$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/dc534b1a-5ae4-4605-8cf4-4813ed9ae244.roa File: dc534b1a-5ae4-4605-8cf4-4813ed9ae244.roa (raw, json) Hash identifier: DFVjcaY+oB9nvLTKMyEkpGlvcbPQ6fXXehulR3PPVwM= Subject key identifier: B1:23:08:8A:82:CA:39:13:0D:F8:64:65:98:44:6D:50:54:D6:66:64 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5A2107A185C82C63A51201097A6688CA1905EDC7 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/dc534b1a-5ae4-4605-8cf4-4813ed9ae244.roa Signing time: Fri 31 Oct 2025 05:28:50 +0000 ROA not before: Fri 31 Oct 2025 05:28:50 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1d68::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:21:07:a1:85:c8:2c:63:a5:12:01:09:7a:66:88:ca:19:05:ed:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 05:28:50 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=2076141dbc22abfbef749c9062fea4f01b395e323785b23ea4ad22cfa38fb3dc, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f1:3f:74:06:6d:0f:31:4c:18:70:74:13:8c: ac:5f:ee:b3:d8:88:a6:18:cc:bd:e4:44:33:7a:f2: bf:f5:ad:69:c0:3f:d3:75:62:fe:02:d2:92:8f:c3: 1d:65:19:27:fe:b1:b0:f9:d4:b1:a8:b0:af:60:db: d2:19:04:38:0b:d5:c3:cc:d4:fd:27:9d:59:3d:58: f5:ae:35:f0:89:4e:4b:b9:ea:cf:69:68:bf:e6:7e: 0e:8b:e4:96:69:03:20:79:64:aa:a6:8f:ee:7e:cc: 33:bc:22:ed:51:af:41:8c:42:20:02:02:78:f0:b3: d8:2b:e2:24:e0:da:06:da:54:7d:0f:bf:b5:04:d7: 49:28:9f:65:10:d0:c7:8c:ef:c6:52:0b:36:74:a8: 31:1e:1a:9e:e5:b3:57:b0:18:1c:59:f0:13:ee:7f: fa:5a:97:3c:00:59:cc:1c:8f:d3:fe:da:c0:7d:49: 06:45:eb:49:90:1d:8c:b0:fb:c9:6f:ed:23:be:26: 9c:3e:86:ab:e8:86:71:fd:68:25:6a:52:03:66:b0: 1e:4c:f2:d4:b4:b7:0d:fe:a5:c7:8d:a3:a3:d7:78: 0f:41:49:a6:ee:fa:5e:6b:c5:d7:ec:04:c5:f2:c5: 5d:eb:96:d4:51:09:de:fa:5f:5b:c0:e1:44:e1:84: 02:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:23:08:8A:82:CA:39:13:0D:F8:64:65:98:44:6D:50:54:D6:66:64 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/dc534b1a-5ae4-4605-8cf4-4813ed9ae244.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1d68::/45 Signature Algorithm: sha256WithRSAEncryption 86:a2:63:f1:43:f4:2a:ca:7a:43:c0:e1:51:9e:26:4b:96:11: be:84:d9:42:d4:4c:da:83:85:7b:fa:e3:9f:28:54:fa:90:a3: 7a:5e:2a:d1:19:37:59:0c:14:4a:6b:85:18:2d:b9:6f:49:28: 2f:9e:05:f7:ec:ab:ed:b2:4e:4f:52:16:00:b8:04:25:c3:2e: 54:7a:f5:3d:df:d5:63:e6:29:d4:45:cd:16:1a:7b:91:30:16: a0:64:a4:3f:37:0a:6c:aa:72:35:7b:52:f3:53:bb:89:3a:f0: d0:1f:21:9f:9b:7d:df:8f:29:b8:f1:eb:80:24:fa:a1:bb:cc: 5f:ad:80:78:df:c2:60:3b:c2:03:a5:49:08:03:cf:cc:27:4c: 6b:68:c5:7f:6d:61:4e:8d:f7:22:c4:a2:5e:6a:55:f6:4d:50: a8:2f:13:ed:1b:bf:42:1c:5f:26:ea:ef:96:f2:42:c9:45:4e: f1:27:c1:71:6a:dd:81:9a:01:af:cf:d2:ee:e1:06:94:f8:d4: d4:28:c6:26:28:3c:e0:60:81:d3:de:25:7d:7d:0c:82:3f:6e: fd:aa:9c:61:5a:49:7f:a8:f7:00:25:1c:68:35:09:08:f8:32: 60:5a:58:7a:bc:db:de:54:db:5d:4c:57:5c:2b:bc:1e:7b:bd: 2a:3f:4f:60 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWiEHoYXILGOlEgEJemaIyhkF7ccwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDUyODUwWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMDc2MTQxZGJjMjJhYmZiZWY3NDljOTA2MmZlYTRmMDFi Mzk1ZTMyMzc4NWIyM2VhNGFkMjJjZmEzOGZiM2RjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDL8T90Bm0PMUwYcHQTjKxf7rPYiKYYzL3kRDN68r/1rWnA P9N1Yv4C0pKPwx1lGSf+sbD51LGosK9g29IZBDgL1cPM1P0nnVk9WPWuNfCJTku5 6s9paL/mfg6L5JZpAyB5ZKqmj+5+zDO8Iu1Rr0GMQiACAnjws9gr4iTg2gbaVH0P v7UE10kon2UQ0MeM78ZSCzZ0qDEeGp7ls1ewGBxZ8BPuf/palzwAWcwcj9P+2sB9 SQZF60mQHYyw+8lv7SO+Jpw+hqvohnH9aCVqUgNmsB5M8tS0tw3+pceNo6PXeA9B Sabu+l5rxdfsBMXyxV3rltRRCd76X1vA4UThhAKbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUsSMIioLKORMN+GRlmERtUFTWZmQwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2RjNTM0YjFhLTVhZTQtNDYwNS04Y2Y0LTQ4MTNlZDlhZTI0NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAHWgwDQYJKoZIhvcNAQELBQADggEBAIaiY/FD9CrKekPA4VGeJkuW Eb6E2ULUTNqDhXv6458oVPqQo3peKtEZN1kMFEprhRgtuW9JKC+eBffsq+2yTk9S FgC4BCXDLlR69T3f1WPmKdRFzRYae5EwFqBkpD83CmyqcjV7UvNTu4k68NAfIZ+b fd+PKbjx64Ak+qG7zF+tgHjfwmA7wgOlSQgDz8wnTGtoxX9tYU6N9yLEol5qVfZN UKgvE+0bv0IcXybq75byQslFTvEnwXFq3YGaAa/P0u7hBpT41NQoxiYoPOBggdPe JX19DII/bv2qnGFaSX+o9wAlHGg1CQj4MmBaWHq8295U211MV1wrvB57vSo/T2A= -----END CERTIFICATE-----Generated at Wed Nov 5 07:38:39 2025 by rpki-client