$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d6d457b1-8237-4b22-bfe4-97ee955431ff.roa File: d6d457b1-8237-4b22-bfe4-97ee955431ff.roa (raw, json) Hash identifier: RgnQ68TnrNEvv7Rtwwutq3g5EZL2EsawdNADX5kU4Yc= Subject key identifier: FD:2D:6E:9E:89:E7:59:CE:FF:84:D1:E8:D6:D3:5A:D8:A3:81:88:FE Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2455A39197068DB5FB9E9C22CCF8E76F227D0B Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d6d457b1-8237-4b22-bfe4-97ee955431ff.roa Signing time: Thu 30 Oct 2025 23:40:34 +0000 ROA not before: Thu 30 Oct 2025 23:40:34 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2eb6::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:55:a3:91:97:06:8d:b5:fb:9e:9c:22:cc:f8:e7:6f:22:7d:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 23:40:34 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=dd363791d1e07d511269a2117371883757f401386ebafa72ea1e8a0c8a2d3c31, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:5d:ef:ca:fb:07:35:bd:86:40:51:1b:a9:56: 3f:c5:23:0f:84:bf:76:28:80:50:bd:6e:20:0c:8f: af:51:06:b8:9e:b6:77:d4:12:5c:52:c5:97:5f:39: b2:07:bd:88:64:b0:b1:28:0f:6e:e0:18:45:97:a0: 60:33:9a:d3:97:1c:53:72:8f:f9:04:c3:0c:a4:56: 22:da:ac:6f:91:56:81:63:38:97:69:c3:57:0a:9b: 51:a2:1b:aa:6a:99:21:59:d9:a7:7f:2b:0c:79:1b: 38:e1:f5:4c:b7:e2:76:08:9c:b4:a6:10:ab:a2:4e: ff:de:9f:4a:5b:1e:e7:bb:9a:f6:53:bb:d7:ca:82: 54:09:70:a4:a4:a8:2f:dd:8b:ce:96:b9:d0:66:44: 96:82:4d:c0:2b:b4:2a:7c:d4:16:79:ab:5e:23:fe: 33:82:c8:f2:65:c4:ae:70:ab:23:6c:a6:65:6b:5d: 4d:fc:d8:9a:63:08:52:3b:b6:36:62:72:05:22:2c: c1:91:59:ef:64:7f:cc:be:21:e8:13:1c:a2:df:4b: c7:9e:b3:06:4a:4a:a0:0e:9d:c5:5e:80:ec:02:0d: 3e:50:f0:86:95:66:c7:12:ed:8c:48:e4:32:72:26: 54:ea:cf:e0:41:01:63:33:52:42:55:f7:ac:33:38: 67:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:2D:6E:9E:89:E7:59:CE:FF:84:D1:E8:D6:D3:5A:D8:A3:81:88:FE X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d6d457b1-8237-4b22-bfe4-97ee955431ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2eb6::/47 Signature Algorithm: sha256WithRSAEncryption 8d:b1:9d:e2:cc:a7:fd:ec:a1:f9:21:2e:8f:e5:6c:82:7a:9b: e2:bd:78:69:5f:51:d7:4f:cf:34:4e:d2:83:7c:e0:c4:08:77: c9:e9:1b:53:8a:79:f0:7f:11:ce:c8:65:e9:c8:7f:b3:45:aa: f1:7c:98:d6:46:fc:e4:16:04:b2:a5:63:e8:ed:b8:94:e2:b1: 33:51:6f:db:48:be:85:fa:14:3f:24:e5:b3:af:38:69:e5:9b: e9:0c:26:dd:b9:07:26:a9:e0:f7:8c:27:56:8f:e3:d0:7e:04: 09:a7:da:07:c0:8d:19:b8:92:9c:af:25:72:dd:16:fb:3a:47: 47:7c:2a:8b:9b:ed:17:3f:cc:0f:36:55:84:08:f9:a4:76:81: 0f:8a:41:67:9f:65:27:65:b9:35:72:d9:a1:86:84:ef:72:a9: 4f:94:75:ef:8f:f9:21:cb:02:d6:1d:07:e6:49:47:64:01:51: 62:01:d3:23:17:ef:ad:2e:5f:9f:f8:ce:38:f4:ef:52:72:c6: 48:b4:35:65:9c:3a:b2:4e:50:d5:5e:ce:5b:a1:4f:ef:83:b8: 58:9d:f7:37:b6:21:9f:3b:a8:d4:8c:26:23:87:bc:2d:03:59: ac:bb:1f:84:71:5b:48:9d:56:ad:82:a5:9f:f0:7d:bc:43:8e: f6:14:9c:03 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgITJFWjkZcGjbX7npwizPjnbyJ9CzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI1NTEyMDkwMjdmNWU3YWQ1NGUwNGYwNDJlNGFjMGU5ZTY1 YzU2ZTU1Yzc3NDc4ZDJjZTAeFw0yNTEwMzAyMzQwMzRaFw0yNTEyMDQyMzU5NTla MHoxSTBHBgNVBAUTQGRkMzYzNzkxZDFlMDdkNTExMjY5YTIxMTczNzE4ODM3NTdm NDAxMzg2ZWJhZmE3MmVhMWU4YTBjOGEyZDNjMzExLTArBgNVBAMTJDlmMjMwZmE5 LWFhMmYtNDAyMC1hZTJhLTFhNjAzNzQwODRiODCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAKxd78r7BzW9hkBRG6lWP8UjD4S/diiAUL1uIAyPr1EGuJ62 d9QSXFLFl185sge9iGSwsSgPbuAYRZegYDOa05ccU3KP+QTDDKRWItqsb5FWgWM4 l2nDVwqbUaIbqmqZIVnZp38rDHkbOOH1TLfidgictKYQq6JO/96fSlse57ua9lO7 18qCVAlwpKSoL92Lzpa50GZEloJNwCu0KnzUFnmrXiP+M4LI8mXErnCrI2ymZWtd TfzYmmMIUju2NmJyBSIswZFZ72R/zL4h6BMcot9Lx56zBkpKoA6dxV6A7AINPlDw hpVmxxLtjEjkMnImVOrP4EEBYzNSQlX3rDM4Z5UCAwEAAaOCArQwggKwMB0GA1Ud DgQWBBT9LW6eiedZzv+E0ejW01rYo4GI/jAfBgNVHSMEGDAWgBTo88Ug4g7yXTq3 oha7FAQxajc48TAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv ZjYwYzlmMzItYTg3Yy00MzM5LWEyZjMtNjI5OWEzYjAyZTI5Lzk5ZjhmZWQyLTI5 MmItNDcyMi1iOTI4LWZlZTdiZjBhNTkxMC81NTEyMDkwMjdmNWU3YWQ1NGUwNGYw NDJlNGFjMGU5ZTY1YzU2ZTU1Yzc3NDc4ZDJjZS5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9lNzUxOGFmNS1hMzQzLTQyOGQtYmY3OC1mOTgy YjZlNjA1MDUvZDZkNDU3YjEtODIzNy00YjIyLWJmZTQtOTdlZTk1NTQzMWZmLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgt Zjk4MmI2ZTYwNTA1L1huclZUZ1R3UXVTc0RwNWx4VzVWeDNSNDBzNC5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHASYAkAAutjANBgkqhkiG9w0BAQsFAAOCAQEAjbGd4syn/eyh+SEuj+Vsgnqb 4r14aV9R10/PNE7Sg3zgxAh3yekbU4p58H8Rzshl6ch/s0Wq8XyY1kb85BYEsqVj 6O24lOKxM1Fv20i+hfoUPyTls684aeWb6Qwm3bkHJqng94wnVo/j0H4ECafaB8CN GbiSnK8lct0W+zpHR3wqi5vtFz/MDzZVhAj5pHaBD4pBZ59lJ2W5NXLZoYaE73Kp T5R174/5IcsC1h0H5klHZAFRYgHTIxfvrS5fn/jOOPTvUnLGSLQ1ZZw6sk5Q1V7O W6FP74O4WJ33N7Yhnzuo1IwmI4e8LQNZrLsfhHFbSJ1WrYKln/B9vEOO9hScAw== -----END CERTIFICATE-----Generated at Wed Nov 5 09:27:53 2025 by rpki-client