$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9298cb63-aba6-40dc-a840-773148a24d62.roa File: 9298cb63-aba6-40dc-a840-773148a24d62.roa (raw, json) Hash identifier: /lT6r8Toat3Y7GnhNoKsDnsvxDol1q8RT/NHuAWoJe4= Subject key identifier: D1:E7:A9:7C:24:DB:3D:84:69:47:43:D8:AD:64:0A:F7:8F:4A:9D:C1 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 594937FE7B749ABD7D9064461FBD96A9092503F7 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9298cb63-aba6-40dc-a840-773148a24d62.roa Signing time: Fri 31 Oct 2025 01:08:31 +0000 ROA not before: Fri 31 Oct 2025 01:08:31 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:397a::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:49:37:fe:7b:74:9a:bd:7d:90:64:46:1f:bd:96:a9:09:25:03:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 01:08:31 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=e983317fb33e16abeb4b0bd8c78a993300efe4517116fceec6d8f286b04393fe, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b2:b0:f7:7e:eb:b6:da:e4:34:0a:d0:19:4b: d1:0e:cd:85:27:0b:43:40:9d:2e:84:b8:12:79:c7: ba:1b:b7:41:12:86:46:d6:7e:2b:f9:a9:4f:26:89: 0c:27:bc:3b:c3:e0:e1:bd:79:20:93:e7:ca:d1:63: 22:23:e8:5e:af:f7:f9:84:3f:9a:7a:74:a1:b5:80: d3:65:04:34:b6:ce:44:71:b3:9a:41:86:60:1d:b0: 47:2d:7b:a4:de:e4:d5:0b:b4:19:3c:1c:4d:fd:ec: e4:28:94:2c:4c:29:2c:c3:bf:12:47:f9:d8:8d:2d: 33:de:a3:9e:7d:73:d3:dc:31:15:63:0d:7d:01:23: be:86:19:b7:58:de:ca:2d:28:51:8e:5e:73:b4:16: 25:21:aa:01:7f:c8:76:f5:8b:e3:b7:93:ff:e4:e2: 1b:63:d7:ec:b2:80:f7:82:3c:47:70:eb:73:f2:00: e8:e2:29:a3:7a:e6:0b:8d:20:1e:a0:58:c9:ca:e1: 77:71:12:92:67:0d:30:56:3b:40:4c:a0:f4:67:bb: 13:47:bc:1d:46:c3:a8:4e:7e:e2:4c:49:0f:8e:b7: 55:08:ff:41:8d:85:7c:cf:7c:b5:40:19:16:c0:55: 03:3d:e1:cd:7e:61:5c:35:c0:01:f6:75:ea:00:df: 10:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:E7:A9:7C:24:DB:3D:84:69:47:43:D8:AD:64:0A:F7:8F:4A:9D:C1 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/9298cb63-aba6-40dc-a840-773148a24d62.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:397a::/47 Signature Algorithm: sha256WithRSAEncryption b8:00:40:82:d5:c4:bd:73:5a:87:39:35:89:49:bc:3e:14:e3: 47:f7:43:f2:26:7e:4d:dc:d0:31:ec:c4:2b:09:c2:2e:50:33: 39:cb:86:9d:56:5e:64:6d:e8:08:87:6b:f6:fe:14:86:90:9a: 53:91:3b:28:66:02:45:fc:9d:cb:ce:cf:b9:1b:73:7b:cc:06: fa:96:8f:c6:41:d3:25:88:9f:02:c3:53:37:af:0e:b6:78:26: 95:b4:3e:a7:85:d5:0d:26:b3:e1:50:7a:90:43:e6:a1:c1:de: fa:66:78:05:cb:71:ed:51:7c:b0:95:b0:8d:59:cb:6b:3c:51: 7c:41:d9:84:c4:1c:65:f4:02:a5:88:6a:50:d5:5d:30:4e:bb: ae:bf:af:89:aa:87:36:83:ca:4f:b4:0e:05:91:ca:f4:34:db: cc:2b:6f:bf:db:08:15:c1:fa:c7:42:36:f8:68:75:66:5e:d7: cf:6b:66:24:24:5b:6c:e1:c8:59:4c:09:03:31:35:0d:f4:79: 76:42:34:24:92:34:64:0e:e3:ec:b2:d7:97:52:9e:2d:fd:27: 6c:a9:78:be:81:15:a0:f3:10:e8:00:cb:9c:04:23:bf:79:21: 24:a9:6a:f7:e6:99:a7:29:fb:4d:f7:c3:a4:fe:8b:09:fe:a1: 84:bf:46:b9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWUk3/nt0mr19kGRGH72WqQklA/cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDEwODMxWhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlOTgzMzE3ZmIzM2UxNmFiZWI0YjBiZDhjNzhhOTkzMzAw ZWZlNDUxNzExNmZjZWVjNmQ4ZjI4NmIwNDM5M2ZlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPsrD3fuu22uQ0CtAZS9EOzYUnC0NAnS6EuBJ5x7obt0ES hkbWfiv5qU8miQwnvDvD4OG9eSCT58rRYyIj6F6v9/mEP5p6dKG1gNNlBDS2zkRx s5pBhmAdsEcte6Te5NULtBk8HE397OQolCxMKSzDvxJH+diNLTPeo559c9PcMRVj DX0BI76GGbdY3sotKFGOXnO0FiUhqgF/yHb1i+O3k//k4htj1+yygPeCPEdw63Py AOjiKaN65guNIB6gWMnK4XdxEpJnDTBWO0BMoPRnuxNHvB1Gw6hOfuJMSQ+Ot1UI /0GNhXzPfLVAGRbAVQM94c1+YVw1wAH2deoA3xC/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU0eepfCTbPYRpR0PYrWQK949KncEwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzkyOThjYjYzLWFiYTYtNDBkYy1hODQwLTc3MzE0OGEyNGQ2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAOXowDQYJKoZIhvcNAQELBQADggEBALgAQILVxL1zWoc5NYlJvD4U 40f3Q/Imfk3c0DHsxCsJwi5QMznLhp1WXmRt6AiHa/b+FIaQmlOROyhmAkX8ncvO z7kbc3vMBvqWj8ZB0yWInwLDUzevDrZ4JpW0PqeF1Q0ms+FQepBD5qHB3vpmeAXL ce1RfLCVsI1Zy2s8UXxB2YTEHGX0AqWIalDVXTBOu66/r4mqhzaDyk+0DgWRyvQ0 28wrb7/bCBXB+sdCNvhodWZe189rZiQkW2zhyFlMCQMxNQ30eXZCNCSSNGQO4+yy 15dSni39J2ypeL6BFaDzEOgAy5wEI795ISSpavfmmacp+033w6T+iwn+oYS/Rrk= -----END CERTIFICATE-----Generated at Tue Nov 18 08:24:30 2025 by rpki-client