$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f2795f51-4535-478e-a3e7-3c503554310d.roa File: f2795f51-4535-478e-a3e7-3c503554310d.roa (raw, json) Hash identifier: GnkZ2XJF+Bxzdiq5mUHTCVkk0u+pg8MsbL83+WjBfus= Subject key identifier: AF:8D:32:08:BF:45:F3:7A:EE:60:40:E8:1C:E4:40:E2:4F:AE:EB:9C Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 27B29D0FEB3F4B3C6393F94ACBCA427523849717 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f2795f51-4535-478e-a3e7-3c503554310d.roa Signing time: Thu 30 Oct 2025 23:42:20 +0000 ROA not before: Thu 30 Oct 2025 23:42:20 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2f04::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:b2:9d:0f:eb:3f:4b:3c:63:93:f9:4a:cb:ca:42:75:23:84:97:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 23:42:20 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=b0a7acc3ac5af03c19fc9426db1902594644ca1d082f8b93f362ed9a8044fb89, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:11:77:ed:35:fd:58:c6:94:35:de:d0:8b:ba: 32:b0:6a:43:2c:a9:7a:1b:bd:c7:b1:97:11:4e:dc: 6d:31:dd:4a:4f:e2:df:ee:98:c6:0a:ad:df:4e:d3: 42:be:fb:6a:97:14:c3:7a:48:a4:f6:51:cf:a0:8e: 34:ef:b7:fb:b8:2b:53:ca:3b:d6:02:db:2a:f6:3a: 34:5a:73:1f:f8:e6:f0:1b:a6:cf:4c:18:09:92:ad: 27:75:94:d1:96:98:90:83:87:ef:22:4c:93:a8:a5: d6:6b:b1:d2:43:48:db:24:52:10:76:b7:86:3e:1e: af:ba:9a:51:ee:c3:ff:a1:cc:6d:b7:78:78:7b:75: b8:63:34:fc:07:12:74:64:05:4a:cd:a8:47:1e:57: 21:50:a8:c8:6b:25:47:19:88:81:a3:fc:e1:68:07: ad:a6:9a:c6:a8:14:12:3e:2c:8e:8a:4d:99:7c:8b: 40:3b:88:94:ba:d0:f4:2a:74:57:c3:6e:bf:0b:33: ad:42:b5:f3:18:3d:45:8a:d2:d2:07:f8:6d:9b:d7: 1e:a9:38:84:e4:33:fa:52:74:17:da:93:94:9a:14: 20:7d:84:94:6e:18:d2:32:4d:26:b2:c2:e9:53:f2: c6:b9:50:46:76:5e:95:67:e0:f8:57:c6:9f:78:42: 1c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:8D:32:08:BF:45:F3:7A:EE:60:40:E8:1C:E4:40:E2:4F:AE:EB:9C X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f2795f51-4535-478e-a3e7-3c503554310d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2f04::/47 Signature Algorithm: sha256WithRSAEncryption c1:a0:08:ad:8f:bf:ae:30:28:b6:59:d5:b6:93:82:54:42:e6: 46:05:b5:a5:22:97:07:f1:a8:9b:98:c4:96:a6:8a:cf:fc:bd: 86:6d:69:e1:28:d0:b3:d1:88:d1:f5:78:c2:74:65:88:2d:e0: 12:38:bf:23:80:9f:6f:c2:bd:67:0d:f8:f8:4f:1c:30:e8:38: bf:68:67:04:f1:83:93:04:e8:e8:e4:93:94:f9:99:da:d0:37: 43:ce:3e:50:98:a7:c3:75:20:18:23:a2:f4:2d:1d:cb:94:d0: 42:f3:a6:a8:41:2e:75:7f:a9:a4:85:f0:0d:64:db:db:e1:45: 5e:38:95:3d:1f:f8:fd:44:58:a0:81:cb:d7:ec:ef:1f:e4:97: e6:4a:5a:61:1e:c6:d9:15:d7:89:4e:1f:4d:c0:20:3b:5f:d2: dc:ec:e4:1a:54:2c:84:15:36:c1:27:8a:b3:f1:59:d1:c1:74: 50:7a:39:93:4f:db:6e:3e:c0:e9:44:96:7e:37:6c:09:e9:68: 29:01:1b:22:05:5c:0c:8c:53:37:01:f4:07:16:0d:01:92:11: 54:9a:32:ee:5c:2c:93:f4:32:4c:77:15:28:e8:d0:93:70:27: 12:59:0c:d9:9e:56:bb:27:70:53:d1:6f:b6:08:d1:15:22:46: c3:ef:93:f0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJ7KdD+s/Szxjk/lKy8pCdSOElxcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjM0MjIwWhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMGE3YWNjM2FjNWFmMDNjMTlmYzk0MjZkYjE5MDI1OTQ2 NDRjYTFkMDgyZjhiOTNmMzYyZWQ5YTgwNDRmYjg5MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8EXftNf1YxpQ13tCLujKwakMsqXobvcexlxFO3G0x3UpP 4t/umMYKrd9O00K++2qXFMN6SKT2Uc+gjjTvt/u4K1PKO9YC2yr2OjRacx/45vAb ps9MGAmSrSd1lNGWmJCDh+8iTJOopdZrsdJDSNskUhB2t4Y+Hq+6mlHuw/+hzG23 eHh7dbhjNPwHEnRkBUrNqEceVyFQqMhrJUcZiIGj/OFoB62mmsaoFBI+LI6KTZl8 i0A7iJS60PQqdFfDbr8LM61CtfMYPUWK0tIH+G2b1x6pOITkM/pSdBfak5SaFCB9 hJRuGNIyTSaywulT8sa5UEZ2XpVn4PhXxp94QhyhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUr40yCL9F83ruYEDoHORA4k+u65wwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2YyNzk1ZjUxLTQ1MzUtNDc4ZS1hM2U3LTNjNTAzNTU0MzEwZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAALwQwDQYJKoZIhvcNAQELBQADggEBAMGgCK2Pv64wKLZZ1baTglRC 5kYFtaUilwfxqJuYxJamis/8vYZtaeEo0LPRiNH1eMJ0ZYgt4BI4vyOAn2/CvWcN +PhPHDDoOL9oZwTxg5ME6Ojkk5T5mdrQN0POPlCYp8N1IBgjovQtHcuU0ELzpqhB LnV/qaSF8A1k29vhRV44lT0f+P1EWKCBy9fs7x/kl+ZKWmEextkV14lOH03AIDtf 0tzs5BpULIQVNsEnirPxWdHBdFB6OZNP224+wOlEln43bAnpaCkBGyIFXAyMUzcB 9AcWDQGSEVSaMu5cLJP0Mkx3FSjo0JNwJxJZDNmeVrsncFPRb7YI0RUiRsPvk/A= -----END CERTIFICATE-----Generated at Wed Nov 5 11:07:43 2025 by rpki-client