$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/de60f4cd-bf54-4bfc-b2a5-03c092b2777a.roa File: de60f4cd-bf54-4bfc-b2a5-03c092b2777a.roa (raw, json) Hash identifier: SB9GrJ47JEst1fLHNRKrOg7MSJ4JszSLqA2A9nulLlo= Subject key identifier: 42:8B:7B:F8:24:1E:D5:6A:95:EF:CA:1D:B4:FD:48:A3:02:12:A1:77 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3DACD780DCDD3E66820AFA97FCC46320CAE58C63 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/de60f4cd-bf54-4bfc-b2a5-03c092b2777a.roa Signing time: Fri 31 Oct 2025 06:10:11 +0000 ROA not before: Fri 31 Oct 2025 06:10:11 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:38d8::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:ac:d7:80:dc:dd:3e:66:82:0a:fa:97:fc:c4:63:20:ca:e5:8c:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 06:10:11 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=fac7f4972b4be0e09f61bbfb2c3fdcf81b3a61928f7564c3734053e97cb5b015, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5d:4e:04:27:7a:0b:8d:ae:c6:03:c0:04:70: a9:f9:02:93:96:3f:e0:33:5f:9d:e7:c1:a0:ee:3b: 5c:07:f7:a5:81:fa:92:5c:51:19:76:4d:93:3d:23: 1a:9b:0d:a8:f6:19:aa:44:5b:c4:7a:1c:d7:4a:08: 7b:41:a3:7d:c2:ec:1d:10:57:4e:63:0d:23:20:9c: d1:13:8b:72:0d:b8:1d:bd:ef:af:e0:1b:08:e9:42: 94:99:1a:e9:2f:b8:4c:c9:bf:2b:d0:0a:43:d5:02: 20:94:ea:fd:97:fd:e5:88:e9:cf:a0:1f:4b:71:c7: dd:c4:92:8d:3a:29:49:b1:c3:c0:a5:ed:b8:86:c3: 43:3c:a6:cb:fb:ed:85:32:ab:1e:6f:56:9c:da:19: a9:f0:00:92:24:fd:38:8d:ed:89:88:26:b6:69:d2: 0e:95:e4:ad:95:54:c3:c5:3d:fb:da:ae:c0:71:ce: 0c:3e:ba:3c:48:ce:75:9d:b5:fb:42:c4:fc:33:37: f4:c0:ff:91:95:64:86:cc:cf:d7:34:f0:f1:5f:75: 8d:45:ba:1e:f3:0e:46:78:64:91:07:da:ab:aa:39: dd:27:0d:9b:e0:38:37:af:3b:83:c8:ba:c9:09:ea: 96:30:19:d2:ac:c0:b1:eb:84:38:36:07:c6:b3:f5: f8:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:8B:7B:F8:24:1E:D5:6A:95:EF:CA:1D:B4:FD:48:A3:02:12:A1:77 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/de60f4cd-bf54-4bfc-b2a5-03c092b2777a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:38d8::/45 Signature Algorithm: sha256WithRSAEncryption 21:9e:70:99:00:cf:43:2d:13:d9:25:01:06:73:35:ae:d1:26: 1b:2c:11:d2:e6:e2:da:80:d6:d5:a3:7d:8f:ca:bf:a3:f2:73: f5:f1:b7:01:03:12:00:6e:6f:8a:48:1d:38:72:d3:25:14:ca: 4d:bb:71:70:57:ad:0c:a6:f3:92:7c:1c:26:c0:63:0b:21:4d: 35:44:11:b5:c5:53:28:98:38:c3:14:0e:29:2c:3e:6a:59:c2: 41:e0:dc:3f:3f:e2:cb:a4:2c:83:e4:9c:95:e8:72:0a:46:e4: f4:14:7d:dd:ca:39:9c:66:e2:0b:80:29:ab:eb:ec:f0:47:9c: 17:4d:7c:3d:18:87:fa:d7:bf:b5:b3:da:4b:09:fc:38:1a:93: ab:29:59:01:db:b5:ee:6f:fe:c9:e6:f2:fd:2b:ae:7c:f8:e9: 6c:34:60:c1:c7:a0:98:b0:35:d3:bd:cd:c0:bf:45:0d:f7:8f: d3:91:49:cd:42:c6:10:41:d2:5b:a9:0a:9a:8e:e4:d0:80:84: 9a:73:34:84:88:6e:6c:b9:fa:c2:5e:2e:e9:12:31:67:bc:a7: 2e:85:5f:f7:0a:19:a5:a8:4c:e9:27:02:a3:ed:ef:bb:fa:86: 97:84:cf:3e:12:c1:77:df:3c:a9:e9:de:04:dc:69:cb:e2:29: 4a:8e:b2:4c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPazXgNzdPmaCCvqX/MRjIMrljGMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDYxMDExWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYWM3ZjQ5NzJiNGJlMGUwOWY2MWJiZmIyYzNmZGNmODFi M2E2MTkyOGY3NTY0YzM3MzQwNTNlOTdjYjViMDE1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVXU4EJ3oLja7GA8AEcKn5ApOWP+AzX53nwaDuO1wH96WB +pJcURl2TZM9IxqbDaj2GapEW8R6HNdKCHtBo33C7B0QV05jDSMgnNETi3INuB29 76/gGwjpQpSZGukvuEzJvyvQCkPVAiCU6v2X/eWI6c+gH0txx93Eko06KUmxw8Cl 7biGw0M8psv77YUyqx5vVpzaGanwAJIk/TiN7YmIJrZp0g6V5K2VVMPFPfvarsBx zgw+ujxIznWdtftCxPwzN/TA/5GVZIbMz9c08PFfdY1Fuh7zDkZ4ZJEH2quqOd0n DZvgODevO4PIuskJ6pYwGdKswLHrhDg2B8az9fidAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQot7+CQe1WqV78odtP1IowISoXcwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2RlNjBmNGNkLWJmNTQtNGJmYy1iMmE1LTAzYzA5MmIyNzc3YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAONgwDQYJKoZIhvcNAQELBQADggEBACGecJkAz0MtE9klAQZzNa7R JhssEdLm4tqA1tWjfY/Kv6Pyc/XxtwEDEgBub4pIHThy0yUUyk27cXBXrQym85J8 HCbAYwshTTVEEbXFUyiYOMMUDiksPmpZwkHg3D8/4sukLIPknJXocgpG5PQUfd3K OZxm4guAKavr7PBHnBdNfD0Yh/rXv7Wz2ksJ/Dgak6spWQHbte5v/snm8v0rrnz4 6Ww0YMHHoJiwNdO9zcC/RQ33j9ORSc1CxhBB0lupCpqO5NCAhJpzNISIbmy5+sJe LukSMWe8py6FX/cKGaWoTOknAqPt77v6hpeEzz4SwXffPKnp3gTcacviKUqOskw= -----END CERTIFICATE-----Generated at Wed Nov 5 07:39:01 2025 by rpki-client