$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/437abaab-bba0-42bf-a023-d0e0fd49f048.roa File: 437abaab-bba0-42bf-a023-d0e0fd49f048.roa (raw, json) Hash identifier: SmVgspVpZNkiRdY6mpuTWfcGOF4vHpwdPiZp/ChfDeU= Subject key identifier: E5:1B:9C:42:58:32:C6:7A:59:59:7C:96:0F:0D:DD:25:22:FE:98:87 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4D203E06EE69823C028EFB21E4A29683696781CF Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/437abaab-bba0-42bf-a023-d0e0fd49f048.roa Signing time: Thu 30 Oct 2025 23:37:00 +0000 ROA not before: Thu 30 Oct 2025 23:37:00 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2df6::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:20:3e:06:ee:69:82:3c:02:8e:fb:21:e4:a2:96:83:69:67:81:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 23:37:00 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=abf5acc189e9de3d5b6b558954498753e6b81f558f8114d099c58858e597c92c, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e4:ce:8c:53:e2:07:a5:b2:c1:04:ce:d5:eb: 87:38:64:b7:63:92:03:6d:e0:bc:2a:e5:aa:9f:71: 8f:c9:63:8e:30:57:e4:b9:dd:70:eb:9e:04:a7:02: 9b:88:f8:4e:77:30:82:d5:75:e5:33:e2:65:63:e0: 2f:26:15:cc:49:ff:dd:c2:17:27:ab:aa:f0:7a:fe: a4:3e:2a:5f:ea:3d:3d:68:62:7a:2b:47:e3:cd:14: 7e:4f:db:02:7c:84:47:a3:71:f5:8c:e7:82:b3:46: 27:34:96:a5:c0:f6:55:7f:0f:42:dc:fb:30:47:39: fd:1a:12:87:fb:7a:ad:98:31:eb:28:f1:b2:34:9c: d2:af:8d:24:f5:10:d3:13:bf:a6:81:87:b4:e6:75: 46:ed:b1:3e:ad:70:c6:63:d8:df:a6:33:59:7c:71: 6f:d8:84:fe:ba:f3:93:b7:46:58:42:70:7e:1f:10: ea:45:b1:b1:a6:8f:3f:98:cc:7f:7e:ae:ee:03:d4: 5f:e4:a3:e6:ab:d6:e2:5e:32:0a:e5:48:77:2d:c6: c9:1b:79:07:ff:7d:5a:27:7d:db:d7:b0:b9:14:3a: 6d:b8:57:cb:77:9b:78:92:77:14:ce:cc:43:9e:fd: 07:92:64:cb:d2:63:60:09:5b:2f:87:ee:d3:d8:c0: be:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:1B:9C:42:58:32:C6:7A:59:59:7C:96:0F:0D:DD:25:22:FE:98:87 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/437abaab-bba0-42bf-a023-d0e0fd49f048.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2df6::/47 Signature Algorithm: sha256WithRSAEncryption 14:e8:06:b2:39:1e:90:18:af:ad:e7:92:c4:ae:2a:b8:f7:10: ed:c5:29:15:2d:db:61:32:b3:26:ea:51:1f:81:f0:7c:28:02: 96:f5:f8:a1:bd:95:da:13:9c:21:c3:54:9e:52:84:d3:2f:8a: 93:4e:7f:bd:1a:1f:23:16:45:3b:68:2b:6f:22:29:a4:e5:38: 6b:e4:b8:8d:5e:c1:3b:ab:49:93:18:ae:b8:d1:8d:07:37:06: 2c:fd:d8:7f:ba:8d:b6:a4:9a:ae:b4:f4:b5:89:2a:d7:6c:56: a5:02:ba:a0:70:5a:6d:ea:91:0a:c3:ec:57:af:2c:65:68:c4: 51:7b:40:46:9e:65:7a:5f:07:60:67:f4:dc:cc:9b:a4:93:3f: 3e:61:79:ca:78:2d:03:16:6a:d4:8f:d7:e4:3b:d2:32:42:97: 38:10:a4:b6:b2:c0:ca:76:26:89:6d:54:cd:ca:5c:d5:44:a7: 1d:48:db:3e:54:c5:0e:b2:15:1e:10:1a:c0:66:ae:ef:cf:5c: 0f:08:60:e4:74:5e:5d:85:6b:a3:5e:79:0c:37:19:27:72:56: 81:cc:d3:e1:84:c8:89:66:be:07:81:e5:e1:67:b6:fa:31:f7: d5:7f:d5:28:74:23:b4:86:23:0f:73:0c:1f:10:42:85:34:1c: b0:52:6c:7b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTSA+Bu5pgjwCjvsh5KKWg2lngc8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjMzNzAwWhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYmY1YWNjMTg5ZTlkZTNkNWI2YjU1ODk1NDQ5ODc1M2U2 YjgxZjU1OGY4MTE0ZDA5OWM1ODg1OGU1OTdjOTJjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC65M6MU+IHpbLBBM7V64c4ZLdjkgNt4Lwq5aqfcY/JY44w V+S53XDrngSnApuI+E53MILVdeUz4mVj4C8mFcxJ/93CFyerqvB6/qQ+Kl/qPT1o YnorR+PNFH5P2wJ8hEejcfWM54KzRic0lqXA9lV/D0Lc+zBHOf0aEof7eq2YMeso 8bI0nNKvjST1ENMTv6aBh7TmdUbtsT6tcMZj2N+mM1l8cW/YhP6685O3RlhCcH4f EOpFsbGmjz+YzH9+ru4D1F/ko+ar1uJeMgrlSHctxskbeQf/fVonfdvXsLkUOm24 V8t3m3iSdxTOzEOe/QeSZMvSY2AJWy+H7tPYwL4fAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5RucQlgyxnpZWXyWDw3dJSL+mIcwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzQzN2FiYWFiLWJiYTAtNDJiZi1hMDIzLWQwZTBmZDQ5ZjA0OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAALfYwDQYJKoZIhvcNAQELBQADggEBABToBrI5HpAYr63nksSuKrj3 EO3FKRUt22EysybqUR+B8HwoApb1+KG9ldoTnCHDVJ5ShNMvipNOf70aHyMWRTto K28iKaTlOGvkuI1ewTurSZMYrrjRjQc3Biz92H+6jbakmq609LWJKtdsVqUCuqBw Wm3qkQrD7FevLGVoxFF7QEaeZXpfB2Bn9NzMm6STPz5hecp4LQMWatSP1+Q70jJC lzgQpLaywMp2JoltVM3KXNVEpx1I2z5UxQ6yFR4QGsBmru/PXA8IYOR0Xl2Fa6Ne eQw3GSdyVoHM0+GEyIlmvgeB5eFntvox99V/1Sh0I7SGIw9zDB8QQoU0HLBSbHs= -----END CERTIFICATE-----Generated at Tue Nov 18 08:24:56 2025 by rpki-client