$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/df8717ea-0c56-497b-9ce5-9425be3f11f4.roa File: df8717ea-0c56-497b-9ce5-9425be3f11f4.roa (raw, json) Hash identifier: qgm3eKQy6zaFyyM6disGE4KNjJInwoyoWOYezXTXLoA= Subject key identifier: D4:66:47:45:A6:3A:04:94:D2:20:9F:DE:41:79:B6:DA:71:C0:F3:A2 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 1B2C6CC371180CF6A6E8981ADC10185F0F4DDC27 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/df8717ea-0c56-497b-9ce5-9425be3f11f4.roa Signing time: Fri 31 Oct 2025 02:08:23 +0000 ROA not before: Fri 31 Oct 2025 02:08:23 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3fd0::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:2c:6c:c3:71:18:0c:f6:a6:e8:98:1a:dc:10:18:5f:0f:4d:dc:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 02:08:23 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=b4664857651ee1edb7abd48ad942a54872511673dc6e479748d788dc001d13eb, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:72:76:22:44:9d:4a:6f:82:e7:fb:43:a5:c8: bf:42:ae:f6:2e:f0:dc:db:cf:a6:a3:8e:f6:06:2c: 80:c6:a2:93:e8:66:b6:b4:0c:34:00:40:5c:e3:91: 2b:54:7c:c6:65:7b:3c:fe:0e:6a:fc:81:29:7a:17: 3a:ee:83:46:4e:06:e8:4e:ef:cb:6b:1f:1c:dd:9c: 55:24:48:d3:0c:91:7e:b9:8e:e0:0e:ff:c0:3b:5c: a0:16:94:e8:9d:1f:fd:b4:d7:54:1c:d5:df:cc:e9: c9:e8:28:5c:20:27:21:cd:47:e3:5e:d0:a6:79:4c: f0:85:c4:56:03:27:c5:9a:e9:e6:59:8f:24:84:79: e6:87:3b:bf:22:6f:c3:12:d4:82:89:22:7c:1d:78: b7:a6:6d:da:79:5c:e3:ba:f8:40:07:4b:e0:ce:dd: 0d:81:ce:9f:51:ac:9f:cd:8b:9e:56:06:f0:b3:93: 22:dd:f5:5c:84:98:88:4b:31:88:86:7c:1e:1d:94: e1:a6:9d:12:02:17:b1:40:af:63:99:d7:84:46:84: cd:d4:95:3a:2b:59:52:8e:d5:b2:4a:08:59:a0:dd: fc:2d:75:8e:f8:41:f9:55:b6:3d:62:6e:00:c8:de: 01:ea:e6:47:2f:86:f4:4a:56:44:eb:6c:3a:fc:30: 6b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:66:47:45:A6:3A:04:94:D2:20:9F:DE:41:79:B6:DA:71:C0:F3:A2 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/df8717ea-0c56-497b-9ce5-9425be3f11f4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3fd0::/47 Signature Algorithm: sha256WithRSAEncryption 11:b8:80:fe:4d:12:b4:0d:c4:0e:c8:50:99:27:57:ca:38:58: 06:95:ca:5e:9f:52:ae:f6:21:ba:15:99:a3:20:07:86:ac:ff: b7:60:7c:94:7b:74:e8:15:c7:1f:84:77:6c:9c:c4:e7:bc:51: b4:41:0a:d4:d0:7b:b9:62:91:e8:5b:70:d9:74:6d:e6:01:63: a4:43:33:90:87:4e:75:17:bd:b2:11:80:ef:cb:44:33:2f:1f: 75:7f:d6:74:81:8d:1e:2d:8d:d8:6a:34:bf:2e:e5:d0:d0:77: 82:b0:ca:bd:75:c6:43:89:e0:64:03:36:ed:1d:be:20:01:58: 89:81:16:ae:2c:64:e1:48:02:d0:75:e6:bc:d7:1e:20:3d:3d: a2:c6:88:a0:c7:b4:7e:b3:e4:8c:24:a0:29:69:44:4d:44:9c: 80:c9:88:ea:4f:ad:a7:94:90:6c:f6:e6:cc:62:21:ce:5e:15: e6:14:58:bd:4c:37:9e:11:d0:4e:8e:df:26:6d:78:20:c8:b4: b2:e6:a9:88:22:9f:03:fa:7a:79:c0:06:09:14:7f:67:4e:27: a5:1a:e9:0b:d2:7c:3d:d8:b3:e7:82:b9:8e:1f:eb:71:83:ce: 85:dd:49:96:26:87:f7:18:fb:f0:68:59:a3:8b:e2:0a:79:ac: 5e:cf:14:91 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGyxsw3EYDPam6Jga3BAYXw9N3CcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDIwODIzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNDY2NDg1NzY1MWVlMWVkYjdhYmQ0OGFkOTQyYTU0ODcy NTExNjczZGM2ZTQ3OTc0OGQ3ODhkYzAwMWQxM2ViMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIcnYiRJ1Kb4Ln+0OlyL9CrvYu8Nzbz6ajjvYGLIDGopPo Zra0DDQAQFzjkStUfMZlezz+Dmr8gSl6Fzrug0ZOBuhO78trHxzdnFUkSNMMkX65 juAO/8A7XKAWlOidH/2011Qc1d/M6cnoKFwgJyHNR+Ne0KZ5TPCFxFYDJ8Wa6eZZ jySEeeaHO78ib8MS1IKJInwdeLembdp5XOO6+EAHS+DO3Q2Bzp9RrJ/Ni55WBvCz kyLd9VyEmIhLMYiGfB4dlOGmnRICF7FAr2OZ14RGhM3UlTorWVKO1bJKCFmg3fwt dY74QflVtj1ibgDI3gHq5kcvhvRKVkTrbDr8MGunAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU1GZHRaY6BJTSIJ/eQXm22nHA86IwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2RmODcxN2VhLTBjNTYtNDk3Yi05Y2U1LTk0MjViZTNmMTFmNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAP9AwDQYJKoZIhvcNAQELBQADggEBABG4gP5NErQNxA7IUJknV8o4 WAaVyl6fUq72IboVmaMgB4as/7dgfJR7dOgVxx+Ed2ycxOe8UbRBCtTQe7likehb cNl0beYBY6RDM5CHTnUXvbIRgO/LRDMvH3V/1nSBjR4tjdhqNL8u5dDQd4Kwyr11 xkOJ4GQDNu0dviABWImBFq4sZOFIAtB15rzXHiA9PaLGiKDHtH6z5IwkoClpRE1E nIDJiOpPraeUkGz25sxiIc5eFeYUWL1MN54R0E6O3yZteCDItLLmqYginwP6ennA BgkUf2dOJ6Ua6QvSfD3Ys+eCuY4f63GDzoXdSZYmh/cY+/BoWaOL4gp5rF7PFJE= -----END CERTIFICATE-----Generated at Wed Nov 5 09:26:45 2025 by rpki-client