$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5bf3a4c6-204e-496c-ac64-1116b12fff41.roa File: 5bf3a4c6-204e-496c-ac64-1116b12fff41.roa (raw, json) Hash identifier: P3JbgThNU6JIUGooOKqbdbmmuFE9/mNK6iUTGQm9o6k= Subject key identifier: 01:06:35:32:7A:82:9C:E5:15:CA:33:9D:88:48:52:19:92:B8:0B:F9 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0CAB6064CEC7CC429BCAF40645FF9BAEE8390230 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5bf3a4c6-204e-496c-ac64-1116b12fff41.roa Signing time: Fri 31 Oct 2025 02:27:13 +0000 ROA not before: Fri 31 Oct 2025 02:27:13 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1474::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:ab:60:64:ce:c7:cc:42:9b:ca:f4:06:45:ff:9b:ae:e8:39:02:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 02:27:13 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=3fcaa5dcf5fdda58db89028363c9532fa0d7440f409d924d526dd4417a98cd0d, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:62:55:96:e5:af:e7:1a:43:d0:51:2a:6a:93: 3d:98:3c:29:46:e0:62:d4:9c:d7:db:a3:25:12:ab: 79:f9:bb:90:23:6c:e6:33:5f:0c:98:1f:28:17:e7: 44:4c:5d:0a:88:58:d7:5c:30:c6:2d:dd:5c:b8:c5: 73:13:5f:f4:cb:29:d5:e6:8d:c6:9e:b0:3a:f0:ec: 28:9d:0a:df:fa:94:de:a8:80:c0:be:ed:6e:65:9c: 84:1a:44:8f:8b:fb:cc:36:54:1f:15:ae:d4:94:56: 8e:09:1c:74:04:d9:34:c6:7a:b4:70:f8:3a:8b:86: d6:cc:1a:bc:24:75:a4:54:40:14:01:80:14:26:53: 66:e0:6d:3d:41:e1:d0:b3:6e:0c:be:c2:b3:d1:66: fe:e4:f6:75:30:e3:db:d4:55:27:89:50:06:a1:8d: 59:d4:46:52:e1:8e:73:d4:a7:25:a0:84:35:31:46: 5e:07:48:0f:d9:b1:e4:6b:bd:0c:51:ad:77:99:f7: 4e:dc:57:42:1e:24:23:df:d3:62:b7:61:73:a2:b1: ea:26:55:55:52:f2:a4:53:47:30:eb:eb:61:6d:70: 01:14:7f:8a:c2:90:ec:6e:5c:e0:64:86:f1:ea:ea: a0:9c:44:f0:4f:f7:41:7a:d0:e3:26:36:47:ad:96: 37:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:06:35:32:7A:82:9C:E5:15:CA:33:9D:88:48:52:19:92:B8:0B:F9 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5bf3a4c6-204e-496c-ac64-1116b12fff41.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1474::/46 Signature Algorithm: sha256WithRSAEncryption 0d:8f:4e:fb:7c:2b:9c:8c:89:24:dc:81:ec:2f:b6:b6:c7:d9: 07:de:f2:87:57:25:16:c7:57:e7:13:78:61:9d:35:9c:8f:6b: 35:c9:ed:90:90:8f:34:4f:cd:99:ee:de:58:cd:8c:cf:56:5b: 89:2f:23:d9:c9:e4:53:5d:e6:e7:21:71:a4:22:a8:cf:f5:53: e8:c3:6e:ec:f7:22:3f:6f:d9:3d:8c:16:c9:b7:bd:03:77:17: f0:70:d9:c0:1b:ea:77:76:e8:d0:2b:06:a7:1d:a1:2d:34:0d: 5c:a3:5a:21:2b:b4:0c:9c:52:4d:fe:61:5a:6d:e6:ae:1a:49: a0:29:fa:65:44:dd:e8:9f:65:39:72:77:cf:de:1a:e1:c0:7c: 1a:24:6e:c9:a0:b4:7b:4f:7a:55:5a:e1:10:6e:db:8c:39:eb: 26:5e:10:59:33:de:08:fb:41:b4:3d:5e:0b:bd:51:74:72:ce: dd:6d:8b:dd:2e:4a:7d:cc:41:54:9b:d8:d7:f1:d0:ed:90:45: 66:b9:e8:5b:ed:43:d1:bb:18:52:db:cc:f9:7c:b2:45:ff:b7: 9d:0e:4b:c5:46:ca:12:40:9d:42:43:26:59:ff:92:17:ca:f6: 59:50:29:46:bc:47:fe:23:d9:44:40:c0:e6:72:b3:dc:be:cd: d3:72:e6:9c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDKtgZM7HzEKbyvQGRf+brug5AjAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDIyNzEzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZmNhYTVkY2Y1ZmRkYTU4ZGI4OTAyODM2M2M5NTMyZmEw ZDc0NDBmNDA5ZDkyNGQ1MjZkZDQ0MTdhOThjZDBkMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/YlWW5a/nGkPQUSpqkz2YPClG4GLUnNfboyUSq3n5u5Aj bOYzXwyYHygX50RMXQqIWNdcMMYt3Vy4xXMTX/TLKdXmjcaesDrw7CidCt/6lN6o gMC+7W5lnIQaRI+L+8w2VB8VrtSUVo4JHHQE2TTGerRw+DqLhtbMGrwkdaRUQBQB gBQmU2bgbT1B4dCzbgy+wrPRZv7k9nUw49vUVSeJUAahjVnURlLhjnPUpyWghDUx Rl4HSA/ZseRrvQxRrXeZ907cV0IeJCPf02K3YXOiseomVVVS8qRTRzDr62FtcAEU f4rCkOxuXOBkhvHq6qCcRPBP90F60OMmNketljdlAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUAQY1MnqCnOUVyjOdiEhSGZK4C/kwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzViZjNhNGM2LTIwNGUtNDk2Yy1hYzY0LTExMTZiMTJmZmY0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAAFHQwDQYJKoZIhvcNAQELBQADggEBAA2PTvt8K5yMiSTcgewvtrbH 2Qfe8odXJRbHV+cTeGGdNZyPazXJ7ZCQjzRPzZnu3ljNjM9WW4kvI9nJ5FNd5uch caQiqM/1U+jDbuz3Ij9v2T2MFsm3vQN3F/Bw2cAb6nd26NArBqcdoS00DVyjWiEr tAycUk3+YVpt5q4aSaAp+mVE3eifZTlyd8/eGuHAfBokbsmgtHtPelVa4RBu24w5 6yZeEFkz3gj7QbQ9Xgu9UXRyzt1ti90uSn3MQVSb2Nfx0O2QRWa56FvtQ9G7GFLb zPl8skX/t50OS8VGyhJAnUJDJln/khfK9llQKUa8R/4j2URAwOZys9y+zdNy5pw= -----END CERTIFICATE-----Generated at Tue Nov 18 08:24:42 2025 by rpki-client