$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/de8ad526-6ba2-4c6d-9f79-5882c208da3f.roa File: de8ad526-6ba2-4c6d-9f79-5882c208da3f.roa (raw, json) Hash identifier: NsqE5+DA+aLbqaixiGmaNmsznvnMCrIQesTxm7uS8jM= Subject key identifier: DF:04:40:6F:1A:18:83:9B:D2:2B:F5:0B:22:14:7F:81:5C:4A:26:EF Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 78019F9D7EE7B9C64B0A5143845E9A933C57F853 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/de8ad526-6ba2-4c6d-9f79-5882c208da3f.roa Signing time: Fri 31 Oct 2025 00:28:11 +0000 ROA not before: Fri 31 Oct 2025 00:28:11 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:35e2::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:01:9f:9d:7e:e7:b9:c6:4b:0a:51:43:84:5e:9a:93:3c:57:f8:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 00:28:11 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=4a7d489e8984a8a6038218ec69e7469698a1c42388365433d144a9a4939e6172, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2b:22:84:ae:41:a4:75:9c:46:66:0f:89:ef: 69:97:07:9b:bd:68:99:16:3f:f4:41:e3:ce:97:9a: 74:73:8a:bd:1d:15:37:db:29:75:93:ec:ac:f5:bc: 2c:e2:f2:e8:28:2a:0d:c1:7f:9f:e6:25:58:73:80: 98:c1:01:e7:34:9e:50:3b:9b:a3:b9:05:89:7d:57: 57:b1:3d:1d:ef:34:98:ab:1c:63:5d:b9:89:43:a3: d6:ff:44:f6:af:5f:1c:1a:3b:2d:b0:03:11:56:ea: 57:e0:ae:29:f9:f0:32:ad:64:a3:a9:9d:83:7f:da: ec:fe:4c:55:56:2b:d9:6b:5c:0a:86:6b:0e:73:d5: aa:4f:b4:ad:24:dc:8f:43:4c:87:92:70:3f:6f:b7: 98:20:08:7a:1b:23:76:8e:92:5d:69:15:be:80:27: 40:3c:3b:64:9d:39:47:78:b9:87:96:97:02:6f:84: 4c:97:e1:28:e4:8c:46:8c:4c:01:ca:59:dc:9b:73: 79:5b:f1:82:ca:94:14:76:51:94:a1:9f:37:4f:0c: fb:bb:17:f8:7f:d2:60:83:c9:97:fe:b0:83:46:2a: 95:90:5f:7a:a5:eb:00:8b:49:25:c4:6a:64:a5:4b: 03:ed:9c:80:b5:34:e3:d2:a6:9d:50:8f:b8:49:e7: 9b:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:04:40:6F:1A:18:83:9B:D2:2B:F5:0B:22:14:7F:81:5C:4A:26:EF X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/de8ad526-6ba2-4c6d-9f79-5882c208da3f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:35e2::/47 Signature Algorithm: sha256WithRSAEncryption 61:89:8b:30:c5:21:12:ee:9a:fd:1c:fc:4e:ba:1a:46:da:81: f9:19:65:c2:24:bd:1c:81:c8:bd:a9:ec:f0:4b:4f:1d:28:ae: 0b:a4:08:bc:d1:ff:7f:6c:f2:c0:92:27:c7:05:0b:ac:0f:26: 81:0d:ee:68:08:1a:9c:04:22:3e:d3:b8:a1:d1:23:4f:a4:c9: 72:3c:69:3c:a2:54:97:d7:8b:94:1c:2d:78:30:dd:31:d8:f6: 53:53:3b:1d:21:ac:f2:ab:52:fe:47:33:5e:ec:39:53:9f:69: ee:78:b3:77:77:20:17:60:e9:f5:e5:e3:22:49:cb:9e:91:61: b9:db:9c:7a:44:bd:b9:56:61:93:97:da:2d:d5:7f:c3:7a:7c: 5b:aa:fc:02:59:9d:70:1c:2f:9f:67:2e:22:91:39:41:c7:3a: dc:cd:d2:fd:b6:82:1f:22:df:2f:e6:49:57:a7:c4:27:14:f6: 7a:b3:2c:c0:f6:2f:65:ad:67:11:06:a8:29:b8:26:cc:d9:d0: d9:b3:60:d8:a1:7d:1f:9a:24:e9:e1:6a:59:12:5b:db:47:39: b9:cf:4e:82:7c:01:1c:95:57:a9:98:c7:c1:ef:1c:10:da:a4: 3c:66:bf:dc:46:33:8c:2e:5d:1f:78:33:1e:c0:bb:72:08:5c: c9:d4:71:28 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUeAGfnX7nucZLClFDhF6akzxX+FMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDAyODExWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YTdkNDg5ZTg5ODRhOGE2MDM4MjE4ZWM2OWU3NDY5Njk4 YTFjNDIzODgzNjU0MzNkMTQ0YTlhNDkzOWU2MTcyMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTKyKErkGkdZxGZg+J72mXB5u9aJkWP/RB486XmnRzir0d FTfbKXWT7Kz1vCzi8ugoKg3Bf5/mJVhzgJjBAec0nlA7m6O5BYl9V1exPR3vNJir HGNduYlDo9b/RPavXxwaOy2wAxFW6lfgrin58DKtZKOpnYN/2uz+TFVWK9lrXAqG aw5z1apPtK0k3I9DTIeScD9vt5ggCHobI3aOkl1pFb6AJ0A8O2SdOUd4uYeWlwJv hEyX4SjkjEaMTAHKWdybc3lb8YLKlBR2UZShnzdPDPu7F/h/0mCDyZf+sINGKpWQ X3ql6wCLSSXEamSlSwPtnIC1NOPSpp1Qj7hJ55vdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3wRAbxoYg5vSK/ULIhR/gVxKJu8wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2RlOGFkNTI2LTZiYTItNGM2ZC05Zjc5LTU4ODJjMjA4ZGEzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAANeIwDQYJKoZIhvcNAQELBQADggEBAGGJizDFIRLumv0c/E66Gkba gfkZZcIkvRyByL2p7PBLTx0orgukCLzR/39s8sCSJ8cFC6wPJoEN7mgIGpwEIj7T uKHRI0+kyXI8aTyiVJfXi5QcLXgw3THY9lNTOx0hrPKrUv5HM17sOVOfae54s3d3 IBdg6fXl4yJJy56RYbnbnHpEvblWYZOX2i3Vf8N6fFuq/AJZnXAcL59nLiKROUHH OtzN0v22gh8i3y/mSVenxCcU9nqzLMD2L2WtZxEGqCm4JszZ0NmzYNihfR+aJOnh alkSW9tHObnPToJ8ARyVV6mYx8HvHBDapDxmv9xGM4wuXR94Mx7Au3IIXMnUcSg= -----END CERTIFICATE-----Generated at Wed Nov 5 13:59:53 2025 by rpki-client