$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f4089a21-6948-4717-91d7-87a692ca9139.roa File: f4089a21-6948-4717-91d7-87a692ca9139.roa (raw, json) Hash identifier: h1R94J0suGWqvAHjibnN5Rb8jmsaZuoMeIogBwMj/OQ= Subject key identifier: 59:9E:B7:FF:9F:BC:A8:68:FC:7D:4B:20:B4:23:A7:7A:2E:35:85:1A Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 2E7F266B94FE6ACC3101DF9781694B709C743797 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f4089a21-6948-4717-91d7-87a692ca9139.roa Signing time: Fri 31 Oct 2025 00:58:06 +0000 ROA not before: Fri 31 Oct 2025 00:58:06 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:38fe::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:7f:26:6b:94:fe:6a:cc:31:01:df:97:81:69:4b:70:9c:74:37:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 00:58:06 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=3dce9ab8cf329156c2f3515d5dc2d2742358919f1ccdb63a14247909c31c22c4, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:52:9b:b9:e0:60:17:d6:02:3c:4f:25:18:07: 01:76:74:6a:b0:c9:f6:66:41:ce:0c:f5:b9:d1:ef: df:43:ca:b2:35:18:78:25:61:f2:3c:88:ca:74:26: 0a:89:6d:e3:e3:2f:95:93:80:fa:33:1a:47:8b:76: b3:e4:14:90:2d:da:b0:42:8c:8b:1f:c1:e3:14:39: 0b:c8:36:83:08:93:91:2c:ce:24:57:d4:33:13:12: 83:55:6f:d8:b7:c1:c8:7b:c1:26:f8:f9:67:84:f5: 49:eb:75:6a:14:68:5e:74:f6:0c:53:ef:ba:f0:73: 35:3e:65:1f:42:b5:f7:c3:dd:93:1b:43:d1:eb:6b: ba:cc:79:59:b8:e1:e3:4e:61:8a:2b:c5:19:7f:14: 04:71:4c:3d:41:84:a8:9f:9a:cc:86:bd:2f:b8:00: e0:12:e0:2c:43:de:7c:0e:57:e8:1d:17:18:a1:18: ad:5f:11:f8:15:ca:b3:ef:82:8e:eb:b6:3e:0a:3a: b7:47:eb:77:be:89:5f:e9:3b:22:8c:cf:be:67:1b: c3:5e:1f:a3:02:0a:cf:50:2a:4b:8b:eb:d7:80:5a: 46:ae:6e:0a:af:35:1b:cd:48:db:f5:a1:12:98:d5: 81:d0:66:23:0e:b4:63:85:bd:8a:16:7f:09:66:a6: d0:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:9E:B7:FF:9F:BC:A8:68:FC:7D:4B:20:B4:23:A7:7A:2E:35:85:1A X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f4089a21-6948-4717-91d7-87a692ca9139.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:38fe::/47 Signature Algorithm: sha256WithRSAEncryption b0:b9:a2:42:f6:c7:de:4a:6d:8e:1a:2e:a7:38:1c:28:03:66: c3:90:bd:df:29:d9:ee:0b:04:e2:cc:af:da:3f:40:20:0e:74: 93:bd:c0:91:ab:e0:61:7a:65:57:c4:5d:ca:5a:e6:6e:c3:2b: 64:f3:ef:c5:89:9f:28:07:a0:74:96:4b:bc:a5:88:1a:bc:83: f2:b2:4a:c7:6b:aa:f3:39:d9:2a:3c:6d:27:4c:e7:fd:a9:4b: 8b:37:0e:0e:49:2b:79:07:c1:ce:03:8a:1f:59:25:68:83:a4: 26:7d:9a:e4:ee:c9:92:79:15:1d:db:09:40:ee:23:58:ef:c7: b8:3c:14:8b:23:e0:0e:da:cb:c7:8a:3c:e3:b9:fa:db:10:34: 39:45:1c:3c:53:d4:f5:e9:9e:c0:10:2b:f0:01:45:6f:19:5c: 44:ec:45:08:16:48:34:8a:94:0a:58:83:9a:9f:d2:49:f1:40: 0f:8b:72:75:0a:85:7e:bc:8e:a3:08:29:53:94:8a:a0:01:7d: 52:fc:d4:b4:48:df:72:49:f2:8f:84:17:0a:19:89:72:f8:0b: 72:33:fc:41:2f:a1:ca:be:13:32:dc:4e:d8:6e:14:c3:fb:e7: be:ce:8e:31:ef:1b:e8:ac:65:db:e2:9a:5f:15:c7:9d:c6:66: 3b:b3:76:a7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULn8ma5T+aswxAd+XgWlLcJx0N5cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDA1ODA2WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZGNlOWFiOGNmMzI5MTU2YzJmMzUxNWQ1ZGMyZDI3NDIz NTg5MTlmMWNjZGI2M2ExNDI0NzkwOWMzMWMyMmM0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUUpu54GAX1gI8TyUYBwF2dGqwyfZmQc4M9bnR799DyrI1 GHglYfI8iMp0JgqJbePjL5WTgPozGkeLdrPkFJAt2rBCjIsfweMUOQvINoMIk5Es ziRX1DMTEoNVb9i3wch7wSb4+WeE9UnrdWoUaF509gxT77rwczU+ZR9CtffD3ZMb Q9Hra7rMeVm44eNOYYorxRl/FARxTD1BhKifmsyGvS+4AOAS4CxD3nwOV+gdFxih GK1fEfgVyrPvgo7rtj4KOrdH63e+iV/pOyKMz75nG8NeH6MCCs9QKkuL69eAWkau bgqvNRvNSNv1oRKY1YHQZiMOtGOFvYoWfwlmptCtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUWZ63/5+8qGj8fUsgtCOnei41hRowHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2Y0MDg5YTIxLTY5NDgtNDcxNy05MWQ3LTg3YTY5MmNhOTEzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOP4wDQYJKoZIhvcNAQELBQADggEBALC5okL2x95KbY4aLqc4HCgD ZsOQvd8p2e4LBOLMr9o/QCAOdJO9wJGr4GF6ZVfEXcpa5m7DK2Tz78WJnygHoHSW S7yliBq8g/KySsdrqvM52So8bSdM5/2pS4s3Dg5JK3kHwc4Dih9ZJWiDpCZ9muTu yZJ5FR3bCUDuI1jvx7g8FIsj4A7ay8eKPOO5+tsQNDlFHDxT1PXpnsAQK/ABRW8Z XETsRQgWSDSKlApYg5qf0knxQA+LcnUKhX68jqMIKVOUiqABfVL81LRI33JJ8o+E FwoZiXL4C3Iz/EEvocq+EzLcTthuFMP7577OjjHvG+isZdviml8Vx53GZjuzdqc= -----END CERTIFICATE-----Generated at Wed Nov 5 09:34:44 2025 by rpki-client