$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f40acd62-aaac-40b3-86f1-32b250c67d81.roa File: f40acd62-aaac-40b3-86f1-32b250c67d81.roa (raw, json) Hash identifier: tO7bEXPOqIGw++uUYcab3fS29vpM0VYx6V2/OVAxdks= Subject key identifier: EB:12:4E:75:8B:22:B7:8D:48:4E:5A:01:45:40:29:25:93:A5:51:AD Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 25A36B692228130EEEAADD5D4C55DEBC50BB3320 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f40acd62-aaac-40b3-86f1-32b250c67d81.roa Signing time: Fri 31 Oct 2025 01:39:36 +0000 ROA not before: Fri 31 Oct 2025 01:39:36 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3cd4::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:a3:6b:69:22:28:13:0e:ee:aa:dd:5d:4c:55:de:bc:50:bb:33:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 01:39:36 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=bc8cb321e1a6a01769bbb09054d3dd879a1f226a052afa32342417bc712122ea, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:a5:75:03:48:e5:68:0c:15:c6:a7:f0:45:24: 93:6c:8e:eb:ce:5e:d8:40:e3:08:86:47:49:79:9b: 86:44:54:6f:43:d8:50:81:03:ad:30:e8:46:ff:64: 4b:78:c3:af:d2:3d:99:55:d3:f2:53:b2:34:51:bd: a5:3d:24:f2:3a:f9:14:71:d1:df:e9:41:fa:b9:6d: 64:f3:f7:90:23:be:80:59:c4:a1:61:78:7d:3b:8e: e2:8d:99:ef:f5:5d:c0:10:09:5d:38:1d:7a:4e:11: bc:77:a4:5c:17:a3:5d:51:34:b5:2f:7b:b9:88:af: 88:98:cc:ab:65:57:2b:29:28:2a:b1:61:f9:b5:8a: 68:2e:42:08:d9:68:39:30:fd:e2:e2:1e:0e:3f:b5: fe:ac:32:0e:c5:2a:1f:36:76:6e:27:82:db:0a:67: 37:6b:f6:cf:62:77:fe:df:3d:7e:b4:13:a7:33:ac: 38:05:01:ae:8b:a4:dd:ca:77:49:7b:26:3f:b3:72: 70:7f:8f:ee:df:3f:6b:48:8d:97:3c:51:7e:47:d7: 62:30:51:f8:35:7a:22:cc:98:35:05:68:d2:c0:39: cb:b4:b0:1c:43:05:e6:72:c9:5f:ef:66:44:ac:d5: 2b:c8:cd:a6:5a:35:35:0f:18:71:b8:5e:a9:1f:aa: 6f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:12:4E:75:8B:22:B7:8D:48:4E:5A:01:45:40:29:25:93:A5:51:AD X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f40acd62-aaac-40b3-86f1-32b250c67d81.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3cd4::/47 Signature Algorithm: sha256WithRSAEncryption 61:05:9a:63:9f:dd:6f:e1:c4:63:33:0b:72:ee:85:7c:e6:4c: 9f:6e:d5:5b:2f:46:f0:2f:cc:2d:65:0e:94:45:9a:82:8c:b0: a0:6e:b1:1d:18:c5:9f:20:63:19:0f:ca:17:d8:5e:4b:c0:9f: 5e:3c:25:0d:35:39:0a:69:b8:ed:81:fe:94:6a:6e:78:a8:8f: 7b:40:d7:7c:b9:c4:da:6d:be:b3:e8:fa:46:90:32:63:30:79: 6e:1f:95:ab:19:44:0b:f2:ad:2a:f1:2f:bb:b9:73:57:ff:5d: 21:6a:e5:4f:7d:03:94:72:64:64:1f:e6:9e:a8:5d:f9:fa:07: 57:62:0d:56:10:43:44:9a:64:72:85:73:ce:71:01:57:31:14: c6:84:1e:14:4b:32:cd:e9:a8:dd:db:d3:de:09:83:f7:66:da: c2:93:d4:73:7e:e9:ca:6c:0e:86:75:e0:77:4c:53:1c:6a:6a: 38:c4:b9:7d:54:0c:1f:f6:e5:37:32:b5:29:bd:a5:14:ae:a9: 54:23:02:8c:f1:4a:b7:c5:36:4e:27:c7:c9:b5:48:ef:d5:51: ff:f4:64:c1:d0:1a:7e:bf:97:d4:02:0c:88:eb:35:ac:50:35: 06:fd:56:74:5c:62:2c:bf:11:b9:d3:13:33:fa:25:87:51:fc: b0:94:d8:26 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJaNraSIoEw7uqt1dTFXevFC7MyAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDEzOTM2WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYzhjYjMyMWUxYTZhMDE3NjliYmIwOTA1NGQzZGQ4Nzlh MWYyMjZhMDUyYWZhMzIzNDI0MTdiYzcxMjEyMmVhMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDapXUDSOVoDBXGp/BFJJNsjuvOXthA4wiGR0l5m4ZEVG9D 2FCBA60w6Eb/ZEt4w6/SPZlV0/JTsjRRvaU9JPI6+RRx0d/pQfq5bWTz95AjvoBZ xKFheH07juKNme/1XcAQCV04HXpOEbx3pFwXo11RNLUve7mIr4iYzKtlVyspKCqx Yfm1imguQgjZaDkw/eLiHg4/tf6sMg7FKh82dm4ngtsKZzdr9s9id/7fPX60E6cz rDgFAa6LpN3Kd0l7Jj+zcnB/j+7fP2tIjZc8UX5H12IwUfg1eiLMmDUFaNLAOcu0 sBxDBeZyyV/vZkSs1SvIzaZaNTUPGHG4Xqkfqm8fAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU6xJOdYsit41ITloBRUApJZOlUa0wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2Y0MGFjZDYyLWFhYWMtNDBiMy04NmYxLTMyYjI1MGM2N2Q4MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAPNQwDQYJKoZIhvcNAQELBQADggEBAGEFmmOf3W/hxGMzC3LuhXzm TJ9u1VsvRvAvzC1lDpRFmoKMsKBusR0YxZ8gYxkPyhfYXkvAn148JQ01OQppuO2B /pRqbnioj3tA13y5xNptvrPo+kaQMmMweW4flasZRAvyrSrxL7u5c1f/XSFq5U99 A5RyZGQf5p6oXfn6B1diDVYQQ0SaZHKFc85xAVcxFMaEHhRLMs3pqN3b094Jg/dm 2sKT1HN+6cpsDoZ14HdMUxxqajjEuX1UDB/25TcytSm9pRSuqVQjAozxSrfFNk4n x8m1SO/VUf/0ZMHQGn6/l9QCDIjrNaxQNQb9VnRcYiy/EbnTEzP6JYdR/LCU2CY= -----END CERTIFICATE-----Generated at Wed Nov 5 09:28:16 2025 by rpki-client