$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b9abd7ab-6785-471e-99b1-531406ad73a6.roa File: b9abd7ab-6785-471e-99b1-531406ad73a6.roa (raw, json) Hash identifier: t/0YUqcECMM/Pspcp18k8DkowpHldSHSFBQknxH9JlY= Subject key identifier: A2:24:63:95:23:41:53:9E:DF:CA:CA:23:01:03:76:10:11:C7:93:BA Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 1A4D61C27BC4FB2B11890690A50834E5DD26727F Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b9abd7ab-6785-471e-99b1-531406ad73a6.roa Signing time: Fri 31 Oct 2025 05:44:05 +0000 ROA not before: Fri 31 Oct 2025 05:44:05 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2d58::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:4d:61:c2:7b:c4:fb:2b:11:89:06:90:a5:08:34:e5:dd:26:72:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 05:44:05 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=35a276d2fe567c595b6d535b0ab4f00a7091c93dfdc0b4d516fc50d4589c8b4c, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:38:c6:76:8a:d5:58:8e:eb:b6:f5:ff:e3:aa: 74:4a:8f:04:6b:4b:7c:63:2d:da:3b:58:e3:51:d3: f9:c5:1b:0c:10:ea:2d:5c:33:1c:6a:d9:f5:7b:c9: 5e:47:ff:ec:0b:7f:46:36:37:e7:93:30:9f:bb:f6: 69:77:e9:bb:d1:0e:28:0a:d6:c3:4d:ca:85:4c:14: 56:13:ea:f6:fc:38:57:31:de:6f:c8:49:5b:a1:56: 38:ba:9c:05:1b:d1:92:af:35:15:70:da:c4:23:8a: 18:9e:3f:df:e0:f5:e8:dc:64:18:7f:15:82:df:08: da:28:9f:8c:92:f8:22:a1:11:09:93:a5:17:fd:c7: c1:2d:cb:9a:44:55:ca:75:92:17:0d:18:4e:62:70: 00:85:c0:4c:cf:56:21:01:de:c7:e5:b3:bd:82:fc: d6:8a:de:30:61:c1:ad:cb:7e:a3:8c:0f:34:76:be: f7:57:9c:1d:3b:74:74:18:4b:72:cb:20:4f:c4:3c: 21:6c:2e:07:49:dc:e0:3f:7b:d0:29:af:85:61:8b: c8:e9:26:a4:ea:68:23:e5:a7:fb:29:03:69:e2:f2: 46:25:33:26:94:01:a3:19:56:f3:55:be:72:37:a3: 2a:bd:ed:db:db:32:c0:e7:e9:f1:1b:cc:5f:ae:e3: 9c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:24:63:95:23:41:53:9E:DF:CA:CA:23:01:03:76:10:11:C7:93:BA X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b9abd7ab-6785-471e-99b1-531406ad73a6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2d58::/45 Signature Algorithm: sha256WithRSAEncryption 5b:47:f6:6d:e1:dc:a2:f6:70:99:9d:2b:00:61:88:b2:bf:f4: 0a:52:eb:54:91:39:62:7e:14:e3:ce:a0:b2:e9:d8:71:5a:de: 5b:42:e1:22:2b:ae:b2:df:36:f2:ce:cd:79:0b:77:63:49:f9: 93:69:82:53:86:d3:db:c1:3f:dc:79:7a:f9:35:07:e9:f8:17: d1:53:b4:b4:ea:e6:06:10:58:c2:4e:2c:61:5e:a0:44:ea:33: 63:af:26:af:22:fb:08:02:c1:be:a2:5e:06:62:88:e9:54:26: 91:d4:cd:cb:b8:f9:f5:82:30:3e:8d:33:d1:6f:06:21:c2:e9: e1:92:6a:d3:4a:d7:97:25:24:9b:94:c7:e6:c3:13:19:0c:14: 9c:8b:21:6a:44:aa:8e:c4:12:62:a5:36:44:4b:94:56:6d:fb: 0a:04:b4:6a:a8:38:d9:bf:b9:3f:97:cc:aa:23:64:73:26:d8: 01:f7:22:e3:a7:03:49:46:65:69:fd:42:8e:f2:62:11:ab:b0: ed:ce:1c:db:9e:aa:c6:ef:22:8e:8e:8a:88:8a:fc:56:cb:d8: 7b:64:59:03:f8:76:40:2f:5a:8a:b8:78:8c:d6:06:fd:c4:bc: 4f:68:30:84:f9:dd:1c:85:8c:9c:fb:59:dd:e9:c1:dc:d5:24: 37:ec:8c:9a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGk1hwnvE+ysRiQaQpQg05d0mcn8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDU0NDA1WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNWEyNzZkMmZlNTY3YzU5NWI2ZDUzNWIwYWI0ZjAwYTcw OTFjOTNkZmRjMGI0ZDUxNmZjNTBkNDU4OWM4YjRjMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYOMZ2itVYjuu29f/jqnRKjwRrS3xjLdo7WONR0/nFGwwQ 6i1cMxxq2fV7yV5H/+wLf0Y2N+eTMJ+79ml36bvRDigK1sNNyoVMFFYT6vb8OFcx 3m/ISVuhVji6nAUb0ZKvNRVw2sQjihieP9/g9ejcZBh/FYLfCNoon4yS+CKhEQmT pRf9x8Ety5pEVcp1khcNGE5icACFwEzPViEB3sfls72C/NaK3jBhwa3LfqOMDzR2 vvdXnB07dHQYS3LLIE/EPCFsLgdJ3OA/e9Apr4Vhi8jpJqTqaCPlp/spA2ni8kYl MyaUAaMZVvNVvnI3oyq97dvbMsDn6fEbzF+u45y7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUoiRjlSNBU57fysojAQN2EBHHk7owHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2I5YWJkN2FiLTY3ODUtNDcxZS05OWIxLTUzMTQwNmFkNzNhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwMmAJAALVgwDQYJKoZIhvcNAQELBQADggEBAFtH9m3h3KL2cJmdKwBhiLK/ 9ApS61SROWJ+FOPOoLLp2HFa3ltC4SIrrrLfNvLOzXkLd2NJ+ZNpglOG09vBP9x5 evk1B+n4F9FTtLTq5gYQWMJOLGFeoETqM2OvJq8i+wgCwb6iXgZiiOlUJpHUzcu4 +fWCMD6NM9FvBiHC6eGSatNK15clJJuUx+bDExkMFJyLIWpEqo7EEmKlNkRLlFZt +woEtGqoONm/uT+XzKojZHMm2AH3IuOnA0lGZWn9Qo7yYhGrsO3OHNueqsbvIo6O ioiK/FbL2HtkWQP4dkAvWoq4eIzWBv3EvE9oMIT53RyFjJz7Wd3pwdzVJDfsjJo= -----END CERTIFICATE-----Generated at Tue Nov 18 08:24:32 2025 by rpki-client