$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/38af88ac-4f8c-450f-872b-e2931905431f.roa File: 38af88ac-4f8c-450f-872b-e2931905431f.roa (raw, json) Hash identifier: zNiHWSsmYZZ0d3HF3gMEM55+cz7k92TLvBZccH71MPY= Subject key identifier: 83:CE:4E:D8:32:37:B8:B2:9D:97:41:81:FD:4C:0B:1F:C7:46:F6:A1 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 504CC0803BC151D6E386B9CA24C6CF2E32793B50 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/38af88ac-4f8c-450f-872b-e2931905431f.roa Signing time: Fri 31 Oct 2025 04:13:28 +0000 ROA not before: Fri 31 Oct 2025 04:13:28 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:363c::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:4c:c0:80:3b:c1:51:d6:e3:86:b9:ca:24:c6:cf:2e:32:79:3b:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 04:13:28 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=02278f4c51bc22f8dff10ec536b43c88a75433b43ef1b1f68cef95b90e441fd3, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f1:66:50:e1:a5:d7:c0:82:7d:50:11:88:96: 92:79:d8:d1:10:29:d0:d2:ea:f0:f8:c9:42:71:38: 9f:4b:26:46:91:8a:de:b8:26:99:c3:1f:23:c8:74: 80:fc:90:62:27:74:df:fd:5d:a8:f0:1e:69:ac:c1: e2:72:e6:94:62:2a:84:76:34:ac:96:dc:dd:4c:22: b1:3f:0f:bc:80:85:7c:5a:f9:64:58:ac:e2:af:72: c5:7d:47:58:67:ea:cd:97:9b:01:e9:a7:52:4f:3a: eb:b6:70:c6:51:b7:40:0f:ab:3c:7c:43:3f:b0:76: e7:16:3f:6d:4c:0a:92:55:28:bc:14:96:48:13:22: 96:1e:d4:c7:c1:93:18:1c:dd:97:3b:5f:c3:05:3b: 43:94:52:f0:d4:9f:e1:c6:e0:34:7c:b6:02:18:69: fd:16:4b:94:8b:bd:24:66:4d:b4:d5:7f:7a:84:da: db:32:2c:f7:73:e9:82:f9:e1:d8:04:9c:e4:06:70: 22:d4:2e:c8:f3:97:74:32:dc:8d:16:e0:ab:8d:a8: 7d:bf:aa:e1:7c:8a:e4:8d:15:2c:e2:3b:3c:ee:d8: 70:71:1e:d1:92:11:bf:8d:fc:8b:97:1e:df:98:cd: e2:7a:b1:39:cb:d7:46:ad:61:21:3f:bf:e0:f8:ea: d0:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:CE:4E:D8:32:37:B8:B2:9D:97:41:81:FD:4C:0B:1F:C7:46:F6:A1 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/38af88ac-4f8c-450f-872b-e2931905431f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:363c::/46 Signature Algorithm: sha256WithRSAEncryption 75:4d:c3:1a:6d:ad:13:a0:85:8a:97:0d:23:58:9d:ab:3c:84: f9:35:05:6b:57:b0:81:8c:95:97:8d:f6:85:5d:5c:8d:b7:f1: 43:57:07:1c:f9:2f:3e:2c:92:ba:35:b2:a7:e3:b6:42:89:e2: eb:c6:c0:e2:f0:56:9d:70:4b:f6:80:dd:3a:1b:b5:7b:39:7b: bb:45:bd:7b:41:f2:0f:49:34:0f:54:c0:dd:cf:1e:ad:b5:74: 2e:e5:e2:aa:e1:0d:bb:ee:db:63:49:dc:1d:1b:cb:25:80:3f: d3:84:dd:8c:56:24:4d:31:68:6a:2a:51:4c:e1:06:59:88:b7: ed:7d:dd:fd:76:9e:f9:ed:a4:a0:47:d6:7d:a2:a2:6b:be:cd: ca:d6:a1:00:8c:b6:c3:5e:0a:de:46:e5:8f:a8:72:f5:03:54: 84:f9:32:74:6b:f5:8e:ba:fd:42:98:21:8e:84:ed:8b:7f:29: 88:c7:1f:e6:d7:cd:ba:ca:fe:36:50:8d:43:e8:70:94:fa:7a: 97:ef:b1:00:f1:0c:02:a5:b7:0a:f6:ad:93:5f:7c:db:34:3b: 7a:f0:dc:ec:2a:a7:c2:0e:c3:cb:4a:fc:89:fc:fe:d2:e5:10: ec:07:d1:12:6b:8c:c2:d6:7e:a2:73:f8:7d:36:4f:7a:a5:7c: 0f:78:82:22 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUEzAgDvBUdbjhrnKJMbPLjJ5O1AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDQxMzI4WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMjI3OGY0YzUxYmMyMmY4ZGZmMTBlYzUzNmI0M2M4OGE3 NTQzM2I0M2VmMWIxZjY4Y2VmOTViOTBlNDQxZmQzMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCy8WZQ4aXXwIJ9UBGIlpJ52NEQKdDS6vD4yUJxOJ9LJkaR it64JpnDHyPIdID8kGIndN/9XajwHmmsweJy5pRiKoR2NKyW3N1MIrE/D7yAhXxa +WRYrOKvcsV9R1hn6s2XmwHpp1JPOuu2cMZRt0APqzx8Qz+wducWP21MCpJVKLwU lkgTIpYe1MfBkxgc3Zc7X8MFO0OUUvDUn+HG4DR8tgIYaf0WS5SLvSRmTbTVf3qE 2tsyLPdz6YL54dgEnOQGcCLULsjzl3Qy3I0W4KuNqH2/quF8iuSNFSziOzzu2HBx HtGSEb+N/IuXHt+YzeJ6sTnL10atYSE/v+D46tBZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUg85O2DI3uLKdl0GB/UwLH8dG9qEwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzM4YWY4OGFjLTRmOGMtNDUwZi04NzJiLWUyOTMxOTA1NDMxZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAANjwwDQYJKoZIhvcNAQELBQADggEBAHVNwxptrROghYqXDSNYnas8 hPk1BWtXsIGMlZeN9oVdXI238UNXBxz5Lz4skro1sqfjtkKJ4uvGwOLwVp1wS/aA 3TobtXs5e7tFvXtB8g9JNA9UwN3PHq21dC7l4qrhDbvu22NJ3B0byyWAP9OE3YxW JE0xaGoqUUzhBlmIt+193f12nvntpKBH1n2iomu+zcrWoQCMtsNeCt5G5Y+ocvUD VIT5MnRr9Y66/UKYIY6E7Yt/KYjHH+bXzbrK/jZQjUPocJT6epfvsQDxDAKltwr2 rZNffNs0O3rw3Owqp8IOw8tK/In8/tLlEOwH0RJrjMLWfqJz+H02T3qlfA94giI= -----END CERTIFICATE-----Generated at Tue Nov 18 08:24:28 2025 by rpki-client