$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ffdaee85-be4e-4416-b584-9432ca95404f.roa File: ffdaee85-be4e-4416-b584-9432ca95404f.roa (raw, json) Hash identifier: X0HxOfyHjI47Sg7mCPk/fCBX3mb/kyGUkj2mCnBeS98= Subject key identifier: B2:E8:79:0E:02:AC:AD:6C:2C:60:1B:47:B9:C2:75:4E:51:78:16:31 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 05635C77C4C9EC829931AE970D18B0ECB54C7151 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ffdaee85-be4e-4416-b584-9432ca95404f.roa Signing time: Thu 30 Oct 2025 22:25:29 +0000 ROA not before: Thu 30 Oct 2025 22:25:29 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1d00::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:63:5c:77:c4:c9:ec:82:99:31:ae:97:0d:18:b0:ec:b5:4c:71:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 22:25:29 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=f52a14bb3d855919bbd559cd1be4418eb2d867d042a897533a8d8246a1c0fc69, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:a7:66:08:42:4c:09:67:f9:70:a3:3f:65:4c: 6e:b6:9c:1c:d5:8e:58:e5:25:1d:73:62:de:aa:c9: 65:a7:1b:d6:9d:2e:92:b9:67:0f:2d:34:48:08:f0: be:41:d9:fd:a0:a0:d6:0d:4e:23:b4:9d:1f:b9:dd: bd:29:63:38:fe:f1:81:c5:2b:a8:c9:19:93:41:91: 70:46:a8:9b:59:54:03:ca:a5:fd:62:39:60:2e:6e: 5b:76:24:85:c4:1d:48:43:6e:3a:35:76:cf:27:df: 3a:62:f5:ca:8e:7c:ef:de:cc:86:71:59:92:d3:9c: 64:45:3b:a9:01:b2:35:62:4d:44:4b:90:12:45:db: 3f:94:29:e2:91:bc:24:77:e6:30:71:52:ef:67:1e: 24:06:af:80:ac:9e:de:c0:aa:bd:b3:02:b1:87:56: a2:c6:ae:98:86:20:82:3f:16:a9:a3:75:8f:90:04: 2a:5f:02:86:86:3b:27:f6:e7:b2:1b:23:b2:42:42: f3:b1:fd:2c:64:76:38:28:f7:49:9b:eb:ca:0c:6b: 98:bc:31:a9:7f:1e:ae:98:a0:57:b0:9b:9b:a0:4e: a7:d9:44:62:02:80:17:0e:df:9c:14:71:2f:4c:1f: 13:3a:c8:9b:d1:be:60:b4:50:37:9a:7c:0b:46:4e: 80:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:E8:79:0E:02:AC:AD:6C:2C:60:1B:47:B9:C2:75:4E:51:78:16:31 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ffdaee85-be4e-4416-b584-9432ca95404f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1d00::/47 Signature Algorithm: sha256WithRSAEncryption 76:57:40:99:62:74:ca:24:67:f9:c9:0f:b1:46:87:07:b6:b6: be:d8:dc:73:6a:80:b0:17:07:2c:aa:44:d5:66:b3:d5:65:43: 4b:81:03:f8:26:dc:5d:e5:87:58:c7:b7:0f:6a:90:54:8a:62: d3:c8:7f:87:c9:7d:4e:48:60:c5:a4:8b:e0:05:b1:fe:98:89: 79:ad:35:c3:e4:31:dd:f6:f1:48:56:34:62:87:b3:94:84:86: 2b:a0:fb:98:d7:ba:7b:9c:3f:6d:43:bb:b9:ef:6c:0b:61:14: 9a:a4:f3:c1:9e:77:77:1e:09:da:ce:df:d7:e0:0b:44:4f:87: 5f:73:12:c3:43:30:33:cc:ae:99:2d:bc:95:c9:e5:8f:43:e5: 78:5b:5a:80:a9:2d:5d:8f:31:7d:57:82:4d:66:8d:1b:1a:fd: fc:e9:bc:2f:56:1f:30:a1:00:30:c6:90:49:d5:81:ec:60:fc: 37:63:95:43:81:10:d2:e4:f7:8b:95:ce:9a:ae:e1:13:46:87: 44:71:41:a6:0a:af:1b:8c:25:d2:d6:5d:1a:18:d3:f7:84:e0: 09:e2:fe:27:8b:a4:b2:17:66:fa:72:8c:5c:98:81:1d:44:91: d2:3e:0c:d3:be:07:93:e1:14:73:09:00:53:ae:56:c1:a4:ee: ca:d4:bc:45 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBWNcd8TJ7IKZMa6XDRiw7LVMcVEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjIyNTI5WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNTJhMTRiYjNkODU1OTE5YmJkNTU5Y2QxYmU0NDE4ZWIy ZDg2N2QwNDJhODk3NTMzYThkODI0NmExYzBmYzY5MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDnp2YIQkwJZ/lwoz9lTG62nBzVjljlJR1zYt6qyWWnG9ad LpK5Zw8tNEgI8L5B2f2goNYNTiO0nR+53b0pYzj+8YHFK6jJGZNBkXBGqJtZVAPK pf1iOWAublt2JIXEHUhDbjo1ds8n3zpi9cqOfO/ezIZxWZLTnGRFO6kBsjViTURL kBJF2z+UKeKRvCR35jBxUu9nHiQGr4Csnt7Aqr2zArGHVqLGrpiGIII/FqmjdY+Q BCpfAoaGOyf257IbI7JCQvOx/Sxkdjgo90mb68oMa5i8Mal/Hq6YoFewm5ugTqfZ RGICgBcO35wUcS9MHxM6yJvRvmC0UDeafAtGToBVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUsuh5DgKsrWwsYBtHucJ1TlF4FjEwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2ZmZGFlZTg1LWJlNGUtNDQxNi1iNTg0LTk0MzJjYTk1NDA0Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAHQAwDQYJKoZIhvcNAQELBQADggEBAHZXQJlidMokZ/nJD7FGhwe2 tr7Y3HNqgLAXByyqRNVms9VlQ0uBA/gm3F3lh1jHtw9qkFSKYtPIf4fJfU5IYMWk i+AFsf6YiXmtNcPkMd328UhWNGKHs5SEhiug+5jXunucP21Du7nvbAthFJqk88Ge d3ceCdrO39fgC0RPh19zEsNDMDPMrpktvJXJ5Y9D5XhbWoCpLV2PMX1Xgk1mjRsa /fzpvC9WHzChADDGkEnVgexg/DdjlUOBENLk94uVzpqu4RNGh0RxQaYKrxuMJdLW XRoY0/eE4Ani/ieLpLIXZvpyjFyYgR1EkdI+DNO+B5PhFHMJAFOuVsGk7srUvEU= -----END CERTIFICATE-----Generated at Wed Nov 5 15:59:53 2025 by rpki-client