$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/fac933e3-dfea-45bc-a216-271d1420fa82.roa File: fac933e3-dfea-45bc-a216-271d1420fa82.roa (raw, json) Hash identifier: uMsI854jdIxW7rpme6Dp1hpVQwXmm3nfR3FNxHRy6cw= Subject key identifier: B0:A2:7F:6D:0D:7A:28:12:CA:CD:BB:1E:99:6E:E3:7E:F5:E5:82:EA Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0ECEC06AA9F75ADDC0133E7DEF502386F11ECFFD Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/fac933e3-dfea-45bc-a216-271d1420fa82.roa Signing time: Thu 30 Oct 2025 22:57:22 +0000 ROA not before: Thu 30 Oct 2025 22:57:22 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2a68::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:ce:c0:6a:a9:f7:5a:dd:c0:13:3e:7d:ef:50:23:86:f1:1e:cf:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 22:57:22 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=b196e1d29568fada92f11ba358dbeeadeba4c06dc0bdbd201e0e165bed6ddd8a, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e7:1c:56:dd:54:4a:35:0c:b5:7f:06:5f:ef: b3:f4:aa:f4:6c:0e:b0:05:e7:2e:a8:5f:bb:9d:4e: ed:d3:6b:27:85:c2:99:cf:c1:fd:75:c9:54:b6:dd: 29:93:c8:f2:f2:4f:34:23:38:fa:88:99:bb:f4:98: 2a:b9:e8:3c:89:e5:5c:55:46:be:08:6b:cb:50:1f: 6f:b9:ce:f3:70:ef:24:83:30:bf:f7:7c:45:f7:15: 43:4f:23:fc:26:5b:2e:de:d6:92:8c:c8:d8:b3:5c: 27:97:89:d4:4d:e0:68:65:c0:b1:e7:23:f7:44:bb: c0:fb:c4:1c:ec:84:56:95:7c:20:28:92:60:98:1e: 68:d8:d5:cb:a0:57:39:23:ad:8f:b6:b6:af:cb:e7: 37:14:38:6b:5b:3c:fc:10:7b:df:17:f2:95:f2:c6: 15:6c:b3:38:24:af:d5:78:4d:7c:e6:25:8b:01:2e: 72:46:5d:c0:8b:0e:a2:98:96:f0:60:25:89:44:d8: 2e:07:0f:ba:d2:c9:53:53:a2:ae:60:14:43:61:56: 72:4a:cf:96:ce:75:69:60:25:f0:c8:89:b8:d1:7e: 60:b4:4f:37:d4:b3:eb:8d:47:97:4a:65:fe:85:fe: 12:18:15:1c:6d:3a:34:02:0c:f2:20:37:17:df:99: 91:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:A2:7F:6D:0D:7A:28:12:CA:CD:BB:1E:99:6E:E3:7E:F5:E5:82:EA X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/fac933e3-dfea-45bc-a216-271d1420fa82.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2a68::/47 Signature Algorithm: sha256WithRSAEncryption ba:fc:4d:4e:03:76:13:0e:cb:47:8c:a0:5e:5f:7a:16:8b:fe: 0d:3f:f3:9d:e7:e0:c1:be:e1:50:a8:ab:4b:b2:87:a6:79:d1: db:e3:b8:28:fc:7a:dd:c0:cc:07:1e:1b:e5:02:84:01:aa:11: d0:bd:0c:cf:59:88:9a:b9:a6:f5:a6:28:9a:46:1b:46:37:c9: 32:82:33:ec:21:da:84:61:ba:c8:58:96:cc:29:92:f7:e9:49: 5b:69:bb:6c:b4:62:b4:b6:28:5d:45:73:ba:58:a8:6b:ba:e9: f6:f2:c2:91:2a:40:37:6e:09:fd:6a:98:32:fc:36:99:48:5c: b2:25:02:fc:cd:84:96:1b:92:da:a3:f0:c2:57:c3:2a:4b:06: 6a:bc:a5:8f:25:dd:7b:ec:c2:9b:8e:51:8d:af:61:9c:3d:a0: 54:5c:65:2d:2d:46:07:81:7f:00:80:1a:03:96:2b:44:d7:fb: 22:45:f4:60:87:34:30:59:4d:5f:48:e3:d8:9b:53:8b:39:1c: 72:87:3c:7a:cb:42:be:c4:14:0f:2b:f2:f2:fa:e5:ff:35:ee: 69:d3:29:0d:b6:0c:70:15:a0:cf:1f:df:bb:28:3c:64:c9:9d: 01:da:53:e0:c7:f1:34:1b:17:ce:62:32:f4:4d:75:bb:95:5f: 8a:cf:96:5a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDs7Aaqn3Wt3AEz5971AjhvEez/0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjI1NzIyWhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTk2ZTFkMjk1NjhmYWRhOTJmMTFiYTM1OGRiZWVhZGVi YTRjMDZkYzBiZGJkMjAxZTBlMTY1YmVkNmRkZDhhMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCg5xxW3VRKNQy1fwZf77P0qvRsDrAF5y6oX7udTu3TayeF wpnPwf11yVS23SmTyPLyTzQjOPqImbv0mCq56DyJ5VxVRr4Ia8tQH2+5zvNw7ySD ML/3fEX3FUNPI/wmWy7e1pKMyNizXCeXidRN4GhlwLHnI/dEu8D7xBzshFaVfCAo kmCYHmjY1cugVzkjrY+2tq/L5zcUOGtbPPwQe98X8pXyxhVsszgkr9V4TXzmJYsB LnJGXcCLDqKYlvBgJYlE2C4HD7rSyVNToq5gFENhVnJKz5bOdWlgJfDIibjRfmC0 TzfUs+uNR5dKZf6F/hIYFRxtOjQCDPIgNxffmZElAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUsKJ/bQ16KBLKzbsemW7jfvXlguowHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2ZhYzkzM2UzLWRmZWEtNDViYy1hMjE2LTI3MWQxNDIwZmE4Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAKmgwDQYJKoZIhvcNAQELBQADggEBALr8TU4DdhMOy0eMoF5fehaL /g0/853n4MG+4VCoq0uyh6Z50dvjuCj8et3AzAceG+UChAGqEdC9DM9ZiJq5pvWm KJpGG0Y3yTKCM+wh2oRhushYlswpkvfpSVtpu2y0YrS2KF1Fc7pYqGu66fbywpEq QDduCf1qmDL8NplIXLIlAvzNhJYbktqj8MJXwypLBmq8pY8l3XvswpuOUY2vYZw9 oFRcZS0tRgeBfwCAGgOWK0TX+yJF9GCHNDBZTV9I49ibU4s5HHKHPHrLQr7EFA8r 8vL65f817mnTKQ22DHAVoM8f37soPGTJnQHaU+DH8TQbF85iMvRNdbuVX4rPllo= -----END CERTIFICATE-----Generated at Wed Nov 5 09:34:46 2025 by rpki-client