$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d728440a-cae6-4173-b8c0-35af9050e1e0.roa File: d728440a-cae6-4173-b8c0-35af9050e1e0.roa (raw, json) Hash identifier: E1y9oB4fA3wQo9qdQgbN6CadjTddrC4tik24r10jo3M= Subject key identifier: 8C:19:64:B2:19:D1:89:CE:C3:99:1C:07:CF:CE:81:0F:8F:E9:1D:D2 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 337AD8230B4405F3E8B66A150471C561B0A43C88 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d728440a-cae6-4173-b8c0-35af9050e1e0.roa Signing time: Fri 31 Oct 2025 05:37:07 +0000 ROA not before: Fri 31 Oct 2025 05:37:07 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2040::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:7a:d8:23:0b:44:05:f3:e8:b6:6a:15:04:71:c5:61:b0:a4:3c:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 05:37:07 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=09913518eebb367b392ef8d2f63eb41a1cbdd2ba630ee5c6d3d9e75d7012b9b8, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:12:fc:47:ec:f8:5a:e0:3d:55:5d:27:41:30: b9:a6:bb:df:ed:68:98:76:15:f5:63:5a:21:f6:e9: d2:f6:dd:8c:2e:52:3f:f1:47:50:05:39:d1:4c:54: 0c:2e:1e:80:41:3d:c8:af:58:35:40:41:a9:9c:7b: 4f:61:5f:0a:0d:ab:3c:f8:0f:b7:b2:1c:e5:64:90: ed:e5:2f:8c:cf:98:19:6f:b5:28:d3:61:6b:78:60: 2e:f0:fe:4c:76:c7:6a:c3:76:6a:6c:59:98:63:0a: 52:00:5e:cc:b9:4d:4f:cc:ed:07:42:88:08:c5:5f: 69:f1:95:56:d6:35:c6:f6:1f:51:4b:f0:60:c0:e3: c4:af:a7:a3:d0:a6:6e:66:c1:38:5c:69:ac:9f:4b: 5b:35:f3:05:56:71:ad:12:8e:9f:ec:88:f9:7c:d1: 3a:e1:52:30:1a:80:0b:b8:c6:cd:05:ef:b6:70:de: 31:e9:91:44:fc:04:81:7b:29:39:58:12:14:26:76: fe:df:2a:d1:db:05:cb:76:c4:50:9b:44:ba:f1:ec: 20:27:cf:5a:3d:14:0e:23:f9:9f:06:e1:93:8f:df: 01:24:00:46:90:aa:99:57:af:cc:7b:79:96:54:f2: 63:88:bc:86:e1:e6:f4:7a:ed:eb:94:cb:fb:c3:af: 18:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:19:64:B2:19:D1:89:CE:C3:99:1C:07:CF:CE:81:0F:8F:E9:1D:D2 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d728440a-cae6-4173-b8c0-35af9050e1e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2040::/45 Signature Algorithm: sha256WithRSAEncryption 9e:8d:e5:cd:68:61:a0:46:49:1f:c9:d5:f9:5f:89:0b:ca:bc: 04:b4:f4:93:1e:91:8b:98:37:79:61:14:c1:68:69:a8:c5:2a: 0f:86:8f:18:67:06:4c:57:47:70:7e:a5:29:bb:ed:f3:20:b3: a8:be:f7:aa:88:0d:a9:a2:6c:91:37:fe:1a:6e:8a:ba:6d:68: b6:d7:ac:8f:ec:34:9d:3a:ad:b3:b0:d6:94:1d:72:f2:c8:fb: 58:17:1d:60:a5:1b:46:fb:a0:5c:6f:65:60:a4:c3:0e:95:af: 6f:9c:8f:88:07:9d:53:e0:a0:72:ba:64:c3:7e:46:d0:bd:64: ab:94:7c:bb:01:07:62:a8:dd:43:43:ad:ab:26:d1:a8:d4:32: 37:09:08:75:00:d9:8b:50:cb:c5:ec:a4:9e:cf:75:43:ff:3c: c0:d0:86:ed:01:91:ab:a9:33:1a:88:5d:16:01:cb:4b:58:95: a3:bf:63:36:89:f5:61:eb:f8:d1:00:e6:f3:0f:01:8a:30:d2: 77:e4:6a:a7:d1:25:64:41:e6:ca:67:f3:b3:28:bc:f1:4d:af: d3:eb:0e:a8:3d:fa:70:87:e0:39:12:3f:d8:b5:85:4e:a4:d0: 78:f0:62:9c:72:3a:c9:79:8f:ba:93:c6:4b:ef:cb:5a:77:fe: 53:aa:20:7a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUM3rYIwtEBfPotmoVBHHFYbCkPIgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDUzNzA3WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOTkxMzUxOGVlYmIzNjdiMzkyZWY4ZDJmNjNlYjQxYTFj YmRkMmJhNjMwZWU1YzZkM2Q5ZTc1ZDcwMTJiOWI4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyEvxH7Pha4D1VXSdBMLmmu9/taJh2FfVjWiH26dL23Ywu Uj/xR1AFOdFMVAwuHoBBPcivWDVAQamce09hXwoNqzz4D7eyHOVkkO3lL4zPmBlv tSjTYWt4YC7w/kx2x2rDdmpsWZhjClIAXsy5TU/M7QdCiAjFX2nxlVbWNcb2H1FL 8GDA48Svp6PQpm5mwThcaayfS1s18wVWca0Sjp/siPl80TrhUjAagAu4xs0F77Zw 3jHpkUT8BIF7KTlYEhQmdv7fKtHbBct2xFCbRLrx7CAnz1o9FA4j+Z8G4ZOP3wEk AEaQqplXr8x7eZZU8mOIvIbh5vR67euUy/vDrxg/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUjBlkshnRic7DmRwHz86BD4/pHdIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2Q3Mjg0NDBhLWNhZTYtNDE3My1iOGMwLTM1YWY5MDUwZTFlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAIEAwDQYJKoZIhvcNAQELBQADggEBAJ6N5c1oYaBGSR/J1flfiQvK vAS09JMekYuYN3lhFMFoaajFKg+GjxhnBkxXR3B+pSm77fMgs6i+96qIDamibJE3 /hpuirptaLbXrI/sNJ06rbOw1pQdcvLI+1gXHWClG0b7oFxvZWCkww6Vr2+cj4gH nVPgoHK6ZMN+RtC9ZKuUfLsBB2Ko3UNDrasm0ajUMjcJCHUA2YtQy8XspJ7PdUP/ PMDQhu0BkaupMxqIXRYBy0tYlaO/YzaJ9WHr+NEA5vMPAYow0nfkaqfRJWRB5spn 87MovPFNr9PrDqg9+nCH4DkSP9i1hU6k0HjwYpxyOsl5j7qTxkvvy1p3/lOqIHo= -----END CERTIFICATE-----Generated at Wed Nov 5 09:05:39 2025 by rpki-client