$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f2b88024-b234-4837-903c-8f7c197e1b60.roa File: f2b88024-b234-4837-903c-8f7c197e1b60.roa (raw, json) Hash identifier: IE/JADNvM6dBe2ob4qeR+QY0psyKaSs0X48FOiCoWoE= Subject key identifier: 63:B7:13:CC:0D:0F:F5:70:55:45:24:79:84:F7:AD:32:0E:E2:20:7A Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0ABE26983CD3B6120E4A1D5DE6A41447D375F8DA Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f2b88024-b234-4837-903c-8f7c197e1b60.roa Signing time: Thu 30 Oct 2025 20:12:05 +0000 ROA not before: Thu 30 Oct 2025 20:12:05 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2268::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:be:26:98:3c:d3:b6:12:0e:4a:1d:5d:e6:a4:14:47:d3:75:f8:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 20:12:05 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=5092fc12fbc87d72c806d6b8f69931832150d6f77f1ba43106627135ec33ec53, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0f:e9:80:c1:c6:3e:0a:72:14:01:39:68:e4: 73:bc:2c:32:1b:49:8a:3d:d2:43:fa:51:1a:50:f1: 6f:13:a0:f3:86:c9:48:c9:c3:e8:8f:1b:3d:60:a1: bf:a3:68:86:c3:17:32:ad:ad:1a:93:20:80:8d:75: 39:f8:26:94:61:c2:4d:48:d9:da:93:c0:4b:3a:b7: 2e:d3:47:b4:1f:07:7a:90:ad:5f:8d:e9:50:d7:a8: a1:b3:44:22:dd:2c:fe:a3:f5:0e:ae:d5:57:bc:0b: 16:7d:8a:42:b3:3d:aa:74:bc:55:d9:67:13:b7:45: 25:97:b6:65:25:97:27:d5:0e:bd:4d:15:e6:e5:40: 57:3b:6b:59:33:69:d4:3a:f0:76:c6:bf:cd:dd:11: 41:51:ef:2c:de:72:74:f6:e0:41:ce:8e:c2:e0:83: 5e:b0:eb:b0:36:d7:11:a2:6c:e3:00:4c:06:b1:82: 62:38:28:2a:3b:ae:72:d3:0c:4c:9f:e6:03:bf:70: 8e:56:92:6b:d7:2d:80:00:cd:53:6e:34:b2:9f:5f: bd:93:ff:7e:ab:70:62:33:54:07:d4:ae:f8:ca:71: 47:fc:73:c5:67:fd:ae:73:75:9f:1b:f5:54:5a:d5: 5f:a5:04:c2:c3:ed:65:91:22:0a:00:20:a9:fa:77: 2b:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:B7:13:CC:0D:0F:F5:70:55:45:24:79:84:F7:AD:32:0E:E2:20:7A X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f2b88024-b234-4837-903c-8f7c197e1b60.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2268::/46 Signature Algorithm: sha256WithRSAEncryption bf:e8:23:81:33:e3:81:ee:3f:a1:36:9e:fc:eb:b6:cc:e2:8d: 5d:38:53:13:46:db:dd:97:cc:bc:8f:9c:f3:20:bc:b0:f3:45: 0f:22:a3:94:df:73:d8:f6:a9:1c:a1:5c:9f:56:9b:95:e9:eb: a6:eb:e6:cc:5a:10:dd:5c:2b:65:9f:7a:67:48:29:47:aa:53: 2f:ba:06:20:e0:d8:81:94:51:26:26:79:3c:fa:6b:b9:5f:7e: 95:bc:1a:9a:ab:73:ff:2e:d7:51:cb:81:f0:1b:4c:3d:3d:c6: 05:6e:98:91:0d:79:26:f2:f2:f6:ec:f3:13:dc:a6:00:b1:0b: f8:3e:2c:f2:af:7b:be:50:76:42:91:4d:95:99:7f:dc:3e:17: 0f:bb:7d:61:e0:16:e3:10:f2:34:da:0f:31:f1:83:3a:85:73: 74:c4:a3:80:11:16:a7:40:07:10:4c:bd:b3:cf:88:41:a2:12: 58:fb:be:5a:57:46:0d:cb:50:9c:46:2a:09:1a:60:0c:76:30: 3d:c1:07:b4:2b:62:0f:d4:16:e6:7f:bd:88:be:89:b9:cd:3e: 14:72:8e:31:de:54:a9:d0:ea:b5:6a:b6:4c:b9:44:be:dd:b5: f0:f5:bc:88:2b:63:58:8f:61:dc:06:fb:61:62:8f:59:38:22: 4e:4a:b7:fa -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCr4mmDzTthIOSh1d5qQUR9N1+NowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjAxMjA1WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MDkyZmMxMmZiYzg3ZDcyYzgwNmQ2YjhmNjk5MzE4MzIx NTBkNmY3N2YxYmE0MzEwNjYyNzEzNWVjMzNlYzUzMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9D+mAwcY+CnIUATlo5HO8LDIbSYo90kP6URpQ8W8ToPOG yUjJw+iPGz1gob+jaIbDFzKtrRqTIICNdTn4JpRhwk1I2dqTwEs6ty7TR7QfB3qQ rV+N6VDXqKGzRCLdLP6j9Q6u1Ve8CxZ9ikKzPap0vFXZZxO3RSWXtmUllyfVDr1N FeblQFc7a1kzadQ68HbGv83dEUFR7yzecnT24EHOjsLgg16w67A21xGibOMATAax gmI4KCo7rnLTDEyf5gO/cI5WkmvXLYAAzVNuNLKfX72T/36rcGIzVAfUrvjKcUf8 c8Vn/a5zdZ8b9VRa1V+lBMLD7WWRIgoAIKn6dyvlAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUY7cTzA0P9XBVRSR5hPetMg7iIHowHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2YyYjg4MDI0LWIyMzQtNDgzNy05MDNjLThmN2MxOTdlMWI2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAImgwDQYJKoZIhvcNAQELBQADggEBAL/oI4Ez44HuP6E2nvzrtszi jV04UxNG292XzLyPnPMgvLDzRQ8io5Tfc9j2qRyhXJ9Wm5Xp66br5sxaEN1cK2Wf emdIKUeqUy+6BiDg2IGUUSYmeTz6a7lffpW8Gpqrc/8u11HLgfAbTD09xgVumJEN eSby8vbs8xPcpgCxC/g+LPKve75QdkKRTZWZf9w+Fw+7fWHgFuMQ8jTaDzHxgzqF c3TEo4ARFqdABxBMvbPPiEGiElj7vlpXRg3LUJxGKgkaYAx2MD3BB7QrYg/UFuZ/ vYi+ibnNPhRyjjHeVKnQ6rVqtky5RL7dtfD1vIgrY1iPYdwG+2Fij1k4Ik5Kt/o= -----END CERTIFICATE-----Generated at Wed Nov 5 09:29:04 2025 by rpki-client