$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a97b0065-11d4-4ed4-8753-710326fe0f33.roa File: a97b0065-11d4-4ed4-8753-710326fe0f33.roa (raw, json) Hash identifier: fEPT3GCJQAnvHj9hIuugWYS6waguqyIe40plYFcOEAs= Subject key identifier: ED:C3:57:B2:DF:2E:4B:7D:C2:13:D0:3A:C3:A2:BA:1E:62:51:6F:99 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3309CAE6FEFCB8164E6CD7F2416FB7614FE00335 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a97b0065-11d4-4ed4-8753-710326fe0f33.roa Signing time: Fri 31 Oct 2025 00:54:55 +0000 ROA not before: Fri 31 Oct 2025 00:54:55 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3838::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:09:ca:e6:fe:fc:b8:16:4e:6c:d7:f2:41:6f:b7:61:4f:e0:03:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 00:54:55 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=ac05903ec86e5c85a954d41bff329101541c242c73841f179c34bec7602fba1c, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:7f:bb:94:6f:8e:3f:74:22:56:a0:8d:87:fe: 5b:25:1c:51:ef:a7:24:cc:89:bd:c7:aa:35:e0:78: fe:d9:95:11:7c:ee:31:ea:90:36:6a:e5:de:db:d6: b6:fc:9f:9a:29:b0:a7:b4:ce:67:dd:54:63:73:86: d0:61:55:06:14:42:fc:d4:3a:3e:c6:b7:6f:af:71: f3:c3:cd:a8:d3:aa:a1:d0:d0:f3:57:bf:d4:9f:eb: 31:15:e1:c8:e5:92:43:47:f1:b3:5b:e3:96:80:59: e1:87:10:8c:07:bd:cf:51:b7:5f:0a:60:b2:ca:12: ea:e3:65:d9:b1:09:39:c6:10:9e:ae:8d:ed:9e:71: 5c:12:0d:52:29:be:55:e2:fb:bc:6e:d1:98:82:2f: 91:09:c7:3f:c5:1e:29:46:4b:ba:59:17:91:ce:b1: 5e:41:8b:7f:a9:e0:c7:94:09:90:34:1e:c3:c6:5b: d1:2d:7a:fe:37:e3:ce:57:7e:92:da:2f:c6:b0:21: b0:91:89:4d:b0:6e:9f:af:98:b5:10:43:23:3f:f4: fb:64:27:4c:f3:2a:76:8b:ee:42:b9:5a:31:83:17: cd:39:fc:e9:59:94:79:19:43:7d:7d:e9:07:59:dc: db:84:94:bc:83:78:69:8b:4d:39:94:1f:6d:ab:45: e0:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:C3:57:B2:DF:2E:4B:7D:C2:13:D0:3A:C3:A2:BA:1E:62:51:6F:99 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a97b0065-11d4-4ed4-8753-710326fe0f33.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3838::/47 Signature Algorithm: sha256WithRSAEncryption 9c:13:2f:46:e0:53:9e:16:b1:8a:61:bb:ae:67:15:3b:5a:1f: 61:3d:41:b3:a9:7e:d4:b9:65:ad:ba:79:0e:66:0d:09:b0:30: be:f2:a3:f1:7a:30:96:c9:f6:60:c4:1d:6d:f0:a8:d9:52:5e: 31:7d:05:a5:91:0c:9f:2d:82:50:9f:c6:8b:dc:98:2a:2e:c5: 0a:e5:86:e1:77:a7:53:fd:cb:86:4d:3a:40:17:b5:8e:51:d3: 64:a5:69:cb:c1:0e:eb:c1:9e:0e:1e:84:01:cc:88:cd:e6:85: 45:15:c8:65:1f:51:0c:8b:f2:b1:5f:49:90:13:b1:9e:93:d3: 39:b6:a9:b1:7c:bb:cf:f0:31:aa:f3:84:a7:07:b4:df:56:c7: 5f:4d:31:13:b3:0f:8a:66:e6:dc:ad:0d:ae:00:eb:de:5f:d3: 27:b5:cb:99:72:2d:52:49:e9:c7:b9:10:4d:d5:af:1e:f9:86: 8c:54:ed:b9:f4:35:19:c7:55:59:56:e6:4f:27:ae:6e:aa:ff: f2:1a:05:97:00:91:b0:38:01:ef:d7:d8:90:81:66:00:c3:df: bc:b4:01:2c:e5:e6:09:a6:a3:22:e4:44:52:10:8d:12:a8:6f: 63:87:18:20:62:f2:4d:1b:37:05:cf:73:2e:16:cc:6e:cb:f3: 8b:c1:27:41 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMwnK5v78uBZObNfyQW+3YU/gAzUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDA1NDU1WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYzA1OTAzZWM4NmU1Yzg1YTk1NGQ0MWJmZjMyOTEwMTU0 MWMyNDJjNzM4NDFmMTc5YzM0YmVjNzYwMmZiYTFjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3f7uUb44/dCJWoI2H/lslHFHvpyTMib3HqjXgeP7ZlRF8 7jHqkDZq5d7b1rb8n5opsKe0zmfdVGNzhtBhVQYUQvzUOj7Gt2+vcfPDzajTqqHQ 0PNXv9Sf6zEV4cjlkkNH8bNb45aAWeGHEIwHvc9Rt18KYLLKEurjZdmxCTnGEJ6u je2ecVwSDVIpvlXi+7xu0ZiCL5EJxz/FHilGS7pZF5HOsV5Bi3+p4MeUCZA0HsPG W9Etev43485XfpLaL8awIbCRiU2wbp+vmLUQQyM/9PtkJ0zzKnaL7kK5WjGDF805 /OlZlHkZQ3196QdZ3NuElLyDeGmLTTmUH22rReALAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU7cNXst8uS33CE9A6w6K6HmJRb5kwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2E5N2IwMDY1LTExZDQtNGVkNC04NzUzLTcxMDMyNmZlMGYzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAODgwDQYJKoZIhvcNAQELBQADggEBAJwTL0bgU54WsYphu65nFTta H2E9QbOpftS5Za26eQ5mDQmwML7yo/F6MJbJ9mDEHW3wqNlSXjF9BaWRDJ8tglCf xovcmCouxQrlhuF3p1P9y4ZNOkAXtY5R02SlacvBDuvBng4ehAHMiM3mhUUVyGUf UQyL8rFfSZATsZ6T0zm2qbF8u8/wMarzhKcHtN9Wx19NMROzD4pm5tytDa4A695f 0ye1y5lyLVJJ6ce5EE3Vrx75hoxU7bn0NRnHVVlW5k8nrm6q//IaBZcAkbA4Ae/X 2JCBZgDD37y0ASzl5gmmoyLkRFIQjRKob2OHGCBi8k0bNwXPcy4WzG7L84vBJ0E= -----END CERTIFICATE-----Generated at Tue Nov 18 08:24:14 2025 by rpki-client