd:16:56: 9e:91:88:b7:45:45:49:62:64:88:30:e8:b8:9c:ab: 8c:11:f6:f5:54:34:b9:eb:34:f0:72:cb:02:50:18: 1a:fe:35:11:91:87:05:89:c3:10:dd:ab:fe:72:f1: b4:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:A9:7D:3C:5C:9F:F5:18:99:7A:C9:C3:74:73:77:DC:E3:8C:C9:85 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d5408428-588c-4e40-8f78-66bc858240f8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1cd8::/45 Signature Algorithm: sha256WithRSAEncryption 88:24:6e:4c:0d:a2:85:1f:3c:82:4b:90:e8:64:46:68:3e:60: 41:80:93:4e:93:28:b1:03:ad:fe:0c:ea:96:23:75:c1:52:d4: b6:05:af:ba:19:78:d4:23:56:f6:82:c5:c5:d9:e2:26:d6:c1: 5f:57:26:e5:9d:da:9e:05:7e:23:c4:8a:50:75:db:0d:81:d7: 89:8b:bf:08:89:ab:92:e5:09:39:7d:67:ee:f7:21:c3:f2:6e: 38:60:9e:47:37:6a:51:d1:b1:ed:01:59:f3:74:26:6a:84:20: c2:30:a1:88:17:38:ed:6d:22:cf:fd:5c:8c:bc:2c:b0:78:b4: f9:0c:23:05:a2:bb:65:68:09:67:d8:e4:15:ed:b5:a2:1f:cd: 33:67:a7:70:6b:03:2c:50:6e:1b:98:30:05:06:0c:bb:e2:ba: d3:72:43:ae:b9:8b:5d:3d:ae:d8:10:f1:ad:45:0a:79:a1:9d: 96:a3:95:f7:c8:e3:86:b3:63:d2:e9:b1:d1:fe:6f:1b:85:e4: be:98:d0:97:ff:4c:2a:9d:d5:fd:eb:5e:43:89:e8:c8:69:f2: 93:2c:ea:d1:d8:25:2a:ba:31:04:65:f8:14:9e:4b:bd:0e:4c: ec:39:6e:f5:9a:ec:95:7d:40:e7:d4:e5:4e:cf:d9:eb:e3:3a: 06:fe:75:0d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFl2U8MAyEkC3L+kItSRKyM9c4yEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDUyNzE3WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYWZlNGFjMjM5OTYzZGQ2NjZhNWFkZTNiMTUzZGQxYzlj MTZlYWNiMjUzM2FiMjJhYzRhMjA2YTZhNzUyZmZjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgLCWByWmnKRwrOFQmJJMxJdWS4Z+FmzYs04wwmFW1EHqu F9Zk+BnaKYr8pn2VcVecSVHeZGptwttAPQmRmkcddNOMV66yui4YOJ+6Xzi5hcL+ INjvbFo9IV9Yv7eQovPq4/j0Oms4wMUyzxdA8M+UlhhtwSTMmkrnzqUqMNk+XsLP OlNIaIZ+ubmopyQdQ1FoLWuRrZ4XXcfYpXP7McbfWtrpQO+sLuWzo6CZCaC5rBWb fiufSTJFQkMrun47GmZad8TDQGoKFGtvgHyHON0WVp6RiLdFRUliZIgw6Licq4wR 9vVUNLnrNPByywJQGBr+NRGRhwWJwxDdq/5y8bTzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUy6l9PFyf9RiZesnDdHN33OOMyYUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2Q1NDA4NDI4LTU4OGMtNGU0MC04Zjc4LTY2YmM4NTgyNDBmOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAHNgwDQYJKoZIhvcNAQELBQADggEBAIgkbkwNooUfPIJLkOhkRmg+ YEGAk06TKLEDrf4M6pYjdcFS1LYFr7oZeNQjVvaCxcXZ4ibWwV9XJuWd2p4FfiPE ilB12w2B14mLvwiJq5LlCTl9Z+73IcPybjhgnkc3alHRse0BWfN0JmqEIMIwoYgX OO1tIs/9XIy8LLB4tPkMIwWiu2VoCWfY5BXttaIfzTNnp3BrAyxQbhuYMAUGDLvi utNyQ665i109rtgQ8a1FCnmhnZajlffI44azY9LpsdH+bxuF5L6Y0Jf/TCqd1f3r XkOJ6Mhp8pMs6tHYJSq6MQRl+BSeS70OTOw5bvWa7JV9QOfU5U7P2evjOgb+dQ0= -----END CERTIFICATE-----Generated at Wed Nov 5 10:32:40 2025 by rpki-client