$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3d925cce-0750-4e21-9d65-569a838b65dc.roa File: 3d925cce-0750-4e21-9d65-569a838b65dc.roa (raw, json) Hash identifier: yhGLMfy3wy7YoAC5is3lLSaG9tWeP7BfarJ0JESwzQU= Subject key identifier: 66:69:C5:F2:9C:54:DE:D1:D5:9E:36:0C:56:5D:AA:AE:AE:C9:B4:57 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 40F207833099C9576B721DA9C4F33706F67214F6 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3d925cce-0750-4e21-9d65-569a838b65dc.roa Signing time: Fri 31 Oct 2025 05:42:28 +0000 ROA not before: Fri 31 Oct 2025 05:42:28 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2c38::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:f2:07:83:30:99:c9:57:6b:72:1d:a9:c4:f3:37:06:f6:72:14:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 05:42:28 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=c2afc01a466e4541b44019a22ac85e15132e8511f5ad581d0946be1d27a5ae18, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:f5:e7:38:bc:65:60:8f:ce:d0:9f:8a:29:5f: 98:4b:ee:01:9e:f3:7d:1d:f0:37:5e:65:be:b3:a2: cc:5d:f9:27:1d:40:d1:68:a3:51:4f:19:d4:8b:0a: 50:c4:2f:1d:4e:a8:eb:c6:d6:47:c6:74:a1:81:31: 74:9e:93:27:9b:3a:78:1b:d5:2b:73:db:f7:b9:35: ab:c8:6c:03:3c:c7:f3:de:a9:9c:c2:2b:29:e5:3f: 7f:d4:a3:d1:68:cd:ae:e7:f6:76:11:a0:f2:0d:98: 16:6e:4f:a0:3c:e0:f6:b8:b7:2e:f8:47:b1:14:09: 10:ee:af:80:22:8d:c6:4a:79:6c:89:2b:e5:83:a6: 81:52:7e:b1:15:f3:a5:1b:42:b0:37:ee:c9:db:3e: 97:ff:c0:ce:d5:d7:50:09:ee:7c:73:1c:91:19:2c: 92:86:78:7e:45:77:49:d7:3e:74:33:f3:96:a3:3d: e6:84:e4:71:e7:de:54:d4:e4:c8:fc:fe:15:93:36: e4:ec:b8:8b:07:07:ae:e5:d7:75:a6:f0:b6:7c:bd: 62:07:11:ed:f6:c2:f3:c5:64:21:42:27:e5:6f:e3: 02:81:7f:3d:d2:44:93:59:f5:ab:1a:9e:48:e0:c2: 42:fd:ad:d6:8b:18:8e:2d:38:3b:55:5f:1e:19:e3: fb:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:69:C5:F2:9C:54:DE:D1:D5:9E:36:0C:56:5D:AA:AE:AE:C9:B4:57 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/3d925cce-0750-4e21-9d65-569a838b65dc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2c38::/45 Signature Algorithm: sha256WithRSAEncryption b6:31:cf:2d:4b:bd:6d:77:26:c0:c0:26:f8:2a:96:12:ba:40: 44:b3:4d:cb:6d:c7:75:f8:0b:9a:50:59:2e:86:62:6b:bc:e4: 1c:a9:3d:bb:60:b4:8c:d8:8f:86:06:3b:2b:a7:eb:a3:7d:54: 46:40:cb:79:23:6f:db:20:78:08:dc:cd:cf:b3:a0:0f:40:b6: 6c:6d:18:97:0c:23:7c:4e:05:0d:57:8e:c3:c0:3b:ae:98:e6: 02:ca:50:eb:36:1c:f8:ca:3d:73:71:02:d5:d7:f1:1b:1a:34: 07:a6:b9:44:88:b2:dd:d6:88:ba:6f:28:ba:56:fe:9a:77:e0: 44:fe:97:fc:19:e5:1c:18:fd:b2:c2:4c:e3:87:35:3e:1c:f4: 14:27:62:f9:83:1b:18:f2:32:de:f8:94:90:d0:2c:24:ce:7d: 57:68:ac:74:03:ec:59:16:86:48:7f:04:46:15:c9:79:47:9e: e8:a2:ce:ca:08:38:d9:86:73:3c:3b:b1:a3:98:bf:e6:f8:54: a2:c5:71:f2:14:2b:f9:86:c3:82:a7:e9:58:70:8e:e5:14:cb: 4b:0b:f6:ae:b8:c9:7f:bb:13:08:c9:d5:34:3c:1d:5e:64:0e: 04:e5:1f:1e:84:07:5e:3a:a8:b9:6f:b5:e5:cc:3c:f8:3d:a8: a4:03:88:f2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQPIHgzCZyVdrch2pxPM3BvZyFPYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDU0MjI4WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMmFmYzAxYTQ2NmU0NTQxYjQ0MDE5YTIyYWM4NWUxNTEz MmU4NTExZjVhZDU4MWQwOTQ2YmUxZDI3YTVhZTE4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCb9ec4vGVgj87Qn4opX5hL7gGe830d8DdeZb6zosxd+Scd QNFoo1FPGdSLClDELx1OqOvG1kfGdKGBMXSekyebOngb1Stz2/e5NavIbAM8x/Pe qZzCKynlP3/Uo9Foza7n9nYRoPINmBZuT6A84Pa4ty74R7EUCRDur4AijcZKeWyJ K+WDpoFSfrEV86UbQrA37snbPpf/wM7V11AJ7nxzHJEZLJKGeH5Fd0nXPnQz85aj PeaE5HHn3lTU5Mj8/hWTNuTsuIsHB67l13Wm8LZ8vWIHEe32wvPFZCFCJ+Vv4wKB fz3SRJNZ9asankjgwkL9rdaLGI4tODtVXx4Z4/urAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZmnF8pxU3tHVnjYMVl2qrq7JtFcwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzNkOTI1Y2NlLTA3NTAtNGUyMS05ZDY1LTU2OWE4MzhiNjVkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAALDgwDQYJKoZIhvcNAQELBQADggEBALYxzy1LvW13JsDAJvgqlhK6 QESzTcttx3X4C5pQWS6GYmu85BypPbtgtIzYj4YGOyun66N9VEZAy3kjb9sgeAjc zc+zoA9AtmxtGJcMI3xOBQ1XjsPAO66Y5gLKUOs2HPjKPXNxAtXX8RsaNAemuUSI st3WiLpvKLpW/pp34ET+l/wZ5RwY/bLCTOOHNT4c9BQnYvmDGxjyMt74lJDQLCTO fVdorHQD7FkWhkh/BEYVyXlHnuiizsoIONmGczw7saOYv+b4VKLFcfIUK/mGw4Kn 6VhwjuUUy0sL9q64yX+7EwjJ1TQ8HV5kDgTlHx6EB146qLlvteXMPPg9qKQDiPI= -----END CERTIFICATE-----Generated at Tue Nov 18 08:24:53 2025 by rpki-client