$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/fb70ca06-580a-405a-b7f5-742c6792f162.roa File: fb70ca06-580a-405a-b7f5-742c6792f162.roa (raw, json) Hash identifier: qsAHvyIK1RXolnRUK8mR1JYUhWrMIh/I8kZHOW8vf88= Subject key identifier: CA:8F:87:3F:24:50:B9:2B:BC:AE:F4:59:20:CD:B0:E4:89:48:7B:8E Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3E803F907345C4163A196C6B1A2C158467614EAE Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/fb70ca06-580a-405a-b7f5-742c6792f162.roa Signing time: Fri 31 Oct 2025 03:26:45 +0000 ROA not before: Fri 31 Oct 2025 03:26:45 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2a68::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:80:3f:90:73:45:c4:16:3a:19:6c:6b:1a:2c:15:84:67:61:4e:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 03:26:45 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=93ae7d3a8718e0c4ffbaa3b76130c15c877d77a787f8b152f540f4f0c3bca68f, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:04:94:c4:bd:39:ad:f9:0e:04:80:24:e7:5f: 45:68:cd:03:bb:64:13:81:0d:0d:ef:37:bb:9e:13: b8:83:e7:4e:02:2a:04:10:fd:ef:84:af:ec:19:f1: 93:01:71:00:78:41:08:48:aa:04:be:46:dd:c1:ea: a2:c1:17:57:65:c8:76:a3:1d:bc:79:04:b8:87:92: c3:f7:bb:ac:57:5c:96:a7:8f:9c:0a:69:d4:85:14: ff:f5:bc:4c:aa:a1:f8:c4:35:e0:89:6d:fb:a7:b5: 97:83:b3:c4:b5:0d:fb:05:ad:13:bf:fb:00:91:ae: 55:b0:57:65:e5:0b:94:43:75:d5:76:10:c6:69:ea: 1f:5f:8e:fb:9a:ee:ec:92:fd:55:cf:05:ae:f3:dc: 90:7d:c5:1b:7f:5a:32:ca:25:be:4a:73:44:5f:0b: eb:d1:72:05:3a:54:82:8c:4a:18:59:82:75:92:96: 22:64:41:2a:c6:77:e5:bd:4b:49:35:65:11:cb:2e: 17:de:1a:f9:a5:5e:d1:e4:ea:83:41:bf:a1:b1:24: a7:f5:35:aa:3a:dd:26:10:31:0e:75:0a:1d:84:40: 1f:df:95:c7:d0:69:ad:9a:77:88:98:b0:9e:5b:2a: 12:86:d0:44:02:8f:c6:09:29:a7:8c:c9:f5:77:40: 8e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:8F:87:3F:24:50:B9:2B:BC:AE:F4:59:20:CD:B0:E4:89:48:7B:8E X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/fb70ca06-580a-405a-b7f5-742c6792f162.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2a68::/46 Signature Algorithm: sha256WithRSAEncryption 0f:3a:6a:4f:8b:6e:da:d2:a6:56:0c:02:5d:ee:6e:3f:8c:b9: 1d:84:1f:e6:a6:a2:41:ef:8f:5d:ae:01:ee:af:53:58:fe:8b: 24:bd:4c:38:0a:04:3d:d4:fd:20:51:5c:92:1f:d6:e0:81:67: 23:ff:f0:04:54:a7:cc:11:e5:44:c8:de:26:bb:33:3b:38:95: d0:95:6e:14:dd:ba:f2:79:a3:56:b0:3d:d9:c5:8e:31:4a:1e: b2:08:3b:2f:0c:03:cf:31:69:1b:db:1a:6a:45:5f:5d:38:05: fe:fa:f6:cb:63:e9:cf:1b:e0:56:1e:33:07:92:aa:d8:aa:98: d8:c8:7b:96:10:26:82:21:dd:d5:ce:d7:1d:f2:90:01:1a:ee: e7:87:36:d5:72:ac:d8:f0:9a:08:89:4a:d4:30:15:3f:90:c5: 10:f7:ce:71:26:2c:22:b2:c3:53:38:de:a9:fa:32:04:b4:80: 2c:7e:98:cb:3d:42:5b:18:df:0b:27:cd:99:8d:65:f0:a2:ad: c0:f0:cd:85:77:00:5d:34:29:3c:51:56:e1:35:76:db:42:3a: de:22:f5:50:9e:cf:1e:f0:da:9c:a8:93:e8:e7:f6:e6:99:bf: 77:97:83:0d:fa:50:ed:6b:6f:67:69:ff:f3:dd:ef:68:36:19: be:4a:1a:c4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPoA/kHNFxBY6GWxrGiwVhGdhTq4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDMyNjQ1WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5M2FlN2QzYTg3MThlMGM0ZmZiYWEzYjc2MTMwYzE1Yzg3 N2Q3N2E3ODdmOGIxNTJmNTQwZjRmMGMzYmNhNjhmMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/BJTEvTmt+Q4EgCTnX0VozQO7ZBOBDQ3vN7ueE7iD504C KgQQ/e+Er+wZ8ZMBcQB4QQhIqgS+Rt3B6qLBF1dlyHajHbx5BLiHksP3u6xXXJan j5wKadSFFP/1vEyqofjENeCJbfuntZeDs8S1DfsFrRO/+wCRrlWwV2XlC5RDddV2 EMZp6h9fjvua7uyS/VXPBa7z3JB9xRt/WjLKJb5Kc0RfC+vRcgU6VIKMShhZgnWS liJkQSrGd+W9S0k1ZRHLLhfeGvmlXtHk6oNBv6GxJKf1Nao63SYQMQ51Ch2EQB/f lcfQaa2ad4iYsJ5bKhKG0EQCj8YJKaeMyfV3QI7zAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUyo+HPyRQuSu8rvRZIM2w5IlIe44wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2ZiNzBjYTA2LTU4MGEtNDA1YS1iN2Y1LTc0MmM2NzkyZjE2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAKmgwDQYJKoZIhvcNAQELBQADggEBAA86ak+LbtrSplYMAl3ubj+M uR2EH+amokHvj12uAe6vU1j+iyS9TDgKBD3U/SBRXJIf1uCBZyP/8ARUp8wR5UTI 3ia7Mzs4ldCVbhTduvJ5o1awPdnFjjFKHrIIOy8MA88xaRvbGmpFX104Bf769stj 6c8b4FYeMweSqtiqmNjIe5YQJoIh3dXO1x3ykAEa7ueHNtVyrNjwmgiJStQwFT+Q xRD3znEmLCKyw1M43qn6MgS0gCx+mMs9QlsY3wsnzZmNZfCircDwzYV3AF00KTxR VuE1dttCOt4i9VCezx7w2pyok+jn9uaZv3eXgw36UO1rb2dp//Pd72g2Gb5KGsQ= -----END CERTIFICATE-----Generated at Wed Nov 5 10:53:58 2025 by rpki-client