$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ed819645-dc21-4aaf-974a-eb61c322264c.roa File: ed819645-dc21-4aaf-974a-eb61c322264c.roa (raw, json) Hash identifier: KcYicfAB6O+31BW2qjdDxa8XYE0R8V1ySR6PJnb0Z5I= Subject key identifier: 07:E3:FF:72:BB:93:02:AF:99:03:8A:F1:E9:6B:37:25:E7:8C:79:66 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 57EC51EAD987256D35672A843293E61AD4581A96 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ed819645-dc21-4aaf-974a-eb61c322264c.roa Signing time: Fri 31 Oct 2025 03:06:59 +0000 ROA not before: Fri 31 Oct 2025 03:06:59 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1bfc::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:ec:51:ea:d9:87:25:6d:35:67:2a:84:32:93:e6:1a:d4:58:1a:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 03:06:59 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=6843460a4b6a233f41422b731817c78cabcb20b7f63ea5ae754927585da94b5b, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c6:59:96:d6:cc:d3:84:f9:02:26:13:9b:53: 81:16:e9:7e:36:ce:70:02:5e:27:69:a4:26:bb:44: 00:ee:8f:03:3a:28:88:30:07:2d:00:20:d2:19:d6: 30:2d:6a:16:2f:f2:fa:cb:19:2b:32:e9:d4:19:ec: 7f:24:46:04:8a:34:c0:ba:ce:25:f5:cf:19:62:c6: 5a:40:10:e5:fc:64:ba:94:ce:4e:96:b6:3c:73:b1: c3:aa:e9:d5:e4:66:5c:b0:c2:ff:2e:15:b7:aa:05: 3b:2f:95:13:98:01:1c:b9:d5:a4:de:13:9a:1f:ab: bf:54:40:5b:d8:58:5e:54:13:a0:49:ce:82:fa:2b: 54:aa:6a:bd:a2:d2:c5:15:db:59:6b:18:6f:e9:07: aa:0a:b7:d4:27:d0:3d:d4:51:44:c1:92:68:d1:8c: 54:6a:ad:de:83:c0:68:b3:93:e9:37:ba:99:77:50: 87:b5:bf:2a:7a:6f:a3:67:3c:c4:27:42:87:e8:1e: 32:09:83:89:d6:d3:98:51:70:77:95:58:b7:ad:82: b4:3d:e2:53:05:88:29:68:58:b4:0f:e4:45:f5:62: 15:cf:a4:c8:ca:6e:e2:73:c8:92:86:7d:39:41:ab: 7e:47:6c:d6:93:c1:6e:53:89:8d:0a:5a:ad:79:f2: ce:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:E3:FF:72:BB:93:02:AF:99:03:8A:F1:E9:6B:37:25:E7:8C:79:66 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ed819645-dc21-4aaf-974a-eb61c322264c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1bfc::/46 Signature Algorithm: sha256WithRSAEncryption 8e:1a:a6:67:e2:61:62:58:ad:8f:7a:3b:5f:72:12:37:81:d1: 58:fe:a5:ff:91:db:80:cf:c4:1e:36:d6:7b:6f:31:4b:f3:ee: b4:43:bb:6f:8a:8e:aa:a5:2f:bb:2d:d0:53:d5:13:40:35:d5: 1e:33:ef:f8:39:b4:13:71:8e:7f:52:ae:45:bc:69:46:b1:9f: 4a:b6:53:3d:09:47:76:9c:16:37:a0:64:dd:32:63:3f:cc:1c: 3e:cc:31:c7:5b:0e:90:85:7b:fe:7f:57:bf:03:f2:43:cf:6a: eb:73:2f:f2:42:bf:da:4e:94:3a:fe:d5:38:21:5c:c8:f1:50: 71:fd:0b:5a:7f:f9:4a:5f:d5:e4:7b:d7:bf:e5:f2:9f:8f:5e: fe:f8:24:28:95:2a:ba:1f:d0:48:41:e1:b6:c9:0a:fb:9d:91: fe:6e:39:83:53:f8:0d:5e:03:6a:50:67:1a:36:dc:03:75:67: a0:3d:1a:dc:fc:d1:47:6b:87:be:9b:af:24:54:53:eb:fd:76: 48:f5:22:70:5b:cc:83:b2:ff:e4:7c:f1:ca:36:34:0d:bf:20: 5e:b6:49:65:27:36:ba:c3:6e:65:72:5f:6a:7f:2b:63:5c:aa: 35:8f:47:ce:49:bc:fd:22:33:9c:3e:81:33:51:34:61:29:9e: 12:99:f4:05 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUV+xR6tmHJW01ZyqEMpPmGtRYGpYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDMwNjU5WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ODQzNDYwYTRiNmEyMzNmNDE0MjJiNzMxODE3Yzc4Y2Fi Y2IyMGI3ZjYzZWE1YWU3NTQ5Mjc1ODVkYTk0YjViMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCixlmW1szThPkCJhObU4EW6X42znACXidppCa7RADujwM6 KIgwBy0AINIZ1jAtahYv8vrLGSsy6dQZ7H8kRgSKNMC6ziX1zxlixlpAEOX8ZLqU zk6WtjxzscOq6dXkZlywwv8uFbeqBTsvlROYARy51aTeE5ofq79UQFvYWF5UE6BJ zoL6K1Sqar2i0sUV21lrGG/pB6oKt9Qn0D3UUUTBkmjRjFRqrd6DwGizk+k3upl3 UIe1vyp6b6NnPMQnQofoHjIJg4nW05hRcHeVWLetgrQ94lMFiCloWLQP5EX1YhXP pMjKbuJzyJKGfTlBq35HbNaTwW5TiY0KWq158s6zAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUB+P/cruTAq+ZA4rx6Ws3JeeMeWYwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2VkODE5NjQ1LWRjMjEtNGFhZi05NzRhLWViNjFjMzIyMjY0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAG/wwDQYJKoZIhvcNAQELBQADggEBAI4apmfiYWJYrY96O19yEjeB 0Vj+pf+R24DPxB421ntvMUvz7rRDu2+KjqqlL7st0FPVE0A11R4z7/g5tBNxjn9S rkW8aUaxn0q2Uz0JR3acFjegZN0yYz/MHD7MMcdbDpCFe/5/V78D8kPPautzL/JC v9pOlDr+1TghXMjxUHH9C1p/+Upf1eR717/l8p+PXv74JCiVKrof0EhB4bbJCvud kf5uOYNT+A1eA2pQZxo23AN1Z6A9Gtz80Udrh76bryRUU+v9dkj1InBbzIOy/+R8 8co2NA2/IF62SWUnNrrDbmVyX2p/K2NcqjWPR85JvP0iM5w+gTNRNGEpnhKZ9AU= -----END CERTIFICATE-----Generated at Wed Nov 5 05:36:47 2025 by rpki-client