$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/de9d033e-92f3-4dd5-8304-b15dd3684627.roa File: de9d033e-92f3-4dd5-8304-b15dd3684627.roa (raw, json) Hash identifier: 25HEfPQJk7bJhgBVs+T/hFdvQwlqGFYAvnQ7A4jA8so= Subject key identifier: 53:5A:E3:17:D4:A2:04:08:2E:B1:E5:7D:44:3E:58:FB:5D:08:20:CE Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 1AE5618559106449F1CEC0B58DC9027194113DE2 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/de9d033e-92f3-4dd5-8304-b15dd3684627.roa Signing time: Fri 31 Oct 2025 03:42:00 +0000 ROA not before: Fri 31 Oct 2025 03:42:00 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2d70::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:e5:61:85:59:10:64:49:f1:ce:c0:b5:8d:c9:02:71:94:11:3d:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 03:42:00 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=682f16614ccc15396b7b57e8e9e0036ecfc5664ea01874af1dbd238df80d8654, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e0:c4:98:95:71:9e:a1:cd:97:52:12:4f:fa: 6e:2a:f7:9f:94:ab:03:31:7a:98:38:3b:36:78:a3: 57:bf:f8:fe:c8:02:c9:a0:52:77:ea:62:fc:f0:eb: 58:9e:26:1c:d9:4c:10:b4:03:ce:5b:f5:f4:1d:7a: d1:63:c1:13:1c:42:56:18:ba:a6:93:1a:f2:53:c2: f4:a3:61:ab:ce:eb:25:7a:d9:13:6f:55:f1:c8:5c: 36:1e:06:d3:74:14:c8:7b:7c:6d:41:e5:42:84:bd: 8a:c1:61:18:36:80:49:ae:4c:fd:f1:a0:e2:f8:c6: 86:63:b4:86:d8:e0:62:25:24:ba:11:58:50:07:7e: 88:4c:78:ac:aa:c4:67:83:8c:6f:8d:6c:9d:83:e0: 2f:35:92:f6:22:71:5b:af:d2:2a:65:f0:f2:fb:51: da:89:ab:d7:30:11:7c:64:b9:45:c2:c9:66:ee:ce: f1:05:d5:5b:96:1e:dc:60:7c:75:35:e3:a6:ac:c4: 10:0e:04:95:96:4d:39:df:eb:6c:b8:72:bf:c6:1a: 1a:38:26:47:7a:51:8c:3b:45:93:4a:16:7a:09:6e: 1d:b1:8e:43:c5:aa:d8:04:4b:5c:bc:f4:39:80:e7: b4:b0:86:74:f7:cf:2c:21:41:e2:db:eb:12:9c:a5: e9:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:5A:E3:17:D4:A2:04:08:2E:B1:E5:7D:44:3E:58:FB:5D:08:20:CE X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/de9d033e-92f3-4dd5-8304-b15dd3684627.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2d70::/46 Signature Algorithm: sha256WithRSAEncryption 10:77:45:aa:b7:60:94:0b:8e:05:be:06:f2:3b:53:48:af:40: 71:5a:33:2a:a1:60:18:07:7a:30:50:c0:27:a9:47:36:6a:a7: f3:40:67:a2:84:e7:f1:74:32:d1:c5:11:19:ee:03:6e:15:5b: e6:16:73:47:a3:f2:8c:70:ce:db:4b:46:d4:b5:75:1c:72:49: e5:7d:6f:05:b9:0f:66:1a:04:50:65:44:d0:d0:f3:a8:45:a1: e5:27:6f:88:22:fb:fc:b0:96:93:ee:30:1a:bf:6f:b7:e8:71: 92:70:be:08:16:ef:5f:a3:fa:aa:ee:00:69:4d:b2:66:10:d6: b1:28:d8:bd:da:13:b0:2b:59:8b:c2:98:fc:96:c1:ab:14:75: 99:0e:b5:7e:ba:43:6a:f0:3b:1b:09:29:b0:a0:20:70:62:0f: 8b:67:46:c7:97:ee:89:a0:b1:6f:41:af:b9:3a:10:aa:d5:8d: f9:c2:53:59:d0:08:31:1e:5f:89:2f:3a:6e:76:aa:8b:57:5e: 21:86:b0:10:95:3f:ee:7e:d2:78:08:76:df:0a:6f:03:8a:73: ac:85:59:02:11:f1:71:8e:b6:d5:5c:0b:c0:c6:bc:a9:63:30: cf:c8:d6:fc:fb:78:c3:c3:69:8d:a5:a9:fc:76:66:3e:c3:3f: 6d:b2:68:bb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGuVhhVkQZEnxzsC1jckCcZQRPeIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDM0MjAwWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ODJmMTY2MTRjY2MxNTM5NmI3YjU3ZThlOWUwMDM2ZWNm YzU2NjRlYTAxODc0YWYxZGJkMjM4ZGY4MGQ4NjU0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCp4MSYlXGeoc2XUhJP+m4q95+UqwMxepg4OzZ4o1e/+P7I AsmgUnfqYvzw61ieJhzZTBC0A85b9fQdetFjwRMcQlYYuqaTGvJTwvSjYavO6yV6 2RNvVfHIXDYeBtN0FMh7fG1B5UKEvYrBYRg2gEmuTP3xoOL4xoZjtIbY4GIlJLoR WFAHfohMeKyqxGeDjG+NbJ2D4C81kvYicVuv0ipl8PL7UdqJq9cwEXxkuUXCyWbu zvEF1VuWHtxgfHU146asxBAOBJWWTTnf62y4cr/GGho4Jkd6UYw7RZNKFnoJbh2x jkPFqtgES1y89DmA57SwhnT3zywhQeLb6xKcpekTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUU1rjF9SiBAguseV9RD5Y+10IIM4wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2RlOWQwMzNlLTkyZjMtNGRkNS04MzA0LWIxNWRkMzY4NDYyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAALXAwDQYJKoZIhvcNAQELBQADggEBABB3Raq3YJQLjgW+BvI7U0iv QHFaMyqhYBgHejBQwCepRzZqp/NAZ6KE5/F0MtHFERnuA24VW+YWc0ej8oxwzttL RtS1dRxySeV9bwW5D2YaBFBlRNDQ86hFoeUnb4gi+/ywlpPuMBq/b7focZJwvggW 71+j+qruAGlNsmYQ1rEo2L3aE7ArWYvCmPyWwasUdZkOtX66Q2rwOxsJKbCgIHBi D4tnRseX7omgsW9Br7k6EKrVjfnCU1nQCDEeX4kvOm52qotXXiGGsBCVP+5+0ngI dt8KbwOKc6yFWQIR8XGOttVcC8DGvKljMM/I1vz7eMPDaY2lqfx2Zj7DP22yaLs= -----END CERTIFICATE-----Generated at Wed Nov 5 07:39:01 2025 by rpki-client