$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ff1bc615-d155-413f-a386-b3641082f454.roa File: ff1bc615-d155-413f-a386-b3641082f454.roa (raw, json) Hash identifier: Lt7+KlVyK3jD4QhkJI3HAPftkRPvmXweNf4fqSUucW8= Subject key identifier: 52:DA:BD:84:CD:B7:C8:2F:75:02:83:B5:42:50:D7:AC:ED:57:97:17 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 064C8FB6372496E53381901EE04E78D707C37233 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ff1bc615-d155-413f-a386-b3641082f454.roa Signing time: Fri 31 Oct 2025 00:53:28 +0000 ROA not before: Fri 31 Oct 2025 00:53:28 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:380c::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 06 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:4c:8f:b6:37:24:96:e5:33:81:90:1e:e0:4e:78:d7:07:c3:72:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 00:53:28 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=54be12ae12c3e096dacc8dc3cc44bb4048e78eadfca96ed580d891a093261ed1, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:58:a6:25:bc:46:75:86:e1:02:91:8d:fd:5f: f1:37:dd:f2:e6:6f:a1:63:95:31:be:d8:3d:f0:7b: 5a:f3:e8:df:48:de:61:31:29:14:5d:18:f6:3c:37: 57:b2:5c:a5:43:07:f5:7f:03:75:7b:ed:fc:1f:00: c2:43:45:bb:73:08:9c:2b:e6:9c:c5:8b:9a:13:99: f4:1c:27:bc:55:13:f4:da:43:51:3c:a8:37:0e:2e: 1a:ad:4d:2c:9b:f5:ce:d5:28:39:4b:45:d0:31:20: 32:3e:ee:bd:16:7c:ab:18:dd:85:46:0a:1a:7e:86: 1a:20:6c:00:d3:3b:f2:c3:28:0e:25:6a:7f:6b:67: 80:10:25:a0:aa:46:55:c3:d3:38:ad:d3:8c:9e:76: 65:74:c4:5a:fe:c3:2e:30:3a:31:9b:f2:a2:a3:ed: 72:35:cc:15:63:a7:dd:5f:0c:2c:a9:64:8e:6e:99: ec:60:14:62:32:ad:21:0b:65:68:7b:36:02:66:ce: 58:81:6f:5d:f4:2f:71:8e:2a:7c:a6:7c:3d:43:bc: ff:60:10:07:82:9e:d2:5e:7c:c0:4c:5d:21:c1:b7: 74:99:3f:92:08:87:8e:e2:ff:99:86:7b:38:9f:df: 7e:a7:99:31:b7:c4:45:5f:d5:cb:1f:bd:dd:fa:c5: cd:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:DA:BD:84:CD:B7:C8:2F:75:02:83:B5:42:50:D7:AC:ED:57:97:17 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ff1bc615-d155-413f-a386-b3641082f454.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:380c::/47 Signature Algorithm: sha256WithRSAEncryption 42:e9:ef:8c:10:b3:71:55:a4:41:d3:49:42:1c:43:42:75:3e: b2:09:22:84:b8:70:20:3a:41:12:c5:6c:4d:c7:e7:e5:93:d2: d0:8f:49:fb:5c:81:e9:30:57:57:9c:ac:0a:ab:80:6c:58:81: 02:82:55:31:84:3b:3c:73:bd:e9:52:37:44:f6:72:f4:85:33: 28:53:95:57:74:ab:7c:4d:82:0f:0a:3e:f0:85:27:aa:0f:54: 97:ab:cb:e7:48:a4:59:06:a8:c2:61:6f:dd:76:a7:c2:eb:dd: f2:1a:d5:d3:8c:2d:3b:0a:6e:17:15:64:64:40:b5:67:6c:6b: 96:3b:96:02:93:ba:63:d6:36:20:fe:d7:0b:e5:c7:64:1b:b5: cd:e3:af:91:7c:df:d4:f4:9f:59:80:53:ce:f9:c8:d4:c6:a1: 0f:dd:46:e8:d2:45:0d:d8:1d:3a:f3:e9:9a:f5:a1:eb:95:81: 3e:f8:4b:41:e5:99:78:95:ab:f5:31:12:fc:46:73:61:f2:9d: 28:33:86:7c:7e:fc:88:0d:d2:85:4b:72:39:36:f8:67:40:3b: d9:62:79:b7:c4:d8:03:a3:5c:39:38:22:1e:3c:81:2f:b1:52: f8:00:ee:27:09:94:92:00:be:c5:49:b5:98:be:67:36:6b:e0: 21:15:84:55 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBkyPtjckluUzgZAe4E541wfDcjMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDA1MzI4WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NGJlMTJhZTEyYzNlMDk2ZGFjYzhkYzNjYzQ0YmI0MDQ4 ZTc4ZWFkZmNhOTZlZDU4MGQ4OTFhMDkzMjYxZWQxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQWKYlvEZ1huECkY39X/E33fLmb6FjlTG+2D3we1rz6N9I 3mExKRRdGPY8N1eyXKVDB/V/A3V77fwfAMJDRbtzCJwr5pzFi5oTmfQcJ7xVE/Ta Q1E8qDcOLhqtTSyb9c7VKDlLRdAxIDI+7r0WfKsY3YVGChp+hhogbADTO/LDKA4l an9rZ4AQJaCqRlXD0zit04yedmV0xFr+wy4wOjGb8qKj7XI1zBVjp91fDCypZI5u mexgFGIyrSELZWh7NgJmzliBb130L3GOKnymfD1DvP9gEAeCntJefMBMXSHBt3SZ P5IIh47i/5mGezif336nmTG3xEVf1csfvd36xc3zAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUtq9hM23yC91AoO1QlDXrO1XlxcwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2ZmMWJjNjE1LWQxNTUtNDEzZi1hMzg2LWIzNjQxMDgyZjQ1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOAwwDQYJKoZIhvcNAQELBQADggEBAELp74wQs3FVpEHTSUIcQ0J1 PrIJIoS4cCA6QRLFbE3H5+WT0tCPSftcgekwV1ecrAqrgGxYgQKCVTGEOzxzvelS N0T2cvSFMyhTlVd0q3xNgg8KPvCFJ6oPVJery+dIpFkGqMJhb912p8Lr3fIa1dOM LTsKbhcVZGRAtWdsa5Y7lgKTumPWNiD+1wvlx2Qbtc3jr5F839T0n1mAU875yNTG oQ/dRujSRQ3YHTrz6Zr1oeuVgT74S0HlmXiVq/UxEvxGc2HynSgzhnx+/IgN0oVL cjk2+GdAO9liebfE2AOjXDk4Ih48gS+xUvgA7icJlJIAvsVJtZi+ZzZr4CEVhFU= -----END CERTIFICATE-----Generated at Wed Nov 5 07:42:14 2025 by rpki-client