$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f2248d19-36b8-45ba-8005-fa02123445fd.roa File: f2248d19-36b8-45ba-8005-fa02123445fd.roa (raw, json) Hash identifier: xH3O/Rus239ykLJ0TlBCNGCJDiivnsn4l2EUrbeKYGI= Subject key identifier: 70:8D:86:5D:63:14:26:D6:69:77:6E:EE:C6:BE:CD:BE:90:8C:6A:8B Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5E7D65357AFE734DDAA5891C53BD0CC466E64FED Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f2248d19-36b8-45ba-8005-fa02123445fd.roa Signing time: Thu 30 Oct 2025 20:41:47 +0000 ROA not before: Thu 30 Oct 2025 20:41:47 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:12dc::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:7d:65:35:7a:fe:73:4d:da:a5:89:1c:53:bd:0c:c4:66:e6:4f:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 20:41:47 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=dff7e9373b32cae7ebe6ddc0e4e9c12b1c6ebf728fc048ddbc1ed46488a60b6c, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c7:e4:26:e7:fa:d4:82:38:23:d5:d4:bf:23: 4d:c3:b4:88:b4:0f:a7:c0:49:31:db:06:99:35:e3: ef:95:d9:2a:64:ca:6e:a5:d3:0d:9d:9b:e8:17:2e: 63:81:07:92:b7:8e:d1:f2:bc:08:9c:02:fb:e3:62: bd:e0:53:4d:7d:5c:3f:00:ae:58:33:ca:34:06:98: 6f:fb:cb:ad:4b:e4:6e:a2:1a:d8:f6:0b:94:ab:27: 45:fc:21:e3:62:8b:b1:5f:c2:7d:1c:e3:73:7c:db: 0d:b7:6b:70:31:6b:f3:00:69:88:8a:4e:23:6f:e7: fe:af:9b:1e:7f:e2:21:ed:b4:74:f7:63:7d:92:12: de:16:eb:30:6a:ae:06:e4:4a:a1:84:3a:8e:4a:cf: fd:70:73:93:7d:3d:be:e0:e3:dd:91:4d:a8:d7:90: c6:ce:eb:b5:61:6e:39:37:7a:12:30:0e:aa:e6:9a: 51:06:1d:46:9f:c7:0a:3b:a2:fa:6d:0c:7a:ee:05: 35:8a:b1:79:ce:5f:80:ae:1c:b0:ce:d1:f1:f2:45: 93:cd:2b:eb:12:a2:1c:16:22:95:5f:3e:89:43:20: e5:f3:8d:cc:7b:9b:a9:f4:35:c5:00:6f:1c:ba:79: 0d:e5:6e:8a:73:18:1f:5c:dd:ba:5f:97:9e:94:88: 86:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:8D:86:5D:63:14:26:D6:69:77:6E:EE:C6:BE:CD:BE:90:8C:6A:8B X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f2248d19-36b8-45ba-8005-fa02123445fd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:12dc::/47 Signature Algorithm: sha256WithRSAEncryption 07:2c:80:65:15:26:9b:49:65:71:fd:3a:b1:43:d3:b6:7e:67: 3f:87:c1:67:e0:e8:65:fc:fd:f9:81:80:f9:14:c2:5e:62:a1: 4c:28:9a:2f:75:ca:41:c2:95:8d:cf:3a:4a:ae:b0:1c:8f:a9: 77:bd:da:63:d7:1d:d5:f1:b8:03:32:16:ac:9b:68:51:1d:e7: 69:df:a1:b4:c3:07:b1:1f:db:86:d1:ed:07:4b:c6:68:f4:40: f4:9d:8b:85:ee:8c:93:21:bf:8c:84:95:7a:08:27:c7:7d:57: de:ea:e9:c1:ff:0d:26:04:04:61:8f:e3:70:c0:d9:1d:2f:ba: a4:19:ef:04:6f:ea:7e:7d:cf:94:0e:bc:5f:85:73:ad:e2:f1: 5d:5c:a0:b3:83:f1:16:21:59:b7:f0:91:c9:9f:90:c0:48:7e: 88:0b:e9:1f:c5:3f:00:71:a7:5b:35:c3:6a:06:dc:e0:fd:ee: 7d:8d:ac:af:cd:65:91:d1:86:ec:70:cc:87:b2:ca:58:05:de: 58:fb:bd:55:02:2b:94:45:c8:6b:d6:27:b7:37:2e:d0:65:08: 5b:1a:1a:e2:30:66:16:35:ab:41:da:e4:cb:56:57:c1:63:98: d9:41:69:27:98:f2:19:84:22:ae:28:d0:2e:86:1b:6c:82:14: 73:ed:01:f0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXn1lNXr+c03apYkcU70MxGbmT+0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjA0MTQ3WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZmY3ZTkzNzNiMzJjYWU3ZWJlNmRkYzBlNGU5YzEyYjFj NmViZjcyOGZjMDQ4ZGRiYzFlZDQ2NDg4YTYwYjZjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWx+Qm5/rUgjgj1dS/I03DtIi0D6fASTHbBpk14++V2Spk ym6l0w2dm+gXLmOBB5K3jtHyvAicAvvjYr3gU019XD8ArlgzyjQGmG/7y61L5G6i Gtj2C5SrJ0X8IeNii7Ffwn0c43N82w23a3Axa/MAaYiKTiNv5/6vmx5/4iHttHT3 Y32SEt4W6zBqrgbkSqGEOo5Kz/1wc5N9Pb7g492RTajXkMbO67Vhbjk3ehIwDqrm mlEGHUafxwo7ovptDHruBTWKsXnOX4CuHLDO0fHyRZPNK+sSohwWIpVfPolDIOXz jcx7m6n0NcUAbxy6eQ3lbopzGB9c3bpfl56UiIZfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcI2GXWMUJtZpd27uxr7NvpCMaoswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2YyMjQ4ZDE5LTM2YjgtNDViYS04MDA1LWZhMDIxMjM0NDVmZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAEtwwDQYJKoZIhvcNAQELBQADggEBAAcsgGUVJptJZXH9OrFD07Z+ Zz+HwWfg6GX8/fmBgPkUwl5ioUwomi91ykHClY3POkqusByPqXe92mPXHdXxuAMy FqybaFEd52nfobTDB7Ef24bR7QdLxmj0QPSdi4XujJMhv4yElXoIJ8d9V97q6cH/ DSYEBGGP43DA2R0vuqQZ7wRv6n59z5QOvF+Fc63i8V1coLOD8RYhWbfwkcmfkMBI fogL6R/FPwBxp1s1w2oG3OD97n2NrK/NZZHRhuxwzIeyylgF3lj7vVUCK5RFyGvW J7c3LtBlCFsaGuIwZhY1q0Ha5MtWV8FjmNlBaSeY8hmEIq4o0C6GG2yCFHPtAfA= -----END CERTIFICATE-----Generated at Wed Nov 5 07:41:11 2025 by rpki-client