$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/def71c0a-3587-4fa8-8008-944bf67a91f7.roa File: def71c0a-3587-4fa8-8008-944bf67a91f7.roa (raw, json) Hash identifier: A91kJ0+mSQMsU3JBRnwyjOv08NybY3+s13jw/2AG0X8= Subject key identifier: BD:78:51:A1:F1:1B:96:D7:1B:51:FB:75:75:33:A1:72:26:A3:D9:FA Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 60884D28B466AB43B11FA7F554961CEFE76A6FD4 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/def71c0a-3587-4fa8-8008-944bf67a91f7.roa Signing time: Thu 30 Oct 2025 22:08:46 +0000 ROA not before: Thu 30 Oct 2025 22:08:46 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1b1a::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:88:4d:28:b4:66:ab:43:b1:1f:a7:f5:54:96:1c:ef:e7:6a:6f:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 22:08:46 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=4f47cdef81f84afc516a108f1fe8b2d47f12074e9bd13ce52be854e6651a85b8, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:87:20:c4:4a:ee:3c:90:c9:fa:93:5d:70:07: 3a:65:29:9b:e5:d0:f6:23:0f:eb:2c:80:2c:9a:4e: 64:64:68:2a:01:54:8a:c6:54:14:86:a0:49:46:d6: 43:32:85:82:42:d1:c6:8f:d0:1c:e5:8e:bf:93:7c: b7:3d:cc:cc:2b:e4:0c:ea:c0:a8:bd:36:c3:76:c0: 95:3b:76:2d:7a:74:df:69:91:3e:fa:a1:f3:6d:cb: ed:32:bf:2a:63:15:f8:02:4f:8e:cf:ce:81:5e:ec: 71:7b:8f:76:84:d2:15:4d:7a:1f:89:45:23:9d:ba: 4f:34:58:67:fd:06:a7:f3:d0:1f:20:95:7b:f4:35: 68:ff:c1:67:ef:da:5e:d4:e7:84:ef:34:c3:1b:4d: 04:04:4f:0a:66:22:00:a4:f1:49:3e:c2:87:89:bf: 67:da:e2:7b:8e:6f:c8:ae:52:82:04:3e:b1:24:53: 6b:c1:e2:5c:7a:35:f4:b7:fa:62:ab:9b:73:1f:44: 77:81:71:bb:49:bb:e9:16:e5:3d:0b:65:19:c0:4d: fb:4c:c5:08:f9:d3:d0:5c:ca:13:6d:bc:40:4d:fc: 25:d7:48:52:a6:56:f7:29:26:03:5e:8e:8c:29:05: 65:a6:e1:dc:d7:9e:eb:af:70:4a:b8:10:37:c1:53: 76:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:78:51:A1:F1:1B:96:D7:1B:51:FB:75:75:33:A1:72:26:A3:D9:FA X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/def71c0a-3587-4fa8-8008-944bf67a91f7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1b1a::/47 Signature Algorithm: sha256WithRSAEncryption 3c:aa:fa:38:8b:48:83:95:94:06:43:52:27:1a:01:99:f8:07: 55:74:96:a3:e7:6f:fc:16:68:cd:6d:c2:67:38:25:d9:f6:b1: b1:08:4a:2a:10:d8:83:b6:84:5f:ac:96:4e:a5:9d:de:79:10: f5:af:d0:ca:88:2c:d7:2d:bb:a0:3d:b4:9b:ee:85:11:70:24: bf:ec:fd:da:f0:87:ec:73:bd:7d:9a:74:f6:9a:37:70:2a:2d: 03:5c:ea:e8:52:cf:be:15:c9:b0:67:71:58:52:26:dd:6b:c0: 77:e5:35:a8:ec:cc:28:ac:00:2f:80:d9:86:2e:1b:02:3c:ae: c9:e2:cc:d9:f6:86:79:43:bd:f3:4b:0c:78:77:f1:82:41:75: 46:26:07:ab:51:62:d0:84:ad:9a:59:73:d0:b5:a1:cd:01:fa: 31:2b:cd:da:4a:c5:4d:83:e3:2e:07:21:40:8d:a7:b9:1d:69: 2d:44:76:4e:e4:6c:70:1f:c0:fb:12:88:7a:e3:8d:c0:a0:87: a2:b3:9a:6b:6c:38:27:25:74:02:7c:56:dc:dc:76:36:26:ad: 09:a2:98:cc:69:c7:30:ed:51:a3:9d:f8:cd:86:62:71:84:9e: f3:25:18:a9:a1:d5:db:4a:d1:c3:70:96:44:2b:c1:5e:60:5a: d8:2b:3f:06 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYIhNKLRmq0OxH6f1VJYc7+dqb9QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjIwODQ2WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZjQ3Y2RlZjgxZjg0YWZjNTE2YTEwOGYxZmU4YjJkNDdm MTIwNzRlOWJkMTNjZTUyYmU4NTRlNjY1MWE4NWI4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmhyDESu48kMn6k11wBzplKZvl0PYjD+ssgCyaTmRkaCoB VIrGVBSGoElG1kMyhYJC0caP0Bzljr+TfLc9zMwr5AzqwKi9NsN2wJU7di16dN9p kT76ofNty+0yvypjFfgCT47PzoFe7HF7j3aE0hVNeh+JRSOduk80WGf9Bqfz0B8g lXv0NWj/wWfv2l7U54TvNMMbTQQETwpmIgCk8Uk+woeJv2fa4nuOb8iuUoIEPrEk U2vB4lx6NfS3+mKrm3MfRHeBcbtJu+kW5T0LZRnATftMxQj509BcyhNtvEBN/CXX SFKmVvcpJgNejowpBWWm4dzXnuuvcEq4EDfBU3a7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUvXhRofEbltcbUft1dTOhciaj2fowHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2RlZjcxYzBhLTM1ODctNGZhOC04MDA4LTk0NGJmNjdhOTFmNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAGxowDQYJKoZIhvcNAQELBQADggEBADyq+jiLSIOVlAZDUicaAZn4 B1V0lqPnb/wWaM1twmc4Jdn2sbEISioQ2IO2hF+slk6lnd55EPWv0MqILNctu6A9 tJvuhRFwJL/s/drwh+xzvX2adPaaN3AqLQNc6uhSz74VybBncVhSJt1rwHflNajs zCisAC+A2YYuGwI8rsnizNn2hnlDvfNLDHh38YJBdUYmB6tRYtCErZpZc9C1oc0B +jErzdpKxU2D4y4HIUCNp7kdaS1Edk7kbHAfwPsSiHrjjcCgh6KzmmtsOCcldAJ8 VtzcdjYmrQmimMxpxzDtUaOd+M2GYnGEnvMlGKmh1dtK0cNwlkQrwV5gWtgrPwY= -----END CERTIFICATE-----Generated at Wed Nov 5 05:36:27 2025 by rpki-client