$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5cea8bc2-5f11-4719-9254-066207da48f2.roa File: 5cea8bc2-5f11-4719-9254-066207da48f2.roa (raw, json) Hash identifier: ZVdH/OwJDcLf3NP4cmyE0MxjSbVkUftRPzO5LWTUDTw= Subject key identifier: 16:8D:14:D9:BA:43:08:67:85:B8:80:B3:DA:93:D7:57:06:E4:DC:4B Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 6974CC43928C739BF3DB6ADCB959B413EF8463A9 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5cea8bc2-5f11-4719-9254-066207da48f2.roa Signing time: Fri 31 Oct 2025 06:13:45 +0000 ROA not before: Fri 31 Oct 2025 06:13:45 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3bd0::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:74:cc:43:92:8c:73:9b:f3:db:6a:dc:b9:59:b4:13:ef:84:63:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 06:13:45 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=5a5cd6a1a56a20322b6c58dacfffc9d68432456ee4b61d0a63f2a852d1a528a4, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:73:fa:30:78:89:f0:57:95:54:7a:99:cf:3e: ee:45:7b:5f:18:b8:f5:be:6a:ae:9a:c2:1e:35:fd: bb:c4:08:64:57:c3:35:2a:33:e7:e0:e7:98:c6:9f: 7d:e9:8d:dd:4d:9f:47:68:d6:f1:f9:f5:33:c9:5b: 60:0c:48:90:51:0a:44:41:f7:9b:20:76:b3:c8:7f: d0:c2:8b:5f:5d:41:13:90:21:a3:5e:1b:bc:ee:cd: ec:16:97:de:6d:cc:72:47:19:ad:04:ec:ff:7e:92: a0:0a:5c:4f:af:71:7c:94:5d:70:e3:16:4b:24:32: 70:e0:d6:a5:fa:1b:ad:dd:ae:20:f6:79:ae:db:53: 39:67:60:b5:86:50:c2:97:f8:12:1c:f6:ef:35:59: c9:12:30:17:b2:2e:0e:37:40:54:1b:01:3f:32:38: d4:96:9c:ef:f1:5d:d5:f7:29:0a:2b:1e:02:cd:ed: 12:70:52:8a:11:d8:5f:0b:b2:20:cd:c1:51:1e:bb: 70:81:c9:8f:61:e3:31:e6:9b:3d:10:57:fa:5e:0a: e2:a3:d0:b4:fe:2b:27:69:bd:ee:70:56:e8:ca:69: a7:fa:6c:38:d6:28:b8:06:9e:62:16:c1:fc:93:12: 08:ff:90:7e:35:f3:a6:e1:12:29:05:91:4b:c9:ce: b0:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:8D:14:D9:BA:43:08:67:85:B8:80:B3:DA:93:D7:57:06:E4:DC:4B X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/5cea8bc2-5f11-4719-9254-066207da48f2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3bd0::/45 Signature Algorithm: sha256WithRSAEncryption 8a:75:24:dc:34:7d:b8:1b:f2:77:6e:de:42:01:db:56:0d:84: 05:c9:13:98:a5:98:ab:f6:79:2e:e0:4a:d6:6f:a8:e1:56:60: de:89:fd:e2:4f:32:bf:a2:b2:49:e2:cd:5b:87:d8:df:02:c8: 95:6e:b2:b8:77:bd:d9:7f:35:d0:f6:77:10:b1:7c:84:fc:25: 38:c8:6a:9c:e4:53:f1:d2:25:09:0e:d8:c1:03:8d:d8:76:10: 92:02:83:99:66:96:72:43:70:1d:c5:88:58:68:c1:4b:c2:85: 3a:e5:22:91:77:a8:21:3f:cf:aa:b4:e9:be:ae:2c:91:8d:12: 74:f3:42:d0:5c:9c:55:82:47:4a:c3:ca:20:89:54:21:14:71: 61:7b:36:06:ff:99:14:2d:82:1e:9b:b6:9f:f9:12:85:79:47: 44:55:3d:6e:a8:49:42:d8:0c:2c:fb:f9:e1:d9:58:51:1a:19: c0:a9:6c:80:6c:d5:32:06:93:de:8f:7d:32:34:3f:48:2c:db: ee:78:c8:47:5e:c7:62:e5:00:99:58:00:57:d6:cc:cf:3d:9c: 63:dd:81:5e:ae:db:91:21:58:7c:9a:40:7a:7c:92:54:5e:3a: cd:a6:5d:7b:19:6e:4f:27:e4:c1:d9:67:10:74:1f:d8:5b:08: 02:01:03:94 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUaXTMQ5KMc5vz22rcuVm0E++EY6kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDYxMzQ1WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YTVjZDZhMWE1NmEyMDMyMmI2YzU4ZGFjZmZmYzlkNjg0 MzI0NTZlZTRiNjFkMGE2M2YyYTg1MmQxYTUyOGE0MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0c/oweInwV5VUepnPPu5Fe18YuPW+aq6awh41/bvECGRX wzUqM+fg55jGn33pjd1Nn0do1vH59TPJW2AMSJBRCkRB95sgdrPIf9DCi19dQROQ IaNeG7zuzewWl95tzHJHGa0E7P9+kqAKXE+vcXyUXXDjFkskMnDg1qX6G63driD2 ea7bUzlnYLWGUMKX+BIc9u81WckSMBeyLg43QFQbAT8yONSWnO/xXdX3KQorHgLN 7RJwUooR2F8LsiDNwVEeu3CByY9h4zHmmz0QV/peCuKj0LT+Kydpve5wVujKaaf6 bDjWKLgGnmIWwfyTEgj/kH4186bhEikFkUvJzrD/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUFo0U2bpDCGeFuICz2pPXVwbk3EswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzVjZWE4YmMyLTVmMTEtNDcxOS05MjU0LTA2NjIwN2RhNDhmMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAAO9AwDQYJKoZIhvcNAQELBQADggEBAIp1JNw0fbgb8ndu3kIB21YN hAXJE5ilmKv2eS7gStZvqOFWYN6J/eJPMr+isknizVuH2N8CyJVusrh3vdl/NdD2 dxCxfIT8JTjIapzkU/HSJQkO2MEDjdh2EJICg5lmlnJDcB3FiFhowUvChTrlIpF3 qCE/z6q06b6uLJGNEnTzQtBcnFWCR0rDyiCJVCEUcWF7Ngb/mRQtgh6btp/5EoV5 R0RVPW6oSULYDCz7+eHZWFEaGcCpbIBs1TIGk96PfTI0P0gs2+54yEdex2LlAJlY AFfWzM89nGPdgV6u25EhWHyaQHp8klReOs2mXXsZbk8n5MHZZxB0H9hbCAIBA5Q= -----END CERTIFICATE-----Generated at Tue Nov 18 08:24:57 2025 by rpki-client