$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/db626191-22ad-4db8-921d-16e2754551f1.roa File: db626191-22ad-4db8-921d-16e2754551f1.roa (raw, json) Hash identifier: hQj4ve6p0Swlo4j84OJj3DR33eNZh6bn6IuFLJIac6E= Subject key identifier: 59:E8:E6:6A:2C:6B:42:EB:32:53:D2:BB:11:6C:48:89:0C:FA:93:DE Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 58B41D3C7A26BE664B1C528E175203615056A9B6 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/db626191-22ad-4db8-921d-16e2754551f1.roa Signing time: Fri 31 Oct 2025 00:08:31 +0000 ROA not before: Fri 31 Oct 2025 00:08:31 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3306::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:b4:1d:3c:7a:26:be:66:4b:1c:52:8e:17:52:03:61:50:56:a9:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 00:08:31 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=0f8dd160097ad719b4e0efcd77727f59bc0ed6af699daaf4af6257d9fe30404e, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a7:0e:9b:1b:9c:6f:a1:12:b1:2d:56:eb:ea: 7f:b4:eb:55:bb:b5:32:3c:d3:e7:23:e6:91:5e:85: 8f:ef:46:62:65:4a:ab:9f:bd:42:ef:b4:1b:4b:25: e9:a4:21:ca:b2:20:4f:1b:56:f0:e6:b9:7e:44:17: a5:84:bf:9f:1a:86:c7:1d:be:d8:ab:27:d4:9e:7a: d0:fb:15:aa:68:65:21:d1:64:63:cf:57:84:dc:d9: 21:3e:16:02:03:20:49:a9:40:21:f4:ae:a6:3e:20: 24:ac:74:44:c7:2a:a0:83:70:f3:fb:62:de:6b:ec: 37:0d:e4:98:ec:d0:6b:65:2f:ae:82:ff:3b:5b:03: 48:c7:65:45:29:31:88:b1:a2:ba:63:71:b5:0b:88: 3f:f6:f1:62:7d:09:7b:18:fb:f1:e5:0a:5d:d8:45: ce:53:40:2e:9e:6e:c6:2a:66:2c:03:8d:34:42:eb: ae:4d:57:ed:b6:ff:60:e0:d0:da:ce:ac:dc:a9:b9: 5c:35:56:61:8a:a7:85:f9:63:41:d2:09:f9:54:fe: 1c:39:ce:6e:1b:21:28:22:11:c8:99:79:59:64:9d: 4d:0c:7d:1b:33:b1:16:9a:a9:cb:10:42:4d:99:41: 11:85:60:cc:70:d0:f4:4b:1a:d6:46:5d:0a:fe:16: 33:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:E8:E6:6A:2C:6B:42:EB:32:53:D2:BB:11:6C:48:89:0C:FA:93:DE X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/db626191-22ad-4db8-921d-16e2754551f1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3306::/47 Signature Algorithm: sha256WithRSAEncryption 2d:e7:36:3c:12:01:e4:bc:19:55:d8:f4:77:4b:31:63:05:67: 78:d0:a8:a2:96:2f:d9:a0:e2:78:dd:8a:7f:19:97:f9:03:e5: 08:ad:91:db:1c:38:f5:69:01:0c:96:70:7d:3d:2d:c4:01:d8: b1:3c:b6:5d:fd:cb:ca:8c:18:3b:30:1f:0f:98:ae:bc:50:9d: 79:ee:5d:61:32:e2:4a:7d:e4:2b:5b:4c:52:e1:7e:c6:67:d5: 11:75:f5:15:81:43:92:20:93:14:9f:22:d4:93:b8:76:6e:22: 67:60:98:2b:a2:4c:ec:79:09:05:1c:d8:33:87:c2:af:fa:b8: 32:3d:66:10:e3:aa:94:a3:f1:e5:e4:e8:88:90:71:f8:f6:36: 87:43:4b:93:13:59:d0:aa:83:7b:8e:4d:56:10:94:6e:fc:6c: 9f:06:48:49:7b:17:e1:de:0c:65:eb:a8:ef:1c:86:c1:80:c9: 4f:8d:7f:6b:97:b0:4e:68:e6:eb:57:55:30:7d:96:ac:43:4f: 1c:f1:8c:75:9b:37:13:81:ee:c7:c9:92:05:f9:42:3d:d9:37: f7:5b:05:51:a8:6a:15:fb:e2:d3:83:c5:df:aa:77:93:3c:1f: b9:ed:43:25:39:33:fd:58:86:81:61:5a:5d:cd:8c:d7:e7:74: 86:f9:2e:e0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWLQdPHomvmZLHFKOF1IDYVBWqbYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDAwODMxWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZjhkZDE2MDA5N2FkNzE5YjRlMGVmY2Q3NzcyN2Y1OWJj MGVkNmFmNjk5ZGFhZjRhZjYyNTdkOWZlMzA0MDRlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdpw6bG5xvoRKxLVbr6n+061W7tTI80+cj5pFehY/vRmJl SqufvULvtBtLJemkIcqyIE8bVvDmuX5EF6WEv58ahscdvtirJ9SeetD7FapoZSHR ZGPPV4Tc2SE+FgIDIEmpQCH0rqY+ICSsdETHKqCDcPP7Yt5r7DcN5Jjs0GtlL66C /ztbA0jHZUUpMYixorpjcbULiD/28WJ9CXsY+/HlCl3YRc5TQC6ebsYqZiwDjTRC 665NV+22/2Dg0NrOrNypuVw1VmGKp4X5Y0HSCflU/hw5zm4bISgiEciZeVlknU0M fRszsRaaqcsQQk2ZQRGFYMxw0PRLGtZGXQr+FjMDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUWejmaixrQusyU9K7EWxIiQz6k94wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2RiNjI2MTkxLTIyYWQtNGRiOC05MjFkLTE2ZTI3NTQ1NTFmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAMwYwDQYJKoZIhvcNAQELBQADggEBAC3nNjwSAeS8GVXY9HdLMWMF Z3jQqKKWL9mg4njdin8Zl/kD5QitkdscOPVpAQyWcH09LcQB2LE8tl39y8qMGDsw Hw+YrrxQnXnuXWEy4kp95CtbTFLhfsZn1RF19RWBQ5IgkxSfItSTuHZuImdgmCui TOx5CQUc2DOHwq/6uDI9ZhDjqpSj8eXk6IiQcfj2NodDS5MTWdCqg3uOTVYQlG78 bJ8GSEl7F+HeDGXrqO8chsGAyU+Nf2uXsE5o5utXVTB9lqxDTxzxjHWbNxOB7sfJ kgX5Qj3ZN/dbBVGoahX74tODxd+qd5M8H7ntQyU5M/1YhoFhWl3NjNfndIb5LuA= -----END CERTIFICATE-----Generated at Wed Nov 5 10:54:17 2025 by rpki-client