$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f520bc09-e6a5-4e18-9baf-8b4f352befd8.roa File: f520bc09-e6a5-4e18-9baf-8b4f352befd8.roa (raw, json) Hash identifier: IPLpN50TQU7VIKc+JV8SJv4oviN9JWzxGj/YdmqT0bA= Subject key identifier: 72:69:6C:39:A2:08:C6:A8:3D:B6:38:CB:BB:1A:15:B8:BA:6D:70:A4 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 79DE02BA6EDB27755F3A51DB80A10B573B62F203 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f520bc09-e6a5-4e18-9baf-8b4f352befd8.roa Signing time: Fri 31 Oct 2025 02:06:41 +0000 ROA not before: Fri 31 Oct 2025 02:06:41 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3f66::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:de:02:ba:6e:db:27:75:5f:3a:51:db:80:a1:0b:57:3b:62:f2:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 02:06:41 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=5982ddf3adff757f40f5de9ec1275afd3a0eab9adfdd36cd70b1ca33c8d574a2, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b1:ae:3a:0e:36:93:92:df:63:47:f2:6c:f7: 56:42:79:3a:5b:10:de:50:f3:77:f8:a0:82:9e:90: dd:10:02:48:15:de:39:e9:03:ca:3a:c2:84:be:99: dd:de:da:ab:1b:64:0f:43:50:39:a0:8b:f2:8a:c3: 2b:ed:94:11:49:df:6e:04:29:ac:23:6a:df:a2:ca: 1a:fb:8f:57:4e:f7:28:a4:68:7a:b6:8d:5b:03:d4: 5e:13:8d:52:80:52:c9:d8:05:30:fc:b1:91:95:82: f8:e7:de:5c:d9:2b:f9:d1:94:74:92:62:d2:74:2e: 29:31:98:fa:23:47:a0:4d:1c:f5:7c:07:f3:61:2e: e2:32:43:c3:e1:62:63:81:27:7e:f3:34:8c:21:e7: cd:a5:a0:2d:df:df:cf:9b:c0:19:1a:3c:fd:d8:7c: 10:a6:d2:c3:57:97:a8:d6:10:1d:cb:eb:b3:92:9d: 49:26:ac:bb:b6:ff:bb:bf:e2:e7:fc:72:c1:04:56: 38:fe:76:44:94:c2:bb:0c:0c:b4:41:fa:32:58:f2: 87:66:34:64:a2:a2:a2:9d:2f:51:72:7d:ff:ee:de: a9:3f:4d:50:e6:eb:ec:cd:ca:1d:0e:b3:5d:cc:d7: a0:eb:37:94:5e:89:ad:1c:17:33:ad:66:59:ac:ae: 4a:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:69:6C:39:A2:08:C6:A8:3D:B6:38:CB:BB:1A:15:B8:BA:6D:70:A4 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f520bc09-e6a5-4e18-9baf-8b4f352befd8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3f66::/47 Signature Algorithm: sha256WithRSAEncryption 76:f0:c7:3f:e2:14:cf:ef:28:a5:ac:81:0b:11:cd:7c:9e:c3: 81:fd:59:fe:80:3a:07:b6:41:93:bd:c1:52:71:58:41:e1:84: 4f:16:35:a0:1e:f1:57:96:6d:c6:4e:22:48:7b:9d:34:44:27: 06:c5:d8:df:73:cc:23:11:13:70:74:d4:be:6c:ce:78:df:3c: de:b7:a3:13:b9:3e:eb:4b:73:7a:c1:46:6e:2b:7f:b0:7a:2a: 74:c2:30:f6:a2:5b:c6:ed:0b:c8:84:e2:dd:4f:d4:b6:e0:4e: 2a:fb:c9:dc:dd:70:ba:0f:6a:63:66:7d:59:e8:18:34:b6:95: b8:17:38:c1:87:d2:ae:a8:05:44:d1:09:e5:f2:42:eb:36:5a: bc:2d:00:ed:12:13:9e:06:86:b6:d2:64:ef:c9:f0:02:08:18: 15:a5:7d:c4:f8:2d:65:b0:e5:28:96:17:78:7b:35:ab:c7:5c: df:f5:f8:99:b3:4d:70:1f:87:e0:b0:57:85:c3:81:60:b7:6b: 10:83:f2:ad:4c:7e:7f:be:e0:18:7d:81:af:ca:f2:a9:19:ec: 15:08:a7:0b:ab:5f:cf:5a:4a:9a:60:31:b7:b6:36:c2:d8:bc: bc:cd:a7:34:39:27:4f:1e:d9:a9:fc:72:a7:e5:59:ac:2e:aa: b5:b6:e6:d0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUed4Cum7bJ3VfOlHbgKELVzti8gMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDIwNjQxWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OTgyZGRmM2FkZmY3NTdmNDBmNWRlOWVjMTI3NWFmZDNh MGVhYjlhZGZkZDM2Y2Q3MGIxY2EzM2M4ZDU3NGEyMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3sa46DjaTkt9jR/Js91ZCeTpbEN5Q83f4oIKekN0QAkgV 3jnpA8o6woS+md3e2qsbZA9DUDmgi/KKwyvtlBFJ324EKawjat+iyhr7j1dO9yik aHq2jVsD1F4TjVKAUsnYBTD8sZGVgvjn3lzZK/nRlHSSYtJ0LikxmPojR6BNHPV8 B/NhLuIyQ8PhYmOBJ37zNIwh582loC3f38+bwBkaPP3YfBCm0sNXl6jWEB3L67OS nUkmrLu2/7u/4uf8csEEVjj+dkSUwrsMDLRB+jJY8odmNGSioqKdL1Fyff/u3qk/ TVDm6+zNyh0Os13M16DrN5Reia0cFzOtZlmsrkrTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcmlsOaIIxqg9tjjLuxoVuLptcKQwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2Y1MjBiYzA5LWU2YTUtNGUxOC05YmFmLThiNGYzNTJiZWZkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAP2YwDQYJKoZIhvcNAQELBQADggEBAHbwxz/iFM/vKKWsgQsRzXye w4H9Wf6AOge2QZO9wVJxWEHhhE8WNaAe8VeWbcZOIkh7nTREJwbF2N9zzCMRE3B0 1L5sznjfPN63oxO5PutLc3rBRm4rf7B6KnTCMPaiW8btC8iE4t1P1LbgTir7ydzd cLoPamNmfVnoGDS2lbgXOMGH0q6oBUTRCeXyQus2WrwtAO0SE54GhrbSZO/J8AII GBWlfcT4LWWw5SiWF3h7NavHXN/1+JmzTXAfh+CwV4XDgWC3axCD8q1Mfn++4Bh9 ga/K8qkZ7BUIpwurX89aSppgMbe2NsLYvLzNpzQ5J08e2an8cqflWawuqrW25tA= -----END CERTIFICATE-----Generated at Wed Nov 5 10:55:13 2025 by rpki-client