$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/aff3d811-8038-4524-b95d-a24fab8041dd.roa File: aff3d811-8038-4524-b95d-a24fab8041dd.roa (raw, json) Hash identifier: PyYv4cYVAjm0uMBVtQYypUPy8CbKxuc6kgEUQ+zQUdM= Subject key identifier: 7A:D2:8F:D8:A2:1A:F7:F2:BD:65:E3:F9:89:7B:45:1E:90:FD:CC:F2 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 0DFA8B02EBF66C91B63C701F44AF6620DC6C540A Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/aff3d811-8038-4524-b95d-a24fab8041dd.roa Signing time: Fri 31 Oct 2025 04:13:37 +0000 ROA not before: Fri 31 Oct 2025 04:13:37 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3690::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:fa:8b:02:eb:f6:6c:91:b6:3c:70:1f:44:af:66:20:dc:6c:54:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 04:13:37 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=0eb25ec6a165d3d5f3904ab126c9d4fee3418530a20f42152b13ab28dc159fee, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b1:d2:01:2f:af:80:a4:96:a3:63:7f:1e:bf: 51:e9:7b:5a:16:76:b5:06:82:52:8e:e4:b6:7b:95: 94:52:ca:87:14:43:30:e7:17:3b:ea:d6:7c:70:48: 67:25:f3:06:93:5d:e0:21:54:7c:5f:99:72:b7:cf: b3:fe:62:bf:41:f8:3a:84:19:f9:2f:41:22:1c:69: ee:68:d0:53:23:3c:a0:b4:47:0e:1a:76:3e:4a:16: 89:ee:34:ad:67:d8:c3:8c:42:f6:a2:e3:77:2f:b6: 06:49:3e:ba:84:3c:8e:d1:41:a8:fc:93:e4:86:c4: 05:75:a3:9e:13:df:a0:a0:47:b7:bc:74:02:56:a6: 4e:16:5e:df:5b:f3:6a:27:1f:4d:f6:bd:84:56:b7: cd:56:98:44:4c:73:97:ee:65:19:76:fe:df:99:2d: d8:5a:9c:75:da:9b:e5:9e:1c:bb:a9:82:d7:d3:e5: d8:fb:fc:02:24:48:31:67:25:ed:e7:45:dd:25:1e: 22:37:05:32:8f:bd:65:3d:eb:37:5e:96:63:db:96: 63:db:a3:85:85:b8:48:1e:48:6d:96:ee:d6:44:6c: 54:85:95:09:a6:ac:77:f6:66:ba:4d:f2:9f:69:44: 3f:39:37:36:ae:59:75:00:5c:47:82:61:c3:47:c5: 02:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:D2:8F:D8:A2:1A:F7:F2:BD:65:E3:F9:89:7B:45:1E:90:FD:CC:F2 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/aff3d811-8038-4524-b95d-a24fab8041dd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3690::/46 Signature Algorithm: sha256WithRSAEncryption 2f:cb:27:dd:2e:2f:44:c2:10:b5:59:59:17:58:8c:75:2a:3f: 80:77:01:f1:64:b4:1f:15:c7:fa:26:04:a6:13:57:d3:66:68: a6:75:6e:1c:33:3b:2d:a3:bb:9c:9d:50:82:95:c6:38:28:08: 40:04:25:ed:5d:cb:24:30:88:2a:46:9e:2e:75:05:21:d2:29: 92:a8:ba:9c:af:a2:d9:32:46:d7:e6:71:c1:0e:ac:92:80:ce: 31:b2:65:e5:ea:e7:2d:98:97:87:12:d2:a0:36:d6:9a:5a:9d: d5:11:61:7d:ba:75:1e:39:79:ec:87:69:09:7f:cd:3b:e3:53: 4d:b5:f5:e8:d8:b9:32:48:54:d0:fd:f9:f1:3b:e1:0a:8d:6d: 82:01:c5:19:eb:d9:21:ce:f5:e9:25:c4:35:3b:de:ac:e7:63: 57:38:98:0e:97:d0:32:71:f7:95:91:ce:c0:49:37:cf:0e:d7: de:7b:14:65:93:4b:00:1d:0f:01:d6:7e:56:0d:88:d1:11:53: 62:c7:87:9e:de:f3:5e:5b:4d:75:ef:11:4a:fa:0c:a1:72:2d: 1b:82:47:11:c0:ca:05:a0:24:b9:67:1a:57:1b:c0:61:76:54: 33:7c:8a:09:b5:eb:6e:45:bf:f2:6c:62:4a:9a:97:99:88:6a: 64:6a:2d:e1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDfqLAuv2bJG2PHAfRK9mINxsVAowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDQxMzM3WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZWIyNWVjNmExNjVkM2Q1ZjM5MDRhYjEyNmM5ZDRmZWUz NDE4NTMwYTIwZjQyMTUyYjEzYWIyOGRjMTU5ZmVlMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUsdIBL6+ApJajY38ev1Hpe1oWdrUGglKO5LZ7lZRSyocU QzDnFzvq1nxwSGcl8waTXeAhVHxfmXK3z7P+Yr9B+DqEGfkvQSIcae5o0FMjPKC0 Rw4adj5KFonuNK1n2MOMQvai43cvtgZJPrqEPI7RQaj8k+SGxAV1o54T36CgR7e8 dAJWpk4WXt9b82onH032vYRWt81WmERMc5fuZRl2/t+ZLdhanHXam+WeHLupgtfT 5dj7/AIkSDFnJe3nRd0lHiI3BTKPvWU96zdelmPblmPbo4WFuEgeSG2W7tZEbFSF lQmmrHf2ZrpN8p9pRD85NzauWXUAXEeCYcNHxQL1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUetKP2KIa9/K9ZeP5iXtFHpD9zPIwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2FmZjNkODExLTgwMzgtNDUyNC1iOTVkLWEyNGZhYjgwNDFkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAJAANpAwDQYJKoZIhvcNAQELBQADggEBAC/LJ90uL0TCELVZWRdYjHUq P4B3AfFktB8Vx/omBKYTV9NmaKZ1bhwzOy2ju5ydUIKVxjgoCEAEJe1dyyQwiCpG ni51BSHSKZKoupyvotkyRtfmccEOrJKAzjGyZeXq5y2Yl4cS0qA21ppandURYX26 dR45eeyHaQl/zTvjU0219ejYuTJIVND9+fE74QqNbYIBxRnr2SHO9eklxDU73qzn Y1c4mA6X0DJx95WRzsBJN88O1957FGWTSwAdDwHWflYNiNERU2LHh57e815bTXXv EUr6DKFyLRuCRxHAygWgJLlnGlcbwGF2VDN8igm1625Fv/JsYkqal5mIamRqLeE= -----END CERTIFICATE-----Generated at Tue Nov 18 08:24:40 2025 by rpki-client