$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/e03e11f4-834a-4877-8c29-e0df3df1f959.roa File: e03e11f4-834a-4877-8c29-e0df3df1f959.roa (raw, json) Hash identifier: yyTBetgsBtA1QU1KjJV6ebDKT3VWeq2Iu4KQtOfwMpU= Subject key identifier: C7:06:55:8F:37:97:48:3E:40:D5:31:AE:0C:04:B9:14:E8:84:0B:D4 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 602C30AC5BF00D0A4740CC56A6A73AC38FEFC3F8 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/e03e11f4-834a-4877-8c29-e0df3df1f959.roa Signing time: Fri 31 Oct 2025 07:09:57 +0000 ROA not before: Fri 31 Oct 2025 07:09:57 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3fd0::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:2c:30:ac:5b:f0:0d:0a:47:40:cc:56:a6:a7:3a:c3:8f:ef:c3:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 07:09:57 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=68fdee85b00575c51b2ef57cd68aa6a69e9be5a817e0a1552cb759d24b52772f, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:89:77:c3:e7:2c:86:a7:d6:ef:62:5f:fa:70: 74:f8:3d:73:32:40:1d:c7:b7:da:00:29:65:f5:fb: b9:7d:37:91:5d:ab:5e:93:cd:0a:7d:95:95:51:4d: b4:e3:62:a7:d3:04:33:21:55:24:24:ee:34:db:8a: a5:a6:50:4c:53:9d:f6:39:37:05:15:58:76:c9:27: 18:78:1f:2e:d1:44:79:2d:27:30:7b:18:91:8a:b5: d8:fa:03:a2:14:1b:cb:fa:f7:66:99:74:33:fd:66: 8c:98:c6:20:83:db:f8:ac:b0:10:62:b9:51:9b:47: 52:fa:55:13:7e:ad:27:26:5b:3e:1a:aa:40:f2:db: 2f:d4:ae:7e:99:82:92:49:20:f8:63:6f:c4:ea:a2: 0a:80:a2:1b:6b:fd:3a:0b:1d:df:d9:d5:07:44:f9: be:37:58:65:cb:10:37:09:ff:e0:60:89:f9:85:ca: de:f7:bb:24:fd:68:0d:4a:4a:b5:2d:9c:45:68:c4: bf:06:47:82:9c:4e:39:3d:63:22:e5:72:64:9b:d6: d6:c9:6d:00:62:00:b8:61:36:a7:36:a8:88:da:50: 16:6f:48:0a:38:4d:94:bf:cd:60:b8:a2:15:7c:90: 6d:92:40:11:ec:bc:55:f4:88:07:e4:f0:fe:50:d8: ca:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:06:55:8F:37:97:48:3E:40:D5:31:AE:0C:04:B9:14:E8:84:0B:D4 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/e03e11f4-834a-4877-8c29-e0df3df1f959.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3fd0::/44 Signature Algorithm: sha256WithRSAEncryption 3b:cb:70:be:89:ee:b1:6c:3e:a3:6c:5e:23:ee:03:a8:55:c7: cb:ff:78:6b:23:7f:63:38:06:9f:1a:90:78:26:ee:02:99:5b: 25:59:c9:37:a2:a0:bd:6b:58:dc:da:74:23:1d:0d:d2:c4:3d: 0e:2f:05:28:4d:9b:a6:0e:cd:4c:b7:e4:8c:ef:d9:8d:52:26: 28:29:cf:5d:18:64:e0:93:17:fe:52:e5:a3:b6:5b:eb:89:90: 42:d9:ba:83:4f:7f:3b:23:39:77:62:38:40:a4:89:f5:43:30: fe:6e:18:0a:7e:cc:6f:3e:47:7c:35:54:f7:89:e3:aa:9e:7b: d2:98:eb:96:c6:02:0d:d1:72:22:0b:b2:d5:be:32:08:15:b1: fb:5f:dd:39:61:1a:d7:33:0e:dd:4e:b5:af:9d:5b:0e:86:2d: 84:10:0e:ba:1a:60:13:af:f7:46:87:b9:26:6c:ba:5a:87:ec: d4:4e:3e:4e:bf:0e:6a:df:b3:9d:1e:d8:ff:d6:05:84:a5:f0: 4d:92:0f:9a:00:fd:8f:18:69:48:72:19:7e:a9:de:5b:d9:4b: b4:41:4f:40:1e:9d:82:b6:99:21:fc:af:69:95:02:f8:fd:99: a4:46:b1:7f:4f:65:94:e7:bc:5a:f3:2b:ef:b6:5e:b2:ba:9f: c5:e5:73:bb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYCwwrFvwDQpHQMxWpqc6w4/vw/gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDcwOTU3WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2OGZkZWU4NWIwMDU3NWM1MWIyZWY1N2NkNjhhYTZhNjll OWJlNWE4MTdlMGExNTUyY2I3NTlkMjRiNTI3NzJmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDiiXfD5yyGp9bvYl/6cHT4PXMyQB3Ht9oAKWX1+7l9N5Fd q16TzQp9lZVRTbTjYqfTBDMhVSQk7jTbiqWmUExTnfY5NwUVWHbJJxh4Hy7RRHkt JzB7GJGKtdj6A6IUG8v692aZdDP9ZoyYxiCD2/issBBiuVGbR1L6VRN+rScmWz4a qkDy2y/Urn6ZgpJJIPhjb8TqogqAohtr/ToLHd/Z1QdE+b43WGXLEDcJ/+BgifmF yt73uyT9aA1KSrUtnEVoxL8GR4KcTjk9YyLlcmSb1tbJbQBiALhhNqc2qIjaUBZv SAo4TZS/zWC4ohV8kG2SQBHsvFX0iAfk8P5Q2Mp9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUxwZVjzeXSD5A1TGuDAS5FOiEC9QwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2UwM2UxMWY0LTgzNGEtNDg3Ny04YzI5LWUwZGYzZGYxZjk1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAJAAP9AwDQYJKoZIhvcNAQELBQADggEBADvLcL6J7rFsPqNsXiPuA6hV x8v/eGsjf2M4Bp8akHgm7gKZWyVZyTeioL1rWNzadCMdDdLEPQ4vBShNm6YOzUy3 5Izv2Y1SJigpz10YZOCTF/5S5aO2W+uJkELZuoNPfzsjOXdiOECkifVDMP5uGAp+ zG8+R3w1VPeJ46qee9KY65bGAg3RciILstW+MggVsftf3TlhGtczDt1Ota+dWw6G LYQQDroaYBOv90aHuSZsulqH7NROPk6/Dmrfs50e2P/WBYSl8E2SD5oA/Y8YaUhy GX6p3lvZS7RBT0AenYK2mSH8r2mVAvj9maRGsX9PZZTnvFrzK++2XrK6n8Xlc7s= -----END CERTIFICATE-----Generated at Wed Nov 5 07:46:04 2025 by rpki-client