$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4b7de0a9-5499-45b2-9d99-9749258471dc.roa File: 4b7de0a9-5499-45b2-9d99-9749258471dc.roa (raw, json) Hash identifier: 1h5xPdImusXZWg5nRjqM55MmXXFHiki7h5CAgqHXY+4= Subject key identifier: 8A:96:CF:0A:0B:B9:FC:22:F8:BB:B2:9E:E9:2F:61:91:38:46:E6:C0 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 4287366F460148AC03810504395D40D95F2C1052 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4b7de0a9-5499-45b2-9d99-9749258471dc.roa Signing time: Thu 30 Oct 2025 23:12:08 +0000 ROA not before: Thu 30 Oct 2025 23:12:08 +0000 ROA not after: Thu 04 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2bc8::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:87:36:6f:46:01:48:ac:03:81:05:04:39:5d:40:d9:5f:2c:10:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 30 23:12:08 2025 GMT Not After : Dec 4 23:59:59 2025 GMT Subject: serialNumber=c6e1008e335aeafb4af73bd9294e0f39c1fdcdf56fcce50bd49dac2a5d658c84, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ec:06:4e:f3:7d:fa:38:24:d8:61:fb:e6:d7: 48:35:b8:25:48:bf:df:e0:3e:99:29:09:76:92:cf: 49:e7:35:ac:d4:26:c3:98:77:82:10:f9:9e:df:db: 84:08:bf:0f:84:ce:d7:a7:4e:07:1c:ba:d8:88:7a: e3:3a:50:3e:b2:6a:54:34:86:38:22:7a:45:39:2a: d4:53:3a:28:e8:42:b7:b1:77:dc:9a:9b:11:12:21: 89:ab:66:62:e8:38:5d:16:e1:5b:5d:3c:b2:28:88: 58:46:ce:b5:88:5c:6b:dc:f2:e7:45:82:86:59:06: 34:74:b7:d6:42:e8:46:c7:e4:59:27:0c:5a:bf:fb: 0c:99:c7:af:20:70:fb:6f:8c:fe:de:ec:9f:9b:ac: 5c:8f:ae:12:61:75:2d:5e:27:31:fd:ec:99:1f:6c: b4:0e:e5:e4:6a:44:0b:fd:75:b3:95:33:ba:1d:5b: 80:8c:de:8f:01:f5:d3:62:4c:13:9d:c2:d5:89:bc: 94:41:97:c4:5e:60:c4:af:17:48:55:40:6e:2b:50: 4a:ca:9e:93:11:e0:f1:93:df:d3:54:98:35:be:2f: 96:37:0f:2a:bd:58:69:2f:6b:b0:05:7d:9e:64:8b: 5f:ae:8f:0b:cb:07:c6:51:bc:80:96:0e:e1:8c:b3: 9d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:96:CF:0A:0B:B9:FC:22:F8:BB:B2:9E:E9:2F:61:91:38:46:E6:C0 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4b7de0a9-5499-45b2-9d99-9749258471dc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2bc8::/47 Signature Algorithm: sha256WithRSAEncryption a1:b8:8b:45:ad:d0:e4:ef:f8:cd:95:e1:29:fb:f8:b0:02:b9: f6:6e:5d:e4:51:aa:3e:60:dd:0e:16:c9:94:5a:0e:32:cd:6a: e0:f3:ce:85:f5:41:a4:31:fa:e8:ed:d2:57:9e:13:ad:5a:e6: ee:12:25:b0:03:59:1a:70:c2:40:00:e4:6c:36:61:10:fe:72: 3e:85:92:e1:ed:f9:da:da:c1:26:b6:6f:63:f0:83:e2:30:9f: 97:64:9f:e0:6e:ca:d8:03:15:eb:97:23:d6:fe:4c:82:47:30: ad:af:eb:14:0e:d0:f4:78:c6:8c:f5:e8:41:94:be:89:f6:1c: 12:7a:d1:7a:63:b5:3f:8c:6e:c6:37:34:24:c0:2d:29:03:6b: 87:6e:f5:bb:93:a0:23:7f:29:22:e8:d8:26:7a:61:b5:9b:b5: fa:45:80:e9:52:a0:36:85:73:38:d0:d3:5e:c3:64:5a:9d:f1: 6e:54:3b:5c:cc:45:54:b7:1f:73:f2:13:50:21:f8:16:66:17: c8:a9:d0:cf:dd:5e:88:d7:65:b3:29:9c:81:c6:ed:7a:48:28: 86:d2:12:85:47:16:5b:ae:87:c9:29:05:f8:2c:61:11:9c:ca: 08:ad:75:1e:86:07:06:6e:74:e6:49:ff:17:e6:07:a1:d5:e7: 29:cd:ee:ba -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQoc2b0YBSKwDgQUEOV1A2V8sEFIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMwMjMxMjA4WhcNMjUxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNmUxMDA4ZTMzNWFlYWZiNGFmNzNiZDkyOTRlMGYzOWMx ZmRjZGY1NmZjY2U1MGJkNDlkYWMyYTVkNjU4Yzg0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC77AZO8336OCTYYfvm10g1uCVIv9/gPpkpCXaSz0nnNazU JsOYd4IQ+Z7f24QIvw+EztenTgccutiIeuM6UD6yalQ0hjgiekU5KtRTOijoQrex d9yamxESIYmrZmLoOF0W4VtdPLIoiFhGzrWIXGvc8udFgoZZBjR0t9ZC6EbH5Fkn DFq/+wyZx68gcPtvjP7e7J+brFyPrhJhdS1eJzH97JkfbLQO5eRqRAv9dbOVM7od W4CM3o8B9dNiTBOdwtWJvJRBl8ReYMSvF0hVQG4rUErKnpMR4PGT39NUmDW+L5Y3 Dyq9WGkva7AFfZ5ki1+ujwvLB8ZRvICWDuGMs52fAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUipbPCgu5/CL4u7Ke6S9hkThG5sAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzRiN2RlMGE5LTU0OTktNDViMi05ZDk5LTk3NDkyNTg0NzFkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAK8gwDQYJKoZIhvcNAQELBQADggEBAKG4i0Wt0OTv+M2V4Sn7+LAC ufZuXeRRqj5g3Q4WyZRaDjLNauDzzoX1QaQx+ujt0leeE61a5u4SJbADWRpwwkAA 5Gw2YRD+cj6FkuHt+drawSa2b2Pwg+Iwn5dkn+BuytgDFeuXI9b+TIJHMK2v6xQO 0PR4xoz16EGUvon2HBJ60XpjtT+MbsY3NCTALSkDa4du9buToCN/KSLo2CZ6YbWb tfpFgOlSoDaFczjQ017DZFqd8W5UO1zMRVS3H3PyE1Ah+BZmF8ip0M/dXojXZbMp nIHG7XpIKIbSEoVHFluuh8kpBfgsYRGcygitdR6GBwZudOZJ/xfmB6HV5ynN7ro= -----END CERTIFICATE-----Generated at Tue Nov 18 08:24:12 2025 by rpki-client