$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/68a8a765-5b57-4a6d-b899-4440772f8916.roa File: 68a8a765-5b57-4a6d-b899-4440772f8916.roa (raw, json) Hash identifier: 3eAd5goo+3U5E/J44mndnQ+NfVWaG1JqhvJosepC+ac= Subject key identifier: CB:7C:06:E0:07:28:49:AE:C1:0D:38:52:01:9F:52:78:54:5E:50:06 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 59A667728741C6B978B285DFBA82BFFBB58AA82A Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/68a8a765-5b57-4a6d-b899-4440772f8916.roa Signing time: Fri 31 Oct 2025 06:38:43 +0000 ROA not before: Fri 31 Oct 2025 06:38:43 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:1a40::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:a6:67:72:87:41:c6:b9:78:b2:85:df:ba:82:bf:fb:b5:8a:a8:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 06:38:43 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=a35aec9b1fbadfe49542f4c32f9480fac9d46d19e3feb3a1986198fd7af3d7c8, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:de:3d:03:f7:10:bb:1f:3a:a7:57:a6:99:ba: e7:b2:c5:cc:1a:65:1e:be:6d:dc:9a:4f:13:3a:11: cd:ac:60:f3:88:1b:9f:94:2b:6a:cc:cd:5a:0e:81: 90:2a:87:01:14:8d:4a:64:d3:6b:42:b9:b5:03:85: b3:bc:81:be:35:dd:89:45:e2:de:c3:b2:de:db:55: c2:c3:03:70:d9:44:cc:20:ba:dc:d2:f9:82:ed:c8: 45:42:e8:71:54:c5:b1:2c:30:02:74:4e:98:d3:6f: 4f:48:f1:28:ea:20:18:a8:d6:f5:1c:d8:60:24:64: d6:78:39:74:8e:49:f4:d9:08:21:51:3a:67:91:e7: a6:ee:10:03:d0:76:16:c5:a7:47:56:08:ef:43:c3: 7d:08:8d:08:ba:f0:41:ef:55:96:23:23:bc:d0:42: 49:bd:d7:81:ac:a7:c3:eb:a8:d8:40:a0:ce:54:45: 24:ec:4a:f4:94:e4:f2:ba:28:7a:e9:ed:b0:50:ae: d6:2b:27:25:0d:c4:15:8d:99:5c:8a:38:4a:ee:fd: b8:a5:66:52:03:b0:25:ef:93:b1:6f:7a:5b:c2:30: 59:0c:4f:cc:62:e0:7a:63:2e:9e:4e:04:ac:ab:8c: e9:c2:06:2b:82:6c:4d:74:ce:a3:17:10:9b:b0:f4: 9e:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:7C:06:E0:07:28:49:AE:C1:0D:38:52:01:9F:52:78:54:5E:50:06 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/68a8a765-5b57-4a6d-b899-4440772f8916.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:1a40::/44 Signature Algorithm: sha256WithRSAEncryption 81:0d:06:72:07:be:41:7f:da:87:7c:55:2a:54:bd:91:57:30: dd:5f:44:ff:da:4e:cc:b3:0e:87:c6:b9:3b:2c:f6:73:44:38: 58:c9:68:bf:f7:52:2a:25:4d:2e:3b:bb:05:dd:7f:52:2b:59: fb:d7:17:77:1a:2c:77:f7:d4:1f:7e:71:01:e3:2f:1d:fb:a0: 22:66:31:22:5d:3a:6f:f5:c7:16:9a:e2:2d:57:82:f4:91:f0: 3e:ce:db:29:c1:f9:49:c3:40:f7:47:7e:c7:2d:f2:83:65:db: 69:79:65:ef:69:b4:7d:ef:cc:7d:57:5b:37:95:01:62:ea:95: 7f:77:22:9e:39:f2:ad:bc:4b:57:4b:ac:d0:23:c0:33:e4:2d: a0:58:5e:6f:15:7f:17:54:00:ad:81:8a:62:d9:fd:92:22:9c: 8a:3d:e7:f4:40:09:b8:c6:c3:b3:8b:b4:72:0c:27:89:4a:00: fa:21:db:a3:4b:f0:db:78:ac:44:99:d9:1a:94:a6:c8:d7:94: 49:21:c1:2a:d7:1f:2e:3f:a4:ca:c4:9a:4f:aa:cf:f3:4a:80: 31:02:11:aa:e0:2f:71:01:69:18:58:87:3b:bd:f6:c3:c7:8b: 1b:f6:3f:84:12:a5:35:e9:e6:62:93:dc:89:1a:75:11:eb:60: 16:d5:85:e5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWaZncodBxrl4soXfuoK/+7WKqCowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDYzODQzWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMzVhZWM5YjFmYmFkZmU0OTU0MmY0YzMyZjk0ODBmYWM5 ZDQ2ZDE5ZTNmZWIzYTE5ODYxOThmZDdhZjNkN2M4MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDn3j0D9xC7HzqnV6aZuueyxcwaZR6+bdyaTxM6Ec2sYPOI G5+UK2rMzVoOgZAqhwEUjUpk02tCubUDhbO8gb413YlF4t7Dst7bVcLDA3DZRMwg utzS+YLtyEVC6HFUxbEsMAJ0TpjTb09I8SjqIBio1vUc2GAkZNZ4OXSOSfTZCCFR OmeR56buEAPQdhbFp0dWCO9Dw30IjQi68EHvVZYjI7zQQkm914Gsp8PrqNhAoM5U RSTsSvSU5PK6KHrp7bBQrtYrJyUNxBWNmVyKOEru/bilZlIDsCXvk7FvelvCMFkM T8xi4HpjLp5OBKyrjOnCBiuCbE10zqMXEJuw9J6FAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUy3wG4AcoSa7BDThSAZ9SeFReUAYwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzY4YThhNzY1LTViNTctNGE2ZC1iODk5LTQ0NDA3NzJmODkxNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAJAAGkAwDQYJKoZIhvcNAQELBQADggEBAIENBnIHvkF/2od8VSpUvZFX MN1fRP/aTsyzDofGuTss9nNEOFjJaL/3UiolTS47uwXdf1IrWfvXF3caLHf31B9+ cQHjLx37oCJmMSJdOm/1xxaa4i1XgvSR8D7O2ynB+UnDQPdHfsct8oNl22l5Ze9p tH3vzH1XWzeVAWLqlX93Ip458q28S1dLrNAjwDPkLaBYXm8VfxdUAK2BimLZ/ZIi nIo95/RACbjGw7OLtHIMJ4lKAPoh26NL8Nt4rESZ2RqUpsjXlEkhwSrXHy4/pMrE mk+qz/NKgDECEargL3EBaRhYhzu99sPHixv2P4QSpTXp5mKT3IkadRHrYBbVheU= -----END CERTIFICATE-----Generated at Tue Nov 18 05:41:41 2025 by rpki-client