$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f3d38170-222e-408d-8641-acc6a51acb98.roa File: f3d38170-222e-408d-8641-acc6a51acb98.roa (raw, json) Hash identifier: +ndEo/Lvoj4JCAHxsUvCkfOc/RbXSh0Rp/tnpDBtWHA= Subject key identifier: 52:41:49:41:FA:40:65:43:DD:FD:21:FA:B6:CE:53:DF:5E:6A:21:D4 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4A92B854D80AEBBDAC949F065B542BCD6D1C25BF Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f3d38170-222e-408d-8641-acc6a51acb98.roa Signing time: Fri 31 Oct 2025 00:39:55 +0000 ROA not before: Fri 31 Oct 2025 00:39:55 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:369e::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:92:b8:54:d8:0a:eb:bd:ac:94:9f:06:5b:54:2b:cd:6d:1c:25:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 00:39:55 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=743aea28f5f176978791024cea7fd31c4a43a8a26028b4380f15fb9beb471855, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:28:50:74:61:4b:fb:8c:c4:cb:48:83:d4:6c: a2:c8:22:1c:41:ac:af:71:06:d7:36:e7:c2:f9:c7: 0a:68:dc:17:d3:af:ce:f7:f8:5c:0b:c4:ad:cf:5e: 03:07:21:2f:97:dd:25:94:d5:7b:12:18:35:e9:dc: ba:d9:96:7d:5d:22:8b:00:c7:6e:d0:27:4d:3d:29: 17:75:f7:d1:c1:65:67:df:c1:4c:6b:77:90:a7:31: ba:7a:31:cd:ed:bd:a5:ee:e5:ed:49:92:16:50:91: 79:dc:cd:02:18:e9:2d:33:3d:84:e1:89:6b:6c:4e: 3e:de:5f:9a:b2:32:4e:76:97:30:0b:45:e6:28:d6: 30:d2:9c:f0:36:ac:da:1d:e2:cf:c7:a8:2c:dd:44: ec:21:c6:ee:ba:0c:ca:79:16:a0:37:a1:80:7d:2d: 47:28:01:99:f1:d3:c5:f4:da:d7:e4:be:98:b5:d8: 51:7e:f4:75:52:1e:98:cc:78:3f:dc:2e:12:a2:b8: 62:de:37:41:6f:95:f5:2b:f4:96:0e:81:d7:6d:74: 1f:e3:5e:16:5f:3c:2d:43:18:c7:7c:ad:e9:aa:8e: fb:cd:96:9b:23:9c:ad:3a:96:e2:ad:b0:f7:d1:6e: 11:97:59:70:42:3f:74:6e:61:69:6f:c9:c1:f4:5a: 0f:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:41:49:41:FA:40:65:43:DD:FD:21:FA:B6:CE:53:DF:5E:6A:21:D4 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f3d38170-222e-408d-8641-acc6a51acb98.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:369e::/47 Signature Algorithm: sha256WithRSAEncryption 08:a1:63:3a:be:65:62:7b:19:8f:fc:90:1d:db:e2:cc:0a:79: 02:32:ad:54:21:5f:92:c5:9f:81:6d:01:32:72:29:4e:ac:db: 3a:bd:33:4f:8a:f3:b2:70:ff:e1:0c:ff:ee:af:eb:82:2c:0f: 28:1a:51:c8:d3:ff:3e:69:4a:36:21:f5:ab:a5:e5:40:df:ce: b2:65:14:70:2c:4a:19:16:7c:e4:68:ae:9d:bc:d0:04:9b:ba: 47:14:f8:30:3a:4f:5f:94:32:a8:f9:b9:2c:49:e7:bc:6a:ff: e4:ab:0d:38:74:14:d3:eb:48:80:d4:08:33:54:19:9b:e0:b3: 4e:88:b1:6a:f7:29:b7:a0:ef:1d:cf:74:f4:54:cd:89:d7:1a: 33:f1:37:ea:a8:b9:f3:46:13:da:7c:67:b9:e8:4b:62:81:bc: ab:a1:e0:da:17:ef:c4:9a:57:12:65:b5:66:7b:ae:29:ee:0b: 2c:d9:ae:e6:9b:e6:dd:0b:c3:77:ec:87:57:38:ba:fb:4c:2c: bc:84:81:a1:5e:77:64:4e:d9:05:ba:76:d4:73:ba:c6:c5:d2: 4e:2a:76:19:94:c4:29:96:d5:0e:5a:15:4e:c4:28:21:c2:92: fc:eb:54:26:33:fb:b1:59:91:72:ce:ef:e0:93:d2:37:f9:01: 31:97:f5:b8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSpK4VNgK672slJ8GW1QrzW0cJb8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDAzOTU1WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NDNhZWEyOGY1ZjE3Njk3ODc5MTAyNGNlYTdmZDMxYzRh NDNhOGEyNjAyOGI0MzgwZjE1ZmI5YmViNDcxODU1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVKFB0YUv7jMTLSIPUbKLIIhxBrK9xBtc258L5xwpo3BfT r873+FwLxK3PXgMHIS+X3SWU1XsSGDXp3LrZln1dIosAx27QJ009KRd199HBZWff wUxrd5CnMbp6Mc3tvaXu5e1JkhZQkXnczQIY6S0zPYThiWtsTj7eX5qyMk52lzAL ReYo1jDSnPA2rNod4s/HqCzdROwhxu66DMp5FqA3oYB9LUcoAZnx08X02tfkvpi1 2FF+9HVSHpjMeD/cLhKiuGLeN0FvlfUr9JYOgddtdB/jXhZfPC1DGMd8remqjvvN lpsjnK06luKtsPfRbhGXWXBCP3RuYWlvycH0Wg+LAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUkFJQfpAZUPd/SH6ts5T315qIdQwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2YzZDM4MTcwLTIyMmUtNDA4ZC04NjQxLWFjYzZhNTFhY2I5OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAANp4wDQYJKoZIhvcNAQELBQADggEBAAihYzq+ZWJ7GY/8kB3b4swK eQIyrVQhX5LFn4FtATJyKU6s2zq9M0+K87Jw/+EM/+6v64IsDygaUcjT/z5pSjYh 9aul5UDfzrJlFHAsShkWfORorp280ASbukcU+DA6T1+UMqj5uSxJ57xq/+SrDTh0 FNPrSIDUCDNUGZvgs06IsWr3Kbeg7x3PdPRUzYnXGjPxN+qoufNGE9p8Z7noS2KB vKuh4NoX78SaVxJltWZ7rinuCyzZruab5t0Lw3fsh1c4uvtMLLyEgaFed2RO2QW6 dtRzusbF0k4qdhmUxCmW1Q5aFU7EKCHCkvzrVCYz+7FZkXLO7+CT0jf5ATGX9bg= -----END CERTIFICATE-----Generated at Wed Nov 5 07:40:28 2025 by rpki-client