$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/df16a9a1-fcba-4b40-9ea4-7acf384850ba.roa File: df16a9a1-fcba-4b40-9ea4-7acf384850ba.roa (raw, json) Hash identifier: kWtUwsKooo0NWLkajzg6CDQg1k3Gs+w3+h2jEC1yMP0= Subject key identifier: 4D:C5:ED:DC:E5:33:1C:59:6A:B8:35:C6:E5:85:7B:8B:DF:65:1F:C3 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 689D89FBFDBF483A5342991DEC3560B3A0C8B08D Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/df16a9a1-fcba-4b40-9ea4-7acf384850ba.roa Signing time: Thu 30 Oct 2025 22:07:04 +0000 ROA not before: Thu 30 Oct 2025 22:07:04 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1ad8::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:9d:89:fb:fd:bf:48:3a:53:42:99:1d:ec:35:60:b3:a0:c8:b0:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 22:07:04 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=90e72c1867d2e76b793b5ef8ef2a3732c2124242b1c37a8d65a67faafa15b385, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ee:a4:ba:b1:7a:b6:07:c3:56:0d:2b:97:bb: e9:28:16:d4:67:5b:dd:33:56:96:5a:ce:1e:1e:fe: bc:9d:8a:47:17:db:91:94:66:8e:12:3e:0d:b9:64: 8c:69:3f:d7:b8:f4:60:a0:30:1c:57:a0:89:c5:66: da:55:31:90:e5:8c:e0:29:49:d4:83:2f:74:7c:b2: b7:ce:3d:c0:c6:49:a1:db:f8:ae:21:e9:e8:34:cf: 56:43:bb:b7:97:0a:6b:d4:59:b4:78:41:1b:3e:68: 03:92:76:f5:8b:dd:8c:5a:d1:28:28:be:29:09:12: 09:60:e2:55:8e:07:e5:41:15:1b:59:5c:ce:d0:f8: e0:5f:72:99:20:ea:ec:9a:35:7a:48:80:ae:09:f7: 59:bf:58:f1:10:ba:ad:38:69:b1:02:c8:63:93:20: c7:0d:ec:b4:85:9e:60:72:2f:73:f1:07:4a:b1:6c: 5a:f7:9c:75:1d:d8:ef:27:ca:8a:b1:5c:4d:a2:69: ed:3a:5b:74:1a:a0:c0:83:5e:a5:dc:b5:bd:54:16: 04:53:61:85:d1:03:08:8f:29:12:73:2c:e5:9b:02: c5:3f:ff:6c:65:84:67:fe:70:14:db:25:4d:3b:b3: be:fc:6b:e7:a9:6c:a6:ce:fe:57:f1:c0:7c:98:e0: 90:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:C5:ED:DC:E5:33:1C:59:6A:B8:35:C6:E5:85:7B:8B:DF:65:1F:C3 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/df16a9a1-fcba-4b40-9ea4-7acf384850ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1ad8::/47 Signature Algorithm: sha256WithRSAEncryption b9:9c:be:a6:ae:7a:b3:a7:af:67:a9:3d:68:18:f5:5d:07:fa: dd:04:d4:09:7d:91:74:2b:97:33:3d:f4:a3:d7:12:dd:5c:2d: e1:f4:4b:50:c1:c8:77:9f:4a:9f:9c:e7:b6:53:55:aa:14:4b: ec:1a:dc:d4:52:9f:42:25:80:4b:3e:19:59:47:02:86:50:75: b7:7a:27:4c:1e:92:6e:0f:b2:f1:d3:16:38:1a:76:01:f8:b1: 95:5f:d5:5c:f6:5e:ef:3d:99:d6:19:23:41:03:53:4c:05:06: 2d:c4:26:1c:a5:80:02:56:b9:d0:1f:35:97:e7:02:ce:6f:af: b6:9d:2a:7a:4e:eb:b2:57:c6:ce:fb:77:c2:75:ee:f6:d5:d5: fd:f0:7c:2d:33:a3:55:f7:4e:16:cb:79:db:3d:e7:4f:ab:05: db:be:f8:30:82:45:e7:55:8a:38:a0:8c:7a:c8:99:76:5a:96: 6a:7f:91:30:46:0d:24:2c:1e:57:63:71:dd:b6:cd:c5:6a:5b: 73:4c:99:f7:57:8d:80:12:6a:63:e5:12:be:ef:28:87:15:21: cf:d8:7f:c7:f8:8b:0a:44:53:30:60:8f:70:0f:72:69:6d:03: f4:97:23:e9:56:21:bf:0f:f3:75:f9:f4:2f:bf:f3:ed:1e:f2: 85:e9:3c:fb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUaJ2J+/2/SDpTQpkd7DVgs6DIsI0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjIwNzA0WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MGU3MmMxODY3ZDJlNzZiNzkzYjVlZjhlZjJhMzczMmMy MTI0MjQyYjFjMzdhOGQ2NWE2N2ZhYWZhMTViMzg1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDD7qS6sXq2B8NWDSuXu+koFtRnW90zVpZazh4e/rydikcX 25GUZo4SPg25ZIxpP9e49GCgMBxXoInFZtpVMZDljOApSdSDL3R8srfOPcDGSaHb +K4h6eg0z1ZDu7eXCmvUWbR4QRs+aAOSdvWL3Yxa0SgovikJEglg4lWOB+VBFRtZ XM7Q+OBfcpkg6uyaNXpIgK4J91m/WPEQuq04abECyGOTIMcN7LSFnmByL3PxB0qx bFr3nHUd2O8nyoqxXE2iae06W3QaoMCDXqXctb1UFgRTYYXRAwiPKRJzLOWbAsU/ /2xlhGf+cBTbJU07s778a+epbKbO/lfxwHyY4JBrAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUTcXt3OUzHFlquDXG5YV7i99lH8MwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2RmMTZhOWExLWZjYmEtNGI0MC05ZWE0LTdhY2YzODQ4NTBiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAGtgwDQYJKoZIhvcNAQELBQADggEBALmcvqauerOnr2epPWgY9V0H +t0E1Al9kXQrlzM99KPXEt1cLeH0S1DByHefSp+c57ZTVaoUS+wa3NRSn0IlgEs+ GVlHAoZQdbd6J0wekm4PsvHTFjgadgH4sZVf1Vz2Xu89mdYZI0EDU0wFBi3EJhyl gAJWudAfNZfnAs5vr7adKnpO67JXxs77d8J17vbV1f3wfC0zo1X3ThbLeds950+r Bdu++DCCRedVijigjHrImXZalmp/kTBGDSQsHldjcd22zcVqW3NMmfdXjYASamPl Er7vKIcVIc/Yf8f4iwpEUzBgj3APcmltA/SXI+lWIb8P83X59C+/8+0e8oXpPPs= -----END CERTIFICATE-----Generated at Wed Nov 5 16:54:40 2025 by rpki-client