$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ddaae004-ca0e-42ef-80a4-67dbf652e99e.roa File: ddaae004-ca0e-42ef-80a4-67dbf652e99e.roa (raw, json) Hash identifier: fGqTSbJdHlT4Lp+D+G/vyOj2J/1M2B2Y8zLBOy1O00o= Subject key identifier: 4C:54:7E:32:8B:96:4B:E3:AB:57:23:3B:6B:78:75:F6:85:6F:70:CC Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 436BFEB7580193AF1971DDE6F76B4759EEB0FB46 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ddaae004-ca0e-42ef-80a4-67dbf652e99e.roa Signing time: Thu 30 Oct 2025 20:56:15 +0000 ROA not before: Thu 30 Oct 2025 20:56:15 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1414::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:6b:fe:b7:58:01:93:af:19:71:dd:e6:f7:6b:47:59:ee:b0:fb:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 20:56:15 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=22fffee8566797f8e659c765a195084d74e97c621890ae19ca4bf753a522a8ef, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:87:cf:d2:dc:04:fe:39:74:9a:be:9c:49:e2: 5c:8d:77:7c:c6:94:bd:91:3a:29:be:d2:ab:4b:27: 35:fa:df:dd:f9:f2:49:0e:bf:77:8d:bf:18:00:a5: bc:ef:21:65:43:4b:8b:25:ca:08:90:1f:c7:9f:8e: 1d:f6:af:c2:e0:a0:78:3c:c4:0e:e6:ef:3a:7d:27: 70:3d:ba:b0:9d:22:8a:b2:ac:fc:44:17:42:17:e0: 75:43:ba:8e:d7:69:66:42:46:ab:d2:95:af:51:45: ea:45:99:76:18:b5:65:5d:e2:b6:9a:9b:4f:90:92: b5:c9:5e:65:ec:cf:25:db:31:05:5f:ef:af:e9:84: ca:4d:95:ff:68:44:da:a8:d6:e1:20:23:2e:35:43: c4:bb:74:46:48:d3:fa:9e:cf:ae:af:ed:14:7f:a8: b5:a3:bc:91:42:81:9e:ca:db:05:51:ea:61:a8:ab: 5c:1e:58:a7:f0:43:56:af:b8:2d:a8:73:89:6c:21: d2:d2:6e:c5:57:a2:f5:5d:96:6d:0c:29:4f:71:bc: e5:28:31:09:a3:b6:67:88:81:21:4e:9d:a9:40:ff: b2:05:b1:a9:ae:72:71:29:5b:7b:0b:56:78:a5:ed: cf:ac:e5:a6:e8:3c:5f:28:3b:4c:2b:bd:36:ea:8f: e8:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:54:7E:32:8B:96:4B:E3:AB:57:23:3B:6B:78:75:F6:85:6F:70:CC X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ddaae004-ca0e-42ef-80a4-67dbf652e99e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1414::/47 Signature Algorithm: sha256WithRSAEncryption 2f:b0:da:4d:ea:0d:a4:48:5f:a2:43:bd:48:c0:91:97:50:1d: 0d:14:20:1e:6d:f9:87:9b:07:19:17:23:5c:fb:b9:44:e0:5f: 85:c7:f9:3b:58:e6:5e:f8:4d:f6:7e:40:f0:46:75:56:ca:c9: 52:ba:03:df:10:0a:e6:e8:63:b8:35:f5:e9:7a:3a:72:dd:d5: ce:db:89:ca:0a:7a:bc:83:bb:27:b2:da:18:5e:de:c8:22:40: bd:59:6b:7e:e4:f5:26:ce:13:09:91:2f:5a:92:d3:4c:e3:49: bd:f9:33:4b:c3:c8:6b:db:95:aa:9d:0f:79:87:4c:6f:4a:ce: d9:2e:c5:da:b1:a4:e7:55:fb:a4:e6:2d:e0:09:09:b6:7d:df: 5f:f4:83:b8:80:fc:00:bb:4f:57:61:25:46:63:76:64:88:c1: dd:7b:d2:46:b9:89:a6:e3:97:b9:70:3a:26:2e:a2:c2:0b:9f: 97:19:23:cc:5f:c2:14:34:58:d8:b0:10:ba:45:74:59:66:1b: 23:3e:7e:e0:00:86:6f:90:7a:6c:3f:2f:26:52:7c:33:c8:c1: 9c:84:ae:2d:f5:5c:4e:89:67:ff:6f:bd:39:0b:82:d1:9c:c7: f5:ab:67:71:1b:56:0a:45:f6:32:0a:96:07:8a:37:a9:44:6c: a2:77:e5:9f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQ2v+t1gBk68Zcd3m92tHWe6w+0YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjA1NjE1WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMmZmZmVlODU2Njc5N2Y4ZTY1OWM3NjVhMTk1MDg0ZDc0 ZTk3YzYyMTg5MGFlMTljYTRiZjc1M2E1MjJhOGVmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZh8/S3AT+OXSavpxJ4lyNd3zGlL2ROim+0qtLJzX63935 8kkOv3eNvxgApbzvIWVDS4slygiQH8efjh32r8LgoHg8xA7m7zp9J3A9urCdIoqy rPxEF0IX4HVDuo7XaWZCRqvSla9RRepFmXYYtWVd4raam0+QkrXJXmXszyXbMQVf 76/phMpNlf9oRNqo1uEgIy41Q8S7dEZI0/qez66v7RR/qLWjvJFCgZ7K2wVR6mGo q1weWKfwQ1avuC2oc4lsIdLSbsVXovVdlm0MKU9xvOUoMQmjtmeIgSFOnalA/7IF samucnEpW3sLVnil7c+s5aboPF8oO0wrvTbqj+htAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUTFR+MouWS+OrVyM7a3h19oVvcMwwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2RkYWFlMDA0LWNhMGUtNDJlZi04MGE0LTY3ZGJmNjUyZTk5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAFBQwDQYJKoZIhvcNAQELBQADggEBAC+w2k3qDaRIX6JDvUjAkZdQ HQ0UIB5t+YebBxkXI1z7uUTgX4XH+TtY5l74TfZ+QPBGdVbKyVK6A98QCuboY7g1 9el6OnLd1c7bicoKeryDuyey2hhe3sgiQL1Za37k9SbOEwmRL1qS00zjSb35M0vD yGvblaqdD3mHTG9KztkuxdqxpOdV+6TmLeAJCbZ931/0g7iA/AC7T1dhJUZjdmSI wd170ka5iabjl7lwOiYuosILn5cZI8xfwhQ0WNiwELpFdFlmGyM+fuAAhm+Qemw/ LyZSfDPIwZyEri31XE6JZ/9vvTkLgtGcx/WrZ3EbVgpF9jIKlgeKN6lEbKJ35Z8= -----END CERTIFICATE-----Generated at Wed Nov 5 10:55:08 2025 by rpki-client