$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d9fd59c4-3f8e-4d9f-bdc7-99c00f45225f.roa File: d9fd59c4-3f8e-4d9f-bdc7-99c00f45225f.roa (raw, json) Hash identifier: fOV+Ky8FpSxQLOhtTjvdt+ZfwPTbKbq+mJXVzfDsn6M= Subject key identifier: 03:AB:93:C3:29:47:40:BB:80:72:4C:38:DF:21:E1:8A:D1:29:65:60 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 322FBAB57EDEB9C9154E09642F1B631CB81FE6F1 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d9fd59c4-3f8e-4d9f-bdc7-99c00f45225f.roa Signing time: Fri 31 Oct 2025 04:41:29 +0000 ROA not before: Fri 31 Oct 2025 04:41:29 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3c30::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:2f:ba:b5:7e:de:b9:c9:15:4e:09:64:2f:1b:63:1c:b8:1f:e6:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 04:41:29 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=ee913bf54a2ec62f5da6e3186c308bded0d2c32575c9950610a7972c9ef44665, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:23:55:02:cd:43:90:b6:8d:a8:bc:d0:be:e6: 08:54:ed:06:0f:71:d6:43:f1:46:58:06:a1:54:d8: 61:da:1d:a8:3f:e1:94:12:a4:8b:1a:93:37:4c:d7: ea:8d:2b:2f:c5:b5:ad:ca:c7:45:c8:31:8e:15:eb: ef:b2:d8:66:67:05:d2:60:9f:6e:2a:43:a9:5c:8a: 97:ad:f0:2d:c8:66:fd:31:18:1b:28:25:b3:ac:21: b0:eb:c0:87:73:3e:7f:f0:01:77:ca:a7:a4:14:fb: 1d:6f:53:8d:fb:1c:3a:4d:53:61:e4:65:d1:cf:97: 66:0d:19:b1:6b:82:a4:88:cf:3e:e3:bd:03:38:2f: e8:22:08:d6:91:dc:88:8f:50:97:5a:8f:d6:50:7f: 54:f7:8c:cb:fd:6e:0a:87:7a:e0:62:6d:14:9b:dc: fc:93:d1:8a:31:38:ec:80:1f:2b:31:60:e3:95:68: 00:e4:3f:97:7a:bf:2b:e9:6f:ba:86:32:e4:e2:95: 9a:d5:e2:4f:b2:ad:1e:f0:ab:39:b3:9c:83:6f:89: 49:74:22:37:a8:a8:24:cc:d4:2e:1b:9e:e6:bc:ce: f6:a2:fb:91:92:16:68:5a:62:ff:94:71:49:c1:77: f5:cf:1b:c9:78:74:7d:c4:9b:0a:64:48:77:91:e9: 6b:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:AB:93:C3:29:47:40:BB:80:72:4C:38:DF:21:E1:8A:D1:29:65:60 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/d9fd59c4-3f8e-4d9f-bdc7-99c00f45225f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3c30::/46 Signature Algorithm: sha256WithRSAEncryption 48:d5:24:0f:65:1a:21:6c:47:7a:a8:b9:96:18:b8:7c:94:9c: 01:4e:f9:a8:5c:04:3e:ca:be:c7:42:78:21:ea:40:66:f1:46: ac:70:96:69:58:0c:a8:13:0e:d7:8f:9b:d4:87:c6:92:81:2c: 32:68:7e:71:09:88:6f:10:3a:96:87:c3:af:2b:f2:f5:83:ca: c7:db:1e:f2:23:a7:a6:f1:59:8e:39:f6:00:25:25:dd:55:6e: df:92:bd:c7:7f:9f:dc:ba:a7:3d:87:d1:69:a1:45:a0:60:93: 5a:44:d4:34:12:9d:af:ab:3b:dd:96:a9:d2:f1:1c:4d:d6:09: 22:98:81:9b:b4:cc:c9:03:d8:ec:5b:34:fd:86:9d:2e:f8:b9: 6a:92:d5:64:46:04:5b:a7:55:cc:ea:f4:33:37:aa:5b:7e:03: 13:3a:8f:c5:e0:48:2a:4f:69:f7:20:7f:4f:0e:4e:0e:9d:d0: 6c:22:76:37:b6:2a:93:0c:4a:19:0c:88:f6:62:0d:19:91:c2: 3e:3a:d2:29:f1:ca:71:aa:96:d5:cf:2b:5b:1a:f2:c9:83:ea: c3:89:12:a9:df:7b:18:56:4e:7d:a6:d1:ec:e6:82:95:df:8d: 87:51:f0:1c:d6:e3:b4:f5:ac:3a:87:06:39:02:92:b7:47:44: 3f:d4:2a:c4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMi+6tX7euckVTglkLxtjHLgf5vEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDQ0MTI5WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZTkxM2JmNTRhMmVjNjJmNWRhNmUzMTg2YzMwOGJkZWQw ZDJjMzI1NzVjOTk1MDYxMGE3OTcyYzllZjQ0NjY1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDII1UCzUOQto2ovNC+5ghU7QYPcdZD8UZYBqFU2GHaHag/ 4ZQSpIsakzdM1+qNKy/Fta3Kx0XIMY4V6++y2GZnBdJgn24qQ6lcipet8C3IZv0x GBsoJbOsIbDrwIdzPn/wAXfKp6QU+x1vU437HDpNU2HkZdHPl2YNGbFrgqSIzz7j vQM4L+giCNaR3IiPUJdaj9ZQf1T3jMv9bgqHeuBibRSb3PyT0YoxOOyAHysxYOOV aADkP5d6vyvpb7qGMuTilZrV4k+yrR7wqzmznINviUl0IjeoqCTM1C4bnua8zvai +5GSFmhaYv+UcUnBd/XPG8l4dH3EmwpkSHeR6WuTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUA6uTwylHQLuAckw43yHhitEpZWAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2Q5ZmQ1OWM0LTNmOGUtNGQ5Zi1iZGM3LTk5YzAwZjQ1MjI1Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAPDAwDQYJKoZIhvcNAQELBQADggEBAEjVJA9lGiFsR3qouZYYuHyU nAFO+ahcBD7KvsdCeCHqQGbxRqxwlmlYDKgTDtePm9SHxpKBLDJofnEJiG8QOpaH w68r8vWDysfbHvIjp6bxWY459gAlJd1Vbt+Svcd/n9y6pz2H0WmhRaBgk1pE1DQS na+rO92WqdLxHE3WCSKYgZu0zMkD2OxbNP2GnS74uWqS1WRGBFunVczq9DM3qlt+ AxM6j8XgSCpPafcgf08OTg6d0Gwidje2KpMMShkMiPZiDRmRwj460inxynGqltXP K1sa8smD6sOJEqnfexhWTn2m0ezmgpXfjYdR8BzW47T1rDqHBjkCkrdHRD/UKsQ= -----END CERTIFICATE-----Generated at Wed Nov 5 10:42:35 2025 by rpki-client