$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/de4d95c0-a265-4a8d-8389-93e45c5eee2f.roa File: de4d95c0-a265-4a8d-8389-93e45c5eee2f.roa (raw, json) Hash identifier: hLwjvetDxIUCJQqRrwfGSC0HzCEbaiqFbLSP12Pw8l8= Subject key identifier: DC:81:AD:24:26:25:B2:C8:CC:90:B1:F2:E1:F8:1E:8C:97:7F:1A:6A Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 7C64837383C814C1F7123B1CF0CE050F5CA9BEB1 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/de4d95c0-a265-4a8d-8389-93e45c5eee2f.roa Signing time: Fri 31 Oct 2025 02:06:54 +0000 ROA not before: Fri 31 Oct 2025 02:06:54 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3f9a::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:64:83:73:83:c8:14:c1:f7:12:3b:1c:f0:ce:05:0f:5c:a9:be:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 02:06:54 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=3f035231444d14f33e9126c205d925b6399143bf8bcb80f04f8379e36a43f73b, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f6:06:ae:f1:81:35:58:be:0f:0a:65:9b:de: 65:6c:58:ee:49:c9:8a:06:db:fb:82:30:c2:7d:dd: e7:4b:13:df:e5:d1:39:2c:9d:c9:7e:1b:9d:c7:4d: 2c:e9:53:02:4c:e5:65:4a:69:8e:82:2f:29:d1:84: e7:32:8b:05:3a:d5:92:c0:75:4b:9d:24:e3:f7:c3: b5:12:e3:a4:a7:30:d1:f3:d0:6a:e8:ba:bc:48:b4: 2c:e5:26:b6:2f:cb:32:e4:7f:c5:35:83:50:be:99: d5:85:dd:f2:62:73:be:80:64:ef:35:9e:8e:2f:91: d3:ed:14:eb:af:a0:25:3a:d7:3c:28:08:c7:87:76: 8a:51:8d:23:4c:22:a4:aa:bb:f3:3a:5d:75:bd:75: ca:c8:36:5a:23:96:ed:5f:90:0b:a6:1b:e3:78:be: f2:4a:90:22:98:43:6d:a5:f9:c9:40:be:7c:0d:14: 1f:a8:79:25:ef:72:57:f2:b6:73:02:69:26:4f:13: ff:63:1a:54:e2:9c:df:53:ac:a8:64:ae:89:20:b6: fb:d8:40:0d:6f:28:2f:f6:37:2a:0a:8e:96:3c:21: 8d:9b:b2:c7:85:73:97:24:e0:74:23:a3:02:62:a8: f3:da:6b:e1:4a:96:b7:67:bf:e7:cf:00:57:ce:bc: d6:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:81:AD:24:26:25:B2:C8:CC:90:B1:F2:E1:F8:1E:8C:97:7F:1A:6A X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/de4d95c0-a265-4a8d-8389-93e45c5eee2f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3f9a::/47 Signature Algorithm: sha256WithRSAEncryption 6a:e2:45:c3:32:f1:d0:f6:18:a4:7f:48:32:34:e9:f0:32:63: 94:30:4d:10:87:83:b0:12:db:48:9b:4c:d8:44:16:9d:2a:0c: 11:bf:fb:9e:70:16:75:e1:83:7a:72:c8:d1:ec:8a:f1:a6:28: a5:35:99:b5:fa:34:00:1e:1e:85:fd:ef:40:2c:81:69:cc:82: a7:15:de:8b:d8:84:34:32:31:9f:03:ba:db:a7:68:45:61:98: 1d:8c:b5:37:b5:06:a1:f4:3a:3b:04:18:c9:4e:02:58:e8:f3: 21:51:29:71:56:47:cf:92:9e:80:3a:43:22:80:18:b2:5d:5a: 68:ba:35:e8:40:00:c5:fb:f6:99:a9:af:12:9b:3e:20:0d:f1: f3:0d:08:89:ba:62:76:1c:9d:03:16:60:b9:46:35:ab:d6:30: 07:97:52:4e:15:3e:cd:bf:3c:1a:a5:21:e0:f9:e3:ef:dd:89: e0:ba:a4:e6:51:ac:62:6a:d6:1a:6c:76:88:33:b9:ae:5d:da: a0:ce:c0:db:5e:d7:ad:33:98:a0:4f:d7:bd:74:bd:b9:5f:7a: 30:e2:ac:e9:49:01:d4:e8:ea:20:86:a3:2c:b3:8b:06:35:11: ca:0d:e1:2a:fe:74:d6:a9:31:30:96:8c:89:58:6d:e2:82:3f: b3:55:be:44 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfGSDc4PIFMH3Ejsc8M4FD1ypvrEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDIwNjU0WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZjAzNTIzMTQ0NGQxNGYzM2U5MTI2YzIwNWQ5MjViNjM5 OTE0M2JmOGJjYjgwZjA0ZjgzNzllMzZhNDNmNzNiMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC89gau8YE1WL4PCmWb3mVsWO5JyYoG2/uCMMJ93edLE9/l 0Tksncl+G53HTSzpUwJM5WVKaY6CLynRhOcyiwU61ZLAdUudJOP3w7US46SnMNHz 0GrourxItCzlJrYvyzLkf8U1g1C+mdWF3fJic76AZO81no4vkdPtFOuvoCU61zwo CMeHdopRjSNMIqSqu/M6XXW9dcrINlojlu1fkAumG+N4vvJKkCKYQ22l+clAvnwN FB+oeSXvclfytnMCaSZPE/9jGlTinN9TrKhkrokgtvvYQA1vKC/2NyoKjpY8IY2b sseFc5ck4HQjowJiqPPaa+FKlrdnv+fPAFfOvNZRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3IGtJCYlssjMkLHy4fgejJd/GmowHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2RlNGQ5NWMwLWEyNjUtNGE4ZC04Mzg5LTkzZTQ1YzVlZWUyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAP5owDQYJKoZIhvcNAQELBQADggEBAGriRcMy8dD2GKR/SDI06fAy Y5QwTRCHg7AS20ibTNhEFp0qDBG/+55wFnXhg3pyyNHsivGmKKU1mbX6NAAeHoX9 70AsgWnMgqcV3ovYhDQyMZ8DutunaEVhmB2MtTe1BqH0OjsEGMlOAljo8yFRKXFW R8+SnoA6QyKAGLJdWmi6NehAAMX79pmprxKbPiAN8fMNCIm6YnYcnQMWYLlGNavW MAeXUk4VPs2/PBqlIeD54+/dieC6pOZRrGJq1hpsdogzua5d2qDOwNte160zmKBP 1710vblfejDirOlJAdTo6iCGoyyziwY1EcoN4Sr+dNapMTCWjIlYbeKCP7NVvkQ= -----END CERTIFICATE-----Generated at Wed Nov 5 09:28:15 2025 by rpki-client