$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/dd194773-7d98-4203-bb07-11da4917f1c1.roa File: dd194773-7d98-4203-bb07-11da4917f1c1.roa (raw, json) Hash identifier: Nsh8UXrqj1VgW4EledtX6uhe/nlHJEKXHCpwXY4I5rk= Subject key identifier: 49:55:94:BB:C1:89:7C:93:98:1D:C2:7E:DD:40:4E:05:B8:49:53:60 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 59E8344704296C29CAC0A0959754F199E0270641 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/dd194773-7d98-4203-bb07-11da4917f1c1.roa Signing time: Fri 31 Oct 2025 03:55:13 +0000 ROA not before: Fri 31 Oct 2025 03:55:13 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:31d8::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:e8:34:47:04:29:6c:29:ca:c0:a0:95:97:54:f1:99:e0:27:06:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 03:55:13 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=9b3bc41c3ec9c48833b1ea0ffa7f6f1607d6730d8dd6220b7b0f04a73fce5d4c, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:54:86:60:df:34:7d:c5:c4:4d:72:a9:7b:d0: 44:b2:7b:1e:7b:5d:28:e1:7f:7f:30:0e:d8:d0:96: f7:2e:20:b3:ed:0a:1b:86:cd:e0:24:77:a4:06:7c: 91:d3:d2:fd:14:ce:ef:ef:08:8e:2a:65:20:dc:df: 50:24:af:26:3f:d3:59:50:f3:6d:77:a0:d0:0d:75: 59:94:64:e9:e2:4d:66:91:17:ef:3a:ac:a0:8b:7f: d7:f8:74:8b:f0:f5:5a:cd:54:aa:6b:a2:0f:c8:dd: 65:b7:46:29:dd:26:6b:02:54:ef:52:ce:9d:ef:cf: 2d:ee:03:16:79:42:09:f0:84:03:43:47:71:2b:f8: 87:38:64:30:44:93:75:aa:34:e9:4a:dd:c3:da:2f: a7:c4:05:72:fd:9f:c2:20:e4:c9:3c:cb:c1:4d:7c: 29:e4:20:95:ca:1d:2e:69:c3:07:db:bb:80:e2:2c: 59:8c:da:87:76:86:b7:7f:97:85:76:a8:b3:c7:f1: 1e:61:3b:97:fd:e5:1b:a1:99:ed:a3:28:e5:9d:82: 4f:31:db:e7:aa:32:85:da:58:5c:11:b0:e1:43:75: 84:b4:e3:e8:7a:5e:a2:0c:0e:19:5b:58:0b:12:1f: 21:c1:cf:88:51:59:49:9c:72:65:08:15:34:aa:a5: 20:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:55:94:BB:C1:89:7C:93:98:1D:C2:7E:DD:40:4E:05:B8:49:53:60 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/dd194773-7d98-4203-bb07-11da4917f1c1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:31d8::/46 Signature Algorithm: sha256WithRSAEncryption 6b:87:d2:c6:31:ba:8f:5b:f5:c5:25:01:cd:b9:6c:05:1e:ec: 6d:09:fd:31:a7:90:2e:68:e2:76:a5:a1:86:10:d8:5e:4a:83: 98:0f:67:4c:14:0d:5e:30:7a:16:26:10:a6:8c:8f:f1:0e:fc: d4:16:73:3a:41:81:02:4f:a3:18:fb:e2:02:16:c9:3f:65:43: 3c:80:4d:13:b9:91:5b:b3:25:51:d3:1b:47:b3:3c:54:13:2e: a1:c2:f0:82:9d:f1:23:a7:57:2c:8a:58:fb:e2:cc:fb:10:c0: 53:db:ea:37:08:2a:25:0f:24:20:64:b3:2e:17:22:68:cf:23: 21:bf:ac:d6:48:5f:61:73:fe:52:ae:48:e9:d2:89:39:b7:d2: 02:6c:9f:f4:b6:66:7b:da:c5:54:a2:9c:e2:50:e6:e6:c4:55: b8:96:ce:88:8b:6e:73:9f:32:9e:b9:2e:f2:2d:1c:98:77:7d: 7c:6c:61:97:58:49:e1:99:d2:91:4a:ca:39:c0:52:d2:dc:24: 8e:26:e3:b4:64:d6:4c:fb:3d:6b:b6:ba:29:ea:3a:95:65:5b: c1:d0:78:b2:63:06:6a:bb:20:b8:92:f4:ab:78:b6:f0:29:3f: 16:bf:73:1e:ce:42:d6:90:49:66:a4:49:79:e7:cf:48:a9:9b: 22:d7:a0:9c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWeg0RwQpbCnKwKCVl1TxmeAnBkEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDM1NTEzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YjNiYzQxYzNlYzljNDg4MzNiMWVhMGZmYTdmNmYxNjA3 ZDY3MzBkOGRkNjIyMGI3YjBmMDRhNzNmY2U1ZDRjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWVIZg3zR9xcRNcql70ESyex57XSjhf38wDtjQlvcuILPt ChuGzeAkd6QGfJHT0v0Uzu/vCI4qZSDc31AkryY/01lQ8213oNANdVmUZOniTWaR F+86rKCLf9f4dIvw9VrNVKprog/I3WW3RindJmsCVO9Szp3vzy3uAxZ5QgnwhAND R3Er+Ic4ZDBEk3WqNOlK3cPaL6fEBXL9n8Ig5Mk8y8FNfCnkIJXKHS5pwwfbu4Di LFmM2od2hrd/l4V2qLPH8R5hO5f95Ruhme2jKOWdgk8x2+eqMoXaWFwRsOFDdYS0 4+h6XqIMDhlbWAsSHyHBz4hRWUmccmUIFTSqpSBtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUSVWUu8GJfJOYHcJ+3UBOBbhJU2AwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2RkMTk0NzczLTdkOTgtNDIwMy1iYjA3LTExZGE0OTE3ZjFjMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAMdgwDQYJKoZIhvcNAQELBQADggEBAGuH0sYxuo9b9cUlAc25bAUe 7G0J/TGnkC5o4naloYYQ2F5Kg5gPZ0wUDV4wehYmEKaMj/EO/NQWczpBgQJPoxj7 4gIWyT9lQzyATRO5kVuzJVHTG0ezPFQTLqHC8IKd8SOnVyyKWPvizPsQwFPb6jcI KiUPJCBksy4XImjPIyG/rNZIX2Fz/lKuSOnSiTm30gJsn/S2ZnvaxVSinOJQ5ubE VbiWzoiLbnOfMp65LvItHJh3fXxsYZdYSeGZ0pFKyjnAUtLcJI4m47Rk1kz7PWu2 uinqOpVlW8HQeLJjBmq7ILiS9Kt4tvApPxa/cx7OQtaQSWakSXnnz0ipmyLXoJw= -----END CERTIFICATE-----Generated at Wed Nov 5 10:54:21 2025 by rpki-client