$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/e67302c0-1be7-4ee6-b083-3611294e0193.roa File: e67302c0-1be7-4ee6-b083-3611294e0193.roa (raw, json) Hash identifier: DFU7N8e6QdB8nL2X9zgHMFdEtc4/ch/d79tBIY+vCM4= Subject key identifier: 59:AE:3A:BB:9B:E0:23:03:C6:B1:00:A7:75:55:48:96:51:BF:4B:FF Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 797FE25C1B35ED6DCE26A2417643E43C8215080D Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/e67302c0-1be7-4ee6-b083-3611294e0193.roa Signing time: Thu 30 Oct 2025 21:53:44 +0000 ROA not before: Thu 30 Oct 2025 21:53:44 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1984::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:7f:e2:5c:1b:35:ed:6d:ce:26:a2:41:76:43:e4:3c:82:15:08:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 21:53:44 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=403532e369a3e3984042878e914abba4d14faeedba8ba30676e8f1ffa55ecb1e, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e2:1e:d0:77:9e:d1:f2:d2:69:10:f7:b9:b0: fe:79:c7:eb:6d:e3:92:69:d6:c2:ff:05:21:6a:ce: 95:1a:5c:d3:e7:6f:ff:39:a4:6d:ff:a3:42:79:62: 05:82:f3:f3:85:12:86:89:77:e7:a3:e6:7d:c6:77: 31:bf:0c:7b:22:04:e2:42:56:ff:45:b7:e4:2c:9e: ea:9c:55:7d:cf:38:d0:d8:9c:5d:4e:58:ef:8e:15: f4:68:23:d8:35:17:83:26:a5:07:18:bf:ef:ab:a6: d0:c6:d9:ec:bf:67:6e:f5:54:d0:a3:7e:36:e1:8d: 69:18:c5:86:5e:b0:31:0b:9f:4a:ea:a1:02:18:68: 6d:ea:2b:3b:7e:55:fb:e3:64:a0:ee:32:f1:56:ed: 41:9c:2b:13:9e:04:5f:71:55:e6:46:74:64:ee:29: 1d:10:20:af:ea:9b:b8:d3:94:09:24:5a:8e:ae:48: c6:58:ea:8f:cc:f6:67:a2:3f:41:d1:b5:17:d8:ca: 8e:1d:b4:74:ad:5c:93:6e:d8:a0:02:dd:1f:01:18: 27:71:05:18:ed:cd:6c:36:ab:9e:e7:3a:ec:9d:45: 92:07:1b:20:d0:82:cd:69:3e:70:2c:69:ed:ed:a3: 59:59:19:26:ce:a8:ab:22:42:a1:ee:b7:1e:7b:f6: f0:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:AE:3A:BB:9B:E0:23:03:C6:B1:00:A7:75:55:48:96:51:BF:4B:FF X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/e67302c0-1be7-4ee6-b083-3611294e0193.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1984::/47 Signature Algorithm: sha256WithRSAEncryption 84:d2:4d:95:b8:2d:45:5b:54:42:ff:5c:3d:0f:f4:e5:92:71: fa:92:70:70:d3:ff:94:7b:c4:0b:40:fd:c9:1a:9e:b3:9a:33: 1d:c9:55:07:50:04:14:e0:45:f8:ba:7c:df:31:a7:8e:be:41: 95:bc:2f:cb:b6:73:38:62:14:72:6f:f3:7a:70:b8:e4:76:9a: d2:cf:d8:e0:b9:64:e9:6d:c7:34:d3:9d:20:be:f8:f6:4e:77: e1:26:54:90:23:c9:20:89:db:41:ba:d0:ab:a0:a3:11:70:18: a2:c4:92:fa:ac:13:0a:50:1f:e6:68:8c:09:aa:52:41:62:7e: ef:0c:ec:f6:dc:85:b2:46:c4:3d:11:d6:91:4c:e6:8b:b7:86: ee:91:05:f9:42:90:ae:c0:bf:ca:6e:cd:26:9c:68:11:10:ad: 8d:75:2f:d2:b0:47:33:2a:2f:82:c1:f7:9a:dd:80:54:10:ed: a6:fc:f8:5b:6f:83:fa:6c:c7:26:f2:c0:e6:9c:22:a1:e3:3b: ff:a3:49:ce:e4:e3:40:14:b2:b0:5b:6d:62:8e:7b:13:f4:10: b1:1f:e9:b8:b3:36:f2:27:c0:84:eb:dc:09:f5:75:de:7c:93: 08:47:40:1d:24:8a:ee:62:88:36:70:d5:4f:bc:ea:ff:32:35: b1:b8:88:16 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUeX/iXBs17W3OJqJBdkPkPIIVCA0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjE1MzQ0WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MDM1MzJlMzY5YTNlMzk4NDA0Mjg3OGU5MTRhYmJhNGQx NGZhZWVkYmE4YmEzMDY3NmU4ZjFmZmE1NWVjYjFlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCl4h7Qd57R8tJpEPe5sP55x+tt45Jp1sL/BSFqzpUaXNPn b/85pG3/o0J5YgWC8/OFEoaJd+ej5n3GdzG/DHsiBOJCVv9Ft+QsnuqcVX3PONDY nF1OWO+OFfRoI9g1F4MmpQcYv++rptDG2ey/Z271VNCjfjbhjWkYxYZesDELn0rq oQIYaG3qKzt+VfvjZKDuMvFW7UGcKxOeBF9xVeZGdGTuKR0QIK/qm7jTlAkkWo6u SMZY6o/M9meiP0HRtRfYyo4dtHStXJNu2KAC3R8BGCdxBRjtzWw2q57nOuydRZIH GyDQgs1pPnAsae3to1lZGSbOqKsiQqHutx579vC1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUWa46u5vgIwPGsQCndVVIllG/S/8wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2U2NzMwMmMwLTFiZTctNGVlNi1iMDgzLTM2MTEyOTRlMDE5My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAGYQwDQYJKoZIhvcNAQELBQADggEBAITSTZW4LUVbVEL/XD0P9OWS cfqScHDT/5R7xAtA/ckanrOaMx3JVQdQBBTgRfi6fN8xp46+QZW8L8u2czhiFHJv 83pwuOR2mtLP2OC5ZOltxzTTnSC++PZOd+EmVJAjySCJ20G60KugoxFwGKLEkvqs EwpQH+ZojAmqUkFifu8M7PbchbJGxD0R1pFM5ou3hu6RBflCkK7Av8puzSacaBEQ rY11L9KwRzMqL4LB95rdgFQQ7ab8+Ftvg/psxybywOacIqHjO/+jSc7k40AUsrBb bWKOexP0ELEf6bizNvInwITr3An1dd58kwhHQB0kiu5iiDZw1U+86v8yNbG4iBY= -----END CERTIFICATE-----Generated at Wed Nov 5 07:45:58 2025 by rpki-client