$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1a04b521-0807-4765-89bc-c29863908bc9.roa File: 1a04b521-0807-4765-89bc-c29863908bc9.roa (raw, json) Hash identifier: nfRk3nvwT+92JyszBucjyBivM5v/JsBCIKoaA0yztYQ= Subject key identifier: 7C:A7:46:D5:95:9D:B7:76:09:E3:9E:73:06:7C:71:14:7F:A0:33:88 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 611A0006E362BD739EF1063147AEB226C7F320E8 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1a04b521-0807-4765-89bc-c29863908bc9.roa Signing time: Fri 31 Oct 2025 03:43:26 +0000 ROA not before: Fri 31 Oct 2025 03:43:26 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2dd0::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:1a:00:06:e3:62:bd:73:9e:f1:06:31:47:ae:b2:26:c7:f3:20:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 03:43:26 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=c6c6ed1c6f852fe1daba48e9c4319a7abdd9cd636d86846d260af9a2f7d3adba, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:26:30:74:ce:cc:8d:73:99:cc:72:07:d8:31: ab:ad:fc:e8:55:42:f3:af:40:48:a5:14:60:43:ee: a3:69:b1:50:86:39:46:83:e3:82:13:c9:e5:b7:60: b7:90:a3:78:e0:85:9c:df:2b:d8:2e:42:ad:04:fe: 7e:fb:90:c0:4b:43:31:e1:17:70:bf:6a:0f:1c:c5: a1:73:70:04:f9:81:7a:14:6f:cd:fa:d2:da:f4:bc: da:76:2f:fe:05:a6:eb:8e:a2:c3:0e:0a:36:72:69: 70:bd:94:ed:1d:56:bf:58:cf:72:1a:ec:1c:40:36: 6f:08:d6:86:55:28:89:00:78:f4:4e:ec:c7:43:9f: 6d:51:9c:be:73:88:09:64:31:af:09:45:c7:33:da: a5:df:c0:e2:94:3c:8f:a3:46:6b:7a:61:51:87:2f: cc:33:0d:92:80:92:42:63:05:d0:a5:f3:ef:97:10: c6:a4:d3:ef:2a:61:a3:77:bb:c2:8a:dc:b6:72:f0: 71:3f:d5:e2:fc:e6:ea:f5:76:17:0b:e3:52:52:aa: 9d:bb:68:63:72:88:d9:6f:fe:c9:fb:09:92:6b:bf: c7:15:b0:47:23:ff:03:73:5f:83:94:b5:b1:80:bc: 10:80:22:90:7b:b0:31:f9:7e:99:3c:39:f5:86:e0: 59:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:A7:46:D5:95:9D:B7:76:09:E3:9E:73:06:7C:71:14:7F:A0:33:88 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/1a04b521-0807-4765-89bc-c29863908bc9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2dd0::/46 Signature Algorithm: sha256WithRSAEncryption 0b:eb:68:a8:b0:41:7a:a6:26:0e:8c:7a:13:76:c1:66:8d:1d: 40:8d:a3:44:b9:cc:3f:dd:24:f6:13:7a:01:69:b9:6b:6d:ce: eb:ad:61:d6:23:33:10:03:b5:9b:57:71:58:a5:ca:a3:b9:63: d1:54:c7:5a:00:94:80:a8:e8:e9:12:dd:b6:79:73:97:cd:25: 26:2f:5a:55:e2:41:95:b0:65:08:53:31:d9:f7:41:69:48:6d: 39:03:73:c4:21:32:e1:68:92:c5:28:6a:f9:cd:60:c8:ec:e3: 70:73:c7:48:e8:38:f6:f6:d1:7d:ba:7f:32:d4:e8:89:b8:a0: db:dd:21:55:21:c4:c0:04:ad:4c:36:b0:de:01:20:c3:3e:dd: ec:60:89:08:01:f8:62:30:d1:3b:4f:17:d5:50:66:bf:75:16: 7e:15:a3:f8:84:58:7b:4a:95:7a:16:c7:c3:3b:05:7f:76:18: f8:78:9a:17:79:88:aa:a4:d0:76:60:2b:d2:9e:90:29:5e:39: 38:8b:fe:66:a5:7d:3f:ac:a9:1e:18:d6:c9:77:25:44:89:d7: bb:55:ef:d2:c8:6d:e7:ba:ea:ba:bf:44:25:45:fa:22:6d:fe: a3:d6:dd:e6:1b:42:5e:87:bc:bb:c2:7a:27:2b:e4:c5:20:b3: a6:9c:2e:f2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYRoABuNivXOe8QYxR66yJsfzIOgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDM0MzI2WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNmM2ZWQxYzZmODUyZmUxZGFiYTQ4ZTljNDMxOWE3YWJk ZDljZDYzNmQ4Njg0NmQyNjBhZjlhMmY3ZDNhZGJhMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKJjB0zsyNc5nMcgfYMaut/OhVQvOvQEilFGBD7qNpsVCG OUaD44ITyeW3YLeQo3jghZzfK9guQq0E/n77kMBLQzHhF3C/ag8cxaFzcAT5gXoU b8360tr0vNp2L/4FpuuOosMOCjZyaXC9lO0dVr9Yz3Ia7BxANm8I1oZVKIkAePRO 7MdDn21RnL5ziAlkMa8JRccz2qXfwOKUPI+jRmt6YVGHL8wzDZKAkkJjBdCl8++X EMak0+8qYaN3u8KK3LZy8HE/1eL85ur1dhcL41JSqp27aGNyiNlv/sn7CZJrv8cV sEcj/wNzX4OUtbGAvBCAIpB7sDH5fpk8OfWG4FmvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUfKdG1ZWdt3YJ455zBnxxFH+gM4gwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzFhMDRiNTIxLTA4MDctNDc2NS04OWJjLWMyOTg2MzkwOGJjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAALdAwDQYJKoZIhvcNAQELBQADggEBAAvraKiwQXqmJg6MehN2wWaN HUCNo0S5zD/dJPYTegFpuWttzuutYdYjMxADtZtXcVilyqO5Y9FUx1oAlICo6OkS 3bZ5c5fNJSYvWlXiQZWwZQhTMdn3QWlIbTkDc8QhMuFoksUoavnNYMjs43Bzx0jo OPb20X26fzLU6Im4oNvdIVUhxMAErUw2sN4BIMM+3exgiQgB+GIw0TtPF9VQZr91 Fn4Vo/iEWHtKlXoWx8M7BX92GPh4mhd5iKqk0HZgK9KekCleOTiL/malfT+sqR4Y 1sl3JUSJ17tV79LIbee66rq/RCVF+iJt/qPW3eYbQl6HvLvCeicr5MUgs6acLvI= -----END CERTIFICATE-----Generated at Tue Nov 18 08:24:59 2025 by rpki-client