$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bef79f0f-400f-4216-a050-5c8bcf78d910.roa File: bef79f0f-400f-4216-a050-5c8bcf78d910.roa (raw, json) Hash identifier: YoPuFdkhDFnU6O5rkqM2cl1Q7dq9im56VXrTGvPThF0= Subject key identifier: 45:7D:65:8F:86:17:EE:BF:08:21:3F:0C:B4:2A:66:4B:D8:77:E7:8F Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5E1B081197CE10FF66B98045AB86EF74C110468B Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bef79f0f-400f-4216-a050-5c8bcf78d910.roa Signing time: Fri 31 Oct 2025 07:38:48 +0000 ROA not before: Fri 31 Oct 2025 07:38:48 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2940::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:1b:08:11:97:ce:10:ff:66:b9:80:45:ab:86:ef:74:c1:10:46:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 07:38:48 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=53ea63e7a321e3c2d919dd6a054e5aea9b45a6e3e09b05719745356830a7e061, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:33:cd:7a:32:ac:aa:f7:83:58:15:6f:0f:b9: 07:16:e7:08:e4:b0:c3:9c:d2:31:44:bc:3c:66:18: cc:15:b2:dc:e1:e5:72:88:9a:e0:ab:33:41:ae:d9: d8:93:5c:4f:ff:66:68:1b:79:0f:1d:5a:6e:a9:c3: f3:4b:b8:c9:cc:a4:b0:71:1f:25:da:0f:7e:41:f4: 11:35:c8:57:ef:be:b2:73:6e:67:62:97:61:59:74: 08:34:ae:87:77:66:db:40:b6:f3:a4:19:0b:f0:ac: b9:4b:85:d8:69:a6:c7:95:eb:f4:0d:6c:5a:80:de: 91:cf:a4:2c:ca:d2:67:5a:56:eb:cd:da:4f:97:6c: 27:75:bf:21:90:b4:69:e7:5d:28:29:49:98:3a:a6: fc:62:04:fe:d4:91:33:45:d9:f7:54:a9:25:02:2f: ae:a5:f2:1b:d9:0f:1d:73:48:3c:ad:de:2e:82:27: f2:0e:e2:28:47:44:fd:7f:61:e4:81:45:99:3d:9d: eb:f8:9b:ad:f3:27:bc:9e:21:2c:cd:06:38:15:bc: de:2f:4e:28:f1:7c:d9:95:6d:eb:3a:34:f2:b0:32: 44:1c:f4:d9:dd:8f:c1:09:e4:f7:ab:cd:b0:20:82: a6:78:c3:bd:88:2b:49:66:d0:29:3c:28:37:9b:d7: d8:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:7D:65:8F:86:17:EE:BF:08:21:3F:0C:B4:2A:66:4B:D8:77:E7:8F X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/bef79f0f-400f-4216-a050-5c8bcf78d910.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2940::/42 Signature Algorithm: sha256WithRSAEncryption 2b:da:e1:c6:15:5b:8d:c9:8c:6a:63:76:25:da:31:65:00:1d: 88:61:28:9c:50:17:1a:18:03:b2:ff:c8:ce:ab:a5:30:97:83: 80:28:fa:ef:75:54:29:5a:db:3f:2e:8d:63:d7:b1:44:a0:04: 68:71:63:79:36:d0:e4:47:e4:89:68:24:5a:32:c7:71:7e:d4: ac:af:85:bd:a6:1e:fb:eb:a6:88:e0:c1:0e:bf:7b:d5:f9:bd: 79:98:5d:34:67:cb:f7:f9:07:50:b0:c6:d4:fb:7e:a3:bb:14: 49:8e:55:3f:66:67:12:1a:7e:d2:d3:8f:e6:74:11:12:dd:d5: 33:24:91:a6:e3:f0:50:9a:34:48:20:4a:32:10:72:9a:bf:a3: 7e:bb:83:be:27:7f:11:60:ad:89:2b:fe:6e:25:6e:9e:ff:ad: a6:9a:9d:cb:a6:4b:0c:32:d9:5a:16:cf:5d:75:86:e1:63:e1: bc:f3:4d:76:3b:64:90:78:da:75:d1:83:bc:54:b8:fc:de:a5: 81:2a:20:e8:3a:93:34:88:92:06:f0:6c:0d:4e:fa:16:11:3d: 56:68:7b:51:4e:98:80:86:a6:a0:ab:ae:6d:17:3c:d1:58:15: 4f:4d:02:50:c2:e1:b5:42:4c:eb:ac:71:c6:c3:43:a2:e7:dc: 45:e9:9e:3b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXhsIEZfOEP9muYBFq4bvdMEQRoswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDczODQ4WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1M2VhNjNlN2EzMjFlM2MyZDkxOWRkNmEwNTRlNWFlYTli NDVhNmUzZTA5YjA1NzE5NzQ1MzU2ODMwYTdlMDYxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5M816Mqyq94NYFW8PuQcW5wjksMOc0jFEvDxmGMwVstzh 5XKImuCrM0Gu2diTXE//ZmgbeQ8dWm6pw/NLuMnMpLBxHyXaD35B9BE1yFfvvrJz bmdil2FZdAg0rod3ZttAtvOkGQvwrLlLhdhppseV6/QNbFqA3pHPpCzK0mdaVuvN 2k+XbCd1vyGQtGnnXSgpSZg6pvxiBP7UkTNF2fdUqSUCL66l8hvZDx1zSDyt3i6C J/IO4ihHRP1/YeSBRZk9nev4m63zJ7yeISzNBjgVvN4vTijxfNmVbes6NPKwMkQc 9Nndj8EJ5PerzbAggqZ4w72IK0lm0Ck8KDeb19gbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQURX1lj4YX7r8IIT8MtCpmS9h3548wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2JlZjc5ZjBmLTQwMGYtNDIxNi1hMDUwLTVjOGJjZjc4ZDkxMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAJAAKUAwDQYJKoZIhvcNAQELBQADggEBACva4cYVW43JjGpjdiXaMWUA HYhhKJxQFxoYA7L/yM6rpTCXg4Ao+u91VCla2z8ujWPXsUSgBGhxY3k20ORH5Ilo JFoyx3F+1Kyvhb2mHvvrpojgwQ6/e9X5vXmYXTRny/f5B1CwxtT7fqO7FEmOVT9m ZxIaftLTj+Z0ERLd1TMkkabj8FCaNEggSjIQcpq/o367g74nfxFgrYkr/m4lbp7/ raaancumSwwy2VoWz111huFj4bzzTXY7ZJB42nXRg7xUuPzepYEqIOg6kzSIkgbw bA1O+hYRPVZoe1FOmICGpqCrrm0XPNFYFU9NAlDC4bVCTOusccbDQ6Ln3EXpnjs= -----END CERTIFICATE-----Generated at Tue Nov 18 08:24:19 2025 by rpki-client